CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-6799

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00035EPSS

Exploits1References2

Veracode•added 2025/03/19 4:13 a.m.•9 views

Information Disclosure

parse-git-config is vulnerable to information disclosure. The vulnerability is due to improper handling of key expansion in the expandKeys function, allows an attacker to obtain sensitive information...

7.5CVSS6AI score0.00035EPSS

Exploits1References2Affected Software1

RedhatCVE•added 2025/03/14 3:59 a.m.•8 views

CVE-2025-25975

A flaw was found in the parse-git-config package. Affected versions of this package allow an attacker to obtain sensitive information via the expandKeys function...

7.5CVSS6.2AI score0.00035EPSS

Exploits1References4

OSV•added 2025/03/12 9:31 p.m.•2 views

GHSA-8G77-54RH-46HX Prototype Pollution Vulnerability in parse-git-config

An issue in parse-git-config v.3.0.0 allows an attacker to obtain sensitive information via the expandKeys function...

9.3CVSS7.1AI score0.00035EPSS

Exploits1References3

vulnersOsv•added 2025/03/12 9:31 p.m.•6 views

0xrtest (=1.0.0), 3gtel-frontend-platform (=1.0.0) +2910 more potentially affected by CVE-2025-25975 via parse-git-config (>=0.1.0 <=3.0.0)

parse-git-config NPM version =0.1.0, =1.0.2, =4.2.1, =0.0.1, =0.0.1, =11.0.1, =1.2.0, =0.1.0, =0.0.1, =0.2.1, =0.0.2, =0.0.4 and more Source cves: CVE-2025-25975 Source advisory: OSV:GHSA-8G77-54RH-46HX...

7.5CVSS7.1AI score0.00035EPSS

Exploits1

Github Security Blog•added 2025/03/12 9:31 p.m.•11 views

Prototype Pollution Vulnerability in parse-git-config

An issue in parse-git-config v.3.0.0 allows an attacker to obtain sensitive information via the expandKeys function...

7.5CVSS6.5AI score0.00035EPSS

Exploits1References3Affected Software1

NVD•added 2025/03/12 7:15 p.m.•13 views

CVE-2025-25975

An issue in parse-git-config v.3.0.0 allows an attacker to obtain sensitive information via the expandKeys function...

7.5CVSS0.00035EPSS

Exploits1References1

OSV•added 2025/03/12 7:15 p.m.•5 views

CVE-2025-25975

An issue in parse-git-config v.3.0.0 allows an attacker to obtain sensitive information via the expandKeys function...

7.5CVSS6.2AI score

Exploits0References1

CNNVD•added 2025/03/12 12:0 a.m.•0 views

parse-git-config 安全漏洞

parse-git-config is a library from the individual developer Jon Schlinkert. A security vulnerability exists in parse-git-config version 3.0.0, which stems from the expandKeys function that could lead to the disclosure of sensitive information...

7.5CVSS7.3AI score0.00035EPSS

Exploits1References1

CVE•added 2025/03/12 12:0 a.m.•66 views

CVE-2025-25975

CVE-2025-25975 affects the JavaScript library parse-git-config v3.0.0. The issue is information disclosure caused by improper handling of key expansion in the expandKeys function, leading to potential leakage of sensitive data. Multiple sources (including Veracode and Red Hat advisories) describe...

7.5CVSS6.1AI score0.00035EPSS

Exploits1References1Affected Software1