CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

122 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: devlink: fixed the error handling for xaalloccyclic. In the event that 1 is returned from xaalloccyclic wrap, ERRPTR1 will be returned, causing ISERR to be false. This can lead to dereferencing an unallocated pointer rel. To fix...

5.5CVSS5.8AI score0.00029EPSS

Exploits0References2

Patchstack•added 2025/12/31 12:0 a.m.•2 views

WordPress WP Enabled SVG plugin <= 0.2 - Author+ Stored XSS via SVG vulnerability

Author+ Stored XSS via SVG vulnerability discovered by Pierre Rudloff in WordPress Plugin WP Enabled SVG versions = 0.2...

4.8CVSS5.4AI score0.00306EPSS

Exploits1References1Affected Software1

Patchstack•added 2025/11/05 12:0 a.m.•4 views

Drupal Email TFA module < 2.0.6 - Authenticated Broken Access Control vulnerability

Authenticated Broken Access Control vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Email TFA versions 2.0.6...

5.4CVSS7AI score0.00046EPSS

Exploits0Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-5295

Malware in sbrugna...

6.8CVSS6.4AI score0.08904EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2003-1138

Malware in sbrugna...

7.5CVSS6.4AI score0.08378EPSS

Exploits1References9

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-8355

Malicious code in bioql PyPI...

6.5CVSS9AI score0.00532EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-28649

Malicious code in bioql PyPI...

5.9CVSS6.5AI score0.00043EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-40113

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00451EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-25288

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00047EPSS

Exploits0References1

Patchstack•added 2025/09/24 12:0 a.m.•7 views

Drupal Access code module < 2.0.5 - Authenticated Broken Access Control vulnerability

Authenticated Broken Access Control vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Access code versions 2.0.5...

6.3CVSS7.2AI score0.0006EPSS

Exploits0Affected Software1

Patchstack•added 2025/09/24 12:0 a.m.•5 views

Drupal Reverse Proxy Header module < 1.1.2 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Reverse Proxy Header versions 1.1.2...

5.3CVSS7AI score0.00099EPSS

Exploits0Affected Software1

Patchstack•added 2025/09/24 12:0 a.m.•3 views

Drupal Plausible tracking module < 1.0.2 - Unauthenticated Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Plausible tracking versions 1.0.2...

6.1CVSS6.1AI score0.00025EPSS

Exploits0Affected Software1

Patchstack•added 2025/09/24 12:0 a.m.•1 views

Drupal Umami Analytics module < 1.0.1 - Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Umami Analytics versions 1.0.1...

3.8CVSS6.1AI score0.00031EPSS

Exploits0Affected Software1

Patchstack•added 2025/08/27 12:0 a.m.•3 views

Drupal Authenticator Login module < 2.1.8 - Authenticated Broken Access Control vulnerability

Authenticated Broken Access Control vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Authenticator Login versions 2.1.8...

8.8CVSS7AI score0.0007EPSS

Exploits0References1Affected Software1

Patchstack•added 2025/08/27 12:0 a.m.•3 views

Drupal Facets module < 2.0.10,3.0.0 - Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Facets versions 2.0.10,3.0.0...

6.1CVSS6.1AI score0.00025EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/08/24 12:34 p.m.•1 views

CVE-2025-57890

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pierre Lannoy Sessions sessions allows Stored XSS.This issue affects Sessions: from n/a through = 3.2.0...

5.9CVSS5.9AI score0.00043EPSS

Exploits0References1

CVE•added 2025/08/22 11:59 a.m.•9 views

CVE-2025-57890

CVE-2025-57890: A stored XSS in WordPress Sessions Plugin (versions up to 3.2.0) arises from improper input neutralization during web page generation. Affected: Sessions plugin total versions through 3.2.0 (no vendor/version specifics beyond 3.2.0). Impact is listed as low in confidentiality, int...

5.9CVSS5.9AI score0.00043EPSS

Exploits0References1

RedhatCVE•added 2025/08/22 8:31 a.m.•8 views

CVE-2025-49420

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themepassion Ultra Portfolio ultra-portfolio allows Reflected XSS.This issue affects Ultra Portfolio: from n/a through = 6.7...

7.1CVSS5.9AI score0.00047EPSS

Exploits0References1

Positive Technologies•added 2025/08/22 12:0 a.m.•2 views

PT-2025-34354 · Unknown · Pierre Lannoy Sessions

Name of the Vulnerable Software and Affected Versions: Pierre Lannoy Sessions versions through 3.2.0 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Stored Cross-Site Scripting XSS. Recommendations: Update Pierre Lannoy...

5.9CVSS6.4AI score0.00043EPSS

Exploits0References6

NVD•added 2025/08/20 8:15 a.m.•5 views

CVE-2025-49420

7.1CVSS0.00047EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by