CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

28 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-8725

Malware in sbrugna...

7.5CVSS7.6AI score0.00251EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-8727

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-8726

Malware in sbrugna...

7.5CVSS7.6AI score0.00323EPSS

Exploits1References2

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-13248 Malicious code in @zalastax/nolb-posty (npm)

The package @zalastax/nolb-posty was found to contain malicious code...

7.2AI score

Exploits0

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•1 views

Malicious code in @zalastax/nolb-posty (npm)

The package @zalastax/nolb-posty was found to contain malicious code...

7AI score

Exploits0

vulnersOsv•added 2020/01/28 11:15 p.m.•1 views

blogger-cli (>=1.2.0 <=1.2.1), canonicalwebteam-blog (>=2.4.0 <=5.0.0) +3 more potentially affected by CVE-2020-5227 via feedgen (>=0.6.1 <=0.8.0)

feedgen PYPI version =0.6.1, =1.2.0, =2.4.0, =1.0.0.dev37, =2.0.2, =2.0.3 Source cves: CVE-2020-5227 Source advisory: OSV:PYSEC-2020-231...

7.5CVSS7.1AI score0.00666EPSS

Exploits1

vulnersOsv•added 2020/01/28 10:37 p.m.•1 views

blogger-cli (>=1.2.0 <=1.2.1), canonicalwebteam-blog (>=2.4.0 <=5.0.0) +3 more potentially affected by CVE-2020-5227 via feedgen (>=0.6.1 <=0.8.0)

feedgen PYPI version =0.6.1, =1.2.0, =2.4.0, =1.0.0.dev37, =2.0.2, =2.0.3 Source cves: CVE-2020-5227 Source advisory: OSV:GHSA-G8Q7-XV52-HF9F...

7.5CVSS7.1AI score0.00666EPSS

Exploits1

CNVD•added 2018/06/08 12:0 a.m.•2 views

Scubez Posty Readymade Classifieds SQL Injection Vulnerability

Posty Scubez Posty Readymade Classifieds is a suite of announcement-based website scripts from Posty India. A SQL injection vulnerability exists in Posty Scubez Posty Readymade Classifieds. A remote attacker can exploit this vulnerability by sending the 'ID' parameter to the...

7.5CVSS8.1AI score0.00251EPSS

Exploits1References1

CNVD•added 2018/06/08 12:0 a.m.•2 views

Posty Readymade Classifieds Script SQL Injection Vulnerability

Posty Readymade Classifieds Script is a bulletin type website script by Posty India. A security vulnerability exists in Posty Readymade Classifieds Script version 1.0. The vulnerability can be exploited to inject SQL commands by sending a listings.php?catid= or ads-details.php?ID= request...

9.8CVSS7.8AI score0.17712EPSS

Exploits2References1

CNVD•added 2017/12/15 12:0 a.m.•1 views

Posty Scubez Posty Readymade Classifieds Cross-Site Scripting Vulnerability

Posty Scubez Posty Readymade Classifieds is a suite of announcement-based website scripts from Posty India. A cross-site scripting vulnerability exists in Posty Scubez Posty Readymade Classifieds. A remote attacker can inject arbitrary web script or HTML by sending the 'ID' parameter to the...

6.1CVSS6AI score0.0024EPSS

Exploits1References1

CNVD•added 2017/12/15 12:0 a.m.•2 views

Posty Scubez Posty Readymade Classifieds Unauthorized Access Vulnerability

Posty Scubez Posty Readymade Classifieds is a suite of announcement-based website scripts from Posty India. A security vulnerability exists in Posty Scubez Posty Readymade Classifieds, which stems from the program's failure to perform proper access control on access to the...

7.5CVSS6.8AI score0.00323EPSS

Exploits1References1

Prion•added 2017/12/13 9:29 a.m.•11 views

Sql injection

Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...

5CVSS8.1AI score0.00251EPSS

Exploits1References1

NVD•added 2017/12/13 9:29 a.m.•12 views

CVE-2017-17567

Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...

7.5CVSS8.1AI score0.00251EPSS

Exploits1References1

NVD•added 2017/12/13 9:29 a.m.•15 views

CVE-2017-17568

Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/useractivatesubmit.php aka the backend PHP script, which might allow remote attackers to obtain sensitive information via a direct request...

7.5CVSS7.4AI score0.00323EPSS

Exploits1References1

Prion•added 2017/12/13 9:29 a.m.•15 views

Code injection

Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...

4.3CVSS6AI score0.0024EPSS

Exploits1References1

NVD•added 2017/12/13 9:29 a.m.•10 views

CVE-2017-17569

Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...

6.1CVSS6.1AI score0.0024EPSS

Exploits1References1

CVE•added 2017/12/13 9:0 a.m.•51 views

CVE-2017-17568

CVE-2017-17568 affects Scubez Posty Readymade Classifieds, with an incorrect access control flaw on the admin/user_activate_submit.php backend script. The underlying issue allows remote attackers to obtain sensitive information via a direct request. Documents indicate potential information disclo...

7.5CVSS7.3AI score0.00323EPSS

Exploits1References1Affected Software1

CVE•added 2017/12/13 9:0 a.m.•50 views

CVE-2017-17569

CVE-2017-17569 affects Scubez Posty Readymade Classifieds, where the admin/user_activate_submit.php ID parameter triggers a cross-site scripting (XSS) vulnerability. The root cause is reflected XSS via the ID parameter, allowing injection of arbitrary script/HTML (CNVD-2018-00534 notes the issue ...

6.1CVSS6AI score0.0024EPSS

Exploits1References1Affected Software1

CVE•added 2017/12/13 9:0 a.m.•51 views

CVE-2017-17567

CVE-2017-17567 affects Scubez Posty Readymade Classifieds. A SQL injection exists in admin/user_activate_submit.php where the ID parameter is unsafely handled, enabling remote SQL command injection with no authentication and no user interaction. Documented impact includes HIGH confidentiality ris...

7.5CVSS8AI score0.00251EPSS

Exploits1References1Affected Software1