CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-0470

Malware in sbrugna...

9.3CVSS7.6AI score0.0086EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-6967

Malicious code in bioql PyPI...

8.4CVSS8.3AI score0.00123EPSS

Exploits0References4

GithubExploit•added 2025/04/18 1:19 p.m.•464 views

Exploit for Code Injection in Dgorissen Pycel

CVE-2024-53924 - Description: Pycel through 1.0b30, when oper...

9.8CVSS9.5AI score0.00937EPSS

Exploits2

Veracode•added 2025/04/14 10:58 a.m.•13 views

Remote Code Execution (RCE)

pgAdmin4 is vulnerable to Remote Code Execution RCE. The vulnerability is due to unsafe use of Python's eval function due to unsanitized input in the querycommitted and highavailability parameters on two POST endpoints...

9.9CVSS7.4AI score0.8249EPSS

Exploits7References4Affected Software1

Github Security Blog•added 2025/04/03 3:31 p.m.•24 views

pgAdmin 4 Vulnerable to Remote Code Execution

Remote Code Execution security vulnerability in pgAdmin 4 Query Tool and Cloud Deployment modules. The vulnerability is associated with the 2 POST endpoints; /sqleditor/querytool/download, where the querycommited parameter and /cloud/deploy endpoint, where the highavailability parameter is unsafe...

9.9CVSS8.4AI score0.8249EPSS

Exploits7References4Affected Software1

OSV•added 2025/04/03 3:31 p.m.•11 views

GHSA-G73C-FW68-PWX3 pgAdmin 4 Vulnerable to Remote Code Execution

9.9CVSS8.4AI score0.8249EPSS

Exploits7References4

OSV•added 2025/04/03 1:15 p.m.•81 views

CVE-2025-2945

8.8CVSS8.4AI score

Exploits0References1

OSV•added 2025/03/20 10:15 a.m.•5 views

CVE-2024-6982

A remote code execution vulnerability exists in the Calculate function of parisneo/lollms version 9.8. The vulnerability arises from the use of Python's eval function to evaluate mathematical expressions within a Python sandbox that disables builtins and only allows functions from the math module...

8.4CVSS8.5AI score

Exploits0References2

RedhatCVE•added 2025/02/05 12:56 p.m.•3 views

CVE-2024-43404

MEGABOT is a fully customized Discord bot for learning and fun. The /math command and functionality of MEGABOT versions 1.5.0 contains a remote code execution vulnerability due to a Python eval. The vulnerability allows an attacker to inject Python code into the expression parameter when using...

9.8CVSS7.7AI score0.04336EPSS

Exploits0

Cvelist•added 2024/09/03 10:1 a.m.•17 views

CVE-2024-8374 Arbitrary Code Injection in Cura

UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerable to code injection via the 3MF format reader /plugins/ThreeMFReader.py. The vulnerability arises from improper handling of the droptobuildplate property within 3MF files, which are ZIP archives containing the model data. When...

7.8CVSS0.00133EPSS

Exploits0References1

OSV•added 2021/08/09 9:15 p.m.•27 views

CVE-2021-38305

23andMe Yamale before 3.0.8 allows remote attackers to execute arbitrary code via a crafted schema file. The schema parser uses eval as part of its processing, and tries to protect from malicious expressions by limiting the builtins that are passed to the eval. When processing the schema, each li...

7.8CVSS7.9AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by