CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A security flaw has been discovered in MuYuCMS up to 2.7. Affected by this issue is some unknown functionality of the file /admin.php of the component Template Management. The manipulation results in code injection. It is possible to launch the attack remotely...

5.8CVSS7AI score0.00356EPSS

Exploits0References1

OSV•added 2025/09/26 2:15 a.m.•2 views

CVE-2025-10993

7.2CVSS5.6AI score

Exploits0References4

NVD•added 2025/09/26 2:15 a.m.•3 views

CVE-2025-10993

7.2CVSS0.00356EPSS

Exploits0References4

CVE•added 2025/09/26 1:32 a.m.•13 views

CVE-2025-10993

MuYuCMS up to version 2.7 is affected by a code injection vulnerability in the Template Management component, specifically in /admin.php. The issue arises from an unknown functionality in that file, enabling remote code injection. Public references consistently describe remote exploitation, but n...

7.2CVSS5.2AI score0.00356EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2025/09/16 7:29 a.m.•1 views

CVE-2025-10394

A vulnerability has been found in fcbazzm ics-park Smart Park Management System 2.0. Affected is an unknown function of the file ruoyi-quartz/src/main/java/com/ruoyi/quartz/controller/JobController.java of the component Scheduled Task Module. Such manipulation leads to code injection. The attack...

5.8CVSS6.6AI score0.00397EPSS

Exploits1References1

Positive Technologies•added 2025/09/15 12:0 a.m.•3 views

PT-2025-37741

Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.4.3.20 through 7.4.3.111 Liferay DXP versions 2023.Q3.1 through 2023.Q3.4 Liferay DXP version 2023.Q4.0 Liferay Portal versions 7.4 GA through update 92 Description A cross-site scripting XSS issue exists in Objects...

6.1CVSS5.6AI score0.00207EPSS

Exploits0References8

OSV•added 2025/09/14 7:15 a.m.•2 views

CVE-2025-10394

7.2CVSS5.5AI score0.00397EPSS

Exploits1References4

NVD•added 2025/09/14 7:15 a.m.•2 views

CVE-2025-10394

7.2CVSS0.00397EPSS

Exploits1References4

Cvelist•added 2025/09/14 6:32 a.m.•10 views

CVE-2025-10394 fcba_zzm ics-park Smart Park Management System Scheduled Task JobController.java code injection

5.8CVSS0.00397EPSS

Exploits1References4

Github Security Blog•added 2025/09/08 6:31 p.m.•5 views

SimStudioAI: A function in route.ts is vulnerable to Code Injection

A vulnerability was identified in SimStudioAI sim. This impacts an unknown function of the file apps/sim/app/api/function/execute/route.ts. The manipulation of the argument code leads to code injection. The attack is possible to be carried out remotely...

9.8CVSS7.1AI score0.00703EPSS

Exploits1References8Affected Software1

NVD•added 2025/09/08 5:15 p.m.•15 views

CVE-2025-10097

A vulnerability was identified in SimStudioAI sim up to 1.0.0. This impacts an unknown function of the file apps/sim/app/api/function/execute/route.ts. The manipulation of the argument code leads to code injection. The attack is possible to be carried out remotely...

9.8CVSS0.00703EPSS

Exploits1References5

OSV•added 2025/09/08 5:15 p.m.•2 views

CVE-2025-10097

9.8CVSS7.1AI score

Exploits0References5

Cvelist•added 2025/09/08 4:32 p.m.•17 views

CVE-2025-10097 SimStudioAI sim route.ts code injection

6.5CVSS0.00703EPSS

Exploits1References5

Rows per page