CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1564 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-21189

Malicious code in bioql PyPI...

9CVSS8.8AI score0.01357EPSS

Exploits1References6

Positive Technologies•added 2025/09/30 12:0 a.m.•1 views

PT-2025-41205

Name of the Vulnerable Software and Affected Versions Tenda CH22 versions prior to 1.0.0.1 Description A security issue exists in Tenda CH22. The formWrlsafeset function within the /goform/AdvSetWrlsafeset file, part of the HTTP Request Handler component, is susceptible to a stack-based buffer...

10CVSS9.6AI score0.0083EPSS

Exploits1References13

OSV•added 2025/09/28 9:15 p.m.•1 views

CVE-2025-11119

A security flaw has been discovered in itsourcecode Hostel Management System 1.0. Impacted is an unknown function of the file /justines/index.php of the component POST Request Handler. Performing manipulation of the argument from results in cross site scripting. It is possible to initiate the...

6.1CVSS4.3AI score0.00042EPSS

Exploits1References5

Cvelist•added 2025/09/28 8:32 p.m.•7 views

CVE-2025-11119 itsourcecode Hostel Management System POST Request index.php cross site scripting

5.3CVSS0.00042EPSS

Exploits1References5

Vulnrichment•added 2025/09/28 8:32 p.m.•3 views

CVE-2025-11119 itsourcecode Hostel Management System POST Request index.php cross site scripting

5.3CVSS5.5AI score0.00042EPSS

Exploits1References5

RedhatCVE•added 2025/09/27 5:41 p.m.•4 views

CVE-2025-11030

A vulnerability was detected in Tutorials-Website Employee Management System up to 611887d8f8375271ce8abc704507d46340837a60. Impacted is an unknown function of the file /admin/all-applied-leave.php of the component HTTP Request Handler. The manipulation results in improper authorization. The atta...

7.5CVSS6.4AI score0.00051EPSS

Exploits0References1

RedhatCVE•added 2025/09/27 12:48 a.m.•5 views

CVE-2025-10987

A vulnerability was determined in YunaiV yudao-cloud up to 2025.09. Affected by this issue is some unknown functionality of the file /crm/contact/transfer of the component HTTP Request Handler. This manipulation of the argument contactId causes improper authorization. It is possible to initiate t...

6.5CVSS6.6AI score0.00074EPSS

Exploits0References1

NVD•added 2025/09/26 5:15 p.m.•1 views

CVE-2025-11030

7.5CVSS0.00051EPSS

Exploits0References4

Cvelist•added 2025/09/26 5:2 p.m.•6 views

CVE-2025-11030 Tutorials-Website Employee Management System HTTP Request all-applied-leave.php improper authorization

7.5CVSS0.00051EPSS

Exploits0References4

Vulnrichment•added 2025/09/26 12:2 a.m.•2 views

CVE-2025-10987 YunaiV yudao-cloud HTTP Request transfer improper authorization

6.5CVSS6.4AI score0.00074EPSS

Exploits0References4

RedhatCVE•added 2025/09/24 9:22 p.m.•2 views

CVE-2025-10815

A vulnerability was identified in Tenda AC20 up to 16.03.08.12. Affected by this issue is the function strcpy of the file /goform/SetPptpServerCfg of the component HTTP POST Request Handler. Such manipulation of the argument startIp leads to buffer overflow. The attack can be launched remotely. T...

9CVSS9AI score0.00255EPSS

Exploits0References1

NVD•added 2025/09/22 9:15 p.m.•3 views

CVE-2025-10815

9CVSS0.00255EPSS

Exploits0References5

RedhatCVE•added 2025/09/17 7:50 a.m.•2 views

CVE-2025-10432

A vulnerability was found in Tenda AC1206 15.03.06.23. This vulnerability affects the function checkparamchanged of the file /goform/AdvSetMacMtuWa of the component HTTP Request Handler. Performing manipulation of the argument wanMTU results in stack-based buffer overflow. Remote exploitation of...

10CVSS6.9AI score0.00791EPSS

Exploits1References1

RedhatCVE•added 2025/09/16 9:48 p.m.•4 views

CVE-2025-10411

A vulnerability was detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This issue affects some unknown processing of the file /stc-log-keeper/checkprofile.php of the component POST Request Handler. The manipulation of the argument profileid results in cross site...

6.1CVSS5.7AI score0.0006EPSS

Exploits1References1

Cvelist•added 2025/09/15 7:32 a.m.•4 views

CVE-2025-10432 Tenda AC1206 HTTP Request AdvSetMacMtuWa check_param_changed stack-based overflow

10CVSS0.00791EPSS

Exploits1References5

Vulnrichment•added 2025/09/15 7:32 a.m.•3 views

CVE-2025-10432 Tenda AC1206 HTTP Request AdvSetMacMtuWa check_param_changed stack-based overflow

10CVSS9.5AI score0.00791EPSS

Exploits1References5

Positive Technologies•added 2025/09/15 12:0 a.m.•2 views

PT-2025-37457

Name of the Vulnerable Software and Affected Versions: Tenda AC1206 version 15.03.06.23 Description: A stack-based buffer overflow vulnerability exists in the HTTP Request Handler component of the Tenda AC1206. The vulnerability is located in the check param changed function within the...

10CVSS9.7AI score0.00791EPSS

Exploits1References12

CNNVD•added 2025/09/15 12:0 a.m.•0 views

Tenda AC1206 安全漏洞

Tenda AC1206 is a wireless gigabit router from Tenda China. A security vulnerability exists in Tenda AC1206 version 15.03.06.23, which originates from the incorrect manipulation of the parameter wanMTU by the function checkparamchanged in the file /goform/AdvSetMacMtuWa in the HTTP Request Handle...

10CVSS9.7AI score0.00791EPSS

Exploits1References5

OSV•added 2025/09/14 10:15 p.m.•1 views

CVE-2025-10411

6.1CVSS4.2AI score0.0006EPSS

Exploits1References5

Vulnrichment•added 2025/09/14 1:32 a.m.•2 views

CVE-2025-10386 Yida ECMS Consulting Enterprise Management System POST Request login.do cross site scripting

A vulnerability was found in Yida ECMS Consulting Enterprise Management System 1.0. This affects an unknown part of the file /login.do of the component POST Request Handler. The manipulation of the argument requestUrl results in cross site scripting. It is possible to launch the attack remotely...

5.3CVSS4AI score0.00045EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by