CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

257 matches found

RedhatCVE•added 2025/12/12 6:12 p.m.•4 views

CVE-2025-14046

An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allowed user-supplied HTML to inject DOM elements with IDs that collided with server-initialized data islands. These collisions could overwrite or shadow critical application state objects used by...

8.6CVSS6.5AI score0.0032EPSS

Exploits0References1

Positive Technologies•added 2025/12/11 12:0 a.m.•6 views

PT-2025-50649

8.6CVSS6.5AI score0.0032EPSS

Exploits0References7

GithubExploit•added 2025/12/10 11:38 a.m.•157 views

Exploit for Deserialization of Untrusted Data in Facebook React

🚀 React2Shell Exploiter Advanced Exploitation & Server I...

10CVSS7.8AI score0.99562EPSS

Exploits383

GithubExploit•added 2025/12/05 10:43 a.m.•206 views

Exploit for Expression Language Injection in Atlassian Confluence_Data_Center

╔═══════════════════════════════════════════════════════════...

9.8CVSS8.7AI score0.99999EPSS

Exploits88

OSV•added 2025/11/30 3:15 a.m.•2 views

DEBIAN-CVE-2025-66422

Tryton trytond before 7.6.11 allows remote attackers to obtain sensitive trace-back server setup information. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70...

4.3CVSS5.3AI score0.00247EPSS

Exploits1References1

CNVD•added 2025/11/24 12:0 a.m.•6 views

IBM Concert Information Disclosure Vulnerability (CNVD-2026-07114)

IBM Concert is a generative artificial intelligence-driven automated application management and monitoring tool based on the watsonx platform, announced by IBM in May 2024 at the IBMThink conference in Boston, USA. IBM Concert suffers from an information disclosure vulnerability that stems from t...

7.5CVSS5.9AI score0.00222EPSS

Exploits0References1

NVD•added 2025/11/20 10:15 p.m.•3 views

CVE-2025-36160

IBM Concert 1.0.0 through 2.0.0 could disclose sensitive server information from HTTP response headers that could aid in further attacks against the system...

7.5CVSS0.00222EPSS

Exploits0References1

Snyk•added 2025/10/21 8:2 p.m.•0 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the Server: DML component. A high privileged attacker can cause the server to hang or crash, and perform unauthorized update, insert, or delete operations on accessible data by sending crafted requests over the...

7CVSS6.7AI score0.00438EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-1806

Malware in sbrugna...

9.8CVSS9.2AI score0.01728EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-3428

Malware in sbrugna...

3.5CVSS6.8AI score0.01895EPSS

Exploits1References13

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-4999

Malware in sbrugna...

9.8CVSS9.4AI score0.01207EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2013-2980

Malware in sbrugna...

4.3CVSS6.4AI score0.01066EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2017-1915

Malware in sbrugna...

4.1CVSS7.2AI score0.00702EPSS

Exploits0References21

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-3327

Malware in sbrugna...

7.5CVSS7.6AI score0.01129EPSS

Exploits0References2

RedhatCVE•added 2025/10/06 5:13 p.m.•2 views

CVE-2025-11020

An attacker can obtain server information using Path Traversal vulnerability to conduct SQL Injection, which possibly exploits Unrestricted Upload of File with Dangerous Type vulnerability in MarkAny SafePC Enterprise on Windows, Linux.This issue affects SafePC Enterprise: V7.0. V7.0.YYYY.MM.DD...

8.8CVSS7.3AI score0.00275EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-49638

Malicious code in bioql PyPI...

5.8CVSS5.8AI score0.02286EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-24368

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.02072EPSS

Exploits0References1