CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7896 matches found

CVE•added 2025/08/15 4:32 a.m.•26 views

CVE-2025-9009

The CVE covers itsourcecode Online Tour and Travel Management System 1.0. Affected is an unknown function in /admin/email_setup.php where manipulating the Name argument triggers SQL injection. The issue allows remote exploitation and the exploit has been disclosed publicly. Connected sources cons...

9.8CVSS7.6AI score0.00387EPSS

Exploits1References5Affected Software1

RedhatCVE•added 2025/08/15 2:36 a.m.•3 views

CVE-2025-4410

A buffer overflow vulnerability exists in the module SetupUtility. An attacker with local privileged access can exploit this vulnerability by executeing arbitrary code...

7.5CVSS7.5AI score0.0012EPSS

Exploits0References1

CNNVD•added 2025/08/15 12:0 a.m.•2 views

itsourcecode Online Tour and Travel Management System 注入漏洞

itsourcecode Online Tour and Travel Management System is itsourcecode open source an online tour and travel management system . An injection vulnerability exists in version 1.0 of itsourcecode Online Tour and Travel Management System, which originates from a SQL injection due to incorrect...

9.8CVSS7.7AI score0.00387EPSS

Exploits1References7

Positive Technologies•added 2025/08/15 12:0 a.m.•7 views

PT-2025-33441 · Itsourcecode · Itsourcecode Online Tour/Travel Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Tour and Travel Management System version 1.0 Description: A SQL injection vulnerability exists in itsourcecode Online Tour and Travel Management System 1.0. The vulnerability is located in an unknown function within the...

9.8CVSS7.3AI score0.00387EPSS

Exploits1References11

Tenable Nessus•added 2025/08/15 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-37778

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: Fix dangling pointer in krbauthenticate krbauthenticate frees sess-user and does not set the pointer to NULL. It calls ksmbdkrb5authenticate to...

7.8CVSS6.7AI score0.00472EPSS

Exploits0References2

Tenable Nessus•added 2025/08/15 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2025-38035

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nvmet-tcp: don't restore null skstatechange queue-statechange is set as part of nvmettcpsetqueuesock, but if the TCP connection isn't established when...

5.5CVSS6.4AI score0.00178EPSS

Exploits0References3

Tenable Nessus•added 2025/08/15 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2023-0122

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference vulnerability in the Linux kernel NVMe functionality, in nvmetsetupauth, allows an attacker to perform a Pre-Auth Denial of Service D...

7.5CVSS6.6AI score0.01277EPSS

Exploits0References2

Tenable Nessus•added 2025/08/15 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-35850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: fix NULL-deref on non- serdev setup Qualcomm ROME controllers can be...

5.5CVSS5.8AI score0.00234EPSS

Exploits0References2