CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

OSV•added 2026/05/08 5:43 p.m.•4 views

GHSA-HFCF-V2F8-X9PC bitcoinj has a ScriptExecution P2PKH/P2WPKH Verification Bypass

Summary ScriptExecution.correctlySpends contains two fast-path verification bugs for standard P2PKH and native P2WPKH spends in core/src/main/java/org/bitcoinj/script/ScriptExecution.java. In both branches, bitcoinj verifies an attacker-controlled signature/public-key pair but fails to verify tha...

7.5CVSS5.9AI score0.00011EPSS

Exploits0References6

Positive Technologies•added 2026/05/08 12:0 a.m.•5 views

PT-2026-39293

7.5CVSS5.9AI score0.00011EPSS

Exploits0References7

RedhatCVE•added 2025/11/07 5:32 p.m.•2 views

CVE-2025-62075

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Ido Kobelkowsky Simple Payment simple-payment.This issue affects Simple Payment: from n/a through = 2.4.6...

7.5CVSS7.1AI score0.00127EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 5:32 p.m.•2 views

CVE-2025-62076

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ido Kobelkowsky Simple Payment simple-payment.This issue affects Simple Payment: from n/a through = 2.4.6...

7.1CVSS6.4AI score0.00031EPSS

Exploits0References1

EUVD•added 2025/11/06 6:32 p.m.•2 views

EUVD-2025-38042

7.3CVSS6.6AI score0.00127EPSS

Exploits0References2

EUVD•added 2025/11/06 6:32 p.m.•3 views

EUVD-2025-38041

7.1CVSS5.9AI score0.00031EPSS

Exploits0References2

NVD•added 2025/11/06 4:16 p.m.•4 views

CVE-2025-62075

7.5CVSS0.00127EPSS

Exploits0References1

NVD•added 2025/11/06 4:16 p.m.•7 views

CVE-2025-62076

7.1CVSS0.00031EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:55 p.m.•4 views

CVE-2025-62076 WordPress Simple Payment plugin <= 2.4.6 - Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00031EPSS

Exploits0References1

CVE•added 2025/11/06 3:55 p.m.•7 views

CVE-2025-62076

CVE-2025-62076 is a Cross-Site Scripting vulnerability in the WordPress Simple Payment plugin (versions

7.1CVSS6AI score0.00031EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•2 views

CVE-2025-62076 WordPress Simple Payment plugin <= 2.4.6 - Cross Site Scripting (XSS) vulnerability

7.1CVSS6AI score0.00031EPSS

Exploits0References1

Cvelist•added 2025/11/06 3:55 p.m.•6 views

CVE-2025-62075 WordPress Simple Payment plugin <= 2.4.6 - Local File Inclusion vulnerability

7.5CVSS0.00127EPSS

Exploits0References1

CVE•added 2025/11/06 3:55 p.m.•6 views

CVE-2025-62075

CVE-2025-62075 documents a Local File Inclusion in WordPress plugin Simple Payment (simple-payment) up to version 2.4.6 due to improper control of the filename in include/require statements. The Red Hat and EUVD entries corroborate the same description. Impact is High for confidentiality and inte...

7.5CVSS6.7AI score0.00127EPSS

Exploits0References1

Vulnrichment•added 2025/11/06 3:55 p.m.•1 views

CVE-2025-62075 WordPress Simple Payment plugin <= 2.4.6 - Local File Inclusion vulnerability

7.5CVSS6.7AI score0.00127EPSS

Exploits0References1

CNNVD•added 2025/11/06 12:0 a.m.•1 views

WordPress plugin Simple Payment 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

7.1CVSS5.8AI score0.00031EPSS

Exploits0References1

CNNVD•added 2025/11/06 12:0 a.m.•1 views

WordPress plugin Simple Payment 安全漏洞

7.5CVSS6.6AI score0.00127EPSS

Exploits0References1

Positive Technologies•added 2025/11/06 12:0 a.m.•2 views

PT-2025-45325

7.1CVSS6.4AI score0.00031EPSS

Exploits0References2

Positive Technologies•added 2025/11/06 12:0 a.m.•2 views

PT-2025-45324