CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2008-1077

Malware in sbrugna...

7.5CVSS6AI score0.01496EPSS

Exploits0References20

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2010-4687

Malware in sbrugna...

10CVSS6.3AI score0.00433EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-41819

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00106EPSS

Exploits0References1

Vulnrichment•added 2023/10/03 9:43 a.m.•3 views

CVE-2023-37992 WordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

5.4CVSS8.9AI score0.00106EPSS

Exploits0References1

Positive Technologies•added 2023/09/29 12:0 a.m.•2 views

PT-2023-28033 · Presspage Entertainment Inc. · Smarty

Name of the Vulnerable Software and Affected Versions: PressPage Entertainment Inc. Smarty for WordPress plugin versions 3.1.35 and earlier Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with admin access can inject...

5.9CVSS5.4AI score0.00088EPSS

Exploits0References7

OSV•added 2022/09/15 12:15 a.m.•0 views

UBUNTU-CVE-2018-25047

In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. A web page that uses smartyfunctionmailto, and that could be parameterized using GET or POST input parameters, could allow injection of JavaScript code by a user...

5.4CVSS6.1AI score0.00629EPSS

Exploits1References9

CNVD•added 2020/06/02 12:0 a.m.•1 views

Lexiglot Path Traversal Vulnerability

Lexiglot is a translation platform written in PHP by the French software developer Damien Sorel. A path traversal vulnerability exists in Lexiglot 2014-11-20 and earlier versions, which can be exploited by remote attackers to obtain sensitive information full path with the help of...

5.3CVSS6.7AI score0.002EPSS

Exploits1References1

RedhatCVE•added 2019/10/04 9:51 p.m.•22 views

CVE-2008-1066

The modifier.regexreplace.php plugin in Smarty before 2.6.19, as used by Serendipity S9Y and other products, allows attackers to call arbitrary PHP functions via templates, related to a '\0' character in a search string...

7.5CVSS6.9AI score0.01496EPSS

Exploits0References3

OSV•added 2011/02/03 5:0 p.m.•6 views

CVE-2010-4726

Unspecified vulnerability in the math plugin in Smarty before 3.0.0 RC1 has unknown impact and remote attack vectors. NOTE: this might overlap CVE-2009-1669...

6.4AI score

Exploits0References1

Prion•added 2011/02/03 5:0 p.m.•25 views

Design/Logic Flaw

Unspecified vulnerability in the math plugin in Smarty before 3.0.0 RC1 has unknown impact and remote attack vectors. NOTE: this might overlap CVE-2009-1669...

10CVSS6.8AI score0.25846EPSS

Exploits1References1Affected Software1

UbuntuCve•added 2008/02/28 8:44 p.m.•29 views

CVE-2008-1066

7.5CVSS5.9AI score0.01496EPSS

Exploits0References1

ATTACKERKB•added 2007/04/12 7:19 p.m.•1 views

CVE-2007-2021

Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...

7.5CVSS6.2AI score0.00939EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by