CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-14494

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00333EPSS

Exploits0References3

Veracode•added 2025/05/16 3:22 a.m.•7 views

Information Disclosure

oxid-esales/oxideshop-ce is vulnerable to information disclosure. The vulnerability is due to improper error handling and also Smarty syntax errors in CMS pages that may allow an attacker to access user information...

7.5CVSS6.6AI score0.00333EPSS

Exploits0References3Affected Software1

RedhatCVE•added 2025/05/15 12:10 a.m.•5 views

CVE-2024-56526

An issue was discovered in OXID eShop before 7. CMS pages in combination with Smarty may display user information if a CMS page contains a Smarty syntax error...

7.5CVSS6.5AI score0.00333EPSS

Exploits0References1

Github Security Blog•added 2025/05/13 6:30 p.m.•6 views

OXID eShop May Display User Information

An issue was discovered in OXID eShop before 7. CMS pages in combination with Smarty may display user information if a CMS page contains a Smarty syntax error...

7.5CVSS6.5AI score0.00333EPSS

Exploits0References3Affected Software1

Snyk•added 2025/05/13 6:30 p.m.•2 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure due to the improper handling of Smarty syntax errors in CMS pages. An attacker can expose sensitive user information by inducing a Smarty syntax error in a CMS page. Note: The official vendor's hotfix for this issue...

8.7CVSS5.9AI score0.00333EPSS

Exploits0References2

OSV•added 2025/05/13 6:30 p.m.•4 views

GHSA-QQCR-9JFC-35C4 OXID eShop May Display User Information

An issue was discovered in OXID eShop before 7. CMS pages in combination with Smarty may display user information if a CMS page contains a Smarty syntax error...

7.5CVSS6.4AI score0.00333EPSS

Exploits0References3

NVD•added 2025/05/13 4:15 p.m.•9 views

CVE-2024-56526

An issue was discovered in OXID eShop before 7. CMS pages in combination with Smarty may display user information if a CMS page contains a Smarty syntax error...

7.5CVSS0.00333EPSS

Exploits0References1

Vulnrichment•added 2025/05/13 12:0 a.m.•3 views

CVE-2024-56526

An issue was discovered in OXID eShop before 7. CMS pages in combination with Smarty may display user information if a CMS page contains a Smarty syntax error...

7.4AI score0.00333EPSS

Exploits0References1

CVE•added 2025/05/13 12:0 a.m.•33 views

CVE-2024-56526

CVE-2024-56526 affects OXID eShop prior to version 7. A CMS page that uses Smarty may display user information if the CMS page contains a Smarty syntax error, leading to information exposure. The issue is documented across multiple connected feeds (Red Hat, GHSA, Snyk, PT Security, CNNVD, etc.). ...

7.5CVSS6.3AI score0.00333EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/05/13 12:0 a.m.•2 views

PT-2025-20917

Name of the Vulnerable Software and Affected Versions: OXID eShop versions prior to 7 Description: An issue in OXID eShop allows CMS pages, when used in combination with Smarty, to potentially display user information if a CMS page contains a Smarty syntax error. Recommendations: For versions pri...

7.5CVSS5.8AI score0.00333EPSS

Exploits0References6

Cvelist•added 2025/05/13 12:0 a.m.•7 views

CVE-2024-56526

An issue was discovered in OXID eShop before 7. CMS pages in combination with Smarty may display user information if a CMS page contains a Smarty syntax error...

0.00333EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by