CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13702 matches found

OpenVAS•added 2025/04/01 12:0 a.m.•3 views

Ubuntu: Security Advisory (USN-7399-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.3AI score0.00023EPSS

Exploits0References2

Patchstack•added 2025/03/31 12:0 a.m.•4 views

WordPress Real Estate 7 Theme <= 3.5.4 is vulnerable to Arbitrary File Upload

Software Real Estate 7 Type Theme Vulnerable versions = 3.5.4 Fixed in 3.5.5 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2025-2891 Patch priority Medium CVSS severity Medium 8.8 Developer Claim ownership PSID 22e03f3e7c10 Credits Foxyyy Required privilege Seller...

8.8CVSS6.8AI score0.01543EPSS

Exploits0References2Affected Software1

OpenVAS•added 2025/03/31 12:0 a.m.•7 views

Debian: Security Advisory (DLA-4095-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS6.6AI score0.0005EPSS

Exploits0References2

OpenVAS•added 2025/03/31 12:0 a.m.•2 views

Debian: Security Advisory (DLA-4096-1)

5.5CVSS5.9AI score0.00024EPSS

Exploits0References2

RedhatCVE•added 2025/03/30 10:26 a.m.•17 views

CVE-2025-27001

Insertion of Sensitive Information Into Sent Data vulnerability in Shipmondo Shipmondo – A complete shipping solution for WooCommerce pakkelabels-for-woocommerce allows Retrieve Embedded Sensitive Data.This issue affects Shipmondo – A complete shipping solution for WooCommerce: from n/a through =...

6.5CVSS7.2AI score0.0044EPSS

Exploits0References1

NVD•added 2025/03/28 10:15 a.m.•6 views

CVE-2025-27001

6.5CVSS0.0044EPSS

Exploits0References1

Tenable Nessus•added 2025/03/28 12:0 a.m.•36 views

Netapp SnapCenter < 6.0p1 / 6.1 < 6.1P1 Privilege Escalation

The version of Netapp SnapCenter installed on the remote host is affected by a privilege escalation vulnerability. SnapCenter versions prior to 6.0.1P1 and 6.1P1 are susceptible to a vulnerability which may allow an authenticated SnapCenter Server user to become an admin user on a remote system...

9.9CVSS8.7AI score0.0006EPSS

Exploits0References2

OpenVAS•added 2025/03/28 12:0 a.m.•12 views

Mozilla Firefox Security Update (MFSA2025-19) - Windows

Mozilla Firefox is prone to a sandbox escape vulnerability SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

10CVSS7.2AI score0.00203EPSS

Exploits4References1

OpenVAS•added 2025/03/27 12:0 a.m.•4 views

Debian: Security Advisory (DLA-4092-1)

7.8CVSS6.7AI score0.01123EPSS

Exploits2References2

Kaspersky•added 2025/03/27 12:0 a.m.•15 views

KLA82139 SB vulnerability in Mozilla Firefox ESR

Security vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories MFSA2025-19 Related products Mozilla-Firefox-ESR CVE list CVE-2025-2857 critical Solution Update to the latest version Download Firefox ESR...

10CVSS9.5AI score0.00203EPSS

Exploits4References3

OpenVAS•added 2025/03/27 12:0 a.m.•10 views

Ubuntu: Security Advisory (USN-7373-1)

8.1CVSS8.7AI score0.00083EPSS

Exploits0References2

OpenVAS•added 2025/03/27 12:0 a.m.•8 views

Debian: Security Advisory (DSA-5888-1)

9.8CVSS7.9AI score0.00255EPSS

Exploits0References2

OpenVAS•added 2025/03/27 12:0 a.m.•4 views

Ubuntu: Security Advisory (USN-7374-1)

7.8CVSS6.8AI score0.00062EPSS

Exploits1References2

NVD•added 2025/03/26 3:15 p.m.•4 views

CVE-2025-23543

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in fomopay FOMO Pay Chinese Payment Solution fomo-payment-gateway-for-woocommerce allows Reflected XSS.This issue affects FOMO Pay Chinese Payment Solution: from n/a through = 2.0.4...

7.1CVSS0.00115EPSS

Exploits0References1

OSV•added 2025/03/26 7:14 a.m.•11 views

BIT-HUBBLE-RELAY-2025-30162 East-west traffic not subject to egress policy enforcement for requests via Gateway API load balancers

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who use Gateway API for Ingress for some services and use LB-IPAM or BGP for LB Service implementation and use network policies to block egress traffic from workloads in a namespace to...

4.3CVSS3.6AI score0.00016EPSS

Exploits0References4

OSV•added 2025/03/26 7:8 a.m.•7 views

BIT-CILIUM-2025-30162 East-west traffic not subject to egress policy enforcement for requests via Gateway API load balancers

4.3CVSS3.6AI score0.00016EPSS

Exploits0References4

OpenVAS•added 2025/03/26 12:0 a.m.•14 views

Mageia: Security Advisory (MGASA-2025-0114)

9.6AI score

Exploits0References4

OpenVAS•added 2025/03/26 12:0 a.m.•7 views

Debian: Security Advisory (DSA-5886-1)