CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions Joovii Sendle Shipping versions through 6.02 Description A Cross-Site Request Forgery CSRF issue exists in Joovii Sendle Shipping. This allows attackers to perform actions on behalf of unsuspecting users. The issue allows Cross Site Request...

4.3CVSS6.3AI score0.00128EPSS

Exploits0References3

ATTACKERKB•added 2025/09/16 7:45 p.m.•2 views

CVE-2025-34186

Ilevia EVE X1/X5 Server version ≤ 4.7.18.0.eden contains a vulnerability in its authentication mechanism. Unsanitized input is passed to a system call for authentication, allowing attackers to inject special characters and manipulate command parsing. Because the binary interprets non-zero exit...

9.8CVSS5.8AI score0.00829EPSS

Exploits2References4

GithubExploit•added 2025/09/14 6:59 a.m.•68 views

CVE

It is an offensive tool for web applications. The repository app...

7.1AI score

Exploits0

CVE•added 2025/09/10 7:11 p.m.•18 views

CVE-2025-43784

CVE-2025-43784 affects Liferay Portal (7.4.0–7.4.3.124) and Liferay DXP (2024.Q2.0–2024.Q2.8, 2024.Q1.1–2024.Q1.12, and 7.4 GA through update 92). Root cause: improper access control allowing guest users to view object entries via API Builder. Impact: exposure of object entries information (confi...

6.5CVSS6AI score0.00238EPSS

Exploits0References1Affected Software2

Positive Technologies•added 2025/09/08 12:0 a.m.•2 views

PT-2025-36440

Name of the Vulnerable Software and Affected Versions: Apache Jackrabbit Core versions 1.0.0 through 2.22.1 Apache Jackrabbit JCR Commons versions 1.0.0 through 2.22.1 Description: This issue involves the deserialization of untrusted data in Apache Jackrabbit Core and Apache Jackrabbit JCR Common...

6.5CVSS7.7AI score0.01286EPSS

Exploits0References29

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by