CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1214 matches found

NVD•added 2025/10/27 3:15 a.m.•1 views

CVE-2025-12206

A flaw has been found in Kamailio 5.5. The impacted element is the function rveisconstant of the file src/core/rvalue.c. This manipulation causes null pointer dereference. The attack needs to be launched locally. The exploit has been published and may be used. It is still unclear if this...

5.5CVSS0.00031EPSS

Exploits1References9

Positive Technologies•added 2025/10/27 12:0 a.m.•5 views

PT-2025-43865

Name of the Vulnerable Software and Affected Versions Kamailio version 5.5 Description A flaw exists in Kamailio that involves a use-after-free condition. This issue is located within the Configuration File Handler component, specifically in the sr push yy state function of the src/core/cfg.lex...

7.8CVSS5.7AI score0.00021EPSS

Exploits1References10

OSSF Malicious Packages•added 2025/10/18 11:32 a.m.•4 views

Malicious code in src_dev-tool_index_ts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a6c5f130294b305df1adf1e497c66d81ec09ddeffb8bb6d0c486644336706558 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

EUVD•added 2025/10/18 11:25 a.m.•1 views

EUVD-2025-34993

Malicious code in srcpluginindexts npm...

6.6AI score

Exploits0

EUVD•added 2025/10/18 11:20 a.m.•1 views

EUVD-2025-34994

Malicious code in srccore-instanceindexts npm...

6.6AI score

Exploits0

OSV•added 2025/10/07 9:15 a.m.•3 views

CVE-2025-11360

A vulnerability was detected in jakowenko double-take up to 1.13.1. The impacted element is the function app.use of the file api/src/app.js of the component API. The manipulation of the argument X-Ingress-Path results in cross site scripting. The attack can be executed remotely. Upgrading to...

5.3CVSS5.9AI score

Exploits0References5