CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

OSV•added 2026/01/18 10:15 a.m.•1 views

DEBIAN-CVE-2025-15537

A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function mapnik::dbffile::stringvalue of the file plugins/input/shape/dbfile.cpp. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed...

5.5CVSS5.5AI score0.00034EPSS

Exploits1References1

OSV•added 2026/01/18 10:15 a.m.•3 views

CVE-2025-15537

5.5CVSS5.5AI score

Exploits0References6

UbuntuCve•added 2026/01/18 10:15 a.m.•2 views

CVE-2025-15537

5.5CVSS5.6AI score0.00034EPSS

Exploits1References6

OSV•added 2026/01/18 10:15 a.m.•3 views

UBUNTU-CVE-2025-15537

5.5CVSS5.6AI score0.00034EPSS

Exploits1References7

Cvelist•added 2026/01/18 10:2 a.m.•22 views

CVE-2025-15537 Mapnik dbfile.cpp string_value heap-based overflow

5.3CVSS0.00034EPSS

Exploits1References6

Vulnrichment•added 2026/01/18 10:2 a.m.•1 views

CVE-2025-15537 Mapnik dbfile.cpp string_value heap-based overflow

5.3CVSS5.8AI score0.00034EPSS

Exploits1References6

ATTACKERKB•added 2026/01/18 10:2 a.m.•1 views

CVE-2025-15537

5.5CVSS5.5AI score0.00034EPSS

Exploits1References5

CVE•added 2026/01/18 10:2 a.m.•15 views

CVE-2025-15537

Mapnik up to 4.2.0 is affected by a heap-based buffer overflow in the function mapnik::dbf_file::string_value (plugins/input/shape/dbfile.cpp). The issue requires local access to exploit and has publicly disclosed exploit information. Mapnik project was informed via issue report and has not respo...

5.5CVSS6.6AI score0.00034EPSS

Exploits1References6Affected Software1

Positive Technologies•added 2026/01/18 12:0 a.m.•3 views

PT-2026-3385

A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function mapnik::dbf file::string value of the file plugins/input/shape/dbfile.cpp. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclose...

5.3CVSS6.8AI score0.00034EPSS

Exploits1References6

EUVD•added 2025/10/04 9:30 a.m.•4 views

EUVD-2025-32387

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: avoid buffer overflow in WID string configuration Fix the following copy overflow warning identified by Smatch checker. drivers/net/wireless/microchip/wilc1000/wlancfg.c:184 wilcwlanparseresponseframe error:...

6.5AI score0.00018EPSS

Exploits0References5

NVD•added 2024/03/06 7:15 p.m.•15 views

CVE-2024-27289

pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2, SQL injection can occur when all of the following conditions are met: the non-default simple protocol is used; a placeholder for a numeric value must be immediately preceded by a minus; there must be a second placeholder for ...

8.1CVSS8.4AI score0.00591EPSS

Exploits0References3

UbuntuCve•added 2024/03/06 7:15 p.m.•19 views

CVE-2024-27289

8.1CVSS6.8AI score0.00591EPSS

Exploits0References4

OSV•added 2024/03/06 6:28 p.m.•31 views

CVE-2024-27289 pgx SQL Injection via Line Comment Creation

8.1CVSS7.1AI score0.00591EPSS

Exploits0References5

OSV•added 2024/03/04 8:13 p.m.•19 views

GHSA-M7WR-2XF7-CM9P pgx SQL Injection via Line Comment Creation

Impact SQL injection can occur when all of the following conditions are met: 1. The non-default simple protocol is used. 2. A placeholder for a numeric value must be immediately preceded by a minus. 3. There must be a second placeholder for a string value after the first placeholder; both must be...

8.7CVSS8AI score0.00591EPSS

Exploits0References5

Prion•added 2023/07/14 1:15 p.m.•14 views

Input validation

Improper Input Validation in the hyperlink interpretation in Savoir-faire Linux's Jami version 20222284 on Windows. This allows an attacker to send a custom HTML anchor tag to pass a string value to the Windows QRC Handler through the Jami messenger...

5.8CVSS5.4AI score0.0009EPSS

Exploits0References3Affected Software1

CNNVD•added 2023/07/14 12:0 a.m.•1 views

Jami 安全漏洞

Jami is an open source, SIP-compatible software telephony and instant messaging software from Jami, Inc. A security vulnerability exists in Jami version 20222284 that originates from a vulnerability that allows an attacker to send a custom HTML anchor tag that passes a string value to the Windows...

5.4CVSS5.7AI score0.0009EPSS

Exploits0References4

Microsoft CVE•added 2022/12/21 8:0 a.m.•1 views

Helm vulnerable to Denial of service through string value parsing

...

7.5CVSS8.6AI score0.00078EPSS

Exploits0

RedHat Linux•added 2020/07/07 9:14 a.m.•3 views

nodejs: memory corruption in napi_get_value_string_* functions

A flaw was found in nodejs. Calling napigetvaluestringlatin1, napigetvaluestringutf8, or napigetvaluestringutf16 with a non-NULL buf, and a bufsize of 0 will cause the entire string value to be written to buf, probably overrunning the length of the buffer...

9.3CVSS7.2AI score0.01491EPSS

Exploits1References5

0day.today•added 2018/11/16 12:0 a.m.•282 views

PHP-Proxy 5.1.0 - Local File Inclusion Vulnerability

Exploit for php platform in category web applications Exploit Title: PHP-Proxy 5.1.0 - Local File Inclusion Exploit Author: Ameer Pornillos Contact: https://ethicalhackers.club Vendor Homepage: https://www.php-proxy.com/ Software Link: https://www.php-proxy.com/download/php-proxy.zip Version: 5.1...

0.45963EPSS

Exploits5

exploitpack•added 2018/11/15 12:0 a.m.•22 views

PHP-Proxy 5.1.0 - Local File Inclusion

PHP-Proxy 5.1.0 - Local File Inclusion Exploit Title: PHP-Proxy 5.1.0 - Local File Inclusion Date: 2018-11-13 Exploit Author: Ameer Pornillos Contact: https://ethicalhackers.club Vendor Homepage: https://www.php-proxy.com/ Software Link: https://www.php-proxy.com/download/php-proxy.zip Version:...

5CVSS7.5AI score0.45963EPSS

Exploits5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by