CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-2395

Malware in sbrugna...

7.5CVSS7.6AI score0.00164EPSS

Exploits0References4

NVD•added 2025/08/20 3:15 p.m.•2 views

CVE-2025-50864

An Origin Validation Error in the elysia-cors library thru 1.3.0 allows attackers to bypass Cross-Origin Resource Sharing CORS restrictions. The library incorrectly validates the supplied origin by checking if it is a substring of any domain in the site's CORS policy, rather than performing an...

6.5CVSS0.00023EPSS

Exploits0References5

Prion•added 2018/01/12 5:29 p.m.•15 views

Design/Logic Flaw

node/utils/ExportEtherpad.js in Etherpad 1.5.x before 1.5.2 might allow remote attackers to obtain sensitive information by leveraging an improper substring check when exporting a padID...

5CVSS6.7AI score0.00164EPSS

Exploits0References3Affected Software1

CVE•added 2018/01/12 5:0 p.m.•44 views

CVE-2015-2298

The vulnerability CVE-2015-2298 affects Etherpad Lite 1.5.x prior to 1.5.2, specifically in node/utils/ExportEtherpad.js. A flawed substring check when exporting a padID can allow a remote attacker to obtain sensitive information from the pad. This is a client-tolerated information disclosure ris...

7.5CVSS7.2AI score0.00164EPSS

Exploits0References3Affected Software1

Cvelist•added 2018/01/12 5:0 p.m.•18 views

CVE-2015-2298

node/utils/ExportEtherpad.js in Etherpad 1.5.x before 1.5.2 might allow remote attackers to obtain sensitive information by leveraging an improper substring check when exporting a padID...

7.3AI score0.00164EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by