CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

RedhatCVE•added 2026/01/09 11:29 a.m.•3 views

CVE-2021-27938

A vulnerability has been identified in the Silverstripe CMS 3 and 4 version of the symbiote/silverstripe-queuedjobs module. A Cross Site Scripting vulnerability allows an attacker to inject an arbitrary payload in the CreateQueuedJobTask dev task via a specially crafted URL...

6.1CVSS6.4AI score0.0024EPSS

Exploits0References1

The Hacker News•added 2025/12/04 11:58 a.m.•12 views

ThreatsDay Bulletin: Wi-Fi Hack, npm Worm, DeFi Theft, Phishing Blasts— and 15 More Stories

Think your Wi-Fi is safe? Your coding tools? Or even your favorite financial apps? This week proves again how hackers, companies, and governments are all locked in a nonstop race to outsmart each other. Here's a quick rundown of the latest cyber stories that show how fast the game keeps changing...

7.3AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-0575

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00273EPSS

Exploits0References6

RedhatCVE•added 2025/05/22 10:47 a.m.•4 views

CVE-2017-20164

A vulnerability was found in Symbiote Seed up to 6.0.2. It has been classified as critical. Affected is the function onBeforeSecurityLogin of the file code/extensions/SecurityLoginExtension.php of the component Login. The manipulation of the argument URL leads to open redirect. It is possible to...

6.5CVSS6.8AI score0.00273EPSS

Exploits0References1

Github Security Blog•added 2024/05/29 6:53 p.m.•10 views

symbiote/silverstripe-multivaluefield Possible PHP Object Injection via Multi-Value Field Extension

A potential deserialisation vulnerability has been identified in the symbiote/silverstripe-multivaluefield which could allow an attacker to exploit implementations of this module via object injection. Support for handling PHP objects as values in this module has been deprecated, and the...

6.3AI score

Exploits0References5Affected Software1

OSV•added 2024/05/29 6:53 p.m.•6 views

GHSA-G5VJ-WJ9X-4JG9 symbiote/silverstripe-multivaluefield Possible PHP Object Injection via Multi-Value Field Extension

6.1CVSS6.3AI score

Exploits0References5

Github Security Blog•added 2023/01/07 9:30 p.m.•24 views

Symbiote Seed Open Redirect vulnerability

6.5CVSS6.3AI score0.00273EPSS

Exploits0References4Affected Software1

OSV•added 2023/01/07 9:30 p.m.•16 views

GHSA-WM32-3R4M-JVCC Symbiote Seed Open Redirect vulnerability

6.1CVSS6.3AI score0.00273EPSS

Exploits0References4

NVD•added 2023/01/07 8:15 p.m.•11 views

CVE-2017-20164

6.5CVSS6.4AI score0.00273EPSS

Exploits0References4

OSV•added 2023/01/07 8:15 p.m.•10 views

CVE-2017-20164

6.1CVSS6.4AI score

Exploits0References4

Prion•added 2023/01/07 8:15 p.m.•8 views

Open redirect

5.8CVSS6.3AI score0.00273EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2023/01/07 7:25 p.m.•4 views

CVE-2017-20164 Symbiote Seed Login SecurityLoginExtension.php onBeforeSecurityLogin redirect

6.5CVSS7.2AI score0.00273EPSS

Exploits0References4

Cvelist•added 2023/01/07 7:25 p.m.•16 views

CVE-2017-20164 Symbiote Seed Login SecurityLoginExtension.php onBeforeSecurityLogin redirect

6.5CVSS6.4AI score0.00273EPSS

Exploits0References4

CVE•added 2023/01/07 7:25 p.m.•54 views

CVE-2017-20164

Symbiote Seed

6.5CVSS6.3AI score0.00273EPSS

Exploits0References4Affected Software1

CNNVD•added 2023/01/07 12:0 a.m.•3 views

Symbiote Seed 输入验证错误漏洞

Symbiote Seed is a set of modules that provide a solid foundation for building SilverStripe websites. An input validation error vulnerability exists in Symbiote Seed versions prior to 6.0.3, which stems from a problem with the onBeforeSecurityLogin function in the...

6.5CVSS6.2AI score0.00273EPSS

Exploits0References5

Positive Technologies•added 2023/01/07 12:0 a.m.•2 views

PT-2023-10616 · Unknown · Symbiote Seed

Name of the Vulnerable Software and Affected Versions: Symbiote Seed versions up to 6.0.2 Description: A critical issue was found in the onBeforeSecurityLogin function of the code/extensions/SecurityLoginExtension.php file in the Login component. The manipulation of the URL argument leads to an...

6.5CVSS6.5AI score0.00273EPSS

Exploits0References11

The Hacker News•added 2022/07/21 1:22 p.m.•53 views

New Linux Malware Framework Lets Attackers Install Rootkit on Targeted Systems

A never-before-seen Linux malware has been dubbed a "Swiss Army Knife" for its modular architecture and its capability to install rootkits. This previously undetected Linux threat, called Lightning Framework by Intezer, is equipped with a plethora of features, making it one of the most intricate...

0.5AI score

Exploits0

Schneier on Security•added 2022/06/22 11:7 a.m.•12 views

Symbiote Backdoor in Linux

Interesting: What makes Symbiote different from other Linux malware that we usually come across, is that it needs to infect other running processes to inflict damage on infected machines. Instead of being a standalone executable file that is run to infect a machine, it is a shared object SO libra...

0.9AI score

Exploits0

ThreatPost•added 2022/06/14 10:55 a.m.•31 views

Linux Malware Deemed ‘Nearly Impossible’ to Detect

A new Linux malware that’s “nearly impossible to detect” can harvest credentials and gives attackers remote access and rootkit functionality by acting in a parasitic way to infect targets, researchers said. Researchers from The BlackBerry Research and Intelligence Team have been tracking the...

8.3AI score

Exploits0References5

OSV•added 2021/03/24 5:42 p.m.•18 views

GHSA-XGPF-P52J-PF7M XSS in CreateQueuedJobTask

6.1CVSS6AI score0.0024EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by