CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4643 matches found

OSV•added 2025/01/24 5:31 a.m.•4 views

MAL-2025-539 Malicious code in lyft-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bad08278af65d859072402dbc935300d4c8d6036f2f214644533c0af1b8f7b8e The OpenSSF Package Analysis project identified 'lyft-sync' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

7.1AI score

Exploits0

OSSF Malicious Packages•added 2025/01/24 5:5 a.m.•3 views

Malicious code in iberia-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3fa775f2b41624be8acd4b8b6be1dc827dc0012574f46c5baf62b0f4aeaa3440 The OpenSSF Package Analysis project identified 'iberia-sync' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

6.9AI score

Exploits0

OSV•added 2025/01/24 5:5 a.m.•2 views

MAL-2025-495 Malicious code in iberia-sync (npm)

7.1AI score

Exploits0

OSSF Malicious Packages•added 2025/01/24 4:55 a.m.•3 views

Malicious code in godaddy-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b27118be6531dda0274adb6114723c46d2c88efc9b6d648d2046baf78e396e9c The OpenSSF Package Analysis project identified 'godaddy-sync' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

6.9AI score

Exploits0

OSV•added 2025/01/24 4:55 a.m.•5 views

MAL-2025-472 Malicious code in godaddy-sync (npm)

7.1AI score

Exploits0

OSSF Malicious Packages•added 2025/01/24 4:36 a.m.•3 views

Malicious code in bookingcom-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6cc8ed36dec16e2f62b3d8b194b72fc8ae1702f19cd3f9bdb9ff1de3ab7d02b9 The OpenSSF Package Analysis project identified 'bookingcom-sync' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

6.9AI score

Exploits0

OSV•added 2025/01/24 4:36 a.m.•3 views

MAL-2025-407 Malicious code in bookingcom-sync (npm)

7.1AI score

Exploits0

OSSF Malicious Packages•added 2025/01/24 4:30 a.m.•3 views

Malicious code in coinbase-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e6b9af30ce8eff229a63be6c3023ee9eae0d2049c07a5f214b91746c58a5865e The OpenSSF Package Analysis project identified 'coinbase-sync' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

6.9AI score

Exploits0

OSV•added 2025/01/24 4:30 a.m.•3 views

MAL-2025-424 Malicious code in coinbase-sync (npm)

7.1AI score

Exploits0

NVD•added 2025/01/22 3:15 p.m.•5 views

CVE-2025-23486

Missing Authorization vulnerability in tamlyn Database Sync database-sync allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Database Sync: from n/a through = 0.5.1...

6.5CVSS0.00509EPSS

Exploits0References1

CVE•added 2025/01/22 2:31 p.m.•51 views

CVE-2025-23486

CVE-2025-23486 references a Missing Authorization vulnerability in the WordPress plugin Database Sync (affected: up to version 0.5.1). The issue is described as an authenticated sensitive information exposure resulting from insufficient access control on Database Sync, enabling an attacker with s...

6.5CVSS7.2AI score0.00509EPSS

Exploits0References1

Vulnrichment•added 2025/01/22 2:31 p.m.•12 views

CVE-2025-23486 WordPress Database Sync plugin <= 0.5.1 - Sensitive Data Exposure vulnerability

Missing Authorization vulnerability in NotFound Database Sync allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Database Sync: from n/a through 0.5.1...

6.5CVSS6.5AI score0.00509EPSS

Exploits0References1

Cvelist•added 2025/01/22 2:31 p.m.•30 views

CVE-2025-23486 WordPress Database Sync plugin <= 0.5.1 - Sensitive Data Exposure vulnerability

6.5CVSS0.00509EPSS

Exploits0References1

RedHat Linux•added 2025/01/22 2:15 a.m.•5 views

kernel: i40e: fix race condition by adding filter's intermediate sync state

In the Linux kernel, the following vulnerability has been resolved: i40e: fix race condition by adding filter's intermediate sync state Fix a race condition in the i40e driver that leads to MAC/VLAN filters becoming corrupted and leaking. Address the issue that occurs under heavy load when multip...

4.7CVSS6.8AI score0.00175EPSS

Exploits0References5

CNNVD•added 2025/01/22 12:0 a.m.•2 views

WordPress plugin Database Sync 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS8.2AI score0.00509EPSS

Exploits0References2

BDU FSTEC•added 2025/01/17 12:0 a.m.•5 views

The vulnerability of the xe_exec_ioctl() function in the drivers/gpu/drm/xe/xe_exec.c module of the Intel Xe graphics driver for the Linux operating system allows a attacker to compromise the accessibility of protected information.

The vulnerability of the xeexecioctl function in the drivers/gpu/drm/xe/xeexec.c file of the Intel Xe graphics driver for the Linux operating system is related to a violation of the synchronization mechanism. Exploiting this vulnerability could allow an attacker to compromise the accessibility of...

5.5CVSS6.7AI score0.00146EPSS

Exploits0References8Affected Software2

NVD•added 2025/01/16 9:15 p.m.•13 views

CVE-2025-23778

Missing Authorization vulnerability in Pravin Durugkar User Sync ActiveCampaign registered-user-sync-activecampaign allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Sync ActiveCampaign: from n/a through = 1.3.2...

5.4CVSS0.00439EPSS

Exploits0References1

Cvelist•added 2025/01/16 8:6 p.m.•18 views

CVE-2025-23778 WordPress User Sync ActiveCampaign plugin <= 1.3.2 - Broken Access Control vulnerability

5.4CVSS0.00439EPSS

Exploits0References1