CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.8CVSS6.3AI score0.01713EPSS

EUVD-2010-3542

Malware in sbrugna...

Exploits0References3

4.3CVSS6.4AI score0.05836EPSS

EUVD-2008-0252

Malware in sbrugna...

Exploits1References10

4.3CVSS6.4AI score0.05696EPSS

EUVD-2008-0251

Malware in sbrugna...

Exploits1References17

EUVD•added 2025/10/07 12:30 a.m.•7 views

EUVD-2009-1078

Malware in sbrugna...

6.5CVSS6.4AI score0.02475EPSS

Exploits1References11

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2008-5096

Malware in sbrugna...

6.4CVSS6.4AI score0.02567EPSS

Exploits1References8

4.3CVSS6.4AI score0.01953EPSS

EUVD-2008-5093

Malware in sbrugna...

Exploits1References8

RedhatCVE•added 2025/05/22 12:4 a.m.•8 views

CVE-2009-1079

Multiple cross-site scripting XSS vulnerabilities in Sun Java System Identity Manager IdM 7.0 through 8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug IDs 19659, 19660, and 19683...

4.3CVSS6AI score0.0197EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 7:57 p.m.•11 views

CVE-2009-1081

4.3CVSS6AI score0.0197EPSS

Exploits1References1

Tenable Nessus•added 2023/01/13 12:0 a.m.•75 views

SAP NetWeaver AS ABAP Capture-Replay (3089413)

SAP NetWeaver ABAP Server and ABAP Platform creates information about system identity in an ambiguous format. This could lead to capture-replay vulnerability and may be exploited by malicious users to obtain illegitimate access to the system. Note that Nessus has not tested for this issue but has...

9.8CVSS8.2AI score0.00693EPSS

Exploits0References3

OSV•added 2023/01/10 4:15 a.m.•2 views

CVE-2023-0014

SAP NetWeaver ABAP Server and ABAP Platform - versions SAPBASIS 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, KERNEL 7.22, 7.53, 7.77, 7.81, 7.85, 7.89, KRNL64UC 7.22, 7.22EXT, 7.53, KRNL64NUC 7.22, 7.22EXT, creates information about system identity in an ambiguo...

9.8CVSS7.3AI score0.00693EPSS

Exploits0References2

Prion•added 2023/01/10 4:15 a.m.•23 views

Design/Logic Flaw

7.5CVSS9AI score0.00693EPSS

Exploits0References2Affected Software4

BDU FSTEC•added 2022/06/07 12:0 a.m.•5 views

The vulnerability of SCIM (System of Cross-domain Identity Management) function of the Git-based software platform for collaborative code development on GitLab arises from the ability to invite arbitrary users through their user names and email addresses. This allows a malicious actor to gain control over user accounts by modifying their email addresses.

The vulnerability of SCIM System of Cross-domain Identity Management in the Git-based software platform for collaborative code development on GitLab relates to the ability to invite arbitrary users through their user names and email addresses. Exploiting this vulnerability could allow a malicious...

9.6CVSS8.2AI score0.15471EPSS

Exploits0References5Affected Software1

CNNVD•added 2022/06/02 12:0 a.m.•4 views

GitLab 访问控制错误漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. An Access Control Error vulnerability exists in GitLab Community Edition and GitLab...

9.9CVSS8.6AI score0.15471EPSS

Exploits0References5

CNNVD•added 2022/03/11 12:0 a.m.•3 views

Luna Simo信息泄露漏洞

Luna Simo is a smartphone from the Korean company Luna. A security vulnerability exists in Luna Simo PPR1.180610.011/202001031830. The vulnerability stems from improper access control, where all third-party applications located on the device can obtain the value of the system IMEI attribute even...

7.8CVSS7.3AI score0.00389EPSS

Exploits1References5

seebug.org•added 2014/07/01 12:0 a.m.•11 views

Sun Java System Identity Manager 6.0/7.x Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/32262/info Sun Java System Identity Manager is prone to multiple web-interface vulnerabilities, including a cross-site request-forgery issue, multiple cross-site scripting issues, multiple HTML-injection issues, and a...

seebug.org•added 2014/07/01 12:0 a.m.•14 views

Sun Java System Identity Manager 6.0/7.0/7.1 /idm/help/index.jsp helpUrl Variable Remote Frame Injection

No description provided by source. source: http://www.securityfocus.com/bid/27214/info Sun Java System Identity Manager is prone to multiple input-validation vulnerabilities, including an HTML-injection issue and cross-site scripting issues, because it fails to adequately sanitize user-supplied...

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Sun Java System Identity Manager 6.0/7.0/7.1 /idm/account/findForSelect.jsp resultsForm Parameter XSS

seebug.org•added 2014/04/03 12:0 a.m.•19 views

EasyTalk以系统身份向用户发XSS

简要描述： EasyTalk以系统身份向用户发XSS 详细说明：出现问题的代码文件路径 : easytalk/Home/Lib/Action/ImAction.class.php 代码加载时 public function initialize parent::init; 没要求登录而EasyTalk存储型XSS和以系统身份向任意用户发私信的漏洞在这代码 //发表聊天 public function sendmsg $ret=D'Messages'-sendmsgdaddslashes$POST'content' ,daddslashes$POST'nickname',$this-m...