CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-1469

Malware in sbrugna...

9.8CVSS9.2AI score0.00513EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-9089

Malware in sbrugna...

9.8CVSS9.5AI score0.04378EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 7:54 p.m.•2 views

CVE-2021-35514

Narou aka Narou.rb before 3.8.0 allows Ruby Code Injection via the title name or author name of a novel...

9.8CVSS7.3AI score0.00513EPSS

Exploits0References1

OSV•added 2021/07/02 6:36 p.m.•12 views

GHSA-GWRJ-88FP-5M36 Code injection in Narou

Narou aka Narou.rb before 3.8.0 allows Ruby Code Injection via the title name or author name of a novel...

8.5CVSS9.7AI score0.00513EPSS

Exploits0References5

Prion•added 2021/06/28 12:15 p.m.•6 views

Code injection

Narou aka Narou.rb before 3.8.0 allows Ruby Code Injection via the title name or author name of a novel...

7.5CVSS9.7AI score0.00513EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/06/28 11:29 a.m.•8 views

CVE-2021-35514

Narou aka Narou.rb before 3.8.0 allows Ruby Code Injection via the title name or author name of a novel...

9.9AI score0.00513EPSS

Exploits0References2

CNNVD•added 2021/06/28 12:0 a.m.•3 views

Narou 代码注入漏洞

Narou is a novel publishing site by an individual Japanese developer. Narou suffers from a code injection vulnerability in versions prior to 3.8.0 that allows an attacker to inject Ruby code via the title name or author name of a novel. An attacker could use this vulnerability to inject code to...

9.8CVSS5.9AI score0.00513EPSS

Exploits0References3

Prion•added 2020/01/05 11:15 p.m.•7 views

Cross site scripting

Codoforum 4.8.3 allows XSS via a post using parameters display name, title name, or content...

3.5CVSS4.8AI score0.00383EPSS

Exploits1References3Affected Software1

Cvelist•added 2020/01/05 10:32 p.m.•14 views

CVE-2020-5306

Codoforum 4.8.3 allows XSS via a post using parameters display name, title name, or content...

4.9AI score0.00383EPSS

Exploits1References3

Positive Technologies•added 2020/01/05 12:0 a.m.•2 views

PT-2020-18395 · Codoforum · Codoforum

Name of the Vulnerable Software and Affected Versions: Codoforum version 4.8.3 Description: The issue allows for XSS attacks through posts using parameters such as display name, title name, or content. Recommendations: For Codoforum version 4.8.3, update to a newer version that contains a fix for...

4.8CVSS4.8AI score0.00383EPSS

Exploits1References4

OSV•added 2018/01/10 8:29 p.m.•1 views

CVE-2017-17946

A buffer overflow in Handy Password 4.9.3 allows remote attackers to execute arbitrary code via a long "Title name" field in "mail box" data that is mishandled in an "Open from mail box" action...

9.8CVSS6.4AI score0.04378EPSS

Exploits0References2

Prion•added 2018/01/10 8:29 p.m.•8 views

Buffer overflow

A buffer overflow in Handy Password 4.9.3 allows remote attackers to execute arbitrary code via a long "Title name" field in "mail box" data that is mishandled in an "Open from mail box" action...

7.5CVSS9.8AI score0.04378EPSS

Exploits0References2Affected Software1

NVD•added 2018/01/10 8:29 p.m.•10 views

CVE-2017-17946

A buffer overflow in Handy Password 4.9.3 allows remote attackers to execute arbitrary code via a long "Title name" field in "mail box" data that is mishandled in an "Open from mail box" action...

9.8CVSS9.8AI score0.04378EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by