CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-16012 Malicious code in botprotect-v13 (npm)

The package botprotect-v13 was found to contain malicious code...

7.2AI score

OSV•added 2025/06/10 4:39 a.m.•2 views

MAL-2025-4877 Malicious code in rpc-bot-v13 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d36bae9a92f55450da9079525255c532c3077ebdf05866aed4790c5cdb1fe64b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

RedhatCVE•added 2025/05/23 10:31 a.m.•5 views

CVE-2024-44683

Seacms v13 is vulnerable to Cross Site Scripting XSS via admin-video.php...

6.1CVSS6.1AI score0.00175EPSS

OSV•added 2025/05/02 5:14 a.m.•1 views

MAL-2025-3583 Malicious code in selfbot.js-v13 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fbdd8332c80f739c8bf3a99e9f32609e53a108f2f7eea79c12d65a8af551c280 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

RedhatCVE•added 2025/03/22 12:23 p.m.•5 views

CVE-2024-12766

parisneo/lollms-webui version V13 feather suffers from a Server-Side Request Forgery SSRF vulnerability in the POST /api/proxy REST API. Attackers can exploit this vulnerability to abuse the victim server's credentials to access unauthorized web resources by specifying the JSON parameter...

7.5CVSS7AI score0.00561EPSS

Exploits1References1

RedhatCVE•added 2025/03/22 11:47 a.m.•5 views

CVE-2024-9919

A missing authentication check in the uninstall endpoint of parisneo/lollms-webui V13 allows attackers to perform unauthorized directory deletions. The /uninstall/appname API endpoint does not call the checkaccess function to verify the clientid, enabling attackers to delete directories without...

8.4CVSS7.1AI score0.00148EPSS

Exploits1References1

NVD•added 2025/03/20 10:15 a.m.•6 views

CVE-2024-12766

7.5CVSS0.00561EPSS

Exploits1References1

OSV•added 2024/10/14 2:2 a.m.•4 views

MAL-2024-9292 Malicious code in discord.jselfbot-v13 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a61c990eea82ae2bbc613649aabde4884684f69fa4b649655cbee9e1e5018293 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CNVD•added 2024/09/05 12:0 a.m.•5 views

SeaCMS cross-site scripting vulnerability (CNVD-2024-39583)

SeaCMS is a free, open source web content management system written in PHP by SeaCMS. The system has been designed primarily to manage video-on-demand resources. A cross-site scripting vulnerability exists in SeaCMS version v13, which originates from a cross-site scripting vulnerability contained...

6.1CVSS5.9AI score0.00175EPSS

NVD•added 2024/08/30 10:15 p.m.•13 views

CVE-2024-44683

Seacms v13 is vulnerable to Cross Site Scripting XSS via admin-video.php...

6.1CVSS0.00175EPSS

Cvelist•added 2024/08/30 12:0 a.m.•14 views

CVE-2024-44683

Seacms v13 is vulnerable to Cross Site Scripting XSS via admin-video.php...

0.00175EPSS

Vulnrichment•added 2024/08/30 12:0 a.m.•13 views

CVE-2024-44683

Seacms v13 is vulnerable to Cross Site Scripting XSS via admin-video.php...

6.2AI score0.00175EPSS

CVE•added 2024/08/30 12:0 a.m.•49 views

CVE-2024-44683

Seacms v13 is vulnerable to Cross Site Scripting (XSS) via admin-video.php. The CVE entry documents an XSS in SeaCMS v13 (admin-video.php) with a CVSS v3.1 base score 6.1 (MEDIUM). Exploitation details are not fully disclosed in the provided materials; CVSS suggests network access with user inter...

6.1CVSS5.8AI score0.00175EPSS

Exploits0References1Affected Software1

OSSF Malicious Packages•added 2024/06/25 1:34 p.m.•3 views

Malicious code in discord-py-v13 (PyPI)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2024/06/25 1:34 p.m.•2 views

MAL-2024-5067 Malicious code in discord-py-v13 (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score

OSV•added 2024/06/25 12:36 p.m.•2 views

MAL-2024-2103 Malicious code in discordjs-fetcher-v13 (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score

OSSF Malicious Packages•added 2024/06/25 12:36 p.m.•1 views

Malicious code in discord-selfbot.js-v13 (npm)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2024/01/17 10:42 a.m.•7 views

MAL-2024-119 Malicious code in discord.js-seifbot-v13 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 18888cbfd68f5ec50d2e482047ecc3917d6697a0283a591eb8e33d8a2095a784 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...