CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

Cvelist•added 2026/05/29 1:0 p.m.•29 views

CVE-2026-47694 WWBN AVideo: Stored XSS via unescaped Gallery category description

WWBN AVideo is an open source video platform. In 29.0 and earlier, AVideo stores category descriptions from user input and later renders categorydescription as raw HTML in the Gallery view. A user who can create or edit categories can store JavaScript in a category description, which executes whe...

5.4CVSS0.00035EPSS

Exploits1References1

IBM Security Bulletins•added 2026/03/09 10:35 a.m.•24 views

Security Bulletin: Remediation of Multiple Apache Struts Vulnerabilities in IBM Library Support for Struts

Summary Multiple Apache Struts vulnerabilities have been addressed in IBM Library Support for Struts Vulnerability Details CVEID:CVE-2025-68493 DESCRIPTION: Missing XML Validation vulnerability in Apache Struts, Apache Struts. This issue affects Apache Struts: from 2.0.0 before 2.2.1; Apache...

8.8CVSS7.2AI score0.339EPSS

Exploits5Affected Software1

CNNVD•added 2026/01/27 12:0 a.m.•3 views

CPUID CPU-Z security vulnerabilities

CPUID CPU-Z is a system hardware information detection tool developed by CPUID Corporation. Versions of CPUID CPU-Z prior to v2.17 contained security vulnerabilities. These vulnerabilities stemmed from the lack of validation by the kernel driver for values provided by users through the IOCTL...

5.5CVSS5.8AI score0.00028EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-2360

Malware in sbrugna...

8.8CVSS7.8AI score0.0015EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-18736

Malware in sbrugna...

9.8CVSS9.5AI score0.00547EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-25410

Malware in sbrugna...

4CVSS3.8AI score0.00178EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-4576

Malware in sbrugna...

6.4CVSS6.4AI score0.00244EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-13133

Malware in sbrugna...

5.5CVSS5.6AI score0.00129EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-32082

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00068EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-5615

Malicious code in bioql PyPI...

4CVSS4.6AI score0.00044EPSS

Exploits1References7

CNNVD•added 2025/10/03 12:0 a.m.•3 views

Emlog Pro 安全漏洞

Emlog Pro is an Emlog open source blogging system. A security vulnerability exists in Emlog Pro version 2.5.19, which stems from insufficient validation of SVG file uploads and could lead to a stored cross-site scripting attack...

6.1CVSS5.9AI score0.00034EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:24 a.m.•7 views

CVE-2019-10614

Out of boundary access is possible as there is no validation of data accessed against the received size of the packet in case of malicious firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

9.8CVSS7.3AI score0.00336EPSS

Exploits0References1

NVD•added 2024/08/27 1:15 p.m.•13 views

CVE-2024-4872

A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to successfully exploit this vulnerability an attacker must have a valid credential...

9.9CVSS0.005EPSS

Exploits0References1

Cvelist•added 2024/01/18 2:44 a.m.•16 views

CVE-2023-48343

In video decoder, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with no additional execution privileges needed...

5.8AI score0.00009EPSS

Exploits0References1

Positive Technologies•added 2021/04/30 12:0 a.m.•4 views

PT-2021-4589

Name of the Vulnerable Software and Affected Versions libxml2 versions prior to 2.9.11 Description The issue is related to the libxml2 library's parser component, which fails to propagate errors when parsing XML content. This can be exploited by a remote attacker using a specially crafted XML...

10CVSS7AI score0.20012EPSS

Exploits24References146

OSV•added 2021/04/05 10:15 p.m.•1 views

ALPINE-CVE-2021-20305

A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions GOST DSA, EDDSA & ECDSA result in the Elliptic Curve Cryptography point ECC multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allow...

8.1CVSS6.7AI score0.00145EPSS

Exploits0References1

RedHat Linux•added 2020/05/18 10:24 a.m.•0 views

xml-security: Apache Santuario potentially loads XML parsing code from an untrusted source

In version 2.0.3 Apache Santuario XML Security for Java, a caching mechanism was introduced to speed up creating new XML documents using a static pool of DocumentBuilders. However, if some untrusted code can register a malicious implementation with the thread context class loader first, then this...

5.5CVSS7.3AI score0.00587EPSS

Exploits0References4

RedHat Linux•added 2020/03/12 5:0 p.m.•1 views

xml-security: Apache Santuario potentially loads XML parsing code from an untrusted source

5.5CVSS7.3AI score0.00587EPSS

Exploits0References4

securityvulns•added 2003/06/21 12:0 a.m.•21 views

ConnecTalk Security Advisory: Qpopper leaks information during authentication

============================================================================= ConnecTalk Inc. Security Advisory Topic: Qpopper leaks information during authentication Vendor: Eudora Product: qpopper 4.0.4 and qpopper 4.0.5 Note: other versions have not been tested. Problem found: May 14, 2003...

0.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by