CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

OSV•added 2026/01/05 6:15 p.m.•4 views

PYSEC-2026-116

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.8.1, the GraphQL mutation "WorkspacePopoverDeletionMutation" allows users to delete workspace-related objects such as dashboards and investigation cases. However, the mutation...

9.1CVSS5.8AI score0.00156EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-51992

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.0046EPSS

Exploits0References2

Tenable Nessus•added 2025/08/21 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2024-29203

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TinyMCE is an open source rich text editor. A cross-site scripting XSS vulnerability was discovered in TinyMCE's content insertion code. This allowed iframe...

6.1CVSS6.1AI score0.01605EPSS

Exploits0References2

CNNVD•added 2024/11/26 12:0 a.m.•2 views

Taiga 安全漏洞

Taiga is a free open source project management tool from Taiga Open Source. A security vulnerability exists in Taiga version v6.8.1, which stems from the inclusion of a CSV injection issue that could lead to arbitrary code execution...

8.8CVSS7.8AI score0.0046EPSS

Exploits0References2

Positive Technologies•added 2024/11/25 12:0 a.m.•4 views

PT-2024-35776 · Taiga · Taiga

Name of the Vulnerable Software and Affected Versions: Taiga version 6.8.1 Description: The issue allows attackers to redirect users to arbitrary websites by appending a crafted link to the /login?next= parameter in the login page URL. This can potentially lead to unauthorized access...

6.1CVSS7.2AI score0.00146EPSS

Exploits0References5

NVD•added 2024/03/26 2:15 p.m.•13 views

CVE-2024-29203

TinyMCE is an open source rich text editor. A cross-site scripting XSS vulnerability was discovered in TinyMCE’s content insertion code. This allowed iframe elements containing malicious code to execute when inserted into the editor. These iframe elements are restricted in their permissions by...

6.1CVSS4.5AI score0.01605EPSS

Exploits0References4

OSV•added 2024/03/26 1:23 p.m.•16 views

CVE-2024-29203 TinyMCE Cross-Site Scripting (XSS) vulnerability in handling iframes

4.3CVSS5AI score0.01605EPSS

Exploits0References6

OSV•added 2023/03/18 5:15 a.m.•7 views

CVE-2023-26113

Versions of the package collection.js before 6.8.1 are vulnerable to Prototype Pollution via the extend function in Collection.js/dist/node/iterators/extend.js...

7.5CVSS7.7AI score

Exploits0References5

Vulnrichment•added 2023/03/18 5:0 a.m.•6 views

CVE-2023-26113

Versions of the package collection.js before 6.8.1 are vulnerable to Prototype Pollution via the extend function in Collection.js/dist/node/iterators/extend.js...

7.5CVSS7.5AI score0.00153EPSS

Exploits1References5

CERT•added 2004/09/30 12:0 a.m.•39 views

libXpm library contains multiple integer overflow vulnerabilities

Overview libXpm contains multiple integer overflow vulnerabilities that may allow an attacker to cause a denial-of-service condition or execute arbitrary code. Description XPM is a format for encoding and decoding X PixMap images that is used in the X Windows System 11 X11. libXpm is a library of...

8.1AI score

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by