CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

61 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в pillow

In Pillow before 8.1.2, attackers can cause a denial of service due to excessive memory consumption. This occurs because the reported size of the contained image is not properly checked for an ICNS container. As a result, a memory allocation attempt can be quite large...

7.5CVSS6.9AI score0.00315EPSS

Exploits0References1

RedhatCVE•added 2026/02/21 7:30 p.m.•2 views

CVE-2025-68501

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Mollie Mollie Payments for WooCommerce mollie-payments-for-woocommerce allows Reflected XSS.This issue affects Mollie Payments for WooCommerce: from n/a through = 8.1.1...

7.1CVSS5.5AI score0.00045EPSS

Exploits0References1

NVD•added 2026/02/20 4:22 p.m.•2 views

CVE-2025-68501

7.1CVSS0.00045EPSS

Exploits0References1

Vulnrichment•added 2026/02/20 3:46 p.m.•1 views

CVE-2025-68501 WordPress Mollie Payments for WooCommerce plugin <= 8.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

5.3AI score0.00045EPSS

Exploits0References1

RedhatCVE•added 2025/11/07 1:46 p.m.•1 views

CVE-2025-46365

Dell CloudLink, versions prior 8.1.1, contain a Command Injection vulnerability which can be exploited by an Authenticated attacker to cause Command Injection on an affected Dell CloudLink...

6.7CVSS7.1AI score0.0002EPSS

Exploits0References1

CVE•added 2025/11/05 4:40 p.m.•5 views

CVE-2025-46365

Dell CloudLink prior to 8.1.1 contains a command injection vulnerability that can be exploited by an authenticated attacker with local access to execute arbitrary commands on the system. The issue is documented across multiple sources (NVD/CNA RH Red Hat, CNVD, CIRCL, CNNVD, etc.) with consistent...

6.7CVSS6.7AI score0.0002EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/11/05 4:40 p.m.•2 views

CVE-2025-46365

Dell CloudLink, versions prior 8.1.1, contain a Command Injection vulnerability which can be exploited by an Authenticated attacker to cause Command Injection on an affected Dell CloudLink...

5.3CVSS0.0002EPSS

Exploits0References1

Cvelist•added 2025/11/05 4:36 p.m.•2 views

CVE-2025-46364

Dell CloudLink, versions prior to 8.1.1, contain a vulnerability where a privileged user with known password can run CLI Escape Vulnerability to gain control of system...

9.1CVSS0.00061EPSS

Exploits0References1

Positive Technologies•added 2025/11/05 12:0 a.m.•1 views

PT-2025-45143

Name of the Vulnerable Software and Affected Versions Dell CloudLink versions prior to 8.1.1 Description Dell CloudLink versions prior to 8.1.1 have a flaw that allows a user with elevated privileges to potentially escalate their privileges further or access the database, potentially leading to t...

6.7CVSS6.6AI score0.00018EPSS

Exploits0References3

CNNVD•added 2025/11/05 12:0 a.m.•1 views

Dell CloudLink 安全漏洞

Dell CloudLink is a data encryption and key management system from Dell USA. A command execution vulnerability exists in Dell CloudLink, which could be exploited by an attacker to execute arbitrary commands on the system...

9.1CVSS7.4AI score0.00061EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-0174

Malware in sbrugna...

7.5CVSS6.9AI score0.00536EPSS

Exploits0References12

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-2354

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.00934EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-2326

Malicious code in bioql PyPI...

9.1CVSS9AI score0.01223EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-2303

Malicious code in bioql PyPI...

8.6CVSS8.6AI score0.00792EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-44881

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00242EPSS

Exploits0References1

Cvelist•added 2025/06/02 12:0 a.m.•10 views

CVE-2025-49112

setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev-size - prev-used...

3.1CVSS0.00087EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 8:34 a.m.•1 views

CVE-2024-50455

Missing Authorization vulnerability in Benjamin Denis SEOPress wp-seopress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SEOPress: from n/a through = 8.1.1...

8.8CVSS5.9AI score0.00377EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 3:31 a.m.•4 views

CVE-2023-39529

PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete a file from the server by using the Attachments controller and the Attachments API. Version 8.1.1 contains a patch for this issue. There are no known workarounds...

9.1CVSS6.7AI score0.00863EPSS

Exploits0

Tenable Nessus•added 2024/12/11 12:0 a.m.•12 views

Oracle Siebel CRM (July 2012 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2012 CPU advisory. - Vulnerability in the Siebel CRM component of Oracle Siebel CRM subcomponent: UI Framework. Supported versions that are affected are 8.1.1 and 8.2....

6.8CVSS5.5AI score0.01497EPSS

Exploits0References9

Positive Technologies•added 2024/10/29 12:0 a.m.•1 views

PT-2024-34231 · Seopress · Seopress

Name of the Vulnerable Software and Affected Versions: SEOPress versions through 8.1.1 Description: The issue is related to missing authorization in SEOPress, allowing exploitation of incorrectly configured access control security levels. Recommendations: For versions through 8.1.1, update to a...

8.8CVSS6.5AI score0.00282EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by