CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0049 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

9.8CVSS7.9AI score0.94053EPSS

Exploits53References2

RedhatCVE•added 2025/05/14 6:12 a.m.•9 views

CVE-2025-3597

The Firelight Lightbox WordPress plugin before 2.3.15 does not prevent users with post writing capabilities from executing arbitrary Javascript when the jQuery Metadata library is enabled. While this feature is meant to only be available to Pro version users, it can be activated in the free versi...

5.9CVSS6.9AI score0.00184EPSS

Exploits1References1

Cvelist•added 2025/05/12 6:0 a.m.•21 views

CVE-2025-3597 Firelight Lightbox < 2.3.15 - Contributor+ Stored XSS

0.00184EPSS

Exploits1References1

Kitploit•added 2020/07/25 10:0 p.m.•90 views

Autoenum - Automatic Service Enumeration Script

Autoenum is a recon tool which performs automatic enumeration of services discovered. I built this to save some time during CTFs and pen testing environments i.e. HTB, VulnHub, OSCP and draws a bit from a number of existing tools including AutoRecon https://github.com/Tib3rius/AutoRecon, Auto-Rec...

7.5AI score

Exploits0References3

Prion•added 2020/03/10 5:15 p.m.•7 views

Design/Logic Flaw

In NetHack before 3.6.6, some out-of-bound values for the hilitestatus option can be exploited. NetHack 3.6.6 resolves this issue...

6.8CVSS8AI score0.09282EPSS

Exploits0References1Affected Software1

Debian CVE•added 2019/04/22 8:52 p.m.•40 views

CVE-2019-5427

c3p0 version 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration...

7.5CVSS6.8AI score0.05651EPSS

Exploits1

seebug.org•added 2014/07/01 12:0 a.m.•8 views

SPHPBlog 0.4 Search.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13170/info sphpBlog is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

7.1AI score

Exploits0

exploitpack•added 2010/04/03 12:0 a.m.•17 views

PHP-fusion dsmsf Mod Downloads - SQL Injection

PHP-fusion dsmsf Mod Downloads - SQL Injection ======================================================== PHP-fusion dsmsf module downloads SQL Inj3ct0r Exploit ======================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /'...

0.8AI score

Exploits0

Joomla! Vulnerable Extensions List•added 2009/10/13 12:0 a.m.•20 views

[20091103] - Core - XML File Read Issue

It is possible to read the contents of an extension's XML file and find the version number of the installed extension. This could allow people to exploit a known security flaws for a specific version of an extension...

6.7AI score

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by