CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-1844

Malicious code in bioql PyPI...

9.1CVSS8.9AI score0.00975EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-1609

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00214EPSS

Exploits0References5

RedhatCVE•added 2025/02/14 9:16 a.m.•14 views

CVE-2024-25738

A Server-Side Request Forgery SSRF vulnerability in the /Upgrade/FixConfig route in Open Library Foundation VuFind 2.0 through 9.1 before 9.1.1 allows a remote attacker to overwrite local configuration files to gain access to the administrator panel and achieve Remote Code Execution. A mitigating...

9.1CVSS7.4AI score0.00975EPSS

Exploits0References1

RedhatCVE•added 2025/02/14 9:14 a.m.•3 views

CVE-2024-25737

A Server-Side Request Forgery SSRF vulnerability in the /Cover/Show route showAction in CoverController.php in Open Library Foundation VuFind 2.4 through 9.1 before 9.1.1 allows remote attackers to access internal HTTP servers and perform Cross-Site Scripting XSS attacks by proxying arbitrary URL...

5.4CVSS6.3AI score0.00214EPSS

Exploits0References1