CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Cvelist•added 2025/10/29 5:49 p.m.•8 views

CVE-2025-62797 CSRF in FluxCP account endpoints allows account takeover / state-changing actions

FluxCP is a web-based Control Panel for rAthena servers written in PHP. A critical Cross-Site Request Forgery CSRF vulnerability exists in the FluxCP-based website template used by multiple rAthena/Ragnarok servers. State-changing POST endpoints accept browser-initiated requests that are authoriz...

8.6CVSS0.00166EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2020-22907

Malware in sbrugna...

4.8CVSS5.1AI score0.00828EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2019-3838

Malware in sbrugna...

5.4CVSS5.5AI score0.05323EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-41738

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00319EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-44221

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00925EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-51440

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00786EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-28178

Malicious code in bioql PyPI...

10CVSS6.6AI score0.02122EPSS

Exploits0References1

OSV•added 2025/01/28 11:15 p.m.•4 views

CVE-2024-56529

Mailcow through 2024-11b has a session fixation vulnerability in the web panel. It allows remote attackers to set a session identifier when HSTS is disabled on a victim's browser. After a user logs in, they are authenticated and the session identifier is valid. Then, a remote attacker can access...

7.1CVSS6.8AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by