CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

129 matches found

RedhatCVE•added 2026/01/17 6:29 p.m.•4 views

CVE-2025-15032

Missing about:blank indicator in custom-sized new windows in Dia before 1.9.0 on macOS could allow an attacker to spoof a trusted domain in the window title and mislead users about the current site...

7.4CVSS6.7AI score0.00015EPSS

Exploits0References1

NVD•added 2026/01/16 7:16 p.m.•6 views

CVE-2025-15032

7.4CVSS0.00015EPSS

Exploits0References1

ATTACKERKB•added 2026/01/16 6:11 p.m.•1 views

CVE-2025-15032

7.4CVSS5.4AI score0.00015EPSS

Exploits0References2

Vulnrichment•added 2026/01/16 6:11 p.m.•3 views

CVE-2025-15032 CVE-2025-15032: Increased Spoofing risk; custom new window missing about:blank

7.4CVSS6.3AI score0.00015EPSS

Exploits0References1

Cvelist•added 2026/01/16 6:11 p.m.•18 views

CVE-2025-15032 CVE-2025-15032: Increased Spoofing risk; custom new window missing about:blank

7.4CVSS0.00015EPSS

Exploits0References1

Positive Technologies•added 2026/01/16 12:0 a.m.•5 views

PT-2026-3271

Name of the Vulnerable Software and Affected Versions Dia versions prior to 1.9.0 Description A flaw exists in Dia that, on macOS, could allow an attacker to spoof a trusted domain in the window title of custom-sized new windows. This could mislead users about the current site due to a missing...

7.4CVSS6.2AI score0.00015EPSS

Exploits0References4

RedhatCVE•added 2026/01/09 11:27 a.m.•5 views

CVE-2021-33326

Cross-site scripting XSS vulnerability in the Frontend JS module in Liferay Portal 7.3.4 and earlier, and Liferay DXP 7.0 before fix pack 96, 7.1 before fix pack 20 and 7.2 before fix pack 9, allows remote attackers to inject arbitrary web script or HTML via the title of a modal window...

6.1CVSS5.9AI score0.00418EPSS

Exploits0References1

Cvelist•added 2025/11/21 9:22 p.m.•7 views

CVE-2025-31266

A spoofing issue was addressed with improved truncation when displaying the fully qualified domain name. This issue is fixed in Safari 18.5, macOS Sequoia 15.5. A website may be able to spoof the domain name in the title of a pop-up window...

0.0003EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2003-0063

Malware in sbrugna...

7.5CVSS6.4AI score0.00722EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2003-0064

Malware in sbrugna...

7.5CVSS6.1AI score0.00667EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2015-8825

Malware in sbrugna...

7.8CVSS7.5AI score0.00639EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2003-0059

Malware in sbrugna...

7.5CVSS4.5AI score0.01309EPSS

Exploits0References17

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2003-0060

Malware in sbrugna...

7.5CVSS6.4AI score0.00871EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2003-0062

Malware in sbrugna...

7.5CVSS6.2AI score0.00706EPSS

Exploits0References11

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2003-0061

Malware in sbrugna...

7.5CVSS6.4AI score0.0067EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2003-0066

Malware in sbrugna...

6.8CVSS6.1AI score0.00635EPSS

Exploits0References8

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-2817

Malicious code in bioql PyPI...

7.5CVSS6.1AI score0.00948EPSS

Exploits1References7

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-53436

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00381EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-2091

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00138EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 9:20 a.m.•1 views

CVE-2024-38395

In iTerm2 before 3.5.2, the "Terminal may report window title" setting is not honored, and thus remote code execution might occur but "is not trivially exploitable."...

9.8CVSS6.4AI score0.09237EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by