CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

104 matches found

Packet Storm News•added 2026/03/09 12:0 a.m.•0 views

M365Pwned Red Team Tool

M365Pwned is two WinForms GUI tools for enumerating, searching, and exfiltrating data from Microsoft 365 environments using application-level OAuth tokens without any user interaction required...

5.8AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-48564

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00187EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-1606

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00194EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-32864

Malicious code in bioql PyPI...

7.8CVSS6.5AI score0.00013EPSS

Exploits0References1

Positive Technologies•added 2025/09/16 12:0 a.m.•1 views

PT-2025-38057

Name of the Vulnerable Software and Affected Versions: Greenshot versions 1.3.300 and earlier Description: Greenshot is a Windows screenshot utility. The software deserializes attacker-controlled data received in a WM COPYDATA message using BinaryFormatter.Deserialize without prior validation or...

8.4CVSS7.1AI score0.0034EPSS

Exploits1References9

Snyk•added 2025/03/24 10:0 p.m.•6 views

Improper Isolation or Compartmentalization

Overview Affected versions of this package are vulnerable to Improper Isolation or Compartmentalization that allows an attacker who can convince a user to follow a malicious link to escape sandbox protections, due to a logic error in the Mojo component. This vulnerability does not enable code...

8.3CVSS7.6AI score0.4686EPSS

Exploits4References2

RedhatCVE•added 2025/02/14 3:37 p.m.•5 views

CVE-2025-0332

In Progress® Telerik® UI for WinForms, versions prior to 2025 Q1 2025.1.211, using the improper limitation of a target path can lead to decompressing an archive's content into a restricted directory...

9.8CVSS6.8AI score0.00194EPSS

Exploits0References1

Tenable Nessus•added 2025/02/14 12:0 a.m.•5 views

Progress Telerik UI forr WinForms < 2025.1.211 Path Traversal

The version of Progress Telerik UI for WinForms installed on the remote host is prior to 2025.1.211. It is, therefore, affected by a path traversal vulnerability. The improper limitation of a target path can lead to decompressing an archive's content into a restricted directory. Note that Nessus...

9.8CVSS5.6AI score0.00194EPSS

Exploits0References2

NVD•added 2025/02/12 4:15 p.m.•10 views

CVE-2025-0332

9.8CVSS0.00194EPSS

Exploits0References1

OSV•added 2025/02/12 4:15 p.m.•2 views

CVE-2025-0332

9.8CVSS5.8AI score0.00194EPSS

Exploits0References1

CVE•added 2025/02/12 3:15 p.m.•54 views

CVE-2025-0332

CVE-2025-0332 affects Progress Telerik UI for WinForms. Prior to 2025 Q1 (2025.1.211), improper limitation of a target path enables path traversal when decompressing archive contents into a restricted directory. Impact involves potential exposure/manipulation of data (confidentiality, integrity, ...

9.8CVSS7.6AI score0.00194EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/02/12 3:15 p.m.•9 views

CVE-2025-0332 Progress UI for WinForms decompression path traversal vulnerability

7.8CVSS0.00194EPSS

Exploits0References1

Positive Technologies•added 2025/02/12 12:0 a.m.•3 views

PT-2025-6781 · Progress · In Progress Telerik Ui For Winforms

Name of the Vulnerable Software and Affected Versions: In Progress Telerik UI for WinForms versions prior to 2025 Q1 2025.1.211 Description: The issue is related to the improper limitation of a target path, which can lead to decompressing an archive's content into a restricted directory. This can...

9.8CVSS6.3AI score0.00194EPSS

Exploits0References7

RedhatCVE•added 2025/02/05 5:8 a.m.•3 views

CVE-2024-10013

In Progress Telerik UI for WinForms versions prior to 2024 Q4 2024.4.1113, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS7.4AI score0.00013EPSS

Exploits0References1

OSSF Malicious Packages•added 2024/12/09 6:51 a.m.•2 views

Malicious code in Modernzel.UI.WinForms (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0

OSSF Malicious Packages•added 2024/12/09 6:51 a.m.•3 views

Malicious code in Modernial.UI.WinForms (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0

NVD•added 2024/11/13 4:15 p.m.•16 views

CVE-2024-10013

In Progress Telerik UI for WinForms versions prior to 2024 Q4 2024.4.1113, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS0.00013EPSS

Exploits0References1

OSV•added 2024/11/13 4:15 p.m.•0 views

CVE-2024-10013

In Progress Telerik UI for WinForms versions prior to 2024 Q4 2024.4.1113, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS6.2AI score0.00013EPSS

Exploits0References1

Cvelist•added 2024/11/13 3:17 p.m.•14 views

CVE-2024-10013 Progress UI for WinForms format provider unsafe deserialization vulnerability

In Progress Telerik UI for WinForms versions prior to 2024 Q4 2024.4.1113, a code execution attack is possible through an insecure deserialization vulnerability...

7.8CVSS0.00013EPSS

Exploits0References1

CVE•added 2024/11/13 3:17 p.m.•48 views

CVE-2024-10013

CVE-2024-10013 affects Progress Telerik UI for WinForms versions prior to 2024 Q4 (2024.4.1113). The vulnerability is an insecure deserialization leading to code execution. Underlying issue: deserialization of untrusted data within the WinForms UI suite. Impact is described as total in the risk m...

7.8CVSS7.9AI score0.00013EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by