CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29512 matches found

GithubExploit•added 1 hour ago•10 views

WS-PoC-Search

WS-PoC-Search Lightning-fast CVE and PoC intelligence searc...

9CVSS7.7AI score0.00223EPSS

Exploits1

GithubExploit•added 2 hours ago•6 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft

CVE-2026-33829 Este repositorio contiene una herramienta auto...

4.3CVSS5.7AI score0.0026EPSS

Exploits4

NVD•added 2 hours ago•2 views

CVE-2026-50230

Lyrion Music Server 9.2.0 contains an unauthenticated reflected cross-site scripting vulnerability in the server.log endpoint that allows attackers to inject arbitrary HTML and JavaScript code through the search parameter. Attackers can craft malicious URLs with JavaScript payloads in the search...

6.1CVSS

Exploits0References2

NVD•added 2 hours ago•5 views

CVE-2026-50235

Lyrion Music Server 9.2.0 contains a reflected cross-site scripting vulnerability in advanced search parameters that fail to properly sanitize user input before displaying it in search forms. Attackers can inject malicious scripts through unfiltered search parameters to execute arbitrary JavaScri...

6.1CVSS

Exploits0References2

Vulnrichment•added 3 hours ago•2 views

CVE-2026-50235 Lyrion Music Server 9.2.0 Reflected XSS via search Parameters

6.1CVSS5.6AI score

Exploits0References2

EUVD•added 3 hours ago•3 views

EUVD-2026-34834

6.1CVSS5.6AI score

Exploits0References2

CVE•added 3 hours ago•9 views

CVE-2026-50235

Affected software: Lyrion Music Server 9.2.0. Vulnerability: reflected XSS in advanced search parameters that fail to sanitize user input before displaying it in search forms. Impact: can execute arbitrary JavaScript in users’ browsers and potentially steal session information. Exploitation/Detai...

6.1CVSS5.6AI score

Exploits0References2

ATTACKERKB•added 3 hours ago•2 views

CVE-2026-50235

6.1CVSS5.6AI score

Exploits0References3Affected Software1

Cvelist•added 3 hours ago•5 views

CVE-2026-50235 Lyrion Music Server 9.2.0 Reflected XSS via search Parameters

6.1CVSS

Exploits0References2

Cvelist•added 3 hours ago•6 views

CVE-2026-50230 Lyrion Music Server 9.2.0 Reflected XSS via server.log

6.1CVSS

Exploits0References2

CVE•added 3 hours ago•5 views

CVE-2026-50230

Lyrion Music Server 9.2.0 is affected by an unauthenticated reflected cross-site scripting vulnerability in the server.log endpoint . The issue allows attackers to inject arbitrary HTML and JavaScript through the search parameter , enabling code execution in users’ browsers within the context of ...

6.1CVSS5.6AI score

Exploits0References2

EUVD•added 3 hours ago•3 views

EUVD-2026-34829

6.1CVSS5.6AI score

Exploits0References2

ATTACKERKB•added 3 hours ago•2 views

CVE-2026-50230

6.1CVSS5.6AI score

Exploits0References3Affected Software1

NVD•added 9 hours ago•6 views

CVE-2026-21825

HCL Digital Experience Compose is affected by a reflected cross-site scripting XSS vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser...

6.1CVSS

Exploits0References1

Cvelist•added 10 hours ago•10 views

CVE-2026-21825 HCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search center

HCL Digital Experience Compose is affected by a reflected cross-site scripting XSS vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser...

6.1CVSS

Exploits0References1

EUVD•added 10 hours ago•6 views

EUVD-2026-34788

HCL Digital Experience Compose is affected by a reflected cross-site scripting XSS vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser...

6.1CVSS5.5AI score

Exploits0References1

CVE•added 10 hours ago•12 views

CVE-2026-21825

HCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim’s browser. The CVE-2026-21825 entry lists a CVSS v3.1 base score of 6.1 (MEDIUM) with network access, low privilege...

6.1CVSS5.5AI score

Exploits0References1

ATTACKERKB•added 10 hours ago•3 views

CVE-2026-21825

HCL Digital Experience Compose is affected by a reflected cross-site scripting XSS vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim's browser...

6.1CVSS5.5AI score

Exploits0References2Affected Software1

Nuclei•added 13 hours ago•28 views

Autonomy Ultraseek - Open Redirect

Open redirect vulnerability in cs.html in the Autonomy formerly Verity Ultraseek search engine allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter. id: CVE-2009-0347 info: name: Autonomy Ultraseek - Open Redirect author: ctflearner...

5.8CVSS5.7AI score0.0295EPSS

Exploits0References5

Nuclei•added 13 hours ago•18 views

ChanCMS <= 3.3.0 - SQL Injection

yanyutao0402 ChanCMS = 3.3.0 contains a SQL injection caused by manipulation of the "key" argument in app/modules/api/service/Api.js Search function, letting remote attackers execute arbitrary SQL commands, exploit requires crafted request. id: CVE-2025-10210 info: name: ChanCMS = 3.3.0 - SQL...

8.8CVSS7AI score0.00808EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by