CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

151 matches found

Tenable Nessus•added 2025/11/20 12:0 a.m.•3 views

Google Chrome < 4.1.0.21 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 4.1.0.21. It is, therefore, affected by multiple vulnerabilities as referenced in the 201503stable-channel-update advisory. - Multiple use-after-free vulnerabilities in core/html/HTMLInputElement.cpp in the DOM...

7.5CVSS8.5AI score0.03512EPSS

Exploits0References41

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2014-1214

Malware in sbrugna...

7.5CVSS6.2AI score

Exploits0References1

RedhatCVE•added 2025/05/22 4:12 p.m.•8 views

CVE-2020-1214

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1213, CVE-2020-1215, CVE-2020-1216, CVE-2020-1230, CVE-2020-1260...

7.6CVSS7.8AI score0.09339EPSS

Exploits1

RedhatCVE•added 2025/05/22 11:21 a.m.•5 views

CVE-2013-1214

The scripts editor in Cisco Unified Contact Center Express aka Unified CCX does not properly manage privileges for anonymous logins, which allows remote attackers to read arbitrary scripts by visiting the scripts repository directory, aka Bug ID CSCuf77546...

5CVSS7.1AI score0.0025EPSS

Exploits0References1

Tenable Nessus•added 2025/03/03 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2010-1214

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code vi...

9.3CVSS7.9AI score0.0734EPSS

Exploits5References2

CVE•added 2025/02/12 6:0 p.m.•66 views

CVE-2025-1214

CVE-2025-1214 affects pihome-shc PiHome 2.0, specifically the Role-Based Access Control component. The vulnerability resides in an issue with the /user_accounts.php?uid endpoint, enabling missing authorization and potentially allowing remote exploitation. Several sources confirm that exploitation...

8.8CVSS6.4AI score0.00131EPSS

Exploits1References4Affected Software1

Cvelist•added 2025/02/12 6:0 p.m.•8 views

CVE-2025-1214 pihome-shc PiHome Role-Based Access Control user_accounts.php authorization

A vulnerability classified as critical has been found in pihome-shc PiHome 2.0. This affects an unknown part of the file /useraccounts.php?uid of the component Role-Based Access Control. The manipulation leads to missing authorization. It is possible to initiate the attack remotely. The exploit h...

6.5CVSS0.00131EPSS

Exploits1References4

CVE•added 2024/03/12 11:33 p.m.•50 views

CVE-2024-1214

CVE-2024-1214 (Easy Social Feed – Social Photos Gallery – Post Feed – Like Box, WordPress) is a CSRF vulnerability in the plugin across all versions up to 6.5.4 due to missing or incorrect nonce validation on the save_groups_list function. This allows unauthenticated attackers to disconnect a sit...

4.3CVSS5.2AI score0.00125EPSS

Exploits0References2Affected Software1

Patchstack•added 2024/03/12 12:0 a.m.•7 views

WordPress Easy Social Feed Plugin <= 6.5.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Easy Social Feed Type Plugin Vulnerable versions = 6.5.4 Fixed in 6.5.5 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-1214 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d7cd784da6bf Credits Eldar Zeynalli...

4.3CVSS6.6AI score0.00125EPSS

Exploits0References3Affected Software1

OpenVAS•added 2024/03/04 12:0 a.m.•25 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0068-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.00385EPSS

Exploits7References2

Tenable Nessus•added 2023/11/07 12:0 a.m.•33 views

Fedora 38 : alsa-plugins / attract-mode / audacious-plugins / blender / etc (2023-a5e10b188a)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-a5e10b188a advisory. FFmpeg 6.0 upgrade. ---- update to 111.0.5563.64. Fixes the following security issues: CVE-2023-0927 CVE-2023-0928 CVE-2023-0929 CVE-2023-0930...

8.8CVSS7.1AI score0.00548EPSS

Exploits0References24

Tenable Nessus•added 2023/05/28 12:0 a.m.•30 views

openSUSE 15 Security Update : opera (openSUSE-SU-2023:0114-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0114-1 advisory. - Use after free in Swiftshader in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to potentially exploit heap corruption via a...

9.8CVSS8AI score0.22785EPSS

Exploits9References87

OpenVAS•added 2023/03/28 12:0 a.m.•22 views

Mageia: Security Advisory (MGASA-2023-0090)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.00385EPSS

Exploits7References5

Tenable Nessus•added 2023/03/18 12:0 a.m.•50 views

Fedora 36 : chromium (2023-015e4d696d)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-015e4d696d advisory. update to 111.0.5563.64. Fixes the following security issues: CVE-2023-0927 CVE-2023-0928 CVE-2023-0929 CVE-2023-0930 CVE-2023-0931 CVE-2023-0932...

8.8CVSS7.1AI score0.00548EPSS

Exploits0References24

OpenVAS•added 2023/03/15 12:0 a.m.•27 views

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Mar 2023)

This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

8.8CVSS7.7AI score0.17038EPSS

Exploits9References1

OpenVAS•added 2023/03/14 12:0 a.m.•24 views

Fedora: Security Advisory for qmmp-plugin-pack (FEDORA-2023-a5e10b188a)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.4AI score0.00548EPSS

Exploits0References2

OpenVAS•added 2023/03/14 12:0 a.m.•18 views

Fedora: Security Advisory for qt6-qtwebengine (FEDORA-2023-a5e10b188a)

8.8CVSS7.4AI score0.00548EPSS

Exploits0References2

OpenVAS•added 2023/03/14 12:0 a.m.•26 views

Fedora: Security Advisory for siril (FEDORA-2023-a5e10b188a)

8.8CVSS7.4AI score0.00548EPSS

Exploits0References2

OpenVAS•added 2023/03/14 12:0 a.m.•19 views

Fedora: Security Advisory for indi-3rdparty-libraries (FEDORA-2023-a5e10b188a)