CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

136 matches found

WordPress Admin Word Count Column 2.2 - Local File Inclusion

The plugin does not validate the path parameter given to readfile, which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also lead to RCE by using a Phar Deserialization technique. id:...

9.8CVSS7.4AI score0.91147EPSS

Exploits2References5

Amazon•added 2026/04/30 12:0 a.m.•8 views

Important: glibc

Issue Overview: The iconv function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application. This vulnerability can be trivially mitigated by removing...

7.5CVSS5.2AI score0.0008EPSS

Exploits1

OSV•added 2026/03/30 6:16 p.m.•1 views

UBUNTU-CVE-2026-4046

The iconv function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application. This vulnerability can be trivially mitigated by removing the IBM1390 and...

7.5CVSS5.8AI score0.0008EPSS

Exploits1References3

CNNVD•added 2026/03/30 12:0 a.m.•2 views

GNU C Library 安全漏洞

The GNU C Library is an open-source, free C-language compiler program published by the GNU community under the LGPL license. Versions of the GNU C Library 2.43 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the iconv function, which could crash due to assertion...

7.5CVSS5.8AI score0.0008EPSS

Exploits1References3

OpenVAS•added 2026/03/16 12:0 a.m.•0 views

Huawei EulerOS: Security Advisory for glib2 (EulerOS-SA-2026-1390)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.4AI score0.0005EPSS

Exploits1References2

OpenVAS•added 2026/02/02 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2026-1177)

6.1CVSS7.9AI score0.00059EPSS

Exploits0References2

OpenVAS•added 2026/02/02 12:0 a.m.•2 views

Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2026-1126)

6.1CVSS7.9AI score0.00059EPSS

Exploits0References2

Tenable Nessus•added 2025/11/20 12:0 a.m.•4 views

TencentOS Server 4: libcap (TSSA-2025:0254)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0254 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

6.1CVSS6.5AI score0.00059EPSS

Exploits0References2

OpenVAS•added 2025/09/17 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2025-2172)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.7AI score0.00059EPSS

Exploits0References2

Tenable Nessus•added 2025/09/16 12:0 a.m.•3 views

EulerOS Virtualization 2.13.1 : libcap (EulerOS-SA-2025-2172)

According to the versions of the libcap package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not...

6.1CVSS6.6AI score0.00059EPSS

Exploits0References2

OpenVAS•added 2025/09/03 12:0 a.m.•2 views

Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2025-1893)

6.1CVSS6.7AI score0.00059EPSS

Exploits0References2

Tenable Nessus•added 2025/08/13 12:0 a.m.•3 views

EulerOS 2.0 SP11 : libcap (EulerOS-SA-2025-1933)

According to the versions of the libcap package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not starting with @ ar...

6.1CVSS6.6AI score0.00059EPSS

Exploits0References2

OpenVAS•added 2025/08/12 12:0 a.m.•2 views

Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2025-1959)

6.1CVSS7.5AI score0.00059EPSS

Exploits0References2

OpenVAS•added 2025/07/11 12:0 a.m.•2 views

Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2025-1802)

6.1CVSS9.8AI score0.00059EPSS

Exploits0References2

OpenVAS•added 2025/07/11 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for libcap (EulerOS-SA-2025-1779)