CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

107 matches found

OpenVAS•added 2026/03/09 12:0 a.m.•0 views

openSUSE Security Advisory (SUSE-SU-2026:0811-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS5.8AI score0.00074EPSS

Exploits1References6

OpenVAS•added 2026/03/09 12:0 a.m.•1 views

SUSE: Security Advisory (SUSE-SU-2026:0833-1)

5.8CVSS5.8AI score0.00074EPSS

Exploits1References6

OpenVAS•added 2026/03/09 12:0 a.m.•0 views

SUSE: Security Advisory (SUSE-SU-2026:0811-1)

5.8CVSS5.8AI score0.00074EPSS

Exploits1References6

OpenVAS•added 2026/03/06 12:0 a.m.•1 views

SUSE: Security Advisory (SUSE-SU-2026:0796-1)

5.8CVSS5.8AI score0.00074EPSS

Exploits1References6

OpenVAS•added 2026/03/05 12:0 a.m.•4 views

SUSE: Security Advisory (SUSE-SU-2026:0788-1)

5.8CVSS6AI score0.00074EPSS

Exploits1References6

OPENSUSE Linux•added 2026/03/02 12:0 a.m.•3 views

libsoup-3_0-0-3.6.6-2.1 on GA media (moderate)

libsoup-30-0-3.6.6-2.1 on GA media Announcement ID: openSUSE-SU-2026:10276-1 Rating: moderate Cross-References: CVE-2026-1467 CVE-2026-1539 CVE-2026-1760 CVSS scores: CVE-2026-1467 SUSE : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2026-1467 SUSE : 5.3...

8.8CVSS5.9AI score0.00074EPSS

Exploits1

OSV•added 2026/01/27 10:15 a.m.•2 views

DEBIAN-CVE-2026-1467

A flaw was found in libsoup, an HTTP client library. This vulnerability, known as CRLF Carriage Return Line Feed Injection, occurs when an HTTP proxy is configured and the library improperly handles URL-decoded input used to create the Host header. A remote attacker can exploit this by providing ...

5.3CVSS5.7AI score0.00074EPSS

Exploits1References1

Debian CVE•added 2026/01/27 9:17 a.m.•6 views

CVE-2026-1467

5.8CVSS5.7AI score0.00074EPSS

Exploits1

Circl•added 2025/07/26 8:42 p.m.•3 views

CVE-1999-1467

creationtimestamp| type| source ---|---|--- 2025-07-26 20:42:56+00:00| seen| https://gist.github.com/DEEPML1818/fef33d765177026df668a4476d4fe698 2025-07-26 20:48:36+00:00| seen| https://gist.github.com/DEEPML1818/8672f137125674c3936651ee63417e61 2026-02-17 07:22:13+00:00| seen|...

10CVSS5.1AI score0.05819EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 8:39 a.m.•2 views

CVE-2024-1467

The Starter Templates — Elementor, WordPress & Beaver Builder Templates plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.1.6 via the aiapirequest. This makes it possible for authenticated attackers, with contributor-level access and above, ...

4.3CVSS6.5AI score0.00132EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:29 a.m.•5 views

CVE-2019-1467

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1465, CVE-2019-1466...

6.5CVSS6.2AI score0.26055EPSS

Exploits0References1

Tenable Nessus•added 2025/03/03 12:0 a.m.•16 views

Linux Distros Unpatched Vulnerability : CVE-2011-1467

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the NumberFormatter::setSymbol aka numfmtsetsymbol function in the Intl extension in PHP before 5.3.6 allows context-dependent...

5CVSS6.2AI score0.30526EPSS

Exploits6References2

Circl•added 2025/02/23 4:21 p.m.•3 views

CVE-2025-1467

creationtimestamp| type| source ---|---|--- 2025-02-23 16:21:07+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5097 2025-02-23 17:38:06+00:00| seen| Telegram/HOWrDrRtJJhI0lxzVstaqEvpdh1Gh89a-PjhvLNEXtXBG3I 2025-02-23 19:23:10+00:00| seen| https://t.me/cvedetector/18750...

6.1CVSS4.8AI score0.00155EPSS

Exploits0References3

NVD•added 2025/02/23 4:15 p.m.•7 views

CVE-2025-1467

Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541...

6.1CVSS0.00155EPSS

Exploits0References4

CVE•added 2025/02/23 3:19 p.m.•61 views

CVE-2025-1467

The CVE-2025-1467 entry concerns tarteaucitronjs versions before 1.17.0, which are vulnerable to Cross-site Scripting (XSS) via the getElemWidth() and getElemHeight() functions. Multiple sources (NVD, Red Hat, Veracode, OSV, CIRCL, GHSA) consistently describe the flaw as an XSS issue rooted in in...

6.1CVSS6.1AI score0.00155EPSS

Exploits0References4

RedhatCVE•added 2025/02/05 10:50 p.m.•7 views

CVE-2022-1467

Windows OS can be configured to overlay a “language bar” on top of any application. When this OS functionality is enabled, the OS language bar UI will be viewable in the browser alongside the AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere applications. It is possible to manipulate...

9.9CVSS6.8AI score0.00278EPSS

Exploits0References1

Positive Technologies•added 2024/05/14 12:0 a.m.•3 views

PT-2024-21370 · Evertz Microsystems · Mvip-Ii +4

Name of the Vulnerable Software and Affected Versions: Evertz microsystems MViP-II Firmware version 8.6.5 Evertz microsystems XPS-EDGE- Build 1467 Evertz microsystems evEDGE-EO- Build 0029 Evertz microsystems MMA10G- Build 0498 Evertz microsystems 570IPG-X19-10G Build 0691 Description: The issue...

6.1CVSS8.3AI score0.01032EPSS

Exploits0References5