CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5353 matches found

SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting

The Virtual Keyboard plugin for SquirrelMail 1.2.6/1.2.7 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. id: CVE-2002-1131 info: name: SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting author: dhiyaneshDk,s4e-io severity: high description:...

7.5CVSS5.6AI score0.02841EPSS

Exploits2References4

CNNVD•added 2026/05/20 12:0 a.m.•2 views

Sitemio WISECP 跨站请求伪造漏洞

Sitemio WISECP is an automated management and billing platform developed by the Turkish company Sitemio, aimed at hosting services and domain name services. Versions of Sitemio WISECP from 2002 to 2026 had a cross-site request forgeing vulnerability. This vulnerability stems from cross-site reque...

8CVSS5.7AI score0.00018EPSS

Exploits0References1

Circl•added 2026/03/09 5:15 p.m.•3 views

CVE-2002-0059

creationtimestamp| type| source ---|---|--- 2026-03-09 17:15:08+00:00| seen| https://gist.github.com/verdurin/ec4ecbbbe37c7ae1f4a79c34dbdb6793...

9.8CVSS5.8AI score0.28517EPSS

Exploits0References1

Circl•added 2026/02/27 7:25 a.m.•3 views

CVE-2002-1614

creationtimestamp| type| source ---|---|--- 2026-02-27 07:25:02+00:00| seen| https://gist.github.com/ghh-jb/61f35d015c4e180bbddcf324be113e26...

7.2CVSS5.9AI score0.00764EPSS

Exploits0References1

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 7 : kernel-3.10.0-1160.118.1.el7 (AXSA:2024-7723:11)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7723:11 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security fixes: kernel: use after free in unixstreamsendpage...

9.8CVSS6.9AI score0.00594EPSS

Exploits4References6

SUSE CVE•added 2025/12/12 1:24 a.m.•1 views

SUSE CVE-2002-0657

Buffer overflow in OpenSSL 0.9.7 before 0.9.7-beta3, with Kerberos enabled, allows attackers to execute arbitrary code via a long master key...

7.5CVSS8.1AI score0.03678EPSS

Exploits0References3

RedhatCVE•added 2025/11/17 9:7 a.m.•3 views

CVE-2021-4467

Positive Technologies MaxPatrol 8 and XSpider contain a remote denial-of-service vulnerability in the client communication service on TCP port 2002. The service generates a new session identifier for each incoming connection without adequately limiting concurrent requests. An unauthenticated remo...

8.7CVSS7.3AI score0.0015EPSS

Exploits0References1

Vulnrichment•added 2025/11/14 10:51 p.m.•4 views

CVE-2021-4467 Positive Technologies MaxPatrol 8 & XSpider Remote DoS

8.7CVSS6.8AI score0.0015EPSS

Exploits0References4

CVE•added 2025/11/14 10:51 p.m.•14 views

CVE-2021-4467

CVE-2021-4467 affects Positive Technologies MaxPatrol 8 and XSpider, where the client communication service listening on TCP port 2002 accepts new session IDs per connection without adequately throttling concurrent requests. An unauthenticated attacker could issue repeated HTTPS requests to cause...

8.7CVSS6.8AI score0.0015EPSS

Exploits0References4