CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

106 matches found

Circl•added 2026/05/13 8:0 p.m.•3 views

CVE-2018-6400

creationtimestamp| type| source ---|---|--- 2026-05-13 20:00:00+00:00| seen| https://jvn.jp/en/jp/JVN14434132...

7.8CVSS7.1AI score0.00051EPSS

Exploits2References1

Vulnrichment•added 2026/04/04 1:51 p.m.•2 views

CVE-2018-25247 MyBB Like Plugin 3.0.0 Cross-Site Scripting via User Profiles

MyBB Like Plugin 3.0.0 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts by creating posts or threads with unvalidated subject content. Attackers can craft post subjects containing script tags that execute when other users view the attacker's profile,...

6.1CVSS5.7AI score0.00037EPSS

Exploits1References3

ATTACKERKB•added 2026/02/20 11:9 p.m.•1 views

CVE-2018-2281

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2018. Notes: none...

5.5AI score

Exploits0References1

Circl•added 2026/01/24 9:26 p.m.•1 views

CVE-2018-1999047

creationtimestamp| type| source ---|---|--- 2026-01-24 21:26:55+00:00| seen| https://gist.github.com/alon710/9447fb06e9eeb4392e8558e2b2ace600 2026-01-24 22:42:17+00:00| seen| https://gist.github.com/alon710/c7db138b73ab52f04b6ac3e603c851cb...

6.5CVSS6.3AI score0.00114EPSS

Exploits0References2

Circl•added 2025/12/13 8:32 p.m.•1 views

CVE-2018-1000873

creationtimestamp| type| source ---|---|--- 2025-12-13 20:32:11+00:00| seen| https://gist.github.com/might-might/40e680f1f9ce10e8b91c6629d1f0fec9 2025-12-13 20:32:46+00:00| seen| https://gist.github.com/might-might/7893a493252338fe360077f6f10e55e2 2026-01-14 22:24:35+00:00| seen|...

6.5CVSS6.9AI score0.02189EPSS

Exploits1References3

Tenable Nessus•added 2025/08/20 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-6077

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Displacement map filters being applied to cross-origin images in Blink SVG rendering in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak...

6.5CVSS7.4AI score0.00692EPSS

Exploits0References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-4386

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari...

8.8CVSS7.2AI score0.26712EPSS

Exploits6References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6135

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lack of clearing the previous site before loading alerts from a new one in Blink in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform...

6.5CVSS7.3AI score0.0079EPSS

Exploits0References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-1999012

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FFmpeg before commit 9807d3976be0e92e4ece3b4b1701be894cd7c2e1 contains a CWE-835: Infinite loop vulnerability in pva format demuxer that can result in a...

7.1CVSS6.5AI score0.00586EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 12:44 p.m.•5 views

CVE-2018-8047

vtiger CRM 7.0.1 is affected by one reflected Cross-Site Scripting XSS vulnerability affecting version 7.0.1 and probably prior versions. This vulnerability could allow remote unauthenticated attackers to inject arbitrary web script or HTML via index.php?module=Contacts=List app parameter...

6.1CVSS5.8AI score0.00267EPSS

Exploits0References1

Circl•added 2025/05/06 7:21 p.m.•0 views

CVE-2018-6336

creationtimestamp| type| source ---|---|--- 2025-05-06 19:21:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15200...

7.8CVSS7.9AI score0.00094EPSS

Exploits1References1

Vulnrichment•added 2025/03/11 8:42 p.m.•7 views

CVE-2025-2018 Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

7.8CVSS7.5AI score0.0017EPSS

Exploits0References1

Circl•added 2024/03/19 7:36 a.m.•1 views

CVE-2018-14476

creationtimestamp| type| source ---|---|--- 2024-03-19 07:36:47+00:00| seen| https://t.me/ctinow/211207...

6.1CVSS6.1AI score0.00328EPSS

Exploits2References1

Circl•added 2023/12/11 1:8 p.m.•1 views

CVE-2018-1212

creationtimestamp| type| source ---|---|--- 2023-12-11 13:08:48+00:00| seen| https://t.me/arpsyndicate/1740...

9CVSS8.1AI score0.00886EPSS

Exploits0References1

Circl•added 2023/11/10 3:34 p.m.•0 views

CVE-2018-3181

creationtimestamp| type| source ---|---|--- 2023-11-10 15:34:11+00:00| published-proof-of-concept| https://t.me/CNArsenal/1479 2023-11-11 07:49:11+00:00| published-proof-of-concept| https://t.me/v3n0mhack/301...

5.5CVSS6.2AI score0.0015EPSS

Exploits0References2

Circl•added 2023/09/14 10:34 p.m.•1 views

CVE-2018-4780

creationtimestamp| type| source ---|---|--- 2023-09-14 22:34:54+00:00| seen| https://t.me/cibsecurity/70512...

4.8AI score

Exploits0References1

Circl•added 2023/09/05 8:13 p.m.•0 views

CVE-2018-20305

creationtimestamp| type| source ---|---|--- 2023-09-05 20:13:03+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/138...

9.8CVSS8.7AI score0.1199EPSS

Exploits1References1