CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/02/20 7:21 a.m.•2 views

CVE-2026-0561

The Shield Security plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'message' parameter in all versions up to, and including, 21.0.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary we...

6.1CVSS5.8AI score0.00111EPSS

NVD•added 2026/02/19 7:17 a.m.•1 views

CVE-2026-0561

6.1CVSS0.00111EPSS

Vulnrichment•added 2026/02/19 4:36 a.m.•1 views

CVE-2026-0561 Shield Security <= 21.0.8 - Unauthenticated Reflected Cross-Site Scripting via 'message' Parameter

6.1CVSS5.8AI score0.00111EPSS

Cvelist•added 2026/02/19 4:36 a.m.•27 views

CVE-2026-0561 Shield Security <= 21.0.8 - Unauthenticated Reflected Cross-Site Scripting via 'message' Parameter

6.1CVSS0.00111EPSS

RedHat Linux•added 2025/11/17 9:55 a.m.•2 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS7.2AI score0.00049EPSS

RedHat Linux•added 2025/10/23 8:23 p.m.•6 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

7.5CVSS7.2AI score0.00049EPSS

RedHat Linux•added 2025/10/23 8:11 p.m.•3 views

openjdk: Enhance certificate handling (Oracle CPU 2025-10)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracl...

5.9CVSS7.2AI score0.00068EPSS

RedHat Linux•added 2025/10/23 8:4 p.m.•3 views

openjdk: Enhance certificate handling (Oracle CPU 2025-10)

5.9CVSS7.2AI score0.00068EPSS

RedhatCVE•added 2025/10/22 8:19 p.m.•1 views

CVE-2025-61755

Vulnerability in the Oracle GraalVM for JDK product of Oracle Java SE component: Compiler. Supported versions that are affected are Oracle GraalVM for JDK: 17.0.16 and 21.0.8. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromi...

3.7CVSS4.7AI score0.0003EPSS

OSV•added 2025/10/21 8:20 p.m.•1 views

CVE-2025-61755

3.7CVSS5.8AI score0.0003EPSS

NVD•added 2025/10/21 8:20 p.m.•1 views

CVE-2025-61755

3.7CVSS0.0003EPSS

OSV•added 2025/10/21 8:20 p.m.•0 views

UBUNTU-CVE-2025-61748

3.7CVSS6.7AI score0.00027EPSS

Exploits0References8

RedHat Linux•added 2025/08/11 9:25 p.m.•1 views

Important: Red Hat Security Advisory: java-21-ibm-semeru-certified-jdk bug fix and enhancement update

An update for java-21-ibm-semeru-certified-jdk is now available for Red Hat Enterprise Linux 10. This update upgrades the IBM Semeru Runtime Certified Edition 21 runtime environment to version 21.0.8+9. Security Fixes: CVE-2025-30749 CVE-2025-30754 CVE-2025-50059 CVE-2025-50106 For more details...

8.6CVSS6.7AI score0.02123EPSS

Exploits1References1

OSV•added 2025/07/20 12:0 a.m.•0 views

OPENSUSE-SU-2025:15362-1 java-21-openjdk-21.0.8.0-1.1 on GA media

These are all security issues fixed in the java-21-openjdk-21.0.8.0-1.1 package on the GA media of openSUSE Tumbleweed...

8.6CVSS6.7AI score0.02123EPSS

Exploits1References4

Snyk•added 2025/07/15 8:0 p.m.•2 views

Deserialization of Untrusted Data

Overview org.graalvm.sdk:graal-sdk is a high-performance JDK distribution designed to accelerate the execution of applications written in Java and other JVM languages along with support for JavaScript, Ruby, Python, and a number of other popular languages. Affected versions of this package are...

9.2CVSS7.8AI score0.02123EPSS

Exploits1References2

Positive Technologies•added 2025/01/01 12:0 a.m.•3 views

PT-2025-42954

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25 Oracle GraalVM for JDK versions 17.0.16 and 21.0.8 Oracle GraalVM Enterprise Edition version 21.3.15 Description A difficult to exploit issue exists in Oracle Java SE,...

9.8CVSS7.2AI score0.00068EPSS

Exploits0References123

Positive Technologies•added 2025/01/01 12:0 a.m.•2 views

PT-2025-42963

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25 Oracle GraalVM for JDK versions 17.0.16 and 21.0.8 Oracle GraalVM Enterprise Edition version 21.3.15 Description An issue exists in the Oracle Java SE, Oracle GraalVM for...

9.8CVSS7.6AI score0.00068EPSS

Exploits0References118

SUSE CVE•added 2023/02/15 3:27 a.m.•1 views

SUSE CVE-2022-24889

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Prior to versions 21.0.8, 22.2.4, and 23.0.1, it is possible to trick administrators into enabling "recommended" apps for the Nextcloud server that they do not need, thus expanding their attack surfac...

4.3CVSS4.5AI score0.0016EPSS

Exploits1References3

OpenVAS•added 2022/05/23 12:0 a.m.•13 views

Nextcloud Server < 20.0.14.4, 21.x < 21.0.8, 22.x < 22.2.4, 23.x < 23.0.1 Control Character Filtering Vulnerability (GHSA-w3h6-p64h-q9jp)

Nextcloud Server is prone to a control character filtering vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS5AI score0.00382EPSS