CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

CVE•added 2026/03/25 4:14 p.m.•7 views

CVE-2026-22502

CVE-2026-22502 (WordPress Mr. Cobbler theme

8.1CVSS5.8AI score0.00504EPSS

Exploits0References1

Vulnrichment•added 2026/03/25 4:14 p.m.•3 views

CVE-2026-22502 WordPress Mr. Cobbler theme <= 1.1.9 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Mr. Cobbler mr-cobbler allows PHP Local File Inclusion.This issue affects Mr. Cobbler: from n/a through = 1.1.9...

8.1CVSS5.8AI score0.00504EPSS

Exploits0References1

Circl•added 2025/01/07 4:17 p.m.•4 views

CVE-2025-22502

creationtimestamp| type| source ---|---|--- 2025-01-07 16:17:26+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf62eepkpl2k 2025-01-07 17:38:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/479...

7.6CVSS8.7AI score0.00564EPSS

Exploits0References2

Cvelist•added 2025/01/07 2:57 p.m.•16 views

CVE-2025-22502 WordPress MindValley Super PageMash Plugin <= 1.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Mindvalley MindValley Super PageMash mindvalley-pagemash allows SQL Injection.This issue affects MindValley Super PageMash: from n/a through = 1.1...

7.6CVSS0.00564EPSS

Exploits0References1

NVD•added 2024/01/16 6:15 p.m.•7 views

CVE-2023-22502

Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used...

6.6AI score

Exploits0

IBM Security Bulletins•added 2022/06/22 9:43 p.m.•33 views

Security Bulletin: IBM Robotic Process Automation is vulnerable to cross-site scripting (CVE-2022-22502)

Summary Security Bulletin: IBM Robotic Process Automation is vulnerable to cross-site scripting CVE-2022-22502 Vulnerability Details CVEID: CVE-2022-22502 DESCRIPTION: IBM Robotic Process Automation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScri...

5.4CVSS1.7AI score0.00423EPSS

Exploits0Affected Software1

Rapid7 Blog•added 2021/05/07 7:41 p.m.•175 views

Metasploit Wrap-Up

Two new Active Directory attacks This week we added a pair of new post-exploitation modules from community contributor timb-machine. Both modules target UNIX machines running SSSD or One Identity's Vintela Authentication Services VAS as Active Directory integration solutions. The new UNIX Gather...

10CVSS0.9674EPSS

Exploits21

Packet Storm•added 2021/04/30 12:0 a.m.•501 views

Micro Focus Operations Bridge Reporter Unauthenticated Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Micro Focus Operations Bridge Reporter Unauthenticated Command Injection', 'Description' = %q This module exploits a command injection...

10CVSS0.4AI score0.9674EPSS

Exploits4

0day.today•added 2021/04/30 12:0 a.m.•156 views

Micro Focus Operations Bridge Reporter Unauthenticated Command Injection Exploit

This Metasploit module exploits a command injection vulnerability on login that affects Micro Focus Operations Bridge Reporter on Linux, versions 10.40 and below. It is a straight up command injection, with little escaping required, and it works before authentication. This module has been tested ...

9.8CVSS9.7AI score0.9674EPSS

Exploits4

Check Point Advisories•added 2021/04/05 12:0 a.m.•6 views

Micro Focus Operations Bridge Reporter Remote Code Execution (CVE-2021-22502)

A remote code execution vulnerability exists in Micro Focus Operations Bridge Reporter. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS5.3AI score0.9674EPSS

Exploits4

The Hacker News•added 2021/03/16 10:32 a.m.•597 views

New Mirai Variant and ZHtrap Botnet Malware Emerge in the Wild

Cybersecurity researchers on Monday disclosed a new wave of ongoing attacks exploiting multiple vulnerabilities to deploy new Mirai variants on internet connected devices. "Upon successful exploitation, the attackers try to download a malicious shell script, which contains further infection...

10CVSS0.5AI score0.99975EPSS

Exploits18

Circl•added 2021/02/09 12:39 a.m.•4 views

CVE-2021-22502

creationtimestamp| type| source ---|---|--- 2021-02-09 00:39:10+00:00| seen| https://t.me/cibsecurity/23262 2021-03-17 11:01:15+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2925 2021-04-29 18:16:56+00:00| seen|...

10CVSS7.5AI score0.9674EPSS

In wildExploits4References7

NVD•added 2021/02/08 10:15 p.m.•22 views

CVE-2021-22502

10CVSS0.9674EPSS

Exploits4References5

Cvelist•added 2021/02/08 9:12 p.m.•43 views

CVE-2021-22502

10AI score0.9674EPSS

Exploits4References4

CVE•added 2021/02/08 9:12 p.m.•1139 views

CVE-2021-22502

Micro Focus Operations Bridge Reporter 10.40 is vulnerable to unauthenticated remote code execution via a login command injection vulnerability. The Nuclei template and Metasploit module describe an unauthenticated path to run arbitrary commands on the OBR server, potentially enabling full system...

10CVSS9.6AI score0.9674EPSS

In wildExploits4References5Affected Software1

ATTACKERKB•added 2021/02/08 12:0 a.m.•62 views

CVE-2021-22502

Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter OBR product, affecting version 10.40. The vulnerability could be exploited to allow Remote Code Execution on the OBR server. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Valu...

10CVSS9.2AI score0.9674EPSS

In wildExploits4References5

Cvelist•added 1976/01/01 12:0 a.m.•15 views

CVE-2023-22502

...

Exploits0

CVE•added 1976/01/01 12:0 a.m.•43 views

CVE-2023-22502

CVE-2023-22502 entry is rejected/not used per the Initial Description.

6.9AI score

Exploits0

Rows per page