CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Circl•added 2026/04/23 7:40 p.m.•2 views

CVE-2026-23751

creationtimestamp| type| source ---|---|--- 2026-04-23 19:40:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk6rcooms32e 2026-04-24 15:21:36+00:00| published-proof-of-concept| Telegram/l8-tUjdZo5KblLOe421TQB8MZuX2H9CaOdWKzaRMJrauLgw...

9.8CVSS4.8AI score0.00883EPSS

Exploits0References1

ATTACKERKB•added 2026/04/23 2:46 p.m.•1 views

CVE-2026-23751

Kofax Capture, now referred to as Tungsten Capture, version 6.0.0.0 other versions may be affected exposes a deprecated .NET Remoting HTTP channel on port 2424 via the Ascent Capture Service that is accessible without authentication and uses a default, publicly known endpoint identifier. An...

9.8CVSS6.2AI score0.00883EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2025/05/23 9:42 a.m.•5 views

CVE-2024-23751

LlamaIndex aka llamaindex through 0.9.34 allows SQL injection via the Text-to-SQL feature in NLSQLTableQueryEngine, SQLTableRetrieverQueryEngine, NLSQLRetriever, RetrieverQueryEngine, and PGVectorSQLQueryEngine. For example, an attacker might be able to delete this year's student records via "Dro...

9.8CVSS7.7AI score0.00654EPSS

Exploits1References1

NVD•added 2025/02/14 1:15 p.m.•9 views

CVE-2025-23751

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Think201 Data Dash data-dash allows Reflected XSS.This issue affects Data Dash: from n/a through = 1.2.3...

7.1CVSS0.0026EPSS

Exploits0References1

Cvelist•added 2025/02/14 12:44 p.m.•15 views

CVE-2025-23751 WordPress Data Dash plugin <= 1.2.3 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.0026EPSS

Exploits0References1

Circl•added 2024/01/22 2:21 a.m.•5 views

CVE-2024-23751

creationtimestamp| type| source ---|---|--- 2024-01-22 02:21:34+00:00| seen| https://t.me/ctinow/170953 2024-02-16 08:16:37+00:00| seen| https://t.me/ctinow/186171...

9.8CVSS8.7AI score0.00654EPSS

Exploits1References2

Circl•added 2023/02/02 12:16 a.m.•3 views

CVE-2023-23751

creationtimestamp| type| source ---|---|--- 2023-02-02 00:16:32+00:00| seen| https://t.me/cibsecurity/57357 2025-03-27 05:26:24+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9027...

4.3CVSS4.6AI score0.00444EPSS

Exploits0References2

Tenable Nessus•added 2023/02/02 12:0 a.m.•42 views

Joomla 4.0.x < 4.2.7 Multiple Vulnerabilities (5876-joomla-4-2-7-security-and-bug-fix-release)

According to its self-reported version, the instance of Joomla! running on the remote web server is 4.0.x prior to 4.2.7. It is, therefore, affected by multiple vulnerabilities. - An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the...

6.3CVSS5.7AI score0.00444EPSS

Exploits0References5

CVE•added 2023/02/01 9:12 p.m.•87 views

CVE-2023-23751

CVE-2023-23751 affects Joomla! 4.0.0–4.2.4 and arises from a missing ACL check in com_actionlogs, enabling non super-admin users to access it. The connected sources (OSV, NVD, and security trackers) confirm a privilege/ACL bypass rather than a bypass tied to authentication tokens or input handlin...

4.3CVSS4.4AI score0.00444EPSS

Exploits0References1Affected Software1