CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CVE-2026-33966

creationtimestamp| type| source ---|---|--- 2026-06-02 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/samsung-products-multiple-vulnerabilities20260603...

5.8AI score

Exploits0References1

Tenable Nessus•added 2025/09/10 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2021-33966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross site scripting XSS vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page...

5.4CVSS5.9AI score0.00271EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 7:49 p.m.•5 views

CVE-2021-33966

Cross site scripting XSS vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page...

5.4CVSS6.1AI score0.00271EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 2:47 a.m.•3 views

CVE-2024-33966

SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in it through the following 'xtsearch' in...

9.8CVSS9.5AI score0.00175EPSS

Exploits0References1

Circl•added 2024/08/06 3:0 p.m.•0 views

CVE-2024-33966

creationtimestamp| type| source ---|---|--- 2024-08-06 15:00:43+00:00| seen| https://t.me/cvedetector/2561...

9.8CVSS4.8AI score0.00175EPSS

Exploits0References1

CVE•added 2023/05/31 5:15 p.m.•45 views

CVE-2023-33966

Deno 1.34.0 and deno_runtime 0.114.0 allow outbound HTTP requests via built-in node:http/node:https without checking the network allow-list. This affects dependencies using these modules. The issue is patched in Deno v1.34.1 and deno_runtime 0.114.1; update all affected installations. Deno Deploy...

9.8CVSS9.2AI score0.00332EPSS

Exploits0References2Affected Software2

Vulnrichment•added 2023/05/31 5:15 p.m.•13 views

CVE-2023-33966 Deno missing "--allow-net" permission check for built-in Node modules

Deno is a runtime for JavaScript and TypeScript. In deno 1.34.0 and denoruntime 0.114.0, outbound HTTP requests made using the built-in node:http or node:https modules are incorrectly not checked against the network permission allow list --allow-net. Dependencies relying on these built-in modules...

8.6CVSS9.4AI score0.00332EPSS

Exploits0References2

Circl•added 2022/01/21 10:13 p.m.•0 views

CVE-2021-33966

creationtimestamp| type| source ---|---|--- 2022-01-21 22:13:38+00:00| seen| https://t.me/cibsecurity/36048...

5.4CVSS5.5AI score0.00271EPSS

Exploits1References1

OSV•added 2022/01/21 7:15 p.m.•11 views

CVE-2021-33966

Cross site scripting XSS vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page...

5.4CVSS6.2AI score

Exploits0References1

UbuntuCve•added 2022/01/21 7:15 p.m.•11 views

CVE-2021-33966

Cross site scripting XSS vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page...

5.4CVSS6.3AI score0.00271EPSS

Exploits1References2

Debian CVE•added 2022/01/21 6:55 p.m.•17 views

CVE-2021-33966

Removed by vendor...

5.4CVSS5.5AI score0.00271EPSS

Exploits1

CVE•added 2022/01/21 6:55 p.m.•44 views

CVE-2021-33966

Spotweb 1.4.9 contains a Cross-Site Scripting (XSS) vulnerability that allows authenticated attackers to execute arbitrary code via a crafted GET request to the login page. The issue is documented across multiple feeds (NVD entry CVE-2021-33966 and related sources) with a confirmed XSS vector on ...

5.4CVSS5.4AI score0.00271EPSS

Exploits1References1Affected Software1

Cvelist•added 1976/01/01 12:0 a.m.•5 views

CVE-2022-33966

...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by