CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Cvelist•added 2026/05/12 4:58 p.m.•27 views

CVE-2026-34347 Windows Win32k Elevation of Privilege Vulnerability

...

7CVSS0.00045EPSS

Exploits0References1

Vulnrichment•added 2026/05/12 4:58 p.m.•5 views

CVE-2026-34347 Windows Win32k Elevation of Privilege Vulnerability

...

7CVSS5.8AI score0.00045EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:35 a.m.•5 views

CVE-2024-34347

@hoppscotch/cli is a CLI to run Hoppscotch Test Scripts in CI environments. Prior to 0.8.0, the @hoppscotch/js-sandbox package provides a Javascript sandbox that uses the Node.js vm module. However, the vm module is not safe for sandboxing untrusted Javascript code. This is because code inside th...

8.3CVSS8.2AI score0.00162EPSS

Exploits0References1

Circl•added 2024/04/22 4:8 p.m.•3 views

CVE-2024-34347

creationtimestamp| type| source ---|---|--- 2024-04-22 16:08:41+00:00| published-proof-of-concept| https://github.com/hoppscotch/hoppscotch/security/advisories/GHSA-qmmm-73r2-f8xr...

8.3CVSS7.2AI score0.00162EPSS

Exploits0References1

Cvelist•added 2023/07/10 6:59 p.m.•13 views

CVE-2023-34347 Delta Electronics InfraSuite Device Master Deserialization of Untrusted Data

Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contains classes that cannot be deserialized, which could allow an attack to remotely execute arbitrary code...

9.8CVSS9.8AI score0.00166EPSS

Exploits0References1

Vulnrichment•added 2023/07/10 6:59 p.m.•12 views

CVE-2023-34347 Delta Electronics InfraSuite Device Master Deserialization of Untrusted Data

Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contains classes that cannot be deserialized, which could allow an attack to remotely execute arbitrary code...

9.8CVSS7.4AI score0.00166EPSS

Exploits0References1

CVE•added 2023/07/10 6:59 p.m.•43 views

CVE-2023-34347

Delta Electronics InfraSuite Device Master is affected by CVE-2023-34347. Versions prior to 1.0.7 contain classes that cannot be deserialized, enabling remote code execution via deserialization of untrusted data. The vulnerability affects the Device Master’s deserialization mechanism and is corro...

9.8CVSS9.7AI score0.00166EPSS

Exploits0References1Affected Software1

OSV•added 2022/08/22 3:15 p.m.•0 views

CVE-2022-34347

Cross-Site Request Forgery CSRF vulnerability in W3 Eden Download Manager plugin = 3.2.48 at WordPress...

8.8CVSS5.8AI score0.00109EPSS

Exploits0References2

NVD•added 2022/08/22 3:15 p.m.•9 views

CVE-2022-34347

Cross-Site Request Forgery CSRF vulnerability in W3 Eden Download Manager plugin = 3.2.48 at WordPress...

8.8CVSS0.00109EPSS

Exploits0References2

Vulnrichment•added 2022/08/22 2:47 p.m.•6 views

CVE-2022-34347 WordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in W3 Eden Download Manager plugin = 3.2.48 at WordPress...

4.2CVSS5.8AI score0.00109EPSS

Exploits0References2

CVE•added 2022/08/22 2:47 p.m.•80 views

CVE-2022-34347

CVE-2022-34347 affects the WordPress Download Manager plugin (W3 Eden) up to version 3.2.48. The issue is a Cross-Site Request Forgery (CSRF) vulnerability in the plugin, where certain admin actions (e.g., clearing cache/stats, updating template status) could be triggered by an attacker when a lo...

8.8CVSS6.5AI score0.00109EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2022/04/06 12:0 a.m.•88 views

QNAP QTS / QuTS hero Information Disclosure (QSA-21-53)

The version of QNAP QTS or QuTS hero on the remote host is affected by an information disclosure vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenable, Inc...

5.6AI score

Exploits0References2

Cvelist•added 1976/01/01 12:0 a.m.•16 views

CVE-2025-34347

...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by