CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

105 matches found

OSV•added 2026/05/16 8:16 p.m.•2 views

MINI-7J8M-3694-VQ7M

Bulletin has no description...

5.7AI score

Exploits0

EUVD•added 2026/01/21 6:31 a.m.•1 views

EUVD-2026-3694

Not used...

5.3AI score

Exploits0References1

Tenable Nessus•added 2026/01/16 12:0 a.m.•2 views

MiracleLinux 7 : pidgin-2.10.11-5.el7 (AXSA:2017-1913:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2017-1913:01 advisory. Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell...

9.8CVSS7AI score0.02136EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-3694

Malicious code in bioql PyPI...

8.7CVSS8.3AI score0.01321EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 11:18 p.m.•3 views

CVE-2022-3694

The Syncee WordPress plugin before 1.0.10 leaks the administrator token that can be used to take over the administrator's account...

7.5CVSS6.8AI score0.00817EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 9:29 p.m.•5 views

CVE-2021-3694

LedgerSMB does not sufficiently HTML-encode error messages sent to the browser. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure...

9.6CVSS7.2AI score0.00252EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:36 p.m.•3 views

CVE-2020-3694

u'Use out of range pointer issue can occur due to incorrect buffer range check during the execution of qseecom' in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Voice & Music in Bitra, Nicobar, Saipan, SM6150, SM8150, SM8250, SXR2130...

7.8CVSS7.5AI score0.00048EPSS

Exploits0

RedhatCVE•added 2025/05/22 12:22 p.m.•6 views

CVE-2012-3694

WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to obtain sensitive information about full pathnames via a crafted web site...

4.3CVSS5.7AI score0.00446EPSS

Exploits0References1

Circl•added 2025/04/16 5:43 p.m.•0 views

CVE-2025-3694

creationtimestamp| type| source ---|---|--- 2025-04-16 17:43:28+00:00| seen| https://t.me/cvedetector/23107...

9.8CVSS7.3AI score0.00242EPSS

Exploits1References1

NVD•added 2025/04/16 3:16 p.m.•13 views

CVE-2025-3694

A vulnerability classified as critical has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part of the component Login Handler. The manipulation of the argument loginemail leads to sql injection. It is possible to initiate the attack remotely...

9.8CVSS0.00242EPSS

Exploits1References5

Cvelist•added 2025/04/16 2:31 p.m.•11 views

CVE-2025-3694 SourceCodester Web-based Pharmacy Product Management System Login sql injection

7.5CVSS0.00242EPSS

Exploits1References5

Vulnrichment•added 2025/04/16 2:31 p.m.•4 views

CVE-2025-3694 SourceCodester Web-based Pharmacy Product Management System Login sql injection

7.5CVSS7.7AI score0.00242EPSS

Exploits1References5

RedhatCVE•added 2025/03/04 6:51 p.m.•5 views

CVE-2023-3694

A vulnerability, which was classified as critical, has been found in SourceCodester/projectworlds House Rental and Property Listing 1.0. This issue affects some unknown processing of the file /index.php. The manipulation of the argument keywords/location leads to sql injection. The attack may be...

9.8CVSS7.3AI score0.00067EPSS

Exploits1References6

OpenVAS•added 2024/10/17 12:0 a.m.•13 views

openSUSE: Security Advisory for the Linux Kernel (Live Patch 10 for SLE 15 SP5) (SUSE-SU-2024:3694-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.0072EPSS

Exploits1References2

CVE•added 2023/07/16 11:31 p.m.•45 views

CVE-2023-3694

CVE-2023-3694 affects SourceCodester/projectworlds House Rental and Property Listing 1.0. A SQL injection vulnerability exists in the index.php handling of the parameters keywords/location, due to unsafely processed user input. This enables remote exploitation and potentially unauthorized disclos...

9.8CVSS8.3AI score0.00067EPSS

Exploits1References4Affected Software1

Cvelist•added 2023/07/16 11:31 p.m.•10 views

CVE-2023-3694 SourceCodester/projectworlds House Rental and Property Listing index.php sql injection

6.5CVSS10AI score0.00067EPSS

Exploits1References4

NVD•added 2023/03/03 6:15 p.m.•7 views

CVE-2018-3694

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2018. Notes: none...

6.5AI score

Exploits0

Circl•added 2022/12/05 8:40 p.m.•0 views

CVE-2022-3694

creationtimestamp| type| source ---|---|--- 2022-12-05 20:40:13+00:00| seen| https://t.me/cibsecurity/54009...

7.5CVSS7.3AI score0.00817EPSS

Exploits1References1

CVE•added 2022/12/05 4:50 p.m.•53 views

CVE-2022-3694

CVE-2022-3694 (Syncee WordPress plugin) : The Syncee WordPress plugin prior to version 1.0.10 leaks the administrator token, enabling an attacker to take over the administrator account. Affected software: Syncee WordPress plugin versions before 1.0.10. Root cause: disclosure of an authentication ...

7.5CVSS7.5AI score0.00817EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2022/12/05 4:50 p.m.•5 views

CVE-2022-3694 Syncee - Global Dropshipping < 1.0.10 - Authentication Token Disclosure

The Syncee WordPress plugin before 1.0.10 leaks the administrator token that can be used to take over the administrator's account...

6.8AI score0.00817EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by