CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

65 matches found

CNNVD•added 2026/04/27 12:0 a.m.•6 views

Apache Camel 安全漏洞

Apache Camel is an open-source integration framework based on the Enterprise Integration Pattern EIP, developed by the Apache Foundation in the United States. This framework provides implementations of Java objects following the EIP pattern, and routing and mediation rules are configured through...

10CVSS6.1AI score0.06138EPSS

Exploits1References1

RedhatCVE•added 2026/02/11 7:44 p.m.•3 views

CVE-2026-26003

FastGPT is an AI Agent building platform. From 4.14.0 to 4.14.5, attackers can directly access the plugin system through FastGPT/api/plugin/xxx without authentication, thereby threatening the plugin system. This may cause the plugin system to crash and the loss of plugin installation status, but ...

6.9CVSS5.5AI score0.00099EPSS

Exploits0References1

NVD•added 2026/02/10 6:16 p.m.•2 views

CVE-2026-26003

6.9CVSS0.00099EPSS

Exploits0References3

ATTACKERKB•added 2026/02/10 5:52 p.m.•1 views

CVE-2026-26003

6.9CVSS5.5AI score0.00099EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2026/02/10 12:0 a.m.•4 views

PT-2026-7419

Name of the Vulnerable Software and Affected Versions FastGPT versions 4.14.0 through 4.14.5 Description FastGPT, an AI Agent building platform, has an issue where the plugin system can be accessed directly through the API endpoint /api/plugin/xxx without authentication. This affects versions...

6.9CVSS5.5AI score0.00099EPSS

Exploits0References7

RedhatCVE•added 2025/12/10 3:13 p.m.•2 views

CVE-2025-63062

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AndonDesign UDesign Core u-design-core allows PHP Local File Inclusion.This issue affects UDesign Core: from n/a through = 4.14.0...

7.5CVSS7.1AI score0.00038EPSS

Exploits0References1

Cvelist•added 2025/12/09 2:52 p.m.•20 views

CVE-2025-63062 WordPress UDesign Core plugin <= 4.14.0 - Local File Inclusion vulnerability

7.5CVSS0.00038EPSS

Exploits0References1

RedhatCVE•added 2025/10/23 3:13 p.m.•2 views

CVE-2025-53236

Missing Authorization vulnerability in AndonDesign UDesign Core u-design-core allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UDesign Core: from n/a through = 4.14.0...

6.3CVSS7AI score0.0005EPSS

Exploits0References1

NVD•added 2025/10/22 3:15 p.m.•2 views

CVE-2025-53236

6.3CVSS0.0005EPSS

Exploits0References1

Positive Technologies•added 2025/10/22 12:0 a.m.•3 views

PT-2025-43253

Name of the Vulnerable Software and Affected Versions AndonDesign UDesign Core versions through 4.14.0 Description An issue exists in AndonDesign UDesign Core u-design-core related to incorrectly configured access control security levels, allowing for missing authorization. The issue allows...

6.3CVSS6.6AI score0.0005EPSS

Exploits0References4

Positive Technologies•added 2025/10/22 12:0 a.m.•3 views

PT-2025-43252

Name of the Vulnerable Software and Affected Versions AndonDesign UDesign Core versions through 4.14.0 Description A Reflected Cross-site Scripting XSS issue exists in AndonDesign UDesign Core u-design-core. This occurs due to improper neutralization of input during web page generation. The issue...

7.1CVSS6.4AI score0.0003EPSS

Exploits0References4