CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

RedhatCVE•added 2026/05/05 8:21 p.m.•4 views

CVE-2026-7688

A vulnerability was identified in Dolibarr ERP CRM up to 23.0.2. This affects the function checkValForAPI of the file htdocs/expedition/class/expedition.class.php of the component Shipments API Endpoint. The manipulation of the argument fields leads to sql injection. The attack is possible to be...

5CVSS5.5AI score0.00028EPSS

Exploits0References1

UbuntuCve•added 2026/05/03 10:16 a.m.•2 views

CVE-2026-7688

5CVSS5.4AI score0.00028EPSS

Exploits0References1

Tenable Nessus•added 2025/08/25 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2018-7688

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A missing permission check in the review handling of openSUSE Open Build Service before 2.9.3 allowed all authenticated users to modify sources in projects wher...

7.1CVSS6.7AI score0.00165EPSS

Exploits0References2

Patchstack•added 2025/08/15 11:21 p.m.•5 views

WordPress Add User Meta plugin <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability discovered by johska in WordPress Plugin Add User Meta versions = 1.0.1...

6.1CVSS5.6AI score0.00025EPSS

Exploits0References1Affected Software1

Circl•added 2025/08/15 9:6 a.m.•0 views

CVE-2025-7688

creationtimestamp| type| source ---|---|--- 2025-08-15 09:06:04+00:00| seen| Telegram/u7D7NpNU7NTldUTQjcgkxVFGcq8oiXUSuhjPBH0vZrzuK6I...

6.1CVSS4.8AI score0.00025EPSS

Exploits0

OSV•added 2025/08/14 6:52 p.m.•0 views

MAL-2025-7688 Malicious code in @crabas0npm2/optio-id-animi (npm)

The package @crabas0npm2/optio-id-animi was found to contain malicious code...

7.2AI score

Exploits0

Circl•added 2024/09/09 8:57 a.m.•1 views

CVE-2024-7688

creationtimestamp| type| source ---|---|--- 2024-09-09 08:57:41+00:00| seen| https://t.me/cvedetector/5097...

6.5CVSS4.8AI score0.00182EPSS

Exploits1References1

Cvelist•added 2024/09/09 6:0 a.m.•18 views

CVE-2024-7688 AZIndex <= 0.8.1 - Index Deletion via CSRF

The AZIndex WordPress plugin through 0.8.1 does not have CSRF checks in some places, which could allow attackers to make logged in admin delete arbitrary indexes via a CSRF attack...

0.00182EPSS

Exploits1References1

Patchstack•added 2024/09/09 12:0 a.m.•10 views

WordPress AZIndex Plugin <= 0.8.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software AZIndex Type Plugin Vulnerable versions = 0.8.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-7688 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID bdd657255bf1 Credits Bob Matyas Required privilege...

6.5CVSS6.7AI score0.00182EPSS

Exploits1References3Affected Software1

Wolfi•added 2021/09/08 8:14 p.m.•17 views

GHSA-CCW8-7688-VQX4 vulnerabilities

Vulnerabilities for packages: k3d...

5.8AI score

Exploits0

NVD•added 2020/07/01 5:15 p.m.•7 views

CVE-2020-7688

The issue occurs because tagName user input is formatted inside the exec function is executed without any checks...

8.4CVSS0.00191EPSS

Exploits1References3

Cvelist•added 2020/07/01 4:15 p.m.•10 views

CVE-2020-7688 Command Injection

The issue occurs because tagName user input is formatted inside the exec function is executed without any checks...

8.4CVSS8.4AI score0.00191EPSS

Exploits1References3

Packet Storm•added 2019/02/12 12:0 a.m.•75 views

LayerBB 1.1.2 Cross Site Scripting

Exploit Title: LayerBB 1.1.2 - Cross-Site Scripting Date: 11/19/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=28 Version: 1.1.2 Tested on: Ubuntu 18.04 CVE: CVE-2019-7688 1. Description: LayerBB is a free open-source...

6.8AI score

Exploits0

exploitpack•added 2019/02/12 12:0 a.m.•22 views

LayerBB 1.1.2 - Cross-Site Scripting

LayerBB 1.1.2 - Cross-Site Scripting Exploit Title: LayerBB 1.1.2 - Cross-Site Scripting Date: 11/19/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=28 Version: 1.1.2 Tested on: Ubuntu 18.04 CVE: CVE-2019-7688 1...

6.3AI score

Exploits0

Exploit DB•added 2019/02/12 12:0 a.m.•41 views

LayerBB 1.1.2 - Cross-Site Scripting

6.8AI score

Exploits0

0day.today•added 2019/02/12 12:0 a.m.•24 views

LayerBB 1.1.2 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: LayerBB 1.1.2 - Cross-Site Scripting Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://forum.layerbb.com/downloads.php?view=file&id=28 Version: 1.1.2 Tested on: Ubuntu 18.04 CVE: CVE-2019-7688 1...

0.1AI score

Exploits0

OSV•added 2018/06/07 1:29 p.m.•15 views

CVE-2018-7688

A missing permission check in the review handling of openSUSE Open Build Service before 2.9.3 allowed all authenticated users to modify sources in projects where they do not have write permissions...

6.5CVSS6.8AI score0.00165EPSS

Exploits0References3

CVE•added 2018/06/07 1:0 p.m.•54 views

CVE-2018-7688

CVE-2018-7688 describes a missing permission check in the review handling of openSUSE Open Build Service prior to version 2.9.3, which could allow any authenticated user to modify sources in projects where they lack write permissions. The vulnerability affects the Open Build Service workflow and ...

7.1CVSS6.4AI score0.00165EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2017/05/11 2:30 p.m.•1 views

CVE-2016-7688

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none...

5.8AI score

Exploits0References1

Cvelist•added 2017/05/11 2:1 p.m.•10 views

CVE-2016-7688

...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by