CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

OSV•added 2026/05/06 7:16 p.m.•1 views

DEBIAN-CVE-2026-7956

Use after free in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.8AI score0.00118EPSS

Exploits0References1

AlpineLinux•added 2026/05/06 6:12 p.m.•5 views

CVE-2026-7956

8.3CVSS5.8AI score0.00118EPSS

Exploits0

Circl•added 2026/05/06 6:0 p.m.•3 views

CVE-2026-7956

creationtimestamp| type| source ---|---|--- 2026-05-06 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260507 2026-05-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260508...

8.3CVSS5.7AI score0.00118EPSS

Exploits0References2

OSV•added 2026/03/13 10:41 a.m.•0 views

MINI-7956-JWWR-P6RC

Bulletin has no description...

5.9CVSS5.7AI score0.00029EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-7956

Malware in sbrugna...

10CVSS8.7AI score0.15419EPSS

Exploits0References11

Circl•added 2025/08/28 6:16 a.m.•0 views

CVE-2025-7956

creationtimestamp| type| source ---|---|--- 2025-08-28 06:16:49+00:00| seen| Telegram/3CMVVqxoRky4UEObeFAQQePEgsr-xzi1j7nC7gXtSOhhVc...

5.3CVSS4.8AI score0.00121EPSS

Exploits0

Patchstack•added 2025/08/28 12:14 a.m.•3 views

WordPress Ajax Search Lite plugin <= 4.13.1 - Missing Authorization to Unauthenticated Basic Information Exposure via ASL_Query in AJAX Search Handler vulnerability

Missing Authorization to Unauthenticated Basic Information Exposure via ASLQuery in AJAX Search Handler vulnerability discovered by stealthcopter in WordPress Plugin Ajax Search Lite versions = 4.13.1...

5.3CVSS6.6AI score0.00121EPSS

Exploits0References1Affected Software1

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-7956 Malicious code in @frozen-team-qa/playwright-helpers (npm)

The package @frozen-team-qa/playwright-helpers was found to contain malicious code...

7.2AI score

Exploits0

RedhatCVE•added 2025/05/22 4:50 p.m.•5 views

CVE-2020-7956

HashiCorp Nomad and Nomad Enterprise up to 0.10.2 incorrectly validated role/region associated with TLS certificates used for mTLS RPC, and were susceptible to privilege escalation. Fixed in 0.10.3...

9.8CVSS6.9AI score0.00244EPSS

Exploits0References1

NVD•added 2020/01/31 1:15 p.m.•14 views

CVE-2020-7956

9.8CVSS9.6AI score0.00244EPSS

Exploits0References2

OSV•added 2020/01/31 1:15 p.m.•13 views

CVE-2020-7956

9.8CVSS6.8AI score0.00244EPSS

Exploits0References2

CVE•added 2020/01/31 12:43 p.m.•60 views

CVE-2020-7956

CVE-2020-7956 affects HashiCorp Nomad and Nomad Enterprise up to 0.10.2. The root cause is incorrect validation of the role/region associated with TLS certificates used for mTLS RPC, which could lead to privilege escalation. A fix is available in version 0.10.3 (Nomad/Nomad Enterprise). The conne...

9.8CVSS9.4AI score0.00244EPSS

Exploits0References2Affected Software1

CVE•added 2019/07/18 9:47 p.m.•100 views

CVE-2019-7956

CVE-2019-7956 affects Adobe Dreamweaver direct download Windows installers (versions 19.0 and below, 18.0 and below). The vulnerability is insecure library loading (DLL hijacking) in the installer, enabling privilege escalation within the current user context. Connected sources corroborate the im...

7.8CVSS7.4AI score0.01124EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2019/07/12 12:0 a.m.•33 views

Adobe Dreamweaver 18.0 < 2018.0 / 19.0 < 2019.0 Privilege Escalation (APSB19-40)

The version of Adobe Dreamweaver installed on the remote Windows host is prior to 2018.0, 2019.0. It is, therefore, affected by a vulnerability as referenced in the APSB19-40 advisory. - Adobe Dreamweaver direct download installer versions 19.0 and below, 18.0 and below have an Insecure Library...

7.8CVSS7.6AI score0.01124EPSS

Exploits0References2

CVE•added 2018/12/04 6:0 p.m.•49 views

CVE-2018-7956

CVE-2018-7956 concerns Huawei VIP App (Malaysia) with versions before 4.0.5. The vulnerability enables brute-force attempts against the VIP App Web Services to disclose user information, an information-disclosure issue with a CVSS v3 base score of 5.3 (MEDIUM). The root cause is improper protecti...

5.3CVSS5.2AI score0.00111EPSS

Exploits0References1Affected Software1

CVE•added 2017/03/06 2:0 a.m.•21 views

CVE-2015-7956

CVE-2015-7956 is rejected/not used and does not represent an active vulnerability entry.

7.4AI score

Exploits0

Cvelist•added 2017/03/06 2:0 a.m.•10 views

CVE-2015-7956

...

Exploits0

securityvulns•added 2015/01/19 12:0 a.m.•53 views

Wordpress plugin Pods <= 2.4.3 XSS and CSRF vulnerabilities

Vulnerability title: Wordpress plugin Pods = 2.4.3 XSS and CSRF vulnerabilities vulnerabilities Author: Pietro Oliva CVE: CVE-2014-7956, CVE-2014-7957 Product: pods Affected version: pods = 2.4.3 Vulnerabilities fixed in version: 2.5 XSS vulnerability CVE-2014-7956, authentication is needed:...

6.8CVSS0.4AI score0.00227EPSS

Exploits3

CVE•added 2015/01/15 3:0 p.m.•44 views

CVE-2014-7956

CVE-2014-7956: Affected product is the Pods WordPress plugin (versions

4.3CVSS5.9AI score0.00198EPSS

Exploits2References4Affected Software1

Packet Storm•added 2015/01/12 12:0 a.m.•38 views

WordPress Pods 2.4.3 CSRF / Cross Site Scripting

Vulnerability title: Wordpress plugin Pods alert'xss' target="http://localhost"; for i=0; i'; CSRF 2 delete pods plugin data: CSRF 3 deactivate pods and delete data: CSRF 4 enable "roles and capab...

6.8CVSS0.1AI score0.00227EPSS

Exploits3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by