CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dodoublefault function in arch/x86/kernel/traps.c in the Linux kernel through 3.17.4 does not properly handle faults associated with the Stack Segment SS...

4.9CVSS6.3AI score0.00043EPSS

Exploits0References2

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-9090 Malicious code in @marcos_feitoza/dashboard (npm)

The package @marcosfeitoza/dashboard was found to contain malicious code...

7.2AI score

Exploits0

Packet Storm•added 2025/06/16 12:0 a.m.•180 views

📄 Mobile Mouse Server 3.6.3 Remote Code Execution

Mobile Mouse Server for macOS exposes a TCP control interface on port 9090, which accepts plaintext commands to simulate keyboard input and launch applications. By default, no authentication is required, allowing a remote attacker to fully control the target system. Version 3.6.3 is affected...

7.7AI score

Exploits0

RedhatCVE•added 2025/05/23 8:14 a.m.•2 views

CVE-2024-9090

A vulnerability was found in SourceCodester Modern Loan Management System 1.0. It has been classified as critical. Affected is an unknown function of the file searchmember.php. The manipulation of the argument searchMember leads to sql injection. It is possible to launch the attack remotely. The...

9.8CVSS7.3AI score0.00091EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 4:53 p.m.•5 views

CVE-2020-9090

FusionAccess version 6.5.1 has an improper authorization vulnerability. A command is authorized with incorrect privilege. Attackers with other privilege can execute the command to exploit this vulnerability. This may compromise normal service of the affected product...

7.8CVSS7.2AI score0.00027EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:57 a.m.•4 views

CVE-2017-9090

reg.php in Allen Disk 1.6 doesn't check if isset$SESSION'captcha''code'==1, which makes it possible to bypass the CAPTCHA via an empty $POST'captcha'...

7.5CVSS6.9AI score0.00198EPSS

Exploits0References1

Positive Technologies•added 2025/01/01 12:0 a.m.•1 views

PT-2025-34644 · Libbiosig +1 · Libbiosig +1

Name of the Vulnerable Software and Affected Versions: libbiosig versions 3.9.0 and Master Branch 35a819fa Description: A stack-based buffer overflow vulnerability exists in the MFER parsing functionality. A specially crafted MFER file can lead to arbitrary code execution. The vulnerability...

9.8CVSS7.2AI score0.00479EPSS

Exploits1References9

Circl•added 2024/09/23 2:56 a.m.•0 views

CVE-2024-9090

creationtimestamp| type| source ---|---|--- 2024-09-23 02:56:16+00:00| seen| https://t.me/cvedetector/6164...

9.8CVSS6.2AI score0.00091EPSS

Exploits1References1

CVE•added 2024/09/22 11:31 p.m.•43 views

CVE-2024-9090

CVE-2024-9090 affects SourceCodester Modern Loan Management System 1.0, specifically the search_member.php file. The vulnerability is a SQL injection via the searchMember parameter, enabling remote exploitation. Public disclosures exist, and several sources classify it as critical/medium dependin...

9.8CVSS7.1AI score0.00091EPSS

Exploits1References5Affected Software1

Cvelist•added 2024/09/22 11:31 p.m.•12 views

CVE-2024-9090 SourceCodester Modern Loan Management System search_member.php sql injection

6.5CVSS0.00091EPSS

Exploits1References5

Vulnrichment•added 2024/09/22 11:31 p.m.•13 views

CVE-2024-9090 SourceCodester Modern Loan Management System search_member.php sql injection

6.5CVSS7.4AI score0.00091EPSS

Exploits1References5

OSV•added 2024/07/05 2:15 p.m.•12 views

CVE-2024-38346

The CloudStack cluster service runs on unauthenticated port default 9090 that can be misused to run arbitrary commands on targeted hypervisors and CloudStack management server hosts. Some of these commands were found to have command injection vulnerabilities that can result in arbitrary code...

9.8CVSS10AI score

Exploits0References4

OpenVAS•added 2022/08/26 12:0 a.m.•29 views

Ubuntu: Security Advisory (USN-2445-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.0912EPSS

Exploits15References2

OpenVAS•added 2022/08/26 12:0 a.m.•32 views

Ubuntu: Security Advisory (USN-2441-1)

7.8CVSS6.9AI score0.18308EPSS

Exploits5References2

OpenVAS•added 2022/08/26 12:0 a.m.•23 views

Ubuntu: Security Advisory (USN-2443-1)

7.8CVSS6.9AI score0.18308EPSS

Exploits12References2

Circl•added 2022/07/13 8:6 a.m.•0 views

CVE-2022-9090