CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/06/11 6:55 p.m.•8 views

EUVD-2026-36301

8.1CVSS5.5AI score0.00197EPSS

Vulnrichment•added 2026/06/11 6:55 p.m.•5 views

CVE-2026-46622 SolidInvoice: API tokens stored as plaintext in the database allowing full credential compromise on database breach

8.1CVSS5.6AI score0.00197EPSS

RedhatCVE•added 2026/06/05 7:50 p.m.•6 views

CVE-2026-7887

For Concrete CMS 9.5.0 and below, OAuth 2.0 Authorization-Code Handler Bypasses Account Status. A user with uIsActive=0 suspended, banned, terminated employee can still authenticate via OAuth and receive valid API tokens. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score o...

6.4CVSS5.5AI score0.00172EPSS

RedhatCVE•added 2026/06/05 7:35 p.m.•5 views

CVE-2026-5075

The All in One SEO plugin for WordPress is vulnerable to Sensitive Information Exposure via 'internalOptions' localized script data in versions up to, and including, 4.9.7 due to sensitive internal option data being passed to wplocalizescript in post editor contexts without effective masking for...

4.3CVSS5.4AI score0.00285EPSS

NVD•added 2026/05/21 10:16 p.m.•16 views

CVE-2026-7887

6.4CVSS0.00172EPSS

CVE•added 2026/05/21 9:20 p.m.•17 views

CVE-2026-7887

Summary: CVE-2026-7887 affects Concrete CMS 9.5.0 and earlier. The OAuth 2.0 Authorization-Code Handler does not enforce account status, allowing a user with uIsActive=0 (suspended/banned/terminated) to authenticate and obtain API tokens. What’s affected: Concrete CMS versions prior to 9.5.1 (per...

6.4CVSS5.8AI score0.00172EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/05/21 12:0 a.m.•7 views

PT-2026-42680

Summary Deleted API tokens continued to authenticate requests until their cache entry expired, because the auth cache was not invalidated by token value at deletion time. Details The API token deletion path removed the database row but did not evict the token-value keyed entry from the auth cache...

2.3CVSS5.7AI score0.00054EPSS

NVD•added 2026/05/20 10:16 p.m.•18 views

CVE-2026-40102

Plane is an open-source project management tool. In versions 1.3.0 and below, SavedAnalyticEndpoint passes the user-controlled segment query parameter directly to a Django F expression without validation unlike the regular AnalyticsEndpoint, which checks against an allowlist, causing ORM Field...

6.5CVSS0.00295EPSS

Exploits1References2

Vulnrichment•added 2026/05/20 9:36 p.m.•10 views

CVE-2026-40102 Plane: ORM Field Reference Injection via `segment` Parameter in Saved Analytics

6.5CVSS5.8AI score0.00295EPSS

Exploits1References2

CVE•added 2026/05/20 9:36 p.m.•19 views

CVE-2026-40102

The CVE concerns Plane, an open-source project management tool. In versions ≤1.3.0, SavedAnalyticEndpoint accepts a user-controlled segment value and forwards it to a Django F() expression without validation, causing ORM Field Reference Injection. An authenticated workspace MEMBER can call GET /a...

6.5CVSS5.8AI score0.00295EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2026/05/20 1:9 p.m.•13 views

CVE-2026-3039 BIND 9 server memory exhaustion during GSS-API TKEY negotiation

BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessive memory consumption when receiving and processing maliciously-constructed packets. Typically these servers will be found in Active Directory integrated DNS deployments and/or...

7.5CVSS5.7AI score0.00558EPSS

Exploits0References4

AlpineLinux•added 2026/05/20 1:9 p.m.•12 views

CVE-2026-3039

7.5CVSS5.7AI score0.00558EPSS

Exploits0References4

ATTACKERKB•added 2026/05/20 3:28 a.m.•10 views

CVE-2026-5075

Cvelist•added 2026/05/20 3:28 a.m.•38 views

CVE-2026-5075 All in One SEO <= 4.9.7 - Authenticated (Contributor+) Sensitive Information Exposure via 'internalOptions' Localized Script Data

4.3CVSS0.00285EPSS

Exploits0References2

CVE•added 2026/05/20 3:28 a.m.•17 views

CVE-2026-5075

The CVE-2026-5075 affects the WordPress plugin All in One SEO Pack (All in One SEO) up to version 4.9.7. The vulnerability is a Sensitive Information Exposure due to internalOptions data being passed to wp_localize_script() in post editor contexts without effective masking. This allows authentica...

CNNVD•added 2026/05/20 12:0 a.m.•8 views

Exploits0References2

WordPress plugin All in One SEO 信息泄露漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

Positive Technologies•added 2026/05/20 12:0 a.m.•14 views

PT-2026-42103

The All in One SEO plugin for WordPress is vulnerable to Sensitive Information Exposure via 'internalOptions' localized script data in versions up to, and including, 4.9.7 due to sensitive internal option data being passed to wp localize script in post editor contexts without effective masking fo...