CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

46 matches found

RubySec•added 2026/04/22 12:0 a.m.•6 views

OpenC3 COSMOS - Hijacked session token can be used to reset password for persistence

Summary The OpenC3 password change functionality allows a user to change their password without providing the old password, by accepting a valid session token instead. In assumed breach scenarios, this behaviour can be exploited by an attacker who has already obtained a valid session token, to ga...

8.1CVSS5.8AI score0.00033EPSS

Exploits0References1Affected Software1

NVD•added 2026/04/14 3:16 p.m.•2 views

CVE-2026-4913

Improper protection of an alternate path in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to retain access when their account has been disabled...

5.7CVSS0.00126EPSS

Exploits0References1

OSV•added 2026/03/24 7:16 p.m.•1 views

UBUNTU-CVE-2026-23921

A low privilege Zabbix user with API access can exploit a blind SQL injection vulnerability in include/classes/api/CApiService.php to execute arbitrary SQL selects via the sortfield parameter. Although query results are not returned directly, an attacker can exfiltrate arbitrary database data...

8.7CVSS6.1AI score0.00045EPSS

Exploits0References3

CNNVD•added 2026/01/26 12:0 a.m.•4 views

TP-Link Omada controllers have security vulnerabilities

TP-Link Omada Controllers are a series of centralized management platforms developed by TP-Link Corporation. The TP-Link Omada Controllers have security vulnerabilities, where the password verification process can be bypassed, potentially weakening the security of accounts...

6.5CVSS5.8AI score0.00046EPSS

Exploits0References3

CVE•added 2026/01/22 3:39 a.m.•11 views

CVE-2026-24038

Horilla HRMS has a 2FA bypass in version 1.4.0 due to a flawed OTP equality check: when OTP expires, the server returns None and omitting the otp field makes user_otp == otp pass, bypassing 2FA. Administrative accounts risk data compromise; fixed in version 1.5.0. Remediation: upgrade to 1.5.0 or...

8.1CVSS5.5AI score0.00036EPSS

Exploits1References2Affected Software1

RedhatCVE•added 2026/01/09 11:18 a.m.•1 views

CVE-2021-22812

A CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists that could cause arbritrary script execution when a privileged account clicks on a malicious URL specifically crafted for the NMC. Affected Products: 1-Phase Uninterruptible Power...

6.1CVSS6.6AI score0.00491EPSS

Exploits0References1

Positive Technologies•added 2026/01/02 12:0 a.m.•5 views

PT-2026-1125

Name of the Vulnerable Software and Affected Versions Bagisto versions prior to 2.3.10 Description Bagisto, an open source Laravel eCommerce platform, has an issue where API routes remain active even after the initial installation is complete. The API endpoints /install/api/ are directly accessib...

9.8CVSS6.8AI score0.00144EPSS

Exploits1References6

CVE•added 2025/12/10 12:0 a.m.•5 views

CVE-2025-65830

CVE-2025-65830 describes a vulnerability in the Meatmeet Pro App where missing certificate validation enables a man-in-the-middle attack on TLS traffic. Upstream attackers could decrypt, inspect, and modify requests, potentially leading to full account compromise if active authentication tokens a...

9.1CVSS6.6AI score0.00041EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2025/10/30 12:0 a.m.•2 views

PT-2025-44439

Name of the Vulnerable Software and Affected Versions JATOS versions 3.7.1 through 3.9.6 Description A Reflected Cross-Site Scripting XSS issue exists in JATOS. This allows remote attackers to execute arbitrary JavaScript in a user's web browser by including a malicious payload in the code URL...

6.1CVSS6.2AI score0.00042EPSS

Exploits0References6

CVE•added 2025/10/24 12:0 a.m.•6 views

CVE-2025-60954

CVE-2025-60954 affects Microweber CMS 2.0, where the password reset flow enforces no minimum length or complexity, allowing extremely weak (even single-character) passwords and risking account compromise, including admin accounts. The vulnerability surface is the password reset process in Microwe...

8.3CVSS6.5AI score0.00064EPSS

Exploits1References3Affected Software1

Snyk•added 2025/10/23 11:46 a.m.•16 views

Brute Force

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Brute Force via the authentication endpoints for the mobile client and authwebservice. An attacker can repeatedly attempt to guess user credentials by sending multiple authentication requests withou...

8.7CVSS6.9AI score0.00088EPSS

Exploits0References2

Vulnrichment•added 2025/10/10 12:0 a.m.•3 views

CVE-2025-61319

ReNgine thru 2.2.0 is vulnerable to a Stored Cross-Site Scripting XSS vulnerability in the Vulnerabilities module. When scanning a target with an XSS payload, the unsanitized payload is rendered in the ReNgine web UI, resulting in arbitrary JavaScript execution in the victim's browser. This can b...

4.8AI score0.00059EPSS

Exploits1References2