CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9907 matches found

Fedora•added 2026/02/10 1:34 a.m.•6 views

[SECURITY] Fedora 43 Update: bustle-0.13.0-4.fc43

Bustle draws sequence diagrams of D-Bus activity, showing signal emissions, method calls and their corresponding returns, with timestamps for each individual event and the duration of each method call. This can help you check for unwanted D-Bus traffic, and pinpoint why your D-Bus-based applicati...

7.5CVSS5.5AI score0.00443EPSS

Exploits1

RedhatCVE•added 2026/02/09 1:33 a.m.•5 views

CVE-2026-2117

A vulnerability was found in itsourcecode Society Management System 1.0. The affected element is an unknown function of the file /admin/editactivity.php. Performing a manipulation of the argument activityid results in sql injection. The attack can be initiated remotely. The exploit has been made...

9.8CVSS7.1AI score0.00323EPSS

Exploits1References1

RedhatCVE•added 2026/02/09 1:33 a.m.•2 views

CVE-2026-2207

A weakness has been identified in WeKan up to 8.20. This issue affects some unknown processing of the file server/publications/activities.js of the component Activity Publication Handler. Executing a manipulation can lead to information disclosure. It is possible to launch the attack remotely...

6.9CVSS5.3AI score0.00342EPSS

Exploits0References1

NVD•added 2026/02/08 2:15 a.m.•4 views

CVE-2026-2207

6.9CVSS0.00342EPSS

Exploits0References6

OSV•added 2026/02/08 2:15 a.m.•3 views

CVE-2026-2207

5.3CVSS5.3AI score

Exploits0References6

Vulnrichment•added 2026/02/08 1:9 a.m.•3 views

CVE-2026-2207 WeKan Activity Publication activities.js LinkedBoardActivitiesBleed information disclosure

6.9CVSS5.1AI score0.00342EPSS

Exploits0References6

Cvelist•added 2026/02/08 1:9 a.m.•30 views

CVE-2026-2207 WeKan Activity Publication activities.js LinkedBoardActivitiesBleed information disclosure

6.9CVSS0.00342EPSS

Exploits0References6

ATTACKERKB•added 2026/02/08 1:9 a.m.•7 views

CVE-2026-2207

6.9CVSS5.3AI score0.00342EPSS

Exploits0References7

EUVD•added 2026/02/08 1:9 a.m.•4 views

EUVD-2026-5822

6.9CVSS5.3AI score0.00342EPSS

Exploits0References6

CVE•added 2026/02/08 1:9 a.m.•8 views

CVE-2026-2207

WeKan up to 8.20 contains a vulnerability in the Activity Publication Handler, specifically in processing of the file server/publications/activities.js. A manipulation of this component can lead to information disclosure and is exploitable remotely. The issue is addressed by upgrading to version ...

6.9CVSS5.4AI score0.00342EPSS

Exploits0References6Affected Software1

OSV•added 2026/02/08 12:16 a.m.•2 views

CVE-2026-2117

9.8CVSS5.8AI score0.00323EPSS

Exploits1References5

NVD•added 2026/02/08 12:16 a.m.•4 views

CVE-2026-2117

9.8CVSS0.00323EPSS

Exploits1References5

CNNVD•added 2026/02/08 12:0 a.m.•3 views

itsourcecode Society Management System SQL注入漏洞

itsourcecode Society Management System is an open-source social management system developed by itsourcecode. Version 1.0 of the itsourcecode Society Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter activityid in the file...

9.8CVSS7.2AI score0.00323EPSS

Exploits1References6

CNNVD•added 2026/02/08 12:0 a.m.•3 views

WeKan 访问控制错误漏洞

WeKan is an open-source dashboard application developed by WeKan. Versions of WeKan prior to 8.20 contained a access control vulnerability. This vulnerability stemmed from improper handling of the file server/publications/activities.js component in the Activity Publication Handler, which could le...

6.9CVSS6AI score0.00342EPSS

Exploits0References7

Positive Technologies•added 2026/02/08 12:0 a.m.•5 views

PT-2026-6946

Name of the Vulnerable Software and Affected Versions WeKan versions prior to 8.21 Description A weakness exists in WeKan related to the Activity Publication Handler component, specifically in the processing of the file server/publications/activities.js. A manipulation of this component can lead ...

6.9CVSS5.2AI score0.00342EPSS

Exploits0References8

Vulnrichment•added 2026/02/07 11:32 p.m.•5 views

CVE-2026-2117 itsourcecode Society Management System edit_activity.php sql injection

7.5CVSS5.5AI score0.00323EPSS

Exploits1References5

Cvelist•added 2026/02/07 11:32 p.m.•33 views

CVE-2026-2117 itsourcecode Society Management System edit_activity.php sql injection

7.5CVSS0.00323EPSS

Exploits1References5

CVE•added 2026/02/07 11:32 p.m.•9 views

CVE-2026-2117

CVE-2026-2117 affects itsourcecode Society Management System 1.0. The vulnerability is in the file /admin/edit_activity.php where manipulating the activity_id parameter results in a remote SQL injection. Exploit appears to be publicly available. Remediation guidance in connected sources suggests ...

9.8CVSS7.2AI score0.00323EPSS

Exploits1References5Affected Software1

SUSE CVE•added 2026/02/07 12:26 a.m.•5 views

SUSE CVE-2026-21696

Wings is the server control plane for Pterodactyl, a free, open-source game server management panel. Starting in version 1.7.0 and prior to version 1.12.0, Wings does not consider SQLite max parameter limit when processing activity log entries allowing for low privileged user to trigger a conditi...

8.3CVSS5.6AI score0.00475EPSS

Exploits1References3

Positive Technologies•added 2026/02/07 12:0 a.m.•3 views

PT-2026-6937

Name of the Vulnerable Software and Affected Versions itsourcecode Society Management System version 1.0 Description A flaw exists in itsourcecode Society Management System version 1.0 that allows for remote SQL injection. The issue is located in the /admin/edit activity.php file, specifically...

9.8CVSS5.5AI score0.00323EPSS

Exploits1References11

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by