CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/29 6:22 p.m.•8 views

GHSA-7CWM-FPFH-RRCH Ironic Standalone Operator's prometheus metrics exporter bound to all interfaces

Impact The Ironic Standalone Operator IRSO is the operator to maintain an Ironic deployment for Metal3. The Prometheus metrics exporter binds to 0.0.0.0 all network interfaces by default with no authentication. The default config is disabled. If enabled, this exposes operational metrics to any ho...

4.3CVSS5.8AI score

NVD•added 2026/05/29 6:17 p.m.•14 views

CVE-2026-43917

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.19.0 and earlier, the protectedProcedure middleware only verifies the user is authenticated - it does NOT enforce organization scoping. Each endpoint must individually verify the resource's org matches the session's...

5.3CVSS0.00225EPSS

Vulnrichment•added 2026/05/29 6:4 p.m.•14 views

CVE-2026-9051 Authentication Bypass Vulnerability in NI SystemLink Enterprise

There is an authentication bypass vulnerability in the NI SystemLink Enterprise Dashboard application that may allow an unauthenticated remote attacker to bypass authentication controls leading to privilege escalation or information disclosure. Successful exploitation requires an attacker to send...

ATTACKERKB•added 2026/05/29 6:4 p.m.•9 views

CVE-2026-9051

Cvelist•added 2026/05/29 6:4 p.m.•32 views

Exploits0References2

CVE-2026-9051 Authentication Bypass Vulnerability in NI SystemLink Enterprise

9.3CVSS0.00623EPSS

CVE•added 2026/05/29 6:4 p.m.•18 views

CVE-2026-9051

CVE-2026-9051 describes an authentication bypass in the NI SystemLink Enterprise Dashboard, affecting 2026-04 and earlier. An unauthenticated remote attacker can bypass authentication controls via a specially crafted HTTP request, potentially leading to privilege escalation or information disclos...

EUVD•added 2026/05/29 6:4 p.m.•13 views

EUVD-2026-33411

ATTACKERKB•added 2026/05/29 5:48 p.m.•10 views

CVE-2026-44650

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, POST /api/extensions/delete endpoint accepts extensionName: "." which bypasses sanitize-filename...

9.1CVSS5.8AI score0.00567EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/05/29 5:48 p.m.•31 views

CVE-2026-44650 SillyTavern: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

9.1CVSS0.00567EPSS

EUVD•added 2026/05/29 5:48 p.m.•13 views

EUVD-2026-33404

9.1CVSS5.8AI score0.00567EPSS

CVE•added 2026/05/29 5:48 p.m.•14 views

CVE-2026-44650

CVE-2026-44650 affects SillyTavern (local UI for LLMs) where the POST /api/extensions/delete endpoint accepts extensionName: "." and bypasses sanitize-filename validation. This causes path traversal that deletes the entire user extensions directory (and potentially the global extensions dir) with...

9.1CVSS5.8AI score0.00567EPSS

ATTACKERKB•added 2026/05/29 5:47 p.m.•10 views

CVE-2026-40425

The administrator account for the Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication, potentially changing the root password...

EUVD•added 2026/05/29 5:47 p.m.•17 views

Exploits0References4

EUVD-2026-33403

The administrator account for the Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication, potentially changing the root password...

CVE•added 2026/05/29 5:47 p.m.•20 views

CVE-2026-40425

CVE-2026-40425 affects the Danelec MacGregor Voyage Data Recorder (VDR) web interface. The vulnerability allows the administrator account to directly edit sensitive authentication-related files, potentially changing the root password. This is supported by ICS-CERT/DHS metrics indicating impact to...

Exploits0References3Affected Software1

Vulnrichment•added 2026/05/29 5:47 p.m.•10 views

CVE-2026-40425 MacGregor Voyage Data Recorder (VDR) G4e Files or Directories Accessible to External Parties

The administrator account for the Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication, potentially changing the root password...

Cvelist•added 2026/05/29 5:47 p.m.•33 views

CVE-2026-40425 MacGregor Voyage Data Recorder (VDR) G4e Files or Directories Accessible to External Parties

The administrator account for the Danelec MacGregor Voyage Data Recorder web interface can directly edit sensitive files related to authentication, potentially changing the root password...

6.9CVSS0.00376EPSS

ATTACKERKB•added 2026/05/29 5:46 p.m.•6 views

CVE-2026-44648

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern relies on cookie-session for authentication, storing all session data user handle,...

7.5CVSS5.8AI score0.00394EPSS

Exploits1References2Affected Software1

Cvelist•added 2026/05/29 5:45 p.m.•28 views

CVE-2026-44649 SillyTavern: Authentication Bypass via SSO Header Injection

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User Authelia and X-Authentik-Username Authentik HTTP headers to...

9.8CVSS0.00218EPSS

CVE•added 2026/05/29 5:45 p.m.•19 views

CVE-2026-44649

SillyTavern) vulnerability (CVE-2026-44649) affects SillyTavern before version 1.18.0 where header-based SSO authentication can be bypassed. The root cause is lack of validation that Remote-User (Authelia) and X-Authentik-Username (Authentik) headers originate from a trusted reverse proxy. The lo...

9.8CVSS5.8AI score0.00218EPSS