CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2179 matches found

EUVD-2024-54943

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Akinsoft OctoCloud allows Cross-Site Scripting XSS. This issue affects OctoCloud: from s1.09.01 before v1.11.01...

4.3CVSS5.8AI score0.00043EPSS

Exploits0References3

EUVD•added 3 days ago•5 views

EUVD-2024-54942

Origin Validation Error vulnerability in Akinsoft OctoCloud allows HTTP Response Splitting, CAPEC - 87 - Forceful Browsing. This issue affects OctoCloud: from s1.09.01 before v1.11.01...

4.7CVSS5.8AI score0.00027EPSS

Exploits0References3

EUVD•added 2026/05/22 2:31 p.m.•5 views

EUVD-2022-54113

Dell ECS, versions 3.5 and 3.6, contain an Improper Access Control in the Identity and Access Management IAM module. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to gaining read access to unauthorized data...

7.5CVSS5.8AI score0.00044EPSS

Exploits0References1

EUVD•added 2025/11/14 9:30 p.m.•1 views

EUVD-2025-26450

A vulnerability was found in SimStudioAI sim up to 51b1e97fa22c48d144aef75f8ca31a74ad2cfed2. This issue affects some unknown processing of the file apps/sim/app/api/proxy/image/route.ts. The manipulation results in server-side request forgery. The attack may be performed from remote. The exploit...

7.5CVSS5.9AI score0.00102EPSS

Exploits1References8

EUVD•added 2025/10/21 3:30 p.m.•2 views

EUVD-2025-26370

A vulnerability was determined in Tenda F1202 1.2.0.9/1.2.0.14/1.2.0.20. Impacted is an unknown function of the file /etcro/shadow of the component Administrative Interface. This manipulation with the input Fireitup causes hard-coded credentials. The attack can only be executed locally. A high...

6.4CVSS3.5AI score0.00018EPSS

Exploits0References7

EUVD•added 2025/10/08 2:2 a.m.•2 views

EUVD-2025-31862

A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclos...

7.5CVSS7.2AI score0.00044EPSS

Exploits1References7

EUVD•added 2025/10/08 12:31 a.m.•5 views

EUVD-2025-31865

EUVD-2025-31865...

4.8CVSS6.4AI score0.00027EPSS

Exploits0References4

EUVD•added 2025/10/08 12:31 a.m.•4 views

EUVD-2025-31866

EUVD-2025-31866...

6.5CVSS6.5AI score0.00067EPSS

Exploits1References6