CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/05/15 12:0 a.m.•7 views

Open WebUI 代码问题漏洞

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted WebUI that is open source. Versions of Open WebUI prior to 0.9.5 had code issues and vulnerabilities, which were caused by parsing differences between the urlparse and requests libraries, leading to SSRF bypasses...

8.5CVSS5.9AI score0.00033EPSS

Exploits1References1

CNVD•added 2026/04/21 12:0 a.m.•1 views

Microsoft Azure Monitor Agent Code Issue Vulnerability (CNVD-2026-18594)

Microsoft Azure Monitor Agent is a monitoring agent program from Microsoft USA. A security vulnerability exists in Microsoft Azure Monitor Agent. An attacker can exploit the vulnerability to elevate privileges...

7.8CVSS5.4AI score0.00499EPSS

CNVD•added 2026/03/31 12:0 a.m.•5 views

Code Issue Vulnerability in Multiple Mozilla Products (CNVD-2026-19982)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code issue vulnerability exists in multiple Mozilla products due to an...

7.5CVSS7.4AI score0.00027EPSS

CNVD•added 2026/03/31 12:0 a.m.•0 views

Multiple Mozilla Products Code Issues Vulnerabilities

9.6CVSS7.3AI score0.0003EPSS

CNVD•added 2026/03/31 12:0 a.m.•6 views

Multiple Mozilla Products Code Issue Vulnerabilities (CNVD-2026-19987)

7.5CVSS7.3AI score0.00023EPSS

CNVD•added 2026/03/31 12:0 a.m.•5 views

Multiple Mozilla Products Code Issues Vulnerabilities

7.5CVSS7.4AI score0.00022EPSS

CNNVD•added 2026/03/24 12:0 a.m.•3 views

Mozilla多款产品代码问题漏洞

7.5CVSS7.3AI score0.00023EPSS

CNVD•added 2026/03/24 12:0 a.m.•0 views

OpenClaw code issue vulnerability (CNVD-2026-14860)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a code issue vulnerability that can be exploited by an attacker to bypass the allow list check and execute a trojan binary...

7.8CVSS6AI score0.00017EPSS

CNVD•added 2026/03/24 12:0 a.m.•1 views

OpenClaw code issue vulnerability (CNVD-2026-14849)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a code issue vulnerability that is caused by an arbitrary shell execution flaw in the shell environment fallback. An attacker can exploit the vulnerability to execute arbitrary commands on the system...

7.8CVSS6.4AI score0.00021EPSS

CNNVD•added 2026/03/24 12:0 a.m.•4 views

Mozilla多款产品代码问题漏洞

7.5CVSS7.4AI score0.00023EPSS

CNNVD•added 2026/03/24 12:0 a.m.•5 views

Mozilla多款产品代码问题漏洞

7.5CVSS7.4AI score0.00027EPSS

Exploits0References6

OSV•added 2026/03/23 6:14 p.m.•2 views

GO-2026-4754 free5GC AUSF UE Authentication Panic on Nil SuciSupiMap Interface Conversion in github.com/free5gc/ausf

free5GC AUSF UE Authentication Panic on Nil SuciSupiMap Interface Conversion in github.com/free5gc/ausf...

8.7CVSS5.8AI score0.00145EPSS

CNNVD•added 2026/03/10 12:0 a.m.•3 views

Schneider Electric EcoStruxure Foxboro DCS 代码问题漏洞

The Schneider Electric EcoStruxure Foxboro DCS is an innovative fault-tolerant, highly available control component from Schneider Electric, France. A code issue vulnerability exists in the Schneider Electric EcoStruxure Foxboro DCS, which can be exploited by an attacker to cause compromise of...

7CVSS6.1AI score0.00329EPSS

CNVD•added 2026/03/02 12:0 a.m.•2 views

OpenClaw code issue vulnerability (CNVD-2026-13388)

OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from a code issue vulnerability that stems from a Cron webhook delivery using fetch direct call, which can be exploited by an attacker to cause the webhook target to access private or internal endpoints...

7.3CVSS5.8AI score0.00018EPSS

CNVD•added 2026/02/24 12:0 a.m.•0 views

Adobe Substance3D Designer Code Issue Vulnerability

Adobe Substance3D Designer is a texture and material creation software from the American company Audobee Adobe. A code issue vulnerability exists in Adobe Substance3D Designer, which can be exploited by attackers to cause a denial of service in the application...

5.5CVSS5.8AI score0.00024EPSS

Vulnrichment•added 2026/02/21 11:2 p.m.•5 views

CVE-2026-2895 funadmin Member.php repass password recovery

A security flaw has been discovered in funadmin up to 7.1.0-rc4. Affected by this issue is the function repass of the file app/frontend/controller/Member.php. Performing a manipulation of the argument forgetcode/vercode results in weak password recovery. Remote exploitation of the attack is...

6.3CVSS4.2AI score0.00128EPSS

Exploits1References5

CNNVD•added 2026/02/10 12:0 a.m.•2 views

Adobe Substance3D Designer 代码问题漏洞

5.5CVSS5.9AI score0.00024EPSS

Tenable Nessus•added 2026/01/20 12:0 a.m.•8 views

MiracleLinux 8 : thunderbird-102.11.0-1.el8.ML.1 (AXSA:2023-6153:18)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6153:18 advisory. Mozilla: Browser prompts could have been obscured by popups CVE-2023-32205 Mozilla: Crash in RLBox Expat driver CVE-2023-32206 Mozilla: Potential...

8.8CVSS8.7AI score0.00284EPSS

Exploits0References8

CNNVD•added 2026/01/13 12:0 a.m.•2 views

Microsoft SharePoint 代码问题漏洞

Microsoft SharePoint is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing work, collaborating with others, organizing projects and workgroups, and searching for people and information. A code issue vulnerabili...

5.4CVSS5.9AI score0.00166EPSS