CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 2026/04/08 12:0 a.m.•1 views

Broken Quantum: A Systematic Formal Verification Study of Security Vulnerabilities across the Open-Source Quantum Computing Simulator Ecosystem

Quantum computing simulators form the classical software foundation on which virtually all quantum algorithm research depends. We present Broken Quantum, the first comprehensive formal security audit of the open-source quantum computing simulator ecosystem. Applying COBALT QAI -- a four-module...

6AI score

Exploits0

CNNVD•added 2026/04/08 12:0 a.m.•4 views

Six Apart Movable Type 代码注入漏洞

Six Apart Movable Type is an application system developed by the Six Apart company in the United States. It offers features such as multi-user access, comments, Trackbacks, and themes. Six Apart Movable Type has a code injection vulnerability; this vulnerability can be exploited by code injection...

9.8CVSS7.5AI score0.00468EPSS

CNNVD•added 2026/04/08 12:0 a.m.•6 views

WordPress plugin TechOne 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.9AI score0.00236EPSS

5.3CVSS5.9AI score0.00198EPSS

WordPress plugin Armania 安全漏洞

5.3CVSS5.9AI score0.0026EPSS

WordPress plugin DukaMarket 安全漏洞

5.3CVSS5.9AI score0.00236EPSS

WordPress plugin Uminex 安全漏洞

CNNVD•added 2026/04/08 12:0 a.m.•2 views

WordPress plugin Theme Editor 跨站请求伪造漏洞

9.6CVSS5.8AI score0.00143EPSS

5.3CVSS5.9AI score0.00166EPSS

WordPress plugin tagDiv Composer 安全漏洞

CNNVD•added 2026/04/08 12:0 a.m.•2 views

Vim 代码注入漏洞

Vim is an open-source, cross-platform text editor developed by Vim developers. Versions of Vim prior to 9.2.316 contain a code injection vulnerability. This vulnerability stems from command injection, which may lead to the execution of arbitrary commands...

7.8CVSS6.1AI score0.0062EPSS

Exploits0References5

8.8CVSS6AI score0.00558EPSS

PraisonAI 代码注入漏洞

PraisonAI is a low-code multi-agent collaboration framework developed by Mervin Praison. Versions of PraisonAI prior to 4.5.115 contained a code injection vulnerability, which was caused by unescaped user input, potentially leading to the execution of template expressions...

Exploits1References1

CNNVD•added 2026/04/08 12:0 a.m.•6 views

Code-Projects Easy Blog Site 代码注入漏洞

Code-Projects Easy Blog Site is an easy blog website developed by Code-Projects as open source. Version 1.0 of code-projects Easy Blog Site has a code injection vulnerability, which stems from the handling of the parameter postTitle in the file posts/update.php. This vulnerability may lead to...

5.1CVSS5.7AI score0.0024EPSS

Exploits0References5

5.3CVSS5.7AI score0.00282EPSS

openstatus 代码注入漏洞

OpenStatus is an open-source status page and availability monitoring platform developed by OpenStatus. OpenStatus has a code injection vulnerability, which stems from the operation of the callbackURL parameter in the Onboarding endpoint component...

Exploits0References7

5.1CVSS5.7AI score0.0024EPSS

SourceCodester Sales and Inventory System 代码注入漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a code injection vulnerability. This vulnerability stems from the handling of parameter IDs in t...

Exploits0References5

CNNVD•added 2026/04/08 12:0 a.m.•6 views

GitLab Enterprise Edition（EE）代码注入漏洞

GitLab Enterprise Edition EE is a content management system developed by the American company GitLab. Versions of GitLab Enterprise Edition prior to 18.8.9, 18.9.5, and 18.10.3 contained a code injection vulnerability. This vulnerability stemmed from authorization issues in the code quality repor...

5.7CVSS5.9AI score0.00428EPSS

FreeBSD•added 2026/04/08 12:0 a.m.•8 views

Gitlab -- vulnerabilities

Gitlab reports: Exposed Method issue in websocket connections impacts GitLab CE/EE Denial of Service issue in Terraform state lock API impacts GitLab CE/EE Denial of Service issue in GraphQL API impacts GitLab CE/EE Denial of Service issue in CSV import impacts GitLab CE/EE Denial of Service issu...

8.5CVSS5.9AI score0.00577EPSS

CISA KEV Catalog•added 2026/04/08 12:0 a.m.•7 views

Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability

Ivanti Endpoint Manager Mobile EPMM contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution...

9.8CVSS7.6AI score0.82002EPSS

In wildExploits6

Positive Technologies•added 2026/04/08 12:0 a.m.•1 views

PT-2026-31193

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes DukaMarket dukamarket allows Code Injection.This issue affects DukaMarket: from n/a through = 1.3.0...

5.9AI score0.0026EPSS