CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/05/25 2:15 p.m.•10 views

CVE-2018-25376 Socusoft 3GP Photo Slideshow 8.05 Buffer Overflow SEH

Socusoft 3GP Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by exploiting structured exception handling. Attackers can craft malicious input in the Registration Name and Registration Key fields to...

Positive Technologies•added 2026/05/25 12:0 a.m.•5 views

PT-2026-43228

CNNVD•added 2026/05/25 12:0 a.m.•5 views

Exploits0References4

SocuSoft Flash Slideshow Maker Professional 安全漏洞

SocuSoft Flash Slideshow Maker Professional is a slideshow maker software from SocuSoft. A security vulnerability exists in SocuSoft Flash Slideshow Maker Professional version 5.20, which originates from a buffer overflow in the registration dialog box that could allow a local attacker to execute...

CNNVD•added 2026/05/25 12:0 a.m.•6 views

SocuSoft iPod Photo Slideshow 安全漏洞

SocuSoft iPod Photo Slideshow is a photo album video creation software from SocuSoft. A security vulnerability exists in SocuSoft iPod Photo Slideshow version 8.05, which originates from a buffer overflow in the registration dialog box that could allow a local attacker to execute arbitrary code b...

CNNVD•added 2026/05/25 12:0 a.m.•6 views

SocuSoft Socusoft 3GP Photo Slideshow 安全漏洞

SocuSoft Socusoft 3GP Photo Slideshow is a mobile photo album creation software from SocuSoft. A security vulnerability exists in Socusoft 3GP Photo Slideshow version 8.05, which stems from a buffer overflow in the registration dialog box that could allow a local attacker to execute arbitrary cod...

Positive Technologies•added 2026/05/25 12:0 a.m.•7 views

PT-2026-43229

Flash Slideshow Maker Professional 5.20 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by exploiting structured exception handling. Attackers can craft a malicious payload and paste it into the Name and Code fields of the...

Positive Technologies•added 2026/05/25 12:0 a.m.•7 views

Exploits0References4

PT-2026-43227

8.6CVSS6.6AI score0.00017EPSS

Exploits0References4

EUVD•added 2026/05/22 12:31 a.m.•7 views

EUVD-2026-31378

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/logs/delete. The The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan...

2.3CVSS5.8AI score0.00022EPSS

EUVD•added 2026/05/22 12:31 a.m.•7 views

EUVD-2026-31370

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/event/duplicate. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan...

EUVD•added 2026/05/22 12:31 a.m.•7 views

EUVD-2026-31376

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/logs/bulk/delete. The The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N...

2.3CVSS5.8AI score0.00022EPSS

EUVD•added 2026/05/22 12:31 a.m.•6 views

EUVD-2026-31375

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/page/bulk/design. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonata...

EUVD•added 2026/05/22 12:31 a.m.•8 views

EUVD-2026-31371

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/express/association/reorder. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N...

EUVD•added 2026/05/22 12:31 a.m.•5 views

EUVD-2026-31374

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/page/bulk/cache. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan...

CNNVD•added 2026/05/22 12:0 a.m.•4 views

Concrete CMS 安全漏洞

Concrete CMS is an open-source content management system developed by Concrete CMS. Versions of Concrete CMS 9.5.0 and earlier contain security vulnerabilities. These vulnerabilities stem from insecure direct object references in the Express-associated reorder dialog boxes, as well as incorrect...

4.3CVSS5.8AI score0.00027EPSS

NVD•added 2026/05/21 10:16 p.m.•8 views

CVE-2026-8415

8.8CVSS0.00019EPSS

NVD•added 2026/05/21 10:16 p.m.•7 views

CVE-2026-8414

8.8CVSS0.00019EPSS

Vulnrichment•added 2026/05/21 9:40 p.m.•5 views

CVE-2026-8409 Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/logs/delete

2.3CVSS5.8AI score0.00022EPSS

Cvelist•added 2026/05/21 9:32 p.m.•25 views

CVE-2026-8411 Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/page/bulk/delete

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/page/bulk/delete. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonata...

2.3CVSS0.00019EPSS

ATTACKERKB•added 2026/05/21 9:32 p.m.•2 views

CVE-2026-8411