CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3490 matches found

GithubExploit•added 2025/12/26 9:45 a.m.•169 views

Exploit for CVE-2025-9074

CVE-2025-9074 Docker Container Command Execution Tool A power...

9.3CVSS6.1AI score0.01594EPSS

Exploits15

Positive Technologies•added 2025/12/24 12:0 a.m.•4 views

PT-2025-53363

Microhard Systems IPn4G 1.1.0 contains a service vulnerability that allows authenticated users to enable a restricted SSH shell with a default 'msshc' user. Attackers can exploit a custom 'ping' command in the NcFTP environment to escape the restricted shell and execute commands with root...

8.8CVSS7.3AI score0.00516EPSS

Exploits2References4

EUVD•added 2025/12/23 12:30 a.m.•6 views

EUVD-2022-55749

Cobian Backup 11 Gravity 11.2.0.582 contains a denial of service vulnerability in the FTP password input field that allows attackers to crash the application. Attackers can generate a specially crafted 800-byte buffer and paste it into the password field to trigger an application crash...

6.9CVSS6.5AI score0.00185EPSS

Exploits1References4

NVD•added 2025/12/22 10:15 p.m.•1 views

CVE-2022-50687

6.9CVSS0.00185EPSS

Exploits1References3

CVE•added 2025/12/22 9:35 p.m.•8 views

CVE-2022-50689

CVE-2022-50689 affects Cobian Reflector 0.9.93 RC1. A denial-of-service can be triggered by overflowing the password input field during SFTP task configuration, e.g., pasting an ~8000-byte buffer into the password field, causing the application to crash. Multiple connected sources (NVD/NVD-derive...

6.9CVSS6.7AI score0.00177EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2025/12/22 9:35 p.m.•2 views

CVE-2022-50689 Cobian Reflector 0.9.93 RC1 Local Denial of Service via Password Field

Cobian Reflector 0.9.93 RC1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the password input field. Attackers can paste a large 8000-byte buffer into the password field to trigger an application crash during SFTP task configuration...

6.9CVSS6.7AI score0.00177EPSS

Exploits1References3

CVE•added 2025/12/22 9:35 p.m.•13 views

CVE-2022-50687

CVE-2022-50687 affects Cobian Backup 11 Gravity 11.2.0.582. The vulnerability is a denial-of-service in the FTP password input field: a specially crafted 800-byte buffer pasted into the password field can crash the application. Documented as a local attack (attack vector: LOCAL; attack complexity...

6.9CVSS6.6AI score0.00185EPSS

Exploits1References3Affected Software1

Cvelist•added 2025/12/22 9:35 p.m.•23 views

CVE-2022-50687 Cobian Backup 11 Gravity 11.2.0.582 Local Denial of Service via Password Field

6.9CVSS0.00185EPSS

Exploits1References3

OSV•added 2025/12/19 2:16 a.m.•2 views

CVE-2025-14910

A vulnerability was detected in Edimax BR-6208AC 1.02. This impacts the function handleretr of the component FTP Daemon Service. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used. Edimax confirms this issue: "This product is...

6.5CVSS5.5AI score0.00443EPSS

Exploits1References4

CVE•added 2025/12/19 1:32 a.m.•11 views

CVE-2025-14910

The CVE-2025-14910 entry concerns Edimax BR-6208AC (firmware 1.02) with a path traversal flaw in the FTP Daemon Service’s handle_retr function. The vulnerability allows remote manipulation to traverse filesystem paths. Public exploits exist, and the issue is tied to a discontinued device with no ...

6.5CVSS5.2AI score0.00443EPSS

Exploits1References4Affected Software1

EUVD•added 2025/12/19 1:32 a.m.•6 views

EUVD-2025-204431

5.3CVSS6.6AI score0.00443EPSS

Exploits1References5

Vulnrichment•added 2025/12/19 1:32 a.m.•2 views

CVE-2025-14910 Edimax BR-6208AC FTP Daemon Service handle_retr path traversal

5.3CVSS6.7AI score0.00443EPSS

Exploits1References4

Cvelist•added 2025/12/19 1:32 a.m.•22 views

CVE-2025-14910 Edimax BR-6208AC FTP Daemon Service handle_retr path traversal

5.3CVSS0.00443EPSS

Exploits1References4

Positive Technologies•added 2025/12/19 12:0 a.m.•4 views

PT-2025-52401

A vulnerability was detected in Edimax BR-6208AC 1.02. This impacts the function handle retr of the component FTP Daemon Service. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used. Edimax confirms this issue: "This product i...

5.3CVSS7AI score0.00443EPSS

Exploits1References5

Tenable Nessus•added 2025/12/19 12:0 a.m.•5 views

Konica Bizhub Multifunction Printers Exposure of Sensitive Information to an Unauthorized Actor (CVE-2021-20871)

If a scanning destination that requires the registration of authentication information, such as FTP, SMB, or WebDAV, is registered in the address book of a multifunction printer, a remote attacker could steal the registered authentication information by sending a specific SOAP message...

6.5CVSS6.5AI score0.0052EPSS

Exploits0References3

RedhatCVE•added 2025/12/17 8:7 a.m.•2 views

CVE-2025-67737

AzuraCast is a self-hosted, all-in-one web radio management suite. Versions 0.23.1 mistakenly include an API endpoint that is intended for internal use by the SFTP software sftpgo, exposing it to the public-facing HTTP API for AzuraCast installations. A user with specific internal knowledge of a...

3.1CVSS6.5AI score0.00205EPSS

Exploits1References1

OSV•added 2025/12/16 2:15 p.m.•4 views

AZL-72509 CVE-2025-68206 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: add seqadj extension for natted connections Sequence adjustment may be required for FTP traffic with PASV/EPSV modes. due to need to re-write packet payload IP, port on the ftp control connection. This can requi...

5.8AI score0.00173EPSS

Exploits0References1

OSV•added 2025/12/16 2:15 p.m.•3 views

UBUNTU-CVE-2025-68206

5.9AI score0.00173EPSS

Exploits0References24