CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

405 matches found

Wolfi•added 2026/05/14 7:48 p.m.•11 views

CVE-2026-44903 vulnerabilities

Vulnerabilities for packages: istio, minio, fluent-bit-plugin-loki, loki, minio-object-browser, opentelemetry-collector-contrib, certificate-transparency, splunk-otel-collector, jaeger, datadog-agent, trillian, metrics-server, amazon-cloudwatch-agent-operator, mcp-grafana, cloud-sql-proxy, mc,...

6.1CVSS5.4AI score0.00052EPSS

Exploits0

Wolfi•added 2026/04/14 7:48 a.m.•6 views

CVE-2026-40179 vulnerabilities

Vulnerabilities for packages: istio, minio, loki, minio-object-browser, certificate-transparency, splunk-otel-collector, jaeger, datadog-agent, trillian, mcp-grafana, cloud-sql-proxy, mc, prometheus, prometheus-pushgateway, minio-operator, keda, node-problem-detector, telegraf, karma...

6.1CVSS5.4AI score0.00012EPSS

Exploits0

Wolfi•added 2026/04/14 7:48 a.m.•7 views

GHSA-VFFH-X6R8-XX99 vulnerabilities

5.4AI score

Exploits0

Chainguard•added 2026/04/11 2:18 a.m.•5 views

CVE-2026-33810 vulnerabilities

Vulnerabilities for packages: kyverno-policy-reporter-plugins-kyverno, rabbitmq-messaging-topology-operator-fips, dbmate, polaris-fips, nfs-subdir-external-provisioner, kyverno-policy-reporter-plugins-kyverno-fips, dapr-fips, newrelic-k8s-metadata-injection-fips,...

8.2CVSS7.1AI score0.00013EPSS

Exploits0

Chainguard•added 2026/04/11 2:18 a.m.•4 views

GHSA-FV83-X2XW-2J55 vulnerabilities

5.4AI score

Exploits0

Chainguard•added 2026/04/11 2:18 a.m.•8 views

CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: crossplane-provider-aws-firehose-fips, thanos-receive-controller, rabbitmq-messaging-topology-operator-fips, volcano, nri-couchbase, tofu-controller, step-kms-plugin, xeol-fips, agentbeat-fips, kubescape-operator, cilium-certgen, cadence, libnvidia-container,...

7.5CVSS7.1AI score0.00019EPSS

Exploits0

OSV•added 2026/03/10 12:58 a.m.•0 views

CLEANSTART-2026-OH74241 Security fixes for GHSA-MQQF-5WVP-8FH8 applied in versions: 0.122-r0

Security vulnerability affects the karma-fips package. This issue is resolved in later releases. See references for vulnerability details...

5.9AI score

Exploits0References2

RedhatCVE•added 2026/02/04 7:28 p.m.•2 views

CVE-2026-25236

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection risk exists in karma queries due to unsafe literal substitution for an IN ... list. This issue has been patched in version 1.33.0...

9.8CVSS5.6AI score0.00056EPSS

Exploits0References1

NVD•added 2026/02/03 7:16 p.m.•3 views

CVE-2026-25236

9.8CVSS0.00056EPSS

Exploits0References1

OSV•added 2026/02/03 7:16 p.m.•0 views

UBUNTU-CVE-2026-25236

9.8CVSS5.8AI score0.00056EPSS

Exploits0References3

UbuntuCve•added 2026/02/03 7:16 p.m.•3 views

CVE-2026-25236

9.8CVSS5.7AI score0.00056EPSS

Exploits0References2

Cvelist•added 2026/02/03 6:29 p.m.•23 views

CVE-2026-25236 PEAR is Vulnerable to SQL Injection in Damblan_Karma IN() Query via Literal Substitution

6.9CVSS0.00056EPSS

Exploits0References1

EUVD•added 2026/02/03 6:29 p.m.•3 views

EUVD-2026-5199

6.9CVSS5.6AI score0.00056EPSS

Exploits0References1

OSV•added 2026/02/03 6:29 p.m.•3 views

CVE-2026-25236 PEAR is Vulnerable to SQL Injection in Damblan_Karma IN() Query via Literal Substitution

6.9CVSS5.6AI score0.00056EPSS

Exploits0References3

CVE•added 2026/02/03 6:29 p.m.•6 views

CVE-2026-25236

CVE-2026-25236 affects the PEAR PHP framework. The vulnerability is a SQL injection risk in karma queries caused by unsafe literal substitution for an IN (...) list. Root cause: unsafe literal handling in Karma DAMBLAN-related queries prior to version 1.33.0. Impact: potential SQL injection. Miti...

9.8CVSS5.6AI score0.00056EPSS

Exploits0References1Affected Software1