CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a memory leak caused by not freeing newmodelnumber...

5.5CVSS6.1AI score0.00074EPSS

Exploits0References2

Packet Storm•added 2024/08/31 12:0 a.m.•162 views

2Wire Cross-Site Request Forgery Password Reset

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "2Wire Cross-Site Request Forgery Password Reset Vulnerability", 'Description' = %q This module will reset the admin password on a 2Wire wireless...

4.3CVSS7.1AI score0.57516EPSS

Exploits2

Patchstack•added 2024/08/19 12:1 p.m.•1 views

WordPress Shopping Cart & eCommerce Store plugin <= 5.7.2 - Authenticated (Contributor+) SQL Injection via model_number Parameter vulnerability

Authenticated Contributor+ SQL Injection via modelnumber Parameter vulnerability discovered by Lucio Sá in WordPress Plugin WP EasyCart versions = 5.7.2...

8.8CVSS8.1AI score0.00889EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/08/19 12:0 a.m.•2 views

PT-2024-38612

Name of the Vulnerable Software and Affected Versions: The Shopping Cart & eCommerce Store plugin for WordPress versions up to, and including, 5.7.2 Description: The issue is related to boolean-based SQL Injection via the model number parameter due to insufficient escaping on the user-supplied...

8.8CVSS6.4AI score0.00889EPSS

Exploits0References13

Tenable Nessus•added 2024/06/14 12:0 a.m.•40 views

Zyxel NAS Multiple Vulnerabilities

The Zyxel NAS is potentially affected by multiple vulnerabilities. - This command injection vulnerability in the 'setCookie' parameter in Zyxel NAS326 and NAS542 devices could allow an unauthenticated attacker to execute some OS commands by sending a crafted HTTP POST request. CVE-2024-29973 - Th...

9.8CVSS7.3AI score0.94034EPSS

Exploits12References6

Malwarebytes•added 2023/06/20 4:0 a.m.•39 views

Update now! ASUS fixes nine security flaws

ASUS has released firmware updates for several router models fixing two critical and several other security issues. The new firmware with accumulated security updates is available for the models GT6, GT-AXE16000, GT-AX11000 PRO, GT-AXE11000, GT-AX6000, GT-AX11000, GS-AX5400, GS-AX3000, XT9, XT8,...

10CVSS10AI score0.88837EPSS

Exploits14

Prion•added 2019/08/22 2:15 p.m.•17 views

Default credentials

A cleartext transmission of sensitive information vulnerability is present in Hickory Smart Ethernet Bridge from Belwith Products, LLC. Captured data reveals that the Hickory Smart Ethernet Bridge device communicates over the network to an MQTT broker without using encryption. This exposed the...

5CVSS7.5AI score0.0004EPSS

Exploits0References2

Tenable Nessus•added 2019/05/08 12:0 a.m.•9 views

ABB 1SVR427032R1000 CP-E 12 2.5 Power Supply Detection

Binary data 756481.prm...

7.3AI score

Exploits0

Tenable Nessus•added 2019/05/08 12:0 a.m.•14 views

Emerson 396359-25-6 ControlWave CPU module Detection

Binary data 756535.prm...

7.3AI score

Exploits0