CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

654 matches found

RedhatCVE•added 2026/01/09 10:19 a.m.•7 views

CVE-2019-18664

The Log module in SECUDOS DOMOS before 5.6 allows XSS...

5.4CVSS7AI score0.00575EPSS

Exploits1References1

IBM Security Bulletins•added 2026/01/07 6:7 a.m.•7 views

Security Bulletin: Kafka client library upgraded to kafka-clients-3.9.1

Summary Kafka client library upgraded to kafka-clients-3.9.1. Vulnerability Details CVEID:CVE-2025-27818 DESCRIPTION: A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to...

8.8CVSS6.9AI score0.60841EPSS

Exploits2Affected Software1

Cvelist•added 2025/12/29 4:2 p.m.•26 views

CVE-2025-15195 code-projects Assessment Management add-module.php sql injection

A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue is some unknown functionality of the file /admin/add-module.php. This manipulation of the argument linked causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

7.5CVSS0.00385EPSS

Exploits1References5

Positive Technologies•added 2025/12/11 12:0 a.m.•3 views

PT-2025-50681

Name of the Vulnerable Software and Affected Versions Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F versions V1.xxV2.xx Description An OS Command Injection issue exists in Ruijie RG-YST EST, YSTAP 3.01B11P280YST250F. Successful exploitation allows attackers to execute arbitrary commands. This is...

8.8CVSS7.3AI score0.01451EPSS

Exploits0References6

CVE•added 2025/12/11 12:0 a.m.•18 views

CVE-2025-56124

CVE-2025-56124 affects Ruijie X60 PRO routers (V1.00–V2.00). The vulnerability is an OS Command Injection in the module_get function invoked via a crafted POST to /usr/local/lua/dev_sta/networkConnect.lua, allowing an attacker to execute arbitrary commands with local privileges. Multiple sources ...

7.8CVSS7.5AI score0.01135EPSS

Exploits1References3Affected Software1

RedhatCVE•added 2025/12/09 8:27 a.m.•3 views

CVE-2025-66323

Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS6.8AI score0.00066EPSS

Exploits0References1

NVD•added 2025/12/08 8:15 a.m.•3 views

CVE-2025-66323

Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS0.00066EPSS

Exploits0References1

Tenable Nessus•added 2025/12/02 12:0 a.m.•4 views

RHEL 10 : qt6-qtsvg (RHSA-2025:22393)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:22393 advisory. Scalable Vector Graphics SVG is an XML-based language for describing two-dimensional vector graphics. Qt provides classes for rendering and...

9.4CVSS8.2AI score0.00198EPSS

Exploits0References5

CVE•added 2025/11/28 3:4 a.m.•10 views

CVE-2025-58308

Huawei HarmonyOS is affected by CVE-2025-58308 via an improper criterion security check in the call module. Affected versions include HarmonyOS 5.0.1–5.1.0 and 6.0.0. The underlying issue is in the call module’s security check criteria, enabling abnormal feature behavior upon exploitation. The PT...

7.3CVSS6.5AI score0.00071EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/11/28 3:4 a.m.•4 views

CVE-2025-58308

Vulnerability of improper criterion security check in the call module. Impact: Successful exploitation of this vulnerability may cause features to perform abnormally...

7.3CVSS0.00071EPSS

Exploits0References1

Positive Technologies•added 2025/11/28 12:0 a.m.•6 views

PT-2025-48304

Configuration defect vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect app data confidentiality and integrity...

4.4CVSS6.8AI score0.00073EPSS

Exploits0References2

Amazon•added 2025/11/05 12:0 a.m.•3 views

Important: libnvidia-nscq

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure. CVE-2025-23280...

7CVSS7.1AI score0.00224EPSS

Exploits0

OSV•added 2025/10/30 3:15 p.m.•3 views

CVE-2025-5347

Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module...

5.4CVSS5.8AI score0.00369EPSS

Exploits0References1

Debian CVE•added 2025/10/23 6:25 p.m.•4 views

CVE-2025-23332

NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where an attacker might be able to trigger a null pointer deference. A successful exploit of this vulnerability might lead to denial of service...

5CVSS5.2AI score0.00128EPSS

Exploits0