CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/03/26 12:0 a.m.•1 views

Fedora 44 : dotnet10.0 (2026-956fc306c4)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-956fc306c4 advisory. This is the March 2026 release of .NET 10. Release Notes: - SDK: https://github.com/dotnet/core/blob/main/release-notes/10.0/10.0.4/10.0.104.md - Runtime:...

5.9AI score

Exploits0References1

Positive Technologies•added 2026/03/26 12:0 a.m.•2 views

PT-2026-28521

Name of the Vulnerable Software and Affected Versions Invoice Ninja versions 5.13.0 through 5.13.3 Description Invoice Ninja, an invoice, quote, project, and time-tracking application built with Laravel, has an issue where the product notes fields in versions 5.13.0 through 5.13.3 allow raw HTML...

5.4CVSS5.8AI score0.00014EPSS

Exploits1References4

CNNVD•added 2026/03/26 12:0 a.m.•3 views

Invoice Ninja 跨站脚本漏洞

Invoice Ninja is an open-source application developed by Invoice Ninja, featuring functions for invoices, quotes, projects, and time tracking. Version 5.13.0 of Invoice Ninja contains a cross-site scripting vulnerability. This vulnerability stems from the product notes field allowing raw HTML to ...

5.4CVSS5.6AI score0.00014EPSS

Exploits1References2

CNNVD•added 2026/03/26 12:0 a.m.•2 views

OpenEMR 安全漏洞

OpenEMR is a set of open-source medical management systems developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. Versions of OpenEMR prior to 8.0.0.3 contained security...

8.1CVSS5.8AI score0.00016EPSS

ATTACKERKB•added 2026/03/25 11:49 p.m.•5 views

CVE-2026-34055

8.1CVSS5.9AI score0.00027EPSS

Exploits1References4Affected Software1

Cvelist•added 2026/03/25 11:49 p.m.•25 views

CVE-2026-34055 OpenEMR has IDOR in Patient Notes Web UI allows unauthorized note access/modification

8.1CVSS0.00016EPSS

OSV•added 2026/03/25 11:49 p.m.•1 views

CVE-2026-34055 OpenEMR has IDOR in Patient Notes Web UI allows unauthorized note access/modification

8.1CVSS6AI score0.00016EPSS

Exploits0References5

Vulnrichment•added 2026/03/25 11:49 p.m.•0 views

CVE-2026-34055 OpenEMR has IDOR in Patient Notes Web UI allows unauthorized note access/modification

8.1CVSS5.9AI score0.00016EPSS

CVE•added 2026/03/25 11:49 p.m.•2 views

CVE-2026-34055

OpenEMR contains an IDOR in the web UI: legacy patient notes updates/deletes in library/pnotes.inc.php use WHERE id = ? without verifying the note belongs to the user’s accessible patient. Multiple web UI callers pass user-controlled note IDs, enabling unauthorized access/modification. Affects ve...

8.1CVSS5.9AI score0.00016EPSS

Exploits0References3Affected Software1

NVD•added 2026/03/25 11:17 p.m.•2 views

CVE-2026-33348

OpenEMR is a free and open source electronic health records and medical practice management application. Users with the Notes - my encounters role can fill Eye Exam forms in patient encounters. The answers to the form are displayed on the encounter page and in the visit history for the users with...

8.7CVSS0.00033EPSS

Vulnrichment•added 2026/03/25 10:30 p.m.•2 views

CVE-2026-33348 OpenEMR has Stored XSS in patient encounter Eye Exam form $CHRONIC2 and $CHRONIC3

Cvelist•added 2026/03/25 10:30 p.m.•17 views

CVE-2026-33348 OpenEMR has Stored XSS in patient encounter Eye Exam form $CHRONIC2 and $CHRONIC3

8.7CVSS0.00033EPSS

CVE•added 2026/03/25 10:30 p.m.•4 views

CVE-2026-33348

OpenEMR has a stored XSS vulnerability in the Eye Exam form answers for the Notes - my encounters role. Versions prior to 8.0.0.3 allow an authenticated attacker with that role to inject arbitrary JavaScript via form answers, which is executed when other users view the form answers on encounter p...

Exploits1References3Affected Software1

EUVD•added 2026/03/25 10:30 p.m.•2 views

EUVD-2026-16012

ATTACKERKB•added 2026/03/25 10:30 p.m.•3 views

CVE-2026-33348