CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36084 matches found

Cvelist•added 2025/07/08 4:57 p.m.•6 views

CVE-2025-49726 Windows Notification Elevation of Privilege Vulnerability

...

7.8CVSS0.00328EPSS

Exploits0References1

Vulnrichment•added 2025/07/08 4:57 p.m.•5 views

CVE-2025-49726 Windows Notification Elevation of Privilege Vulnerability

...

7.8CVSS7.2AI score0.00328EPSS

Exploits0References1

Microsoft CVE•added 2025/07/08 2:0 p.m.•5 views

Windows Notification Elevation of Privilege Vulnerability

Use after free in Windows Notification allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00273EPSS

Exploits0

Microsoft CVE•added 2025/07/08 2:0 p.m.•6 views

Windows Notification Elevation of Privilege Vulnerability

Use after free in Windows Notification allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00328EPSS

Exploits0

Positive Technologies•added 2025/07/08 12:0 a.m.•2 views

PT-2025-28615 · Microsoft · Windows Notification +1

Name of the Vulnerable Software and Affected Versions: Windows Notification affected versions not specified Description: The issue is related to a use after free condition in Windows Notification, allowing an authorized attacker to locally elevate privileges. This can potentially be exploited by ...

7.8CVSS5.9AI score0.00328EPSS

Exploits0References6

Positive Technologies•added 2025/07/08 12:0 a.m.•2 views

PT-2025-28614 · Microsoft · Windows Notification +1

Name of the Vulnerable Software and Affected Versions: Windows Notification affected versions not specified Description: The issue is related to a use after free condition in Windows Notification, allowing an authorized attacker to elevate privileges locally. There is no information provided abou...

7.8CVSS6AI score0.00273EPSS

Exploits0References6

Positive Technologies•added 2025/07/08 12:0 a.m.•4 views

PT-2025-28424 · Undefined · Undefined

CVE-2025-53615 Rejected reason https://t.co/8Lmn9NEBkt Vulnerability Notification: https://t.co/xhLrNnfyrO...

6.6AI score

Exploits0References1

BDU FSTEC•added 2025/07/08 12:0 a.m.•6 views

The vulnerability of the HarmonyOS operating system, related to deficiencies in authentication procedures, allows a perpetrator to gain access to the camera without notifying the user.

The vulnerability of the HarmonyOS operating system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the camera without notifying the user...

7.6CVSS5.5AI score0.00127EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2025/07/08 12:0 a.m.•3 views

The vulnerability of the HarmonyOS operating system, related to permission handling errors, allows a perpetrator to gain access to the camera without notifying the user.

The vulnerability of the HarmonyOS operating system is related to errors in permission handling. Exploiting this vulnerability could allow a remote attacker to gain access to the camera without notifying the user...

5.7CVSS5.5AI score0.00139EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2025/07/06 2:18 a.m.•15 views

CVE-2025-5924

The WP Firebase Push Notification plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.0. This is due to missing or incorrect nonce validation on the wfpnbrodcastnotificationmessage function. This makes it possible for unauthenticated attacker...

4.3CVSS6.1AI score0.00133EPSS

Exploits0References1

OSV•added 2025/07/04 6:17 p.m.•1 views

CGA-V2F5-W32C-5QX5

Bulletin has no description...

7.5CVSS6.3AI score0.04561EPSS

Exploits0

OSV•added 2025/07/04 3:15 a.m.•2 views

CVE-2025-5924

4.3CVSS5.6AI score0.00133EPSS

Exploits0References2

CVE•added 2025/07/04 1:44 a.m.•24 views

CVE-2025-5924

CVE-2025-5924 concerns the WP Firebase Push Notification WordPress plugin (versions

4.3CVSS6.1AI score0.00133EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2025/07/04 1:44 a.m.•3 views

CVE-2025-5924 WP Firebase Push Notification <= 1.2.0 - Cross-Site Request Forgery to Broadcast Notification

4.3CVSS6AI score0.00133EPSS

Exploits0References2

Cvelist•added 2025/07/04 1:44 a.m.•8 views

CVE-2025-5924 WP Firebase Push Notification <= 1.2.0 - Cross-Site Request Forgery to Broadcast Notification

4.3CVSS0.00133EPSS

Exploits0References2

CNNVD•added 2025/07/04 12:0 a.m.•2 views

WordPress plugin WP Firebase Push Notification 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

4.3CVSS6.4AI score0.00133EPSS

Exploits0References2

Positive Technologies•added 2025/07/04 12:0 a.m.•3 views

PT-2025-27841 · WordPress · Wp Firebase Push Notification

Name of the Vulnerable Software and Affected Versions: WP Firebase Push Notification plugin for WordPress versions prior to 1.2.1 Description: The issue is due to missing or incorrect nonce validation on the wfpn brodcast notification message function, making it possible for unauthenticated...

4.3CVSS6AI score0.00133EPSS

Exploits0References6

OSV•added 2025/07/03 7:47 p.m.•2 views

BELL-CVE-2025-38146

Bulletin has no description...

7.8CVSS6.1AI score0.00174EPSS

Exploits0References1

OSV•added 2025/07/03 7:47 p.m.•2 views

BELL-CVE-2025-38125

Bulletin has no description...

5.5CVSS6.2AI score0.00158EPSS

Exploits0References1