CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1085 matches found

EUVD•added 2026/04/08 9:31 a.m.•1 views

EUVD-2026-20132

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS7.5AI score0.00066EPSS

Exploits0References4

NVD•added 2026/04/08 9:16 a.m.•2 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS0.00066EPSS

Exploits0References3

Cvelist•added 2026/04/08 8:52 a.m.•14 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS0.00066EPSS

Exploits0References3

Vulnrichment•added 2026/04/08 8:52 a.m.•1 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS7.5AI score0.00066EPSS

Exploits0References3

ATTACKERKB•added 2026/04/08 8:52 a.m.•2 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS7.5AI score0.00066EPSS

Exploits0References4Affected Software5

RedhatCVE•added 2026/01/09 10:53 a.m.•2 views

CVE-2022-33941

PowerCMS XMLRPC API provided by Alfasado Inc. contains a command injection vulnerability. Sending a specially crafted message by POST method to PowerCMS XMLRPC API may allow arbitrary Perl script execution, and an arbitrary OS command may be executed through it. Affected products/versions are as...

9.8CVSS7.4AI score0.05225EPSS

Exploits0References1

CVE•added 2025/12/24 8:14 p.m.•11 views

CVE-2025-8769

CVE-2025-8769 affects MegaSys/Megasys’ Telenium Online Web Application. The vulnerability arises from a Perl script used to load the login page with improper input validation, allowing an attacker to inject arbitrary Perl code through a crafted HTTP request and achieve remote code execution on th...

9.8CVSS7.8AI score0.00981EPSS

Exploits0References3

Cvelist•added 2025/12/24 8:14 p.m.•23 views

CVE-2025-8769 MegaSys Computer Technologies Telenium Online Web Application Improper Input Validation

Telenium Online Web Application is vulnerable due to a Perl script that is called to load the login page. Due to improper input validation, an attacker can inject arbitrary Perl code through a crafted HTTP request, leading to remote code execution on the server...

9.8CVSS0.00981EPSS

Exploits0References3

Vulnrichment•added 2025/12/24 8:14 p.m.•1 views

CVE-2025-8769 MegaSys Computer Technologies Telenium Online Web Application Improper Input Validation

9.8CVSS7.8AI score0.00981EPSS

Exploits0References3

CNNVD•added 2025/12/24 12:0 a.m.•2 views

Megasys Telenium Online Web Application 输入验证错误漏洞

Megasys Telenium Online Web Application is a web page for a network management system from Megasys Canada. An input validation error vulnerability exists in MegaSys Telenium Online Web Application, which stems from improper Perl script input validation and could lead to remote code execution...

9.8CVSS7.7AI score0.00981EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-8342

Malware in sbrugna...

10CVSS9.5AI score0.00886EPSS

Exploits3References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2001-0113

Malware in sbrugna...

10CVSS6.4AI score0.07555EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-25892

Malicious code in bioql PyPI...

9.4CVSS6.2AI score0.0006EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-40681

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.05225EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-36977

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.05225EPSS

Exploits0References2

Gitee•added 2025/08/17 1:20 a.m.•81 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

This is a PoC exploit for CVE-2019-19781, a vulnerability in Citrix ADC NetScaler that allows for unauthenticated remote code execution. The tool, called Citrixmash, was published by TrustedSec due to other researchers releasing their code first. The exploit exploits a directory traversal bug in...

9.8CVSS8.1AI score0.94442EPSS

Exploits48

GithubExploit•added 2025/08/05 6:38 a.m.•135 views

Exploit for Improper Access Control in Webmin

Webmin-CVE-2022-0824-Enhanced-Exploit !IMPORTANT Enhan...

9CVSS7.5AI score0.92677EPSS

Exploits13

RedhatCVE•added 2025/05/22 9:57 p.m.•8 views

CVE-2022-38078

Movable Type XMLRPC API provided by Six Apart Ltd. contains a command injection vulnerability. Sending a specially crafted message by POST method to Movable Type XMLRPC API may allow arbitrary Perl script execution, and an arbitrary OS command may be executed through it. Affected products and...

9.8CVSS7.5AI score0.05225EPSS

Exploits0References1

Packet Storm News•added 2025/03/25 12:0 a.m.•2 views

How to Create a Scan in Perl to Identify Vulnerable Telnet Servers

This paper, written in Brazilian Portuguese, explains how to create a Perl script to identify vulnerable telnet servers. In the context of application security, the author provides mitigation recommendations...

6.9AI score

Exploits0

0day.today•added 2024/09/11 12:0 a.m.•463 views

VICIdial 2.14-917a Remote Code Execution Vulnerability

An attacker with authenticated access to VICIdial version 2.14-917a as an agent can execute arbitrary shell commands as the root user. This attack can be chained with CVE-2024-8503 to execute arbitrary shell commands starting from an unauthenticated perspective. Title: VICIdial Authenticated Remo...

9.8CVSS7.9AI score0.93095EPSS

Exploits12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by