CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

Apache OFBiz - XML External Entity Injection

The /webtools/control/xmlrpc endpoint in OFBiz XML-RPC event handler is exposed to External Entity Injection by passing DOCTYPE declarations with executable payloads that discloses the contents of files in the filesystem. In addition, it can also be used to probe for open network ports, and figur...

7.5CVSS7.1AI score0.1591EPSS

Exploits0References2

EUVD•added 2026/06/05 11:31 a.m.•10 views

EUVD-2026-34825

A Server-Side Request Forgery SSRF vulnerability in the custom process creation feature of linqi allows an authenticated attacker to probe internal network components. By crafting a specific process containing an HTTP Request component, an attacker can force the server to send arbitrary HTTP...

5.3CVSS5.6AI score0.00226EPSS

Exploits0References1

Cvelist•added 2026/04/18 12:1 a.m.•37 views

CVE-2026-40348 Movary has Authenticated SSRF via Jellyfin Server URL Verification that Allows Internal Network Probing

Movary is a self hosted web app to track and rate a user's watched movies. Prior to version 0.71.1, an ordinary authenticated user can trigger server-side requests to arbitrary internal targets through POST /settings/jellyfin/server-url-verify. The endpoint accepts a user-controlled URL, appends...

7.7CVSS0.00379EPSS

Exploits1References4

Positive Technologies•added 2026/04/18 12:0 a.m.•9 views

PT-2026-33540

7.7CVSS5.8AI score0.00379EPSS

Exploits1References5

Tenable Nessus•added 2026/03/30 12:0 a.m.•3 views

Amazon Linux 2023 : gvfs, gvfs-archive, gvfs-client (ALAS2023-2026-1475)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1475 advisory. A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode PASV response. The client...

4.3CVSS7.7AI score0.0036EPSS

Exploits2References6

Amazon•added 2026/03/27 12:0 a.m.•4 views

Medium: gvfs

Issue Overview: A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode PASV response. The client unconditionally trusts this information and attempts to connect to the specified endpoint,...

4.3CVSS6.4AI score0.0036EPSS

Exploits2

Tenable Nessus•added 2026/03/19 12:0 a.m.•7 views

Amazon Linux 2 : gvfs, --advisory ALAS2-2026-3197 (ALAS-2026-3197)

The version of gvfs installed on the remote host is prior to 1.36.2-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3197 advisory. A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP...

4.3CVSS6.5AI score0.0036EPSS

Exploits2References6

Amazon•added 2026/03/19 12:0 a.m.•10 views

Medium: gvfs

4.3CVSS6.4AI score0.0036EPSS

Exploits2

Tenable Nessus•added 2026/03/01 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-28295

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mod...

4.3CVSS5.9AI score0.00186EPSS

Exploits0References3

SUSE CVE•added 2026/02/27 12:24 a.m.•5 views

SUSE CVE-2026-28295

A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode PASV response. The client unconditionally trusts this information and attempts to connect to the specified endpoint, allowing the...

4.3CVSS5.8AI score0.00186EPSS

Exploits0References7

EUVD•added 2026/02/26 6:31 p.m.•5 views

EUVD-2026-8860

4.3CVSS5.6AI score0.00186EPSS

Exploits0References3

OSV•added 2026/02/26 4:24 p.m.•4 views

DEBIAN-CVE-2026-28295

4.3CVSS5.5AI score0.00186EPSS

Exploits0References1

Cvelist•added 2026/02/26 3:33 p.m.•18 views

CVE-2026-28295 Gvfs: gvfs ftp backend: information disclosure via untrusted pasv responses

4.3CVSS0.00186EPSS

Exploits0References2

ATTACKERKB•added 2026/02/26 3:33 p.m.•8 views

CVE-2026-28295

4.3CVSS5.6AI score0.00186EPSS

Exploits0References3

Vulnrichment•added 2026/02/26 3:33 p.m.•4 views

CVE-2026-28295 Gvfs: gvfs ftp backend: information disclosure via untrusted pasv responses

4.3CVSS5.6AI score0.00186EPSS

Exploits0References2

Gitee•added 2025/07/06 3:21 a.m.•121 views

Pentest-and-Development-Tips

Pentest-and-Development-Tips A collection of pentest and development tips Author: 3gstudent Click on me to view the English version 声明以下技巧不应用于非法用途 --- Tips 1. 手动端口探测 nmap的-sV可以探测出服务版本，但有些情况下必须手动探测去验证使用Wireshark获取响应包未免大材小用，可通过nc简单判断 eg. 对于8001端口，nc连接上去，随便输入一个字符串，得到了以下结果： $ nc -vv localhost 8001...

7.4AI score

Exploits0

RedhatCVE•added 2024/07/31 9:15 a.m.•16 views

CVE-2024-41085

In the Linux kernel, the following vulnerability has been resolved: cxl/mem: Fix no cxlnvd during pmem region auto-assembling When CXL subsystem is auto-assembling a pmem region during cxl endpoint port probing, always hit below calltrace. BUG: kernel NULL pointer dereference, address:...

5.5CVSS6.5AI score0.002EPSS

Exploits0References4

OSV•added 2024/07/29 4:15 p.m.•1 views

DEBIAN-CVE-2024-41085

5.5CVSS5.7AI score0.002EPSS

Exploits0References1

Vulnrichment•added 2024/07/29 3:48 p.m.•13 views

CVE-2024-41085 cxl/mem: Fix no cxl_nvd during pmem region auto-assembling

6.5AI score0.002EPSS

Exploits0References2

OSV•added 2024/07/29 3:48 p.m.•21 views

CVE-2024-41085 cxl/mem: Fix no cxl_nvd during pmem region auto-assembling