CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1321 matches found

Malwarebytes•added 2026/02/16 1:9 p.m.•5 views

ClickFix added nslookup commands to its arsenal for downloading RATs

ClickFix malware campaigns are all about tricking the victim into infecting their own machine. Apparently, the criminals behind these campaigns have figured out that mshta and Powershell commands are increasingly being blocked by security software, so they have developed a new method using...

6.1AI score

Exploits0

GithubExploit•added 2026/02/16 8:0 a.m.•113 views

scan-exploit

pyt...

5.4AI score

Exploits0

GithubExploit•added 2026/02/14 8:1 p.m.•146 views

Exploit for CVE-2025-2304

🚀 CVE-2025-2304 - Simple Privilege Escalation Tool 📦 Downl...

9.4CVSS5.6AI score0.00206EPSS

Exploits15

GithubExploit•added 2026/02/11 5:5 a.m.•121 views

Syntecxhub_SQLi_Scanner

SyntecxhubSQLiScanner How do we ensure web applications are...

5.5AI score

Exploits0

GithubExploit•added 2026/02/04 2:13 p.m.•148 views

Exploit for Reliance on Untrusted Inputs in a Security Decision in Microsoft

Detections for the CVE-2026-21509 vulnerability in MS Office...

8.8CVSS5.5AI score0.94332EPSS

Exploits47

GithubExploit•added 2026/01/22 8:33 p.m.•127 views

Exploit for CVE-2026-24061

CVE-2...

9.8CVSS5.4AI score0.91526EPSS

Exploits58

RedhatCVE•added 2026/01/09 11:27 a.m.•3 views

CVE-2021-33509

Plone through 5.2.4 allows remote authenticated managers to perform disk I/O via crafted keyword arguments to the ReStructuredText transform in a Python script...

9.9CVSS6.5AI score0.00846EPSS

Exploits0References1

GithubExploit•added 2025/12/13 5:55 p.m.•114 views

Exploit for Injection in Dlink Dns-320_Firmware

CVE-2024-10914POC PoC para explota...

9.8CVSS7AI score0.93611EPSS

Exploits11

GithubExploit•added 2025/12/10 7:10 p.m.•174 views

Exploit for Deserialization of Untrusted Data in Facebook React

💥 React2Shell-POC 💥 !pythonhttps://img.shields.io/badge/py...

10CVSS6.9AI score0.82011EPSS

Exploits372

GithubExploit•added 2025/12/07 4:26 a.m.•113 views

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 Exploit A simple python script that exploits t...

10CVSS7AI score0.82011EPSS

Exploits358

Packet Storm•added 2025/12/05 12:0 a.m.•152 views

📄 Abacre Restaurant Point of Sale 15.0.0.1656 Memory Scanner

Abacre Restaurant Point of Sale version 15.0.0.1656 memory scanner for sensitive data detection. This Python script is an advanced Windows memory scanning tool designed to detect sensitive data leaks within running processes. It performs deep memory analysis to identify patterns resembling produc...

7.5CVSS6.9AI score0.00032EPSS

Exploits2

GithubExploit•added 2025/12/04 8:4 a.m.•340 views

Exploit for Prototype Pollution in Datatables Datatables.Net

CVE-2020-28458 Affected versions of this package are vulnerabl...

7.5CVSS7AI score0.01228EPSS

Exploits2

RedhatCVE•added 2025/11/19 10:23 a.m.•5 views

CVE-2025-41736

A low privileged remote attacker can upload a new or overwrite an existing python script by using a path traversal of the target filename in php resulting in a remote code execution...

8.8CVSS7.6AI score0.00556EPSS

Exploits0References1

GithubExploit•added 2025/11/19 4:5 a.m.•117 views

XSS-

It is an offensive tool for web application security testing. Th...

7.1AI score

Exploits0

OSV•added 2025/11/18 11:15 a.m.•0 views

CVE-2025-41736

A low privileged remote attacker can upload a new or overwrite an existing python script by using a path traversal of the target filename in php resulting in a remote code execution...

8.8CVSS6AI score

Exploits0References1

NVD•added 2025/11/18 11:15 a.m.•2 views

CVE-2025-41736

A low privileged remote attacker can upload a new or overwrite an existing python script by using a path traversal of the target filename in php resulting in a remote code execution...

8.8CVSS0.00556EPSS

Exploits0References1

CVE•added 2025/11/18 10:18 a.m.•11 views

CVE-2025-41736

The CVE-2025-41736 vulnerability affects METZ CONNECT EWIO2 family (EWIO2-M, EWIO2-M-BM, EWIO2-BM) and is triggered by a path traversal in PHP that allows a low-privileged, remote attacker to upload or overwrite a Python script, resulting in remote code execution. Multiple sources describe the is...

8.8CVSS7.8AI score0.00556EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/11/18 10:18 a.m.•4 views

CVE-2025-41736 Possible arbitrary code execution

A low privileged remote attacker can upload a new or overwrite an existing python script by using a path traversal of the target filename in php resulting in a remote code execution...

8.8CVSS7.8AI score0.00556EPSS

Exploits0References1

Cvelist•added 2025/11/18 10:18 a.m.•5 views

CVE-2025-41736 Possible arbitrary code execution

A low privileged remote attacker can upload a new or overwrite an existing python script by using a path traversal of the target filename in php resulting in a remote code execution...

8.8CVSS0.00556EPSS

Exploits0References1

GithubExploit•added 2025/11/07 7:42 a.m.•118 views

Acunetix_vulnerability_assessment_tool

Acunetixvulnerabilityassessmenttool !imagehttp...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by