CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

782 matches found

ZZcms - Cross-Site Scripting

ZZcms 2019 contains a cross-site scripting vulnerability in the user login page. An attacker can inject arbitrary JavaScript code in the referer header via user/login.php, which can allow theft of cookie-based credentials and launch of subsequent attacks. id: CVE-2020-20285 info: name: ZZcms -...

5.4CVSS6.1AI score0.06066EPSS

Exploits1References3

Nuclei•added yesterday•2 views

JumpServer - Open Redirect via Referer Header

JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to v3.10.19 and v4.10.5, The /core/i18n// endpoint uses the Referer header as the redirection target without proper validation, which could lead to an Open Redirect vulnerability. id:...

6.9CVSS5.8AI score0.01063EPSS

Exploits0References3

Nuclei•added yesterday•17 views

Microsoft SharePoint Server - Authentication Bypass (ToolShell)

Microsoft Office SharePoint Server contains an improper authentication vulnerability that allows unauthorized attackers to perform spoofing over a network. By crafting a POST request to /layouts/15/ToolPane.aspx with a forged Referer header /layouts/SignOut.aspx, attackers can bypass authenticati...

9.8CVSS7.7AI score0.88536EPSS

Exploits41References5

RedhatCVE•added 2026/05/27 8:14 p.m.•6 views

CVE-2026-44833

Snipe-IT is an IT asset/license management system. Prior to 8.4.1, an open redirect vulnerability in Snipe-IT allows attackers to redirect users to malicious sites via unvalidated HTTP Referer header stored in session variable. This vulnerability is fixed in 8.4.1...

7.1CVSS5.8AI score0.00013EPSS

Exploits0References1

Snyk•added 2026/05/26 8:42 p.m.•3 views

Open Redirect

Overview snipe/snipe-it is an asset management system built on Laravel. Affected versions of this package are vulnerable to Open Redirect via the unvalidated HTTP Referer header stored in a session variable. An attacker can redirect users to arbitrary external sites by crafting a malicious link a...

7.1CVSS5.9AI score0.00013EPSS

Exploits0References2

NVD•added 2026/05/26 8:16 p.m.•7 views

CVE-2026-44833

7.1CVSS0.00013EPSS

Exploits0References2

Cvelist•added 2026/05/26 7:30 p.m.•21 views

CVE-2026-44833 Snipe-IT: Open redirect vulnerability

5.9CVSS0.00013EPSS

Exploits0References2

ATTACKERKB•added 2026/05/26 7:30 p.m.•6 views

CVE-2026-44833

7.1CVSS5.8AI score0.00013EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/05/26 7:30 p.m.•3 views

CVE-2026-44833 Snipe-IT: Open redirect vulnerability

5.9CVSS5.8AI score0.00013EPSS

Exploits0References2

CVE•added 2026/05/26 7:30 p.m.•9 views

CVE-2026-44833

The CVE-2026-44833 affects Snipe-IT up to version 8.4.0, where an open redirect vulnerability arises from using an unvalidated HTTP Referer header stored in a session variable. When a user action triggers a redirect (e.g., Save with redirect option set to back), the application reads the back_url...

7.1CVSS5.8AI score0.00013EPSS

Exploits0References2Affected Software1

CNNVD•added 2026/05/26 12:0 a.m.•5 views

Snipe-IT 输入验证错误漏洞

Snipe-IT is a set of open-source IT asset/license management systems developed by Grokability. Versions of Snipe-IT prior to 8.4.1 contained a vulnerability related to input validation errors. This vulnerability stemmed from the unauthorized storage of HTTP Referer headers in session variables,...

7.1CVSS5.8AI score0.00013EPSS

Exploits0References3

Snyk•added 2026/05/25 11:17 p.m.•2 views

Open Redirect

Overview Affected versions of this package are vulnerable to Open Redirect due to insufficient validation of the Referer header in saveRequestReferer. An authenticated user can redirect users to arbitrary external sites by supplying a malicious Referer value during authentication. Remediation...

5.4CVSS5.9AI score0.00086EPSS

Exploits0References2

NVD•added 2026/05/25 9:16 p.m.•10 views

CVE-2026-48589

Apache Shiro’s Jakarta EE module used the HTTP Referer header in certain cases to issue redirect after a user login. In affected versions, insufficient validation of this client-controlled value could allow an attacker to influence the redirect target in applications using the Jakarta EE module...

5.4CVSS0.00086EPSS

Exploits0References2

UbuntuCve•added 2026/05/25 9:16 p.m.•3 views

CVE-2026-48589

5.4CVSS5.8AI score0.00086EPSS

Exploits0References4

ATTACKERKB•added 2026/05/25 8:20 p.m.•5 views

CVE-2026-48589

5.8AI score0.00086EPSS

Exploits0References2Affected Software1

EUVD•added 2026/05/25 8:20 p.m.•6 views

EUVD-2026-31738

5.8AI score0.00086EPSS

Exploits0References1

Debian CVE•added 2026/05/25 8:20 p.m.•5 views

CVE-2026-48589

5.4CVSS5.8AI score0.00086EPSS

Exploits0

Positive Technologies•added 2026/05/25 12:0 a.m.•8 views

PT-2026-43121

5.8AI score0.00086EPSS

Exploits0References1

CNNVD•added 2026/05/25 12:0 a.m.•7 views

Apache Shiro 安全漏洞

Apache Shiro is a set of Java security frameworks for performing authentication, authorization, encryption, and session management from the Apache Foundation USA. A security vulnerability exists in Apache Shiro versions 2.0-alpha through 2.2.0 and 3.0.0-alpha-1, which stems from insufficient...

5.4CVSS5.8AI score0.00086EPSS

Exploits0References2

NVD•added 2026/05/22 8:16 p.m.•4 views

CVE-2026-40598

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS0.00059EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by