CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Security Advisory Description CVE-2017-5506 Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file. CVE-2017-5507 Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to...

9.8CVSS7.8AI score0.05959EPSS

Exploits1

CNNVD•added 2025/09/29 12:0 a.m.•3 views

Apeman ID71 信任管理问题漏洞

Apeman ID71 is a webcam from Apeman. The Apeman ID71 suffers from a trust management issue vulnerability that stems from the presence of hard-coded credentials in the file /system/www/system.ini, which could lead to a remote attack...

10CVSS9.3AI score0.006EPSS

Exploits0References3

CNNVD•added 2025/09/26 12:0 a.m.•2 views

yudao-cloud 授权问题漏洞

yudao-cloud is a backend management system for YunaiV individual developers. An authorization issue vulnerability exists in yudao-cloud version 2025.09 and earlier, which stems from improper authorization of the parameter contactId in the file /crm/contact/transfer, which could lead to remote...

8.8CVSS6.5AI score0.00296EPSS

Exploits0References4

CNNVD•added 2025/09/26 12:0 a.m.•3 views

Portábilis i-Educar 授权问题漏洞

Portábilis i-Educar is an application from Portábilis. It can easily help you with basic and technical education. An authorization issue vulnerability exists in Portábilis i-Educar 2.10 and earlier versions, which stems from improper authorization of the parameter alunoid in the file...

8.8CVSS6.5AI score0.00348EPSS

Exploits1References6

CNNVD•added 2025/09/25 12:0 a.m.•4 views

JeecgBoot 授权问题漏洞

JeecgBoot is a Java low-code platform for enterprise web applications from China National Torch Jeecg. An authorization issue vulnerability exists in JeecgBoot 3.8.2 and earlier versions, which stems from improper authorization in the file /sys/user/exportXls in the component Filter Handler, whic...

6.5CVSS4.8AI score0.00368EPSS

Exploits1References4

Positive Technologies•added 2025/09/25 12:0 a.m.•6 views

PT-2025-39449

Name of the Vulnerable Software and Affected Versions MuFen-mker PHP-Usermm versions prior to 37f2d24e51b04346dfc565b93fc2fc6b37bdaea9 Description A SQL injection issue exists in the file /chkuser.php due to manipulation of the Username argument. This allows for remote attacks. The exploit is...

7.5CVSS7.5AI score0.00302EPSS

Exploits0References7

CNNVD•added 2025/09/22 12:0 a.m.•2 views

Weitong Mall 授权问题漏洞

Weitong Mall is a shopping mall system developed by fuyanglipengjun. Weitong Mall Weitong Mall 1.0 version of the authorization problem vulnerability, the vulnerability stems from the file /usercoupon/queryAll function UserCouponController authorization is not appropriate, which may lead to remot...

5.3CVSS4.9AI score0.00336EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by