CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploits0References4Affected Software1

CVE•added 2026/03/27 8:56 p.m.•13 views

CVE-2026-33906

CVE-2026-33906 concerns Ella Core, a 5G core for private networks. Prior to version 1.7.0, the NetworkManager role had backup/restore permissions, and the restore endpoint accepted any valid SQLite file without validating contents. An attacker with NetworkManager privileges could replace the prod...

Exploits0References3Affected Software1

OSV•added 2026/03/27 8:56 p.m.•3 views

CVE-2026-33906 Ella Core has Privilege Escalation via Database Restore by NetworkManager role

OSV•added 2026/03/27 2:7 p.m.•5 views

Exploits0References5

OESA-2026-1772 sqlite security update

SQLite is a C-language library that implements a small, fast, self-contained, high-reliability, full-featured, SQL database engine. SQLite is the most used database engine in the world. SQLite is built into all mobile phones and most computers and comes bundled inside countless other applications...

OESA-2026-1771 sqlite security update

9.8CVSS6.9AI score0.64893EPSS

OESA-2026-1770 sqlite security update

Exploits4References3

9.8CVSS6.7AI score0.64893EPSS

OESA-2026-1769 sqlite security update

Exploits4References3

OSV•added 2026/03/27 2:7 p.m.•6 views

OESA-2026-1768 sqlite security update

OESA-2026-1767 sqlite security update

GithubExploit•added 2026/03/27 9:5 a.m.•127 views

sqli

SQL Injection Write-up 🧪 1. Průzkum Do vyhledávacího pole...

6AI score

Exploits0

NVD•added 2026/03/27 1:16 a.m.•8 views

CVE-2026-33735

MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.69, an authorization bypass in the /api/settings/import-database endpoint allows attackers with low-privilege credentials to upload and replace the application's SQLite database entirely, leading to a fu...

8.8CVSS0.00385EPSS

Exploits1References3

ATTACKERKB•added 2026/03/27 12:36 a.m.•3 views

CVE-2026-33735

8.7CVSS5.8AI score0.00385EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2026/03/27 12:36 a.m.•3 views

CVE-2026-33735 MyTube has an Improper Access Control that Allows Complete Application Takeover

8.7CVSS5.9AI score0.00385EPSS

Exploits1References3

OSV•added 2026/03/27 12:36 a.m.•4 views

CVE-2026-33735 MyTube has an Improper Access Control that Allows Complete Application Takeover

8.7CVSS5.9AI score0.00385EPSS

Exploits1References5

CNNVD•added 2026/03/27 12:0 a.m.•5 views

Ella Core 安全漏洞

Ella Core is an open-source solution developed by Ella Networks for use in private networks as a 5G core network solution. Versions of Ella Core prior to 1.7.0 contained security vulnerabilities. These vulnerabilities stemmed from the NetworkManager role being granted backup and restore...

7.2CVSS5.8AI score0.00388EPSS

Exploits0References4

Tenable Nessus•added 2026/03/27 12:0 a.m.•6 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : sqlite3 (SUSE-SU-2026:1065-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1065-1 advisory. Update sqlite3 to 3.51.3: - CVE-2025-7709: Integer Overflow in FTS5 Extension bsc1254670. -...

7.5CVSS5.9AI score0.00322EPSS

Exploits1References7

OSV•added 2026/03/26 10:14 p.m.•1 views

GHSA-87J9-M7X6-HVW2 Ella Core has Privilege Escalation via Database Restore by NetworkManager role

Summary The NetworkManager role was granted backup and restore permission. The restore endpoint accepted any valid SQLite file without verifying its contents. Impact A NetworkManager could replace the production database with a tampered copy to escalate to Admin, gaining access to user management...