CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/04/12 12:0 a.m.•4 views

PT-2026-32157

A security flaw has been discovered in Dromara warm-flow up to 1.8.4. Impacted is the function SpelHelper.parseExpression of the file /warm-flow/save-json of the component Workflow Definition Handler. The manipulation of the argument listenerPath/skipCondition/permissionFlag results in code...

6.5CVSS6.3AI score0.00301EPSS

Positive Technologies•added 2026/04/12 12:0 a.m.•2 views

PT-2026-32160

Faleemi Desktop Software 1.8 contains a local buffer overflow vulnerability in the System Setup dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can inject a crafted payload into the Save Path for Snapshot and Record file field t...

8.6CVSS6.4AI score0.00156EPSS

Exploits0References4

Cvelist•added 2026/04/10 6:15 p.m.•18 views

CVE-2026-33702 Chamilo LMS has an Insecure Direct Object Reference (IDOR)

Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, Chamilo LMS contains an Insecure Direct Object Reference IDOR vulnerability in the Learning Path progress saving endpoint. The file lpajaxsaveitem.php accepts a uid user ID parameter directly from $REQUEST and uses it t...

7.1CVSS0.00238EPSS

Exploits0References3

EUVD•added 2026/04/10 9:31 a.m.•2 views

EUVD-2026-21317

The YITH WooCommerce Wishlist WordPress plugin before 4.13.0 does not properly validate wishlist ownership in the savetitle AJAX handler before allowing wishlist renaming operations. The function only checks for a valid nonce, which is publicly exposed in the page source of the /wishlist/ page,...

6.5CVSS5.9AI score0.00226EPSS

Exploits0References2

NVD•added 2026/04/10 7:16 a.m.•2 views

CVE-2026-4432

6.5CVSS0.00226EPSS

Cvelist•added 2026/04/10 6:0 a.m.•20 views

CVE-2026-4432 YITH WooCommerce Wishlist < 4.13.0 - Unauthenticated Arbitrary Wishlist Renaming via IDOR

0.00226EPSS

Vulnrichment•added 2026/04/10 6:0 a.m.•2 views

CVE-2026-4432 YITH WooCommerce Wishlist < 4.13.0 - Unauthenticated Arbitrary Wishlist Renaming via IDOR

5.8AI score0.00226EPSS

CVE•added 2026/04/10 6:0 a.m.•14 views

CVE-2026-4432

CVE-2026-4432 concerns the YITH WooCommerce Wishlist WordPress plugin prior to 4.13.0. Publicly exposed nonce in the /wishlist page allows unauthenticated attackers to rename any wishlist, due to insufficient ownership validation in the save_title() AJAX handler. Technical details across connecte...

6.5CVSS5.9AI score0.00226EPSS

ATTACKERKB•added 2026/04/10 6:0 a.m.•1 views

CVE-2026-4432

5.9AI score0.00226EPSS

NVD•added 2026/04/10 2:16 a.m.•4 views

CVE-2026-1263

The Webling plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 3.9.0 due to insufficient input sanitization, insufficient output escaping, and missing capabilities checks in the 'weblingadminsaveform' and 'weblingadminsavememberlist' functions...

6.4CVSS0.00277EPSS

Positive Technologies•added 2026/04/10 12:0 a.m.•4 views

PT-2026-31882

The YITH WooCommerce Wishlist WordPress plugin before 4.13.0 does not properly validate wishlist ownership in the save title AJAX handler before allowing wishlist renaming operations. The function only checks for a valid nonce, which is publicly exposed in the page source of the /wishlist/ page,...

5.8AI score0.00226EPSS

Exploits0References2

Fedora•added 2026/04/09 3:37 a.m.•2 views

[SECURITY] Fedora 42 Update: python-pydicom-3.0.2-1.fc42

pydicom is a pure python package for working with DICOM files. It was made for inspecting and modifying DICOM data in an easy "pythonic" way. The modifications can be written again to a new file. pydicom is not a DICOM server, and is not primarily about viewing images. It is designed to let you...

7.8CVSS5.9AI score0.00279EPSS

Exploits1

EUVD•added 2026/04/09 12:32 a.m.•1 views

EUVD-2026-20788

A vulnerability was identified in SourceCodester Online Food Ordering System 1.0. Affected by this issue is the function saveproduct of the file /Actions.php of the component POST Parameter Handler. Such manipulation of the argument price leads to business logic errors. The attack may be performe...

5.5CVSS5.6AI score0.00246EPSS

NVD•added 2026/04/08 11:17 p.m.•3 views

CVE-2026-5811

5.5CVSS0.00246EPSS

CVE•added 2026/04/08 10:15 p.m.•6 views

CVE-2026-5811

Affected product: SourceCodester Online Food Ordering System 1.0. The CVE stems from the POST Parameter Handler, specifically the save_product function in Actions.php, where manipulating the price parameter leads to business logic errors. Impact is described as remote exploitation with publicly a...

5.5CVSS5.8AI score0.00246EPSS

Cvelist•added 2026/04/08 10:15 p.m.•21 views

CVE-2026-5811 SourceCodester Online Food Ordering System POST Parameter Actions.php save_product logic error

5.5CVSS0.00246EPSS

ATTACKERKB•added 2026/04/08 10:15 p.m.•1 views

CVE-2026-5811

5.5CVSS5.8AI score0.00246EPSS

Exploits0References5Affected Software1

EUVD•added 2026/04/08 9:33 p.m.•3 views

EUVD-2026-20643

The MW WP Form plugin for WordPress is vulnerable to Arbitrary File Move/Read in all versions up to and including 5.1.1. This is due to insufficient validation of the $name parameter upload field key passed to the generateuserfiledirpath function, which uses WordPress's pathjoin — a function that...

8.1CVSS6.6AI score0.01069EPSS

Cvelist•added 2026/04/08 8:25 p.m.•32 views

CVE-2026-5436 MW WP Form <= 5.1.1 - Unauthenticated Arbitrary File Move via regenerate_upload_file_keys

8.1CVSS0.01069EPSS