CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

RedhatCVE•added 2026/03/26 3:7 p.m.•0 views

CVE-2026-20993

Improper export of android application components in Samsung Assistant prior to version 9.3.10.7 allows local attacker to access saved information...

4.8CVSS5.8AI score0.00017EPSS

Exploits0References1

NVD•added 2026/03/16 2:18 p.m.•0 views

CVE-2026-20993

Improper export of android application components in Samsung Assistant prior to version 9.3.10.7 allows local attacker to access saved information...

5.5CVSS0.00017EPSS

Exploits0References1

Cvelist•added 2026/03/16 4:32 a.m.•22 views

CVE-2026-20993

Improper export of android application components in Samsung Assistant prior to version 9.3.10.7 allows local attacker to access saved information...

4.8CVSS0.00017EPSS

Exploits0References1

Vulnrichment•added 2026/03/16 4:32 a.m.•0 views

CVE-2026-20993

Improper export of android application components in Samsung Assistant prior to version 9.3.10.7 allows local attacker to access saved information...

4.8CVSS5.8AI score0.00017EPSS

Exploits0References1

ATTACKERKB•added 2026/03/16 4:32 a.m.•1 views

CVE-2026-20993

Improper export of android application components in Samsung Assistant prior to version 9.3.10.7 allows local attacker to access saved information...

4.8CVSS5.8AI score0.00017EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2016-5835

Malware in sbrugna...

7.8CVSS7.7AI score0.0036EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-5622

Malware in sbrugna...

10CVSS6.4AI score0.02322EPSS

Exploits0References4

CNNVD•added 2023/02/28 12:0 a.m.•5 views

DataEase 跨站脚本漏洞

DataEase is an open source data visualization and analysis tool. Used to help users quickly analyze data and insight into business trends , so as to achieve business improvement and optimization . DataEase version before 1.18.3 has a security vulnerability , the vulnerability stems from the saved...

7.2CVSS5.9AI score0.00865EPSS

Exploits1References3

Prion•added 2021/09/20 10:15 a.m.•9 views

Cross site request forgery (csrf)

The Print My Blog WordPress Plugin before 3.4.2 does not enforce nonce CSRF checks, which allows attackers to make logged in administrators deactivate the Print My Blog plugin and delete all saved data for that plugin by tricking them to open a malicious link...

5.8CVSS8AI score0.0012EPSS

Exploits2References1Affected Software1

CNNVD•added 2021/08/03 12:0 a.m.•0 views

Liferay Portal 和 Liferay DXP 安全漏洞

Liferay Portal and Liferay DXP are both products of Liferay, a J2EE-based portal solution that uses EJB and JMS technologies and serves as a web publishing and shared workspace, enterprise collaboration platform, social network, etc. Liferay DXP is a digital experience collaboration platform...

7.5CVSS5.6AI score0.00417EPSS

Exploits0References2

OSV•added 2020/08/26 4:15 p.m.•0 views

CVE-2020-15486

An issue was discovered on Dr Trust ECG Pen 2.00.08 devices. Because the Bluetooth LE support is implemented without a requirement for pairing or security, any attacker can access the GATT server of the device and can sniff the data being broadcasted while a measurement is being done. Also, saved...

6.5CVSS6.6AI score0.00082EPSS

Exploits0References1

Cvelist•added 2019/12/02 2:52 a.m.•10 views

CVE-2019-19362

An issue was discovered in the Chat functionality of the TeamViewer desktop application 14.3.4730 on Windows. The vendor states that it was later fixed. Upon login, every communication is saved within Windows main memory. When a user logs out or deletes conversation history but does not exit the...

4.3CVSS6.3AI score0.00438EPSS

Exploits1References1

n0where•added 2018/02/03 1:55 a.m.•376 views

Software Defined Radio Attack Tool: RFCrack

RFCrack is my personal RF test bench, it was developed for testing RF communications between any physical device that communicates over sub Ghz frequencies. IoT devices, Cars, Alarm Systems etc… Testing was done with the Yardstick One on OSX, but RFCrack should work fine in linux. Current support...

0.9AI score

Exploits0References1

NVD•added 2017/04/28 4:59 p.m.•7 views

CVE-2017-2128

Security guide for website operators allows remote attackers to execute arbitrary OS commands via specially crafted saved data...

8.8CVSS9.1AI score0.0126EPSS

Exploits0References2

Cvelist•added 2017/04/28 4:0 p.m.•13 views

CVE-2017-2128

Security guide for website operators allows remote attackers to execute arbitrary OS commands via specially crafted saved data...

9.1AI score0.0126EPSS

Exploits0References2

Japan Vulnerability Notes•added 2017/03/16 4:32 a.m.•1 views

Security guide for website operators vulnerable to OS command injection

Overview Security guide for website operators provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN IPA contains an OS command injection vulnerability CWE-78 due to an issue in loading saved data. This vulnerability was reported by IPA to notify users of its solution through JVN. JPCERT/CC a...

8.8CVSS7.6AI score0.0126EPSS

Exploits0References5

Japan Vulnerability Notes•added 2017/03/16 12:0 a.m.•28 views

JVN#11448789: Security guide for website operators vulnerable to OS command injection

Security guide for website operators provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN IPA contains an OS command injection vulnerability CWE-78 due to an issue in loading saved data. Impact When specially crafted saved data is loaded, an arbitrary OS command may be executed. Solution Do...

8.8CVSS8.9AI score0.0126EPSS

Exploits0

NVD•added 2016/10/26 6:59 p.m.•16 views

CVE-2016-8504

CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile...

4.3CVSS4.7AI score0.00094EPSS

Exploits0References2

NVD•added 2016/09/02 1:59 a.m.•6 views

CVE-2016-4853

AKABEi SOFT2 games allow remote attackers to execute arbitrary OS commands via crafted saved data, as demonstrated by Happy Wardrobe...

7.8CVSS8AI score0.0036EPSS

Exploits0References4

Prion•added 2016/09/02 1:59 a.m.•13 views

Design/Logic Flaw

AKABEi SOFT2 games allow remote attackers to execute arbitrary OS commands via crafted saved data, as demonstrated by Happy Wardrobe...

6.8CVSS8.2AI score0.0036EPSS

Exploits0References4