CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1454 matches found

EUVD-2026-38879

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix use-after-free in advancesched on schedule switch In advancesched, when shouldchangeschedules returns true, switchschedules is called to promote the admin schedule to oper. switchschedules queues the old op...

5.7AI score

Exploits0References9

EUVD•added yesterday•3 views

EUVD-2026-38816

In the Linux kernel, the following vulnerability has been resolved: i2c: dev: prevent integer overflow in I2CTIMEOUT ioctl While fuzzing with Syzkaller, a persistent scheduletimeout: wrong timeout value warning was observed, accompanied by SMBus controller state machine corruption. The I2CTIMEOUT...

5.8AI score

Exploits0References9

Nuclei•added yesterday•30 views

WordPress Simply Schedule Appointments <1.5.7.7 - Information Disclosure

WordPress Simply Schedule Appointments plugin before 1.5.7.7 is susceptible to information disclosure. The plugin is missing authorization in a REST endpoint, which can allow an attacker to retrieve user details such as name and email address. id: CVE-2022-2373 info: name: WordPress Simply Schedu...

5.3CVSS6.1AI score0.01371EPSS

Exploits2References5

AstraLinux•added 6 days ago•8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: rhashtable: A potential deadlock was fixed by moving the schedulework outside of the lock. The check for hash table growth and work scheduling were moved outside of the rht lock to prevent a possible circular locking dependency...

5.5CVSS6.1AI score0.00153EPSS

Exploits0References2

AstraLinux•added 6 days ago•2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: extend minimum interval restriction to entire cycle too It is possible for syzbot to bypass the restriction imposed by the criticized commit in the “Fixes” tag, because the taprio UAPI allows a cycle time that ...

5.5CVSS6.1AI score0.00249EPSS

Exploits0References2

Node JS Blog•added 2026/06/18 12:0 a.m.•108 views

Thursday, June 18, 2026 Security Releases

Thursday, June 18, 2026 Security Releases UPDATE 2026-06-18 Security releases available Updates are now available for the 26.x, 24.x, 22.x Node.js release lines for the following issues. This security release includes the following dependency updates to address public vulnerabilities: llhttp 9.4....

5.3CVSS6.1AI score0.00397EPSS

Exploits0

NVD•added 2026/06/17 1:19 p.m.•5 views

CVE-2025-69135

Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin = 2.7.2 versions...

8.5CVSS0.00342EPSS

Exploits0References1

CVE•added 2026/06/17 9:50 a.m.•15 views

CVE-2025-69135

Technical details (affected plugin version range, root cause, impact, remediation) are not publicly available in the provided connected documents. Monitor for updates; current sources do not specify vulnerable functions or fixes.

8.5CVSS5.7AI score0.00342EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:50 a.m.•27 views

CVE-2025-69135 WordPress Events Schedule - WordPress Events Calendar Plugin plugin <= 2.7.2 - SQL Injection vulnerability

Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin = 2.7.2 versions...

8.5CVSS0.00342EPSS

Exploits0References1

EUVD•added 2026/06/15 9:30 p.m.•6 views

EUVD-2026-36944

Unauthenticated SQL Injection in Simply Schedule Appointments = 1.6.9.27 versions...

9.3CVSS5.7AI score0.00363EPSS

Exploits0References2

EUVD•added 2026/06/15 9:30 p.m.•6 views

EUVD-2026-36927

Unauthenticated Cross Site Scripting XSS in Simply Schedule Appointments = 1.6.10.6 versions...

7.1CVSS5.1AI score0.00237EPSS

Exploits0References2

NVD•added 2026/06/15 9:16 p.m.•6 views

CVE-2026-42384

Unauthenticated Sensitive Data Exposure in Simply Schedule Appointments 1.6.11.2 versions...

7.5CVSS0.00294EPSS

Exploits0References1

NVD•added 2026/06/15 9:16 p.m.•6 views

CVE-2026-39493

Unauthenticated SQL Injection in Simply Schedule Appointments = 1.6.9.27 versions...

9.3CVSS0.00363EPSS

Exploits0References1

NVD•added 2026/06/15 9:16 p.m.•5 views

CVE-2026-39447

Unauthenticated Cross Site Scripting XSS in Simply Schedule Appointments = 1.6.10.6 versions...

7.1CVSS0.00237EPSS

Exploits0References1

EUVD•added 2026/06/15 8:18 p.m.•5 views

EUVD-2026-36812

Unauthenticated Sensitive Data Exposure in Simply Schedule Appointments 1.6.11.2 versions...

7.5CVSS5.2AI score0.00294EPSS

Exploits0References1

Cvelist•added 2026/06/15 8:18 p.m.•26 views

CVE-2026-42384 WordPress Simply Schedule Appointments plugin < 1.6.11.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in Simply Schedule Appointments 1.6.11.2 versions...

7.5CVSS0.00294EPSS

Exploits0References1

CVE•added 2026/06/15 8:18 p.m.•19 views

CVE-2026-42384

CVE-2026-42384 concerns the WordPress plugin “Simply Schedule Appointments” (versions prior to 1.6.11.2). The entry documents an unauthenticated, sensitive data exposure vulnerability affecting this plugin. The vulnerability is described as exposing sensitive data without authentication, with a C...

7.5CVSS5.2AI score0.00294EPSS

Exploits0References1

Cvelist•added 2026/06/15 8:17 p.m.•26 views

CVE-2026-39493 WordPress Simply Schedule Appointments plugin <= 1.6.9.27 - SQL Injection vulnerability

Unauthenticated SQL Injection in Simply Schedule Appointments = 1.6.9.27 versions...

9.3CVSS0.00363EPSS

Exploits0References1

CVE•added 2026/06/15 8:17 p.m.•7 views

CVE-2026-39493

CVE-2026-39493 : The WordPress plugin Simply Schedule Appointments (versions

9.3CVSS5.7AI score0.00363EPSS

Exploits0References1