CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

153 matches found

CNNVD•added 2026/06/09 12:0 a.m.•1 views

Microsoft Office SharePoint 输入验证错误漏洞

Microsoft Office SharePoint is an enterprise content collaboration and document management platform developed by Microsoft Corporation. There is a vulnerability in input validation of Microsoft Office SharePoint. Attackers exploit this vulnerability to execute cross-site scripting attacks. The...

5.4CVSS6.8AI score0.00396EPSS

Exploits0References2

Circl•added 2026/06/03 2:54 a.m.•5 views

CVE-2026-44180

creationtimestamp| type| source ---|---|--- 2026-06-03 02:54:32+00:00| published-proof-of-concept| https://github.com/jupyter-server/enterprisegateway/security/advisories/GHSA-chq7-94j8-cj28 2026-06-10 17:25:03+00:00| seen| https://infosec.exchange/users/AAKL/statuses/116726974749666744...

5.3AI score0.00106EPSS

Exploits0References2

RedhatCVE•added 2026/01/07 9:51 a.m.•10 views

CVE-2013-6867

Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise ASE 15.7 before 15.7 SP50 or 15.7 SP100 allows remote attackers to cause a denial of service via unspecified vectors...

7.1CVSS7.1AI score0.01548EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:50 a.m.•5 views

CVE-2013-6859

SAP Sybase Adaptive Server Enterprise ASE before 15.0.3 ESD4.3. 15.5 before 15.5 ESD5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 does not properly perform authorization, which allows remote authenticated users to gain privileges via unspecified vectors...

8.5CVSS7AI score0.01571EPSS

Exploits0References1

Cvelist•added 2025/12/09 2:15 a.m.•31 views

CVE-2025-42928 Deserialization Vulnerability in SAP jConnect - SDK for ASE

Under certain conditions, a high privileged user could exploit a deserialization vulnerability in SAP jConnect to launch remote code execution. The system may be vulnerable when specially crafted input is used to exploit the vulnerability resulting in high impact on confidentiality, integrity and...

9.1CVSS0.08041EPSS

Exploits0References2

CVE•added 2025/12/09 2:15 a.m.•14 views

CVE-2025-42928

CVE-2025-42928 describes a deserialization vulnerability in SAP jConnect (SDK for ASE) that could allow remote code execution when a specially crafted input is processed. The issue is exploitable by a high-privilege user and is capable of impacting confidentiality, integrity, and availability. SA...

9.1CVSS7.5AI score0.08041EPSS

Exploits0References2

SUSE CVE•added 2025/12/09 12:23 a.m.•2 views

SUSE CVE-2025-66512

Nextcloud Server is a self hosted personal cloud system. In Nextcloud Server and Server Enterprise prior to 31.0.12 and 32.0.3, a missing sanitization allowed malicious users to circumvent the content security policy when a malicious user manages to trick a user it viewing an uploaded SVG outside...

6.1CVSS6.4AI score0.00233EPSS

Exploits0References3