CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2 hours ago•4 views

CVE-2026-11335 tittuvarghese CollegeManagementSystem login-form.php session_start session fixiation

CVE•added 2 hours ago•8 views

CVE-2026-11335

The CVE-2026-11335 affects the tittuvarghese CollegeManagementSystem (login-form.php) where the session_start function can be manipulated via UserAuthData, enabling remote session fixation. The flaw is exploitable without user privileges and is evidenced by published exploits; the project reporte...

ATTACKERKB•added 2 hours ago•2 views

CVE-2026-11335

Cvelist•added 2 hours ago•4 views

CVE-2026-11335 tittuvarghese CollegeManagementSystem login-form.php session_start session fixiation

7.5CVSS

Positive Technologies•added 17 hours ago•4 views

PT-2026-46961

A flaw has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. This impacts the function session start of the file /login-form.php. Executing a manipulation of the argument UserAuthData can lead to session fixiatio...

Tenable Nessus•added 2 days ago•6 views

Exploits0References7

RockyLinux 10 : tomcat (RLSA-2026:18537)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:18537 advisory. tomcat: Apache Tomcat: Security constraint bypass for CGI scripts CVE-2025-46701 org.apache.tomcat/tomcat-catalina: tomcat: Apache Tomcat: session...

9.6CVSS7.3AI score0.00135EPSS

Exploits1References7

Rockylinux•added 2026/05/29 4:3 p.m.•11 views

tomcat security update

An update is available for tomcat. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Apache Tomcat is a servlet container for the Java Servlet and JavaServer Page...

9.6CVSS7.2AI score0.00135EPSS

Exploits1

OSV•added 2026/05/29 4:3 p.m.•5 views

RLSA-2026:18537 Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat: Security constraint bypass for CGI scripts CVE-2025-46701 org.apache.tomcat/tomcat-catalina: tomcat: Apache Tomcat: session fixation via rewrite valve...

6.5CVSS7AI score0.00135EPSS

Exploits1References4

Cvelist•added 2026/05/29 3:12 p.m.•26 views

CVE-2026-33384 Session Fixation in QuickCMS

QuickCMS allows a user's session identifier to be set before authentication. The value of this session ID stays the same after authentication. This behaviour enables an attacker to fix a session ID for a victim and later hijack the authenticated session. This issue was fixed in a patch to version...

4.8CVSS0.00026EPSS

ATTACKERKB•added 2026/05/29 3:12 p.m.•7 views

CVE-2026-33384

Vulnrichment•added 2026/05/29 3:12 p.m.•7 views

Exploits0References3

CVE-2026-33384 Session Fixation in QuickCMS

CVE•added 2026/05/29 3:12 p.m.•9 views

CVE-2026-33384

CVE-2026-33384 affects QuickCMS. The issue allows a user’s session identifier to be set before authentication and persist after login, enabling session hijacking of a victim. A patch in QuickCMS version 6.8 (published 15 May 2026) fixes the vulnerability; deployments not yet updated remain vulner...

CNNVD•added 2026/05/29 12:0 a.m.•6 views

QuickCMS 授权问题漏洞

QuickCMS is an open-source content management system developed by QuickCMS. There are authorization-related vulnerabilities in QuickCMS. These vulnerabilities stem from the ability to set user session identifiers before authentication, and these session IDs remain unchanged after authentication...

Snyk•added 2026/05/27 5:34 p.m.•9 views

Session Fixation

Overview gradio is a Python library for easily interacting with trained machine learning models Affected versions of this package are vulnerable to Session Fixation via /proxy reverse proxy requests. A malicious HF Space can hijack user sessions and gain unauthorized access to other users'...

8CVSS5.8AI score0.00042EPSS