CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

Vulnrichment•added 2026/04/14 3:38 p.m.•0 views

CVE-2026-39810

A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientEMS 7.4.0 through 7.4.5 may allow attacker to information disclosure via decrypting database dump...

6CVSS5.8AI score0.00014EPSS

Exploits0References1

Positive Technologies•added 2026/04/14 12:0 a.m.•2 views

PT-2026-32688

Name of the Vulnerable Software and Affected Versions FortiClientEMS versions 7.4.0 through 7.4.5 FortiClientEMS versions 7.2.0 through 7.2.12 FortiClientEMS version 7.0 Description Improper neutralization of special elements used in an SQL command, known as SQL injection, allows an attacker to...

6.7CVSS6AI score0.0003EPSS

Exploits0References5

CNNVD•added 2026/04/14 12:0 a.m.•2 views

Fortinet FortiClientEms 安全漏洞

Fortinet FortiClientEms is a centralized management system developed by the American company Fortinet. There is a security vulnerability in Fortinet FortiClientEms, which stems from SQL injection attacks. This vulnerability may allow for the execution of unauthorized code or commands. The followi...

6.7CVSS6.1AI score0.0003EPSS

Exploits0References1

GithubExploit•added 2026/04/06 3:16 p.m.•93 views

Exploit for CVE-2026-35616

CVE-2026-35616 - FortiClient EMS Vulnerability Detector !Py...

9.8CVSS6.3AI score0.34753EPSS

Exploits7

CNNVD•added 2026/04/04 12:0 a.m.•5 views

Fortinet FortiClientEms 安全漏洞

Fortinet FortiClientEms is a centralized management system developed by the American company Fortinet. Versions 7.4.5 to 7.4.6 of Fortinet FortiClientEms contain security vulnerabilities. These vulnerabilities stem from improper access control, allowing unauthorized attackers to execute...

9.8CVSS6.2AI score0.34753EPSS

Exploits7References2

NVD•added 2026/03/16 2:18 p.m.•0 views

CVE-2026-25083

GROWI OpenAI thread/message API endpoints do not perform authorization. Affected are v7.4.5 and earlier versions. A logged-in user who knows a shared AI assistant's identifier may view and/or tamper the other user's threads/messages...

8.7CVSS0.00022EPSS

Exploits0References2

ATTACKERKB•added 2026/03/16 6:47 a.m.•0 views

CVE-2026-25083

8.7CVSS5.8AI score0.00022EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/03/16 12:0 a.m.•3 views

PT-2026-25629

8.7CVSS7.3AI score0.00022EPSS

Exploits0References2

Cvelist•added 2025/11/23 10:26 p.m.•6 views

CVE-2025-12800 WP Shortcodes Plugin — Shortcodes Ultimate <= 7.4.5 - Authenticated (Administrator+) Server-Side Request Forgery

The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 7.4.5 via the sushortcodecsvtable function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make...

6.4CVSS0.00034EPSS

Exploits0References2

Positive Technologies•added 2024/12/30 12:0 a.m.•2 views

PT-2024-36606 · Ibm · Ibm Powerha Systemmirror

Name of the Vulnerable Software and Affected Versions: IBM PowerHA SystemMirror for i versions 7.4 through 7.5 Description: The issue is related to improper restrictions when rendering content via iFrames, which could allow an attacker to gain improper access and perform unauthorized actions on t...

5.4CVSS7AI score0.00132EPSS

Exploits0References7

Positive Technologies•added 2023/12/18 12:0 a.m.•2 views

PT-2023-30586 · Ibm · Ibm I +1

Name of the Vulnerable Software and Affected Versions: IBM i versions 7.3 through 7.5 IBM i Db2 Mirror for i versions 7.4 through 7.5 Description: The issue allows clear-text passwords to be left in browser memory, which can be viewed using common browser tools before the memory is garbage...

5.3CVSS5.1AI score0.00037EPSS

Exploits0References6

Positive Technologies•added 2023/01/13 12:0 a.m.•2 views

PT-2023-1503 · Ibm · Ibm Qradar Siem

Name of the Vulnerable Software and Affected Versions: IBM QRadar SIEM versions 7.4 through 7.5 Description: The issue is related to the disclosure of information in the IBM QRadar SIEM system. It allows an attacker to expose protected information. The problem arises from the copying of certifica...

8.4CVSS7.2AI score0.00085EPSS

Exploits0References7

Positive Technologies•added 2022/10/07 12:0 a.m.•5 views

PT-2022-15460 · Ibm · Ibm Qradar Siem

Name of the Vulnerable Software and Affected Versions: IBM QRadar SIEM versions 7.4 through 7.5 Description: The issue is related to data node rebalancing in IBM QRadar SIEM when using encrypted hosts, which does not function correctly and could result in information disclosure. Recommendations:...

7.5CVSS5.3AI score0.00238EPSS

Exploits0References4

Positive Technologies•added 2022/10/07 12:0 a.m.•1 views

PT-2022-20205 · Ibm · Ibm Qradar Siem

Name of the Vulnerable Software and Affected Versions: IBM QRadar SIEM versions 7.4 through 7.5 Description: The issue could disclose sensitive information via a local service to a privileged user. Recommendations: For IBM QRadar SIEM versions 7.4 through 7.5, at the moment, there is no informati...

5.5CVSS4.3AI score0.00043EPSS

Exploits0References5