CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/05/27 8:3 p.m.•36 views

CVE-2026-47273 pam_usb: XPath injection via PAM-supplied identifiers in pam_usb configuration queries

6.5CVSS0.00054EPSS

ATTACKERKB•added 2026/05/27 8:3 p.m.•3 views

CVE-2026-47273

6.5CVSS5.9AI score0.00054EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2026/05/27 12:0 a.m.•3 views

PT-2026-44086

pam usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, pam usb builds XPath expressions from user-supplied identifiers PAM username, service name and device-supplied identifiers USB device serial, model, vendor to query /etc/pamusb.conf. These identifie...

6.5CVSS5.9AI score0.00054EPSS

Exploits0References4

NVD•added 2026/05/13 10:16 p.m.•8 views

CVE-2026-44425

ShellHub is a centralized SSH gateway. Prior to 0.24.2, the device list endpoint accepts user-controlled identifiers in the the name field of each filter property in the base64-encoded filter query parameter and the sortby query parameter, which are then passed directly as BSON/SQL keys in the...

5.4CVSS0.00076EPSS

Exploits1References1

CVE•added 2026/05/13 7:22 p.m.•5 views

CVE-2026-42550

Flight (PHP) vulnerability CVE-2026-42550 affects SimplePdo::insert(), SimplePdo::update(), and SimplePdo::delete() prior to version 3.18.1. These helpers concatenate the table name and data keys directly into SQL without identifier quoting or validation, enabling SQL injection when attacker-cont...

8.8CVSS6AI score0.00019EPSS

Cvelist•added 2026/05/13 7:22 p.m.•23 views

CVE-2026-42550 Flight: SQL Injection via unvalidated identifiers in SimplePdo::insert / update / delete

Flight is an extensible micro-framework for PHP. Prior to 3.18.1, SimplePdo::insert, SimplePdo::update, and SimplePdo::delete build SQL statements by concatenating the $table argument and the keys of the $data array directly into the query, with no identifier quoting and no validation. When an...

8.8CVSS0.00019EPSS

Github Security Blog•added 2026/05/06 9:35 p.m.•3 views

Flight vulnerable to SQL Injection via unvalidated identifiers in SimplePdo::insert / update / delete

Summary SimplePdo::insert, SimplePdo::update, and SimplePdo::delete build SQL statements by concatenating the $table argument and the keys of the $data array directly into the query, with no identifier quoting and no validation. When an application forwards user-controlled data shapes to these...

8.8CVSS6AI score0.00019EPSS

Exploits0References5Affected Software1

OSV•added 2026/05/06 9:35 p.m.•1 views

GHSA-XWQR-RCQG-22MR Flight vulnerable to SQL Injection via unvalidated identifiers in SimplePdo::insert / update / delete

8.8CVSS6AI score0.00019EPSS

Exploits0References5

Positive Technologies•added 2026/05/06 12:0 a.m.•7 views

PT-2026-38272

Name of the Vulnerable Software and Affected Versions Flight versions prior to 3.18.1 Description The SimplePdo::insert, SimplePdo::update, and SimplePdo::delete functions build SQL statements by concatenating the $table argument and the keys of the $data array directly into the query without...

8.8CVSS5.9AI score0.00019EPSS

Exploits0References6

OSV•added 2026/04/10 7:32 p.m.•0 views

GHSA-X783-XP3G-MQHP PraisonAI: SQLiteConversationStore didn't validate table_prefix when constructing SQL queries

Summary The tableprefix configuration value is directly used to construct SQL table identifiers without validation. If an attacker controls this value, they can manipulate SQL query structure, leading to unauthorized data access e.g., reading internal SQLite tables such as sqlitemaster and...

6.9CVSS6AI score0.00044EPSS

Exploits1References5

RedhatCVE•added 2026/03/26 2:59 p.m.•4 views

CVE-2026-31820

Sylius is an Open Source eCommerce Framework on Symfony. An authenticated Insecure Direct Object Reference IDOR vulnerability exists in multiple shop LiveComponents due to unvalidated resource IDs accepted via LiveArg parameters. Unlike props, which are protected by LiveComponent's @checksum, arg...

Vulnrichment•added 2026/03/20 8:5 p.m.•1 views

CVE-2026-33142 OneUptime: ClickHouse SQL Injection via unvalidated column identifiers in sort, select, and groupBy parameters

OneUptime is a solution for monitoring and managing online services. Prior to version 10.0.34, the fix for CVE-2026-32306 ClickHouse SQL injection via aggregate query parameters added column name validation to the aggregateBy method but did not apply the same validation to three other query...

8.1CVSS5.9AI score0.00014EPSS

CNNVD•added 2026/03/12 12:0 a.m.•3 views

Parse Server 安全漏洞

Parse Server is an open-source backend developed by the Parse Platform. It can be deployed on any infrastructure that runs Node.js. Versions of Parse Server prior to 9.6.0-alpha.12 and 8.6.38 contain security vulnerabilities. These vulnerabilities stem from unvalidated user identifier formats,...

9.8CVSS5.8AI score0.001EPSS

OSV•added 2026/03/10 9:22 p.m.•3 views

CVE-2026-31820 Sylius affected by IDOR in Cart and Checkout LiveComponents

CVE•added 2026/03/10 9:22 p.m.•6 views

CVE-2026-31820

Sylius (Open Source eCommerce on Symfony) contains an authenticated insecure direct object reference (IDOR) in multiple LiveComponents. The vulnerability stems from unvalidated resource IDs accepted via #[LiveArg] parameters, where loading with ->find() occurs without ownership checks. Affecte...

Exploits0References1Affected Software1

Positive Technologies•added 2026/03/10 12:0 a.m.•2 views

PT-2026-24474

Name of the Vulnerable Software and Affected Versions Sylius versions prior to 2.0.16 Sylius versions prior to 2.1.12 Sylius versions prior to 2.2.3 Description Sylius, an Open Source eCommerce Framework on Symfony, contains an authenticated Insecure Direct Object Reference IDOR issue in several...