CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

98 matches found

CVE-2026-6865

CWE-22: Improper Limitation of a Pathname to a Restricted Directory “Path Traversal” vulnerability that could cause unauthorized access to sensitive files when user-supplied input is improperly handled during server-side file path processing...

7.1CVSS5.5AI score0.00061EPSS

Exploits0References1

ATTACKERKB•added 2026/05/12 12:29 p.m.•3 views

CVE-2026-6865

7.1CVSS5.8AI score0.00061EPSS

Exploits0References2Affected Software2

CVE•added 2026/01/23 12:0 a.m.•8 views

CVE-2025-70458

CVE-2025-70458 affects Sourcecodester Domain Availability Checker v1.0. The DOM-based XSS exists in DomainCheckerApp (domain/script.js) where createResultElement uses unsafe innerHTML to render domain search results, enabling injection. CVSS 3.1 base score 5.4 (MEDIUM). Remediation: update to a f...

5.4CVSS5.5AI score0.00068EPSS

Exploits1References2Affected Software1

OSV•added 2025/12/16 2:8 p.m.•2 views

CVE-2025-68237 mtdchar: fix integer overflow in read/write ioctls

In the Linux kernel, the following vulnerability has been resolved: mtdchar: fix integer overflow in read/write ioctls The "req.start" and "req.len" variables are u64 values that come from the user at the start of the function. We mask away the high 32 bits of "req.len" so that's capped at U32MAX...

6.6AI score0.00043EPSS

Exploits0References8

EUVD•added 2025/12/09 6:30 p.m.•1 views

EUVD-2025-201950

SQL Injection in Frappe HelpDesk in the dashboard getdashboarddata due to unsafe concatenation of user-controlled parameters into dynamic SQL statements.This issue affects Frappe HelpDesk: 1.14.0...

8.6CVSS7.4AI score0.00033EPSS

Exploits1References4

RedhatCVE•added 2025/12/09 12:11 a.m.•2 views

CVE-2025-65540

Multiple Cross-Site Scripting XSS vulnerabilities exist in xmall v1.1 due to improper handling of user-supplied data. User input fields such as username and description are directly rendered into HTML without proper sanitization or encoding, allowing attackers to inject and execute malicious...

6.1CVSS6.1AI score0.00033EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-2989

Malware in sbrugna...

6.5CVSS6.6AI score0.00515EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-8815

Malware in sbrugna...

8.8CVSS7.1AI score0.00478EPSS

Exploits0References2