CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

CNNVD•added 2026/05/27 12:0 a.m.•4 views

WordPress plugin BP Better Messages 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.5CVSS5.8AI score0.00042EPSS

Exploits0References1

CNNVD•added 2026/05/20 12:0 a.m.•5 views

PhoenixStorybook 安全漏洞

PhoenixStorybook is an open-source component display and interaction debugging UI tool developed by Phenix Digital. Versions of PhoenixStorybook from 0.4.0 to 1.1.0 contained security vulnerabilities. These vulnerabilities stemmed from bypassing authorization using user-controlled keys. Attackers...

2.3CVSS5.8AI score0.00054EPSS

Exploits0References2

CNNVD•added 2026/05/14 12:0 a.m.•4 views

Yordam Library Automation System 安全漏洞

Yordam Library Automation System is an application developed by Yordam Corporation. Versions of the Yordam Library Automation System from v.21.6 to v.22.1 had security vulnerabilities. These vulnerabilities were caused by user-controlled keys that allowed unauthorized access to authorization...

8.8CVSS5.8AI score0.00015EPSS

Exploits0References1

CNNVD•added 2026/05/14 12:0 a.m.•3 views

Akıllı E-Commerce Website 安全漏洞

Akıllı E-Commerce Website is an e-commerce website system developed by the Turkish company Akıllı, aimed at online retail and digital sales scenarios. Versions of Akıllı E-Commerce Website prior to 4.5.001 contained security vulnerabilities. These vulnerabilities were caused by an authorization...

9.8CVSS5.8AI score0.00018EPSS

Exploits0References1

CNNVD•added 2026/04/15 12:0 a.m.•4 views

WordPress plugin COMPE 安全漏洞

5.3CVSS5.8AI score0.0004EPSS

Exploits0References1

CNNVD•added 2026/03/25 12:0 a.m.•2 views

WordPress plugin WPSubscription 安全漏洞

8.6CVSS5.8AI score0.0006EPSS

Exploits0References1

CNNVD•added 2026/03/10 12:0 a.m.•3 views

Fortinet多款产品安全漏洞

Fortinet FortiRecorder is a product of the American company Fortinet. Fortinet FortiRecorder is a web-based network video recording system management tool. Fortinet FortiMail is an email security gateway product. Fortinet FortiVoice is a unified communication and collaboration service. Several...

4CVSS5.8AI score0.00007EPSS

Exploits0References1

CNNVD•added 2026/02/20 12:0 a.m.•3 views

WordPress plugin Authorsy 安全漏洞

7.5CVSS5.8AI score0.00047EPSS

Exploits0References1

CNNVD•added 2026/02/20 12:0 a.m.•3 views

WordPress plugin Cnvrse 安全漏洞

7.5CVSS5.8AI score0.00017EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•3 views

WordPress plugin Quiz And Survey Master 安全漏洞

5.3CVSS5.8AI score0.00042EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•6 views

MeCODE Envanty 安全漏洞

MeCODE Envanty is an enterprise resource planning management system developed by the Turkish company MeCODE. Versions of MeCODE Envanty prior to 1.0.6 contained security vulnerabilities. These vulnerabilities stemmed from unauthorized access through user-controlled keys, which could lead to...

7.3CVSS5.8AI score0.00014EPSS

Exploits0References1

CNNVD•added 2026/02/10 12:0 a.m.•2 views

Dinibh Patrol Tracking System 安全漏洞

Dinibh Patrol Tracking System is an inspection management platform developed by the Turkish company Dinibh. The versions of Dinibh Patrol Tracking System 10022026 and earlier contained security vulnerabilities. These vulnerabilities stemmed from bypassing authorization using user control keys,...

8.8CVSS5.8AI score0.00058EPSS

Exploits0References1

Cvelist•added 2026/02/06 12:0 a.m.•22 views

CVE-2025-70963

Gophish =0.12.1 is vulnerable to Incorrect Access Control. The administrative dashboard exposes each user’s long-lived API key directly inside the rendered HTML/JavaScript of the page on every login. This makes permanent API credentials accessible to any script running in the browser context...

0.00017EPSS

Exploits1References1

CNNVD•added 2026/01/22 12:0 a.m.•1 views

WordPress plugin Sweet Jane has a security vulnerability

5.4CVSS5.8AI score0.00069EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•1 views

WordPress plugin Curly has a security vulnerability

5.4CVSS5.8AI score0.00069EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•2 views

WordPress plugin tutor security vulnerability

3.8CVSS5.8AI score0.00012EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•1 views

EXERT Education Management System has a security vulnerability

EXERT Education Management System is a comprehensive education management software developed by the Turkish company EXERT. The version 23.09.2025 and earlier of the EXERT Education Management System contained security vulnerabilities. These vulnerabilities stemmed from unauthorized access through...

7.5CVSS5.8AI score0.00025EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•1 views

WordPress plugin Roam has a security vulnerability

3.8CVSS5.8AI score0.00042EPSS

Exploits0References1

Tenable Nessus•added 2026/01/14 12:0 a.m.•8 views

MiracleLinux 4 : kernel-2.6.32-220.4.1.el6 (AXSA:2012-228:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-228:02 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

9.1CVSS7.5AI score0.64291EPSS

Exploits23References19

EUVD•added 2025/11/08 12:31 a.m.•3 views

EUVD-2025-38342

Improper Authorization in Elastic Cloud Enterprise can lead to Privilege Escalation where the built-in readonly user can call APIs that should not be allowed. The list of APIs that are affected by this issue is: post:/platform/configuration/security/service-accounts...

8.8CVSS6.3AI score0.00066EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by