CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

CVE-2026-9319

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to potential remote code execution due to deserialization of untrusted data via JAX-WS endpoints with WS-Security...

9CVSS6.3AI score0.00294EPSS

Exploits0References1

Positive Technologies•added 2026/02/03 12:0 a.m.•3 views

PT-2026-6504

Skipper is vulnerable to arbitrary code execution through lua filters in github.com/zalando/skipper...

8.8CVSS6.3AI score0.00029EPSS

Exploits1References5

Packet Storm News•added 2025/11/07 12:0 a.m.•3 views

BLADE: Behavior-Level Anomaly Detection Using Network Traffic in Web Services

With their widespread popularity, web services have become the main targets of various cyberattacks. Existing traffic anomaly detection approaches focus on flow-level attacks, yet fail to recognize behavior-level attacks, which appear benign in individual flows but reveal malicious purpose using...

6.9AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2019-16962

Malware in sbrugna...

6.1CVSS6.3AI score0.00465EPSS

Exploits2References6

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-17844

Malware in sbrugna...

9.8CVSS7.5AI score0.00177EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-1660

Malware in sbrugna...

9.8CVSS9.4AI score0.01581EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-21402

Malware in sbrugna...

9.1CVSS7.5AI score0.00648EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-0918

Malicious code in bioql PyPI...

5.4CVSS5.4AI score0.00823EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-4587

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00148EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-0599

Malicious code in bioql PyPI...

5.3CVSS5AI score0.00241EPSS

Exploits0References8

CNNVD•added 2024/02/29 12:0 a.m.•1 views

WordPress Plugin My Private Site plugin for WordPress Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

5.3CVSS6.5AI score0.00384EPSS

Exploits0References3

RedhatCVE•added 2024/01/17 9:13 a.m.•54 views

CVE-2024-20919

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or...

5.9CVSS6.8AI score0.00156EPSS

Exploits0References4

CNNVD•added 2022/12/13 12:0 a.m.•2 views

Apache CXF 代码问题漏洞

Apache CXF is the United States Apache Apache Foundation of an open source Web services framework. The framework supports a variety of Web services standards , a variety of front-end programming APIs and so on. A code issue vulnerability exists in Apache CXF versions prior to 3.5.5 and 3.4.10,...

9.8CVSS6.6AI score0.00103EPSS

Exploits5References13

OSV•added 2021/02/10 8:15 p.m.•0 views

UBUNTU-CVE-2020-13577

A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS7.2AI score0.00153EPSS

Exploits1References3

Positive Technologies•added 2020/11/05 12:0 a.m.•0 views

PT-2020-6525 · Genivia · Gsoap

Name of the Vulnerable Software and Affected Versions: Genivia gSOAP version 2.8.107 Description: A denial-of-service issue exists in the WS-Security plugin functionality of Genivia gSOAP. It can be triggered by a specially crafted SOAP request, allowing an attacker to send an HTTP request and...

9.8CVSS7.5AI score0.0076EPSS

Exploits5References44

CVE•added 2020/08/17 1:17 p.m.•44 views

CVE-2020-12606

DB Soft SGLAC prior to 20.05.001 is affected. The vulnerability resides in the ProcedimientoGenerico method of the SVCManejador.svc webservice, enabling an attacker to execute arbitrary SQL commands on the SQL Server via xp_cmdshell. CVSS details in the provided data indicate a high/critical impa...

9.8CVSS9.7AI score0.03636EPSS

Exploits0References1Affected Software1

Kitploit•added 2018/05/01 12:33 p.m.•172 views

WSSAT v2.0 - Web Service Security Assessment Tool

WSSAT is an open source web service security scanning tool which provides a dynamic environment to add, update or delete vulnerabilities by just editing its configuration files. This tool accepts WSDL address list as input file and for each service, it performs both static and dynamic tests again...

7.8AI score

Exploits0References5

n0where•added 2018/04/11 10:18 p.m.•25 views

Web Service Security Assessment Tool: WSSAT

Exploits0References2

RedHat Linux•added 2017/08/14 9:48 a.m.•2 views

OpenJDK: insecure XML parsing in wsdlimport (JAX-WS, 8182054)

It was discovered that the wsdlimport tool in the JAX-WS component of OpenJDK did not use secure XML parser settings when parsing WSDL XML documents. A specially crafted WSDL document could cause wsdlimport to use an excessive amount of CPU and memory, open connections to other hosts, or leak...

6.5CVSS7.3AI score0.00679EPSS

Exploits0References5

Kitploit•added 2016/09/26 2:30 p.m.•35 views

WSSAT - Web Service Security Assessment Tool

8.2AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by