CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5294 matches found

Caddy 2.4.6 - Open Redirect

Caddy 2.4.6 contains an open redirect vulnerability. An attacker can redirect a user to a malicious site via a crafted URL and possibly obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2022-28923 info: name: Caddy 2.4.6 - Open Redirect author: Sascha...

6.1CVSS6.7AI score0.01431EPSS

Exploits1References5

Nuclei•added yesterday•13 views

DELMIA Apriso - Command Injection

An Improper Control of Generation of Code code injection / file upload → RCE vulnerability affecting DELMIA Apriso Release 2020 → Release 2025. When an authenticated user can upload files and the upload handler fails to canonicalize filenames or enforce storage restrictions, an attacker may place...

8CVSS6.8AI score0.75306EPSS

Exploits0References3

Vulnrichment•added 3 days ago•4 views

CVE-2026-10852 Websphere Application Server is Affected By a Denial of Service in IBM WebSphere Application Server Liberty

IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to denial of service in the WebSphere WebServer Plug-in component when an attacker can pass crafted requests to the web server...

5.9CVSS5.8AI score0.0026EPSS

Exploits0References1

CVE•added 3 days ago•16 views

CVE-2026-10852

IBM i 7.3–7.6 and IBM WebSphere Application Server/Liberty are affected by CVE-2026-10852, a denial-of-service in the WebSphere WebServer Plug-in when crafted requests are sent. Root cause cited: NULL Pointer Dereference (CWE-476). CVSS 3.1 base score 5.9 (Network, High attack complexity, No priv...

5.9CVSS5.8AI score0.0026EPSS

Exploits0References1

ATTACKERKB•added 3 days ago•4 views

CVE-2026-10852

5.9CVSS5.8AI score0.0026EPSS

Exploits0References2Affected Software1

Cvelist•added 3 days ago•22 views

CVE-2026-10852 Websphere Application Server is Affected By a Denial of Service in IBM WebSphere Application Server Liberty

5.9CVSS0.0026EPSS

Exploits0References1

NVD•added 3 days ago•8 views

CVE-2026-9072

IBM WebSphere Application Server and IBM WebSphere Application Server Liberty - when using Intelligent Management with the WebSphere WebServer Plug-in component - are vulnerable to remote code execution and denial of service. This vulnerability can be exploited when an attacker impersonates backe...

9.8CVSS0.00409EPSS

Exploits0References1

EUVD•added 3 days ago•6 views

EUVD-2026-38286

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, and IBM WebSphere Application Server Liberty - when using Intelligent Management with the WebSphere WebServer Plug-in component - are vulnerable to remote code execution and denial of service. This vulnerability can be exploited when...

8.1CVSS6.5AI score0.00409EPSS

Exploits0References1

NVD•added 6 days ago•5 views

CVE-2016-20086

Vembu StoreGrid 4.0 contains an unquoted service path vulnerability in the RemoteBackup and RemoteBackupwebServer services that allows local attackers to escalate privileges. Attackers can place a malicious executable in the unquoted path and restart the service to execute code with LocalSystem...

8.5CVSS0.00114EPSS

Exploits0References2

EUVD•added 6 days ago•5 views

EUVD-2016-10899

8.5CVSS6AI score0.00114EPSS

Exploits0References2

Tenable Nessus•added 2026/06/17 12:0 a.m.•10 views

IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.28 RCE (7276560)

The version of IBM WebSphere Application Server running on the remote host is affected by a remote code execution vulnerability as referenced in the 7276560 advisory. - IBM WebSphere Application Server and IBM WebSphere Application Server Liberty, when using Intelligent Management with the...

9.8CVSS6.4AI score0.00409EPSS

Exploits0References4

RedhatCVE•added 2026/06/09 8:59 a.m.•10 views

CVE-2026-11497

A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa Webserver. Such manipulation leads to least privilege violation. The attack can be executed remotely. The exploit has bee...

8.8CVSS5.4AI score0.00432EPSS

Exploits0References1

NVD•added 2026/06/08 9:16 a.m.•11 views

CVE-2026-11497

8.8CVSS0.00432EPSS

Exploits0References6

ATTACKERKB•added 2026/06/08 6:30 a.m.•5 views

CVE-2026-11497

6.9CVSS5.4AI score0.00432EPSS

Exploits0References6Affected Software1

EUVD•added 2026/06/08 6:30 a.m.•10 views

EUVD-2026-35027

6.9CVSS5.4AI score0.00432EPSS

Exploits0References6

Cvelist•added 2026/06/08 6:30 a.m.•42 views

CVE-2026-11497 D-Link DCS-5615 Boa Webserver boa.conf least privilege violation

6.9CVSS0.00432EPSS

Exploits0References6

CVE•added 2026/06/08 6:30 a.m.•36 views

CVE-2026-11497

CVE-2026-11497 affects the D-Link DCS-5615 (firmware 1.01.00). The vulnerability targets an unknown functionality in the Boa Webserver component, specifically the file /etc/conf.d/boa/boa.conf, and can lead to a least privilege violation . The attack is described as remote and the exploit has bee...

8.8CVSS5.5AI score0.00432EPSS

Exploits0References6Affected Software1

Vulnrichment•added 2026/06/08 6:30 a.m.•9 views

CVE-2026-11497 D-Link DCS-5615 Boa Webserver boa.conf least privilege violation

6.9CVSS5AI score0.00432EPSS

Exploits0References6

CNNVD•added 2026/06/08 12:0 a.m.•7 views

D-Link DCS-5615 安全漏洞

The D-Link DCS-5615 is a high-speed network dome camera produced by D-Link Corporation. Version 1.01.00 of the D-Link DCS-5615 contains a security vulnerability. This vulnerability stems from incorrect operations with the file /etc/conf.d/boa/boa.conf in the Boa Webserver component, which may lea...

8.8CVSS5.6AI score0.00432EPSS

Exploits0References1

Positive Technologies•added 2026/06/08 12:0 a.m.•13 views

PT-2026-47258

6.9CVSS5.4AI score0.00432EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by