CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

90 matches found

Positive Technologies•added 2026/06/15 12:0 a.m.•10 views

PT-2026-49214

WordPress Simple-Backup 2.7.11 contains multiple vulnerabilities that allow unauthenticated attackers to delete arbitrary files and download sensitive files by manipulating the delete backup file and download backup file parameters in tools.php. Attackers can exploit insufficient input validation...

8.7CVSS5.5AI score0.00601EPSS

Exploits0References3

Cvelist•added 2026/05/05 12:0 a.m.•37 views

CVE-2026-36356

The GoAhead web server on MeiG Smart FORGESLT711 devices firmware MDM9607.LE.1.0-00110-STD.PROD-1 allows unauthenticated OS command injection via the /action/SetRemoteAccessCfg endpoint...

0.15394EPSS

Exploits3References3

Vulnrichment•added 2026/05/05 12:0 a.m.•6 views

CVE-2026-36356

The GoAhead web server on MeiG Smart FORGESLT711 devices firmware MDM9607.LE.1.0-00110-STD.PROD-1 allows unauthenticated OS command injection via the /action/SetRemoteAccessCfg endpoint...

5.8AI score0.15394EPSS

Exploits3References3

CNNVD•added 2026/04/24 12:0 a.m.•8 views

SenseLive X3050 安全漏洞

The SenseLive X3050 is a data collection and environmental monitoring device designed for IoT scenarios by SenseLive Corporation. The SenseLive X3050 has a security vulnerability, which stems from improper execution of access control mechanisms. This could allow attackers with network access righ...

9.8CVSS5.9AI score0.00712EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:33 a.m.•8 views

CVE-2019-16879

The Synergy Systems & Solutions SSS HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has a Missing Authentication for Critical Function CWE-306 vulnerability. The affected product does not require authentication for TELNET access, which may allow an attacker to change configuration or...

9.8CVSS6.8AI score0.0137EPSS

Exploits0References1

Cvelist•added 2025/10/27 10:10 a.m.•6 views

CVE-2025-59460 Unsecure access configuration

The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections...

7.5CVSS0.0036EPSS

Exploits0References6

CVE•added 2025/10/27 10:10 a.m.•11 views

CVE-2025-59460

Technical details about CVE-2025-59460 are not publicly available in the provided documents. Monitor for updates.

7.5CVSS6.5AI score0.0036EPSS

Exploits0References6Affected Software1

OSV•added 2025/10/07 7:8 a.m.•1 views

SUSE-SU-2025:03456-1 Security update for logback

This update for logback fixes the following issues: - CVE-2025-11226: fixed the ACE vulnerability in conditional configuration file processing bsc1250715...

7CVSS6.7AI score0.00151EPSS

Exploits0References3