CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

RedhatCVE•added 2026/06/05 7:42 p.m.•6 views

CVE-2025-36515

Uncontrolled search path for some AI Playground software before version 3.0.0 alpha within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This...

5.4CVSS5.3AI score0.00015EPSS

Exploits0References1

EUVD•added 2026/05/12 6:30 p.m.•5 views

EUVD-2025-209795

5.4CVSS5.7AI score0.00015EPSS

Exploits0References2

NVD•added 2026/05/12 5:16 p.m.•9 views

CVE-2025-36515

5.4CVSS0.00015EPSS

Exploits0References1

CVE•added 2026/05/12 4:35 p.m.•21 views

CVE-2025-36515

CVE-2025-36515 affects AI Playground software prior to 3.0.0 alpha. The issue is an Uncontrolled search path vulnerability in Ring 3: User Applications that can lead to privilege escalation. An unprivileged adversary with an authenticated user and high attack complexity could exploit a local atta...

5.4CVSS5.7AI score0.00015EPSS

Exploits0References1

Cvelist•added 2026/05/12 4:35 p.m.•30 views

CVE-2025-36515

5.4CVSS0.00015EPSS

Exploits0References1

CNNVD•added 2026/05/12 12:0 a.m.•4 views

Intel AI Playground 代码问题漏洞

Intel AI Playground is an online platform operated by Intel Corporation in the United States. Previous versions of Intel AI Playground, including 3.0.0 alpha, had code vulnerabilities that stemmed from uncontrolled search paths, which could lead to privilege escalation...

5.4CVSS5.9AI score0.00015EPSS

Exploits0References1

Intel•added 2026/05/12 12:0 a.m.•7 views

AI Playground Software Advisory

Summary: A potential security vulnerability for some AI Playground software maintained by Intel may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-36515 Description: Uncontrolled search path for...

5.4CVSS5.7AI score0.00015EPSS

Exploits0

OSV•added 2026/04/11 9:54 p.m.•1 views

MAL-2026-2874 Malicious code in unisys-agentic-ai-playground (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13ec6c43f5a186c6e78aca52041174240070088e17078f1bcb9f63ac0d55f5f0 The package unisys-agentic-ai-playground was found to contain malicious code. Source: ossf-package-analysis...

5.7AI score

Exploits0

RedhatCVE•added 2026/02/16 7:30 p.m.•3 views

CVE-2025-32452

Uncontrolled search path for some AI Playground before version 2.6.1 beta within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This result may...

6.7CVSS5.4AI score0.00028EPSS

Exploits0References1

RedhatCVE•added 2026/02/14 7:23 a.m.•1 views

CVE-2026-1721

Summary A Reflected Cross-Site Scripting XSS vulnerability was discovered in the AI Playground's OAuth callback handler. The errordescription query parameter was directly interpolated into an HTML script tag without proper escaping, allowing attackers to execute arbitrary JavaScript in the contex...

6.2CVSS5.9AI score0.00023EPSS

Exploits0References1

Github Security Blog•added 2026/02/13 9:4 p.m.•7 views

Cloudflare Agents has a Reflected Cross-Site Scripting (XSS) vulnerability in AI Playground site

5.9AI score

Exploits0References4Affected Software1

OSV•added 2026/02/13 9:4 p.m.•2 views

GHSA-W5CR-2QHR-JQC5 Cloudflare Agents has a Reflected Cross-Site Scripting (XSS) vulnerability in AI Playground site

6.2CVSS6AI score

Exploits0References4

Github Security Blog•added 2026/02/13 3:31 a.m.•6 views

Cloudflare Agents is Vulnerable to Reflected Cross-Site Scripting in the AI Playground's OAuth callback handler

6.2CVSS5.9AI score0.00023EPSS

Exploits0References4Affected Software1

NVD•added 2026/02/13 3:15 a.m.•3 views

CVE-2026-1721

6.2CVSS0.00023EPSS

Exploits0References1

OSV•added 2026/02/13 3:15 a.m.•1 views

CVE-2026-1721

6.2CVSS6.1AI score0.00023EPSS

Exploits0References1

Cvelist•added 2026/02/13 1:46 a.m.•27 views

CVE-2026-1721 Reflected Cross-Site Scripting (XSS) vulnerability in AI Playground site

6.2CVSS0.00023EPSS

Exploits0References1

Vulnrichment•added 2026/02/13 1:46 a.m.•3 views

CVE-2026-1721 Reflected Cross-Site Scripting (XSS) vulnerability in AI Playground site

6.2CVSS5.9AI score0.00023EPSS

Exploits0References1

CVE•added 2026/02/13 1:46 a.m.•18 views

CVE-2026-1721

CVE-2026-1721 is a reflected XSS in AI Playground’s OAuth callback handler. The root cause is direct interpolation of the error_description query parameter into an inline script tag in site/ai-playground/src/server.ts, enabling arbitrary JavaScript execution in a victim’s session. Reported impact...

6.2CVSS5.9AI score0.00023EPSS

Exploits0References1

CNNVD•added 2026/02/13 12:0 a.m.•1 views

Cloudflare Agents 安全漏洞

Cloudflare Agents is an open-source tool developed by Cloudflare for building and deploying AI agents on Cloudflare platforms. There is a security vulnerability in Cloudflare Agents, which stems from the improper escaping of the errordescription query parameter in the OAuth callback handler of th...

6.2CVSS5.7AI score0.00023EPSS

Exploits0References1

Cvelist•added 2026/02/10 4:25 p.m.•22 views

CVE-2025-32452

6.7CVSS0.00028EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by