CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

67 matches found

CVE•added 2026/05/04 12:30 a.m.•3 views

CVE-2026-7715

Technical details are not publicly available in the provided documents. Monitor for updates from the project and CVE entry.

6.5CVSS6.2AI score0.00057EPSS

Exploits0References6

ATTACKERKB•added 2026/05/04 12:30 a.m.•1 views

CVE-2026-7715

A vulnerability has been found in ravenwits mcp-server-arangodb up to 0.4.7. This affects the function arangobackup of the file src/tools.ts of the component MCP Interface. Such manipulation of the argument outputDir leads to path traversal. It is possible to launch the attack remotely. The explo...

6.5CVSS6.2AI score0.00057EPSS

Exploits0References6Affected Software1

Cvelist•added 2026/05/04 12:30 a.m.•26 views

CVE-2026-7715 ravenwits mcp-server-arangodb MCP tools.ts arango_backup path traversal

A vulnerability has been found in ravenwits mcp-server-arangodb up to 0.4.7. This affects the function arangobackup of the file src/tools.ts of the component MCP Interface. Such manipulation of the argument outputDir leads to path traversal. It is possible to launch the attack remotely. The explo...

6.5CVSS0.00057EPSS

Exploits0References6

EUVD•added 2026/05/04 12:30 a.m.•1 views

EUVD-2026-26866

A vulnerability has been found in ravenwits mcp-server-arangodb up to 0.4.7. This affects the function arangobackup of the file src/tools.ts of the component MCP Interface. Such manipulation of the argument outputDir leads to path traversal. It is possible to launch the attack remotely. The explo...

6.5CVSS6.2AI score0.00057EPSS

Exploits0References6

Positive Technologies•added 2026/05/04 12:0 a.m.•2 views

PT-2026-36743

Name of the Vulnerable Software and Affected Versions ravenwits mcp-server-arangodb versions prior to 0.4.8 Description A path traversal issue exists in the MCP Interface component within the arango backup function of the src/tools.ts file. A remote attacker can manipulate the outputDir argument ...

6.5CVSS6.6AI score0.00057EPSS

Exploits0References8

Chainguard•added 2026/04/28 7:17 p.m.•4 views

CVE-2026-41672 vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

8.7CVSS5.8AI score0.00074EPSS

Chainguard•added 2026/04/28 7:17 p.m.•3 views

GHSA-J759-J44W-7FR8 vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

Chainguard•added 2026/04/28 7:17 p.m.•2 views

GHSA-F6WW-3GGP-FR8H vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

Chainguard•added 2026/04/28 7:17 p.m.•4 views

CVE-2026-41674 vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

8.7CVSS5.8AI score0.0002EPSS

Chainguard•added 2026/04/28 7:17 p.m.•3 views

GHSA-X6WF-F3PX-WCQX vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

Chainguard•added 2026/04/28 7:17 p.m.•5 views

CVE-2026-41675 vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

8.7CVSS5.8AI score0.0002EPSS

Chainguard•added 2026/04/28 7:17 p.m.•3 views

GHSA-2V35-W6HQ-6MFW vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

Chainguard•added 2026/04/28 7:17 p.m.•3 views

CVE-2026-41673 vulnerabilities

Vulnerabilities for packages: librechat, npm, saf, actions-runner, arangodb, sqlpad...

8.7CVSS5.8AI score0.0004EPSS

Chainguard•added 2026/04/07 1:17 a.m.•2 views

CVE-2026-34601 vulnerabilities

Vulnerabilities for packages: sqlpad, arangodb, saf...

7.5CVSS5.8AI score0.00019EPSS

NVD•added 2026/02/15 2:16 p.m.•1 views

CVE-2019-25367

ArangoDB Community Edition 3.4.2-1 contains multiple cross-site scripting vulnerabilities in the Aardvark web admin interface index.html through search, user management, and API parameters. Attackers can inject scripts via parameters in /db/system/admin/aardvark/index.html to execute JavaScript i...

5.4CVSS0.00039EPSS

Exploits0References3

Cvelist•added 2026/02/15 1:58 p.m.•29 views

CVE-2019-25367 ArangoDB Community Edition 3.4.2-1 XSS via aardvark admin interface

ArangoDB Community Edition 3.4.2-1 contains multiple cross-site scripting vulnerabilities in the Aardvark web admin interface index.html through search, user management, and API parameters. Attackers can inject scripts via parameters in /db/system/admin/aardvark/index.html to execute JavaScript i...

5.4CVSS0.00039EPSS

Exploits0References3

EUVD•added 2026/02/15 1:58 p.m.•2 views

EUVD-2019-19411

ArangoDB Community Edition 3.4.2-1 contains multiple cross-site scripting vulnerabilities in the Aardvark web admin interface index.html through search, user management, and API parameters. Attackers can inject scripts via parameters in /db/system/admin/aardvark/index.html to execute JavaScript i...

5.4CVSS5.3AI score0.00039EPSS

Exploits0References3

CVE•added 2026/02/15 1:58 p.m.•7 views

CVE-2019-25367

ArangoDB Community Edition 3.4.2-1 contains multiple cross-site scripting vulnerabilities in the Aardvark web admin interface (index.html). The issues allow injection of scripts via parameters in /_db/_system/_admin/aardvark/index.html, enabling JavaScript execution in authenticated users’ browse...

5.4CVSS5.2AI score0.00039EPSS

Exploits0References3

ATTACKERKB•added 2026/02/15 1:58 p.m.•3 views

CVE-2019-25367

ArangoDB Community Edition 3.4.2-1 contains multiple cross-site scripting vulnerabilities in the Aardvark web admin interface index.html through search, user management, and API parameters. Attackers can inject scripts via parameters in /db/system/admin/aardvark/index.html to execute JavaScript i...

5.4CVSS5.2AI score0.00039EPSS

Exploits0References3Affected Software1

vulnersOsv•added 2025/10/15 9:30 a.m.•3 views

ai.catboost:catboost-spark_3.5_2.13 (>=1.2.3 <=1.2.10), ch.cern.sparkmeasure:spark-measure_2.13 (=0.24) +133 more potentially affected by CVE-2025-55039 via org.apache.spark:spark-network-common_2.13 (>=3.5.0 <=3.5.1)

org.apache.spark:spark-network-common2.13 MAVEN version =3.5.0, =1.2.3, =4.43.0, =3.5.0, =3.5.00.20.1, =3.5.0, =2.0.4, =2.1.6-spark-3.5.1, =2.1.6-spark-3.5.1, =1.1.1, =1.1.3 and more Source cves: CVE-2025-55039 Source advisory: OSV:GHSA-6P6V-M64V-JX8Q...

6.5CVSS7.1AI score0.00099EPSS

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by