CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1218 matches found

CVE-2026-48597

Allocation of Resources Without Limits or Throttling vulnerability in elixir-tesla tesla allows denial of service via atom table exhaustion in Tesla.Adapter.Mint. Tesla.Adapter.Mint.openconn/2 converts the URL scheme of every outgoing request to a BEAM atom via String.toatomuri.scheme with no...

8.2CVSS5.8AI score0.00042EPSS

Exploits0References1

Nuclei•added 7 hours ago•26 views

Atom CMS v2.0 - Cross-Site Scripting

Atom CMS v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the "A" parameter in /widgets/debug.php. id: CVE-2022-25489 info: name: Atom CMS v2.0 - Cross-Site Scripting author: theamanrawat severity: medium description: | Atom CMS v2.0 was discovered to contain ...

5.4CVSS5.9AI score0.05393EPSS

Exploits1References3

Nuclei•added 7 hours ago•19 views

Atom CMS v2.0 - SQL Injection

AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php. id: CVE-2022-24223 info: name: Atom CMS v2.0 - SQL Injection author: theamanrawat severity: critical description: | AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php...

9.8CVSS7.4AI score0.20966EPSS

Exploits4References5

Nuclei•added 7 hours ago•17 views

Atom CMS v2.0 - Remote Code Execution

Atom CMS v2.0 was discovered to contain a remote code execution RCE vulnerability via /admin/uploads.php. id: CVE-2022-25487 info: name: Atom CMS v2.0 - Remote Code Execution author: theamanrawat severity: critical description: | Atom CMS v2.0 was discovered to contain a remote code execution RCE...

9.8CVSS7.9AI score0.83257EPSS

Exploits4References5

NVD•added 2 days ago•6 views

CVE-2026-48597

8.2CVSS0.00042EPSS

Exploits0References4

Cvelist•added 2 days ago•23 views

CVE-2026-48597 Atom table exhaustion via untrusted URL scheme in Tesla.Adapter.Mint

8.2CVSS0.00042EPSS

Exploits0References4

Vulnrichment•added 2 days ago•2 views

CVE-2026-48597 Atom table exhaustion via untrusted URL scheme in Tesla.Adapter.Mint

8.2CVSS5.8AI score0.00042EPSS

Exploits0References4

EUVD•added 2 days ago•4 views

EUVD-2026-34013

8.2CVSS5.8AI score0.00042EPSS

Exploits0References4

CVE•added 2 days ago•6 views

CVE-2026-48597

The vulnerability CVE-2026-48597 affects elixir-tesla (Tesla) where Tesla.Adapter.Mint.open_conn/2 converts each outgoing request URL scheme to a BEAM atom using String.to_atom(uri.scheme) without an allow-list. Since BEAM atoms are not garbage-collected, an attacker who can influence the request...

8.2CVSS5.8AI score0.00042EPSS

Exploits0References4

ATTACKERKB•added 2 days ago•4 views

CVE-2026-48597

8.2CVSS5.8AI score0.00042EPSS

Exploits0References5Affected Software1

OSV•added 2 days ago•3 views

EEF-CVE-2026-48597 Atom table exhaustion via untrusted URL scheme in Tesla.Adapter.Mint

Summary Allocation of Resources Without Limits or Throttling vulnerability in elixir-tesla tesla allows denial of service via atom table exhaustion in Tesla.Adapter.Mint. Tesla.Adapter.Mint.openconn/2 converts the URL scheme of every outgoing request to a BEAM atom via String.toatomuri.scheme wit...

8.2CVSS5.8AI score0.00042EPSS

Exploits0References4

Positive Technologies•added 2 days ago•5 views

PT-2026-45840

Allocation of Resources Without Limits or Throttling vulnerability in elixir-tesla tesla allows denial of service via atom table exhaustion in Tesla.Adapter.Mint. Tesla.Adapter.Mint.open conn/2 converts the URL scheme of every outgoing request to a BEAM atom via String.to atomuri.scheme with no...

8.2CVSS5.8AI score0.00042EPSS

Exploits0References5

RedhatCVE•added 2026/05/26 8:14 p.m.•4 views

CVE-2026-47067

Allocation of Resources Without Limits or Throttling vulnerability in benoitc hackney allows Flooding. The URL parser in src/hackneyurl.erl converts every unrecognized URL scheme to a permanent BEAM atom via binarytoatom/2. BEAM atoms are never garbage-collected and the atom table defaults to a...

8.7CVSS5.8AI score0.00049EPSS

Exploits1References1

NVD•added 2026/05/25 3:16 p.m.•8 views

CVE-2026-47067

8.7CVSS0.00049EPSS

Exploits1References4

Cvelist•added 2026/05/25 2:0 p.m.•28 views

CVE-2026-47067 Atom table exhaustion via unrecognized URL schemes in hackney

8.7CVSS0.00049EPSS

Exploits1References4

Vulnrichment•added 2026/05/25 2:0 p.m.•4 views

CVE-2026-47067 Atom table exhaustion via unrecognized URL schemes in hackney

8.7CVSS5.8AI score0.00049EPSS

Exploits1References4

EUVD•added 2026/05/25 2:0 p.m.•7 views

EUVD-2026-31691

8.7CVSS5.8AI score0.00049EPSS

Exploits1References4

ATTACKERKB•added 2026/05/25 2:0 p.m.•6 views

CVE-2026-47067

8.7CVSS5.8AI score0.00049EPSS

Exploits1References5Affected Software1

CVE•added 2026/05/25 2:0 p.m.•10 views

CVE-2026-47067

Affected software: hackney (Erlang HTTP client). Vulnerability description: The URL parser in src/hackney_url.erl converts every unrecognized URL scheme to a permanent BEAM atom via binary_to_atom/2. BEAM atoms are never garbage-collected, and the atom table maxes out at 1,048,576 entries. An att...

8.7CVSS5.8AI score0.00049EPSS

Exploits1References4Affected Software1

OSV•added 2026/05/25 2:0 p.m.•3 views

EEF-CVE-2026-47067 Atom table exhaustion via unrecognized URL schemes in hackney

Summary Allocation of Resources Without Limits or Throttling vulnerability in benoitc hackney allows Flooding. The URL parser in src/hackneyurl.erl converts every unrecognized URL scheme to a permanent BEAM atom via binarytoatom/2. BEAM atoms are never garbage-collected and the atom table default...

8.7CVSS5.8AI score0.00049EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by