CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

75 matches found

EUVD•added 2026/05/27 7:47 a.m.•7 views

EUVD-2026-32119

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dataapi.php files mb24configetTagAlarm function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

8.7CVSS5.9AI score0.00064EPSS

Exploits0References1

Tenable Nessus•added 2026/05/07 12:0 a.m.•4 views

RockyLinux 8 : dovecot (RLSA-2026:13830)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:13830 advisory. dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command CVE-2025-59032 dovecot: denial of service via crafted...

7.5CVSS5.8AI score0.00068EPSS

Exploits2References7

Amazon•added 2026/04/13 12:0 a.m.•6 views

Important: vim

Issue Overview: When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because Vim does not properly end visual mode and therefore may try to access beyond the end of a line in a buffer. In Patch 9.1.1003 Vim will correctl...

9.2CVSS6.1AI score0.001EPSS

Exploits3

OSV•added 2026/03/27 10:54 p.m.•2 views

MGASA-2026-0069 Updated cmake packages fix security vulnerability

cmake cmForEachCommand.cxx ReplayItems assertion. CVE-2025-9301...

4.8CVSS5.8AI score0.00023EPSS

Exploits0References3

Packet Storm News•added 2026/03/26 12:0 a.m.•1 views

FreeBSD Security Advisory - FreeBSD-SA-26:07.nvmf

FreeBSD Security Advisory - On a system exposing an NVMe/TCP target, a remote client can trigger a kernel panic by sending a CONNECT command for an I/O queue with a bogus or stale CNTLID...

7.5CVSS5.9AI score0.00027EPSS

Exploits0

OpenVAS•added 2026/03/16 12:0 a.m.•1 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2026-1449)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS5.8AI score0.00061EPSS

Exploits2References2

RedhatCVE•added 2026/01/07 9:42 a.m.•4 views

CVE-1999-0144

Denial of service in Qmail by specifying a large number of recipients with the RCPT command...

2.1CVSS6.9AI score0.01987EPSS

Exploits0References1

Github Security Blog•added 2025/12/17 10:50 p.m.•10 views

mcp-server-git argument injection in git_diff and git_checkout functions allows overwriting local files

In mcp-server-git versions prior to 2025.12.18, the gitdiff and gitcheckout functions passed user-controlled arguments directly to git CLI commands without sanitization. Flag-like values e.g., --output=/path/to/file for gitdiff would be interpreted as command-line options rather than git refs,...

7.1CVSS7.3AI score0.00015EPSS

Exploits0References3Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-3668

Malware in sbrugna...

5.3CVSS6.4AI score0.00538EPSS

Exploits0References10

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-3374

Malware in sbrugna...

7.2CVSS6.1AI score0.00056EPSS

Exploits0References9