CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

Vulnrichment•added 2026/03/20 12:0 a.m.•1 views

CVE-2026-33369

Zimbra Collaboration ZCS 10.0 and 10.1 contains an LDAP injection vulnerability in the Mailbox SOAP service within a FolderAction operation. The application fails to properly sanitize user-supplied input before incorporating it into an LDAP search filter. An authenticated attacker can exploit thi...

5.8AI score0.00068EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-5821

Malware in sbrugna...

7.5CVSS8.5AI score0.00153EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-5825

Malware in sbrugna...

7.5CVSS8.5AI score0.00153EPSS

Exploits1References6

RedhatCVE•added 2025/02/05 5:58 p.m.•5 views

CVE-2019-5055

An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon hostapd on the NETGEAR N300 WNR2000v5 with Firmware Version V1.0.0.70 wireless router. A SOAP request sent in an invalid sequence to the service can cause a null pointer dereference, resulting in the hostapd...

7.5CVSS6.7AI score0.01445EPSS

Exploits1References1

SUSE CVE•added 2023/02/15 3:58 a.m.•1 views

SUSE CVE-2020-13577

A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS8.4AI score0.00153EPSS

Exploits1References3

OSV•added 2021/02/10 8:15 p.m.•1 views

DEBIAN-CVE-2020-13578

7.5CVSS8.1AI score0.00153EPSS

Exploits1References1

OSV•added 2021/02/10 8:15 p.m.•1 views

DEBIAN-CVE-2020-13576

A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability...

9.8CVSS9.3AI score0.0076EPSS

Exploits1References1

OSV•added 2021/02/10 8:15 p.m.•2 views

DEBIAN-CVE-2020-13575

A denial-of-service vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS8.2AI score0.0018EPSS

Exploits1References1

OSV•added 2021/02/10 8:15 p.m.•0 views

UBUNTU-CVE-2020-13577

7.5CVSS7.2AI score0.00153EPSS

Exploits1References3

OSV•added 2021/02/10 8:15 p.m.•0 views

UBUNTU-CVE-2020-13574

7.5CVSS7.2AI score0.00153EPSS

Exploits1References3

GitLab Advisory Database•added 2021/02/10 12:0 a.m.•42 views

NULL Pointer Dereference

A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS1.4AI score0.00153EPSS

Exploits1References1Affected Software1

UbuntuCve•added 2021/02/10 12:0 a.m.•42 views

CVE-2020-13576

9.8CVSS7.8AI score0.0076EPSS

Exploits1References2

Debian CVE•added 2021/02/10 12:0 a.m.•39 views

CVE-2020-13577

7.5CVSS7.7AI score0.00153EPSS

Exploits1

CNNVD•added 2021/01/05 12:0 a.m.•6 views

Genivia gSOAP 输入验证错误漏洞

Genivia gSOAP is a C/C++ software development kit with automatic coding capabilities. A security vulnerability exists in the Genivia gSOAP WS-Addressing plugin functionality, which can be exploited by an attacker to achieve remote code execution by sending a specially crafted SOAP request...

9.8CVSS7.7AI score0.0076EPSS

Exploits5References7

NVD•added 2014/05/22 8:55 p.m.•11 views

CVE-2014-2948

SQL injection vulnerability in workflowenginesoa.asmx in Bizagi BPM Suite through 10.4 allows remote authenticated users to execute arbitrary SQL commands via a crafted SOAP request...

6.5CVSS7.8AI score0.00362EPSS

Exploits0References1

Debian CVE•added 2014/05/12 2:0 p.m.•21 views

CVE-2014-3243

Removed by vendor...

5CVSS6.7AI score0.00724EPSS

Exploits1

Cvelist•added 2014/05/12 2:0 p.m.•16 views

CVE-2014-3243

SOAPpy 0.12.5 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted SOAP request containing a large number of nested entity references...

6.4AI score0.00724EPSS

Exploits1References5

Prion•added 2013/08/16 5:55 p.m.•20 views

Design/Logic Flaw

The GetComputerSystem method in the HostControl service in SAP Netweaver 7.03 allows remote attackers to obtain sensitive information via a crafted SOAP request to TCP port 1128...

5CVSS6.6AI score0.11698EPSS

Exploits2References5Affected Software1

Cvelist•added 2013/08/16 5:0 p.m.•19 views

CVE-2013-3319

The GetComputerSystem method in the HostControl service in SAP Netweaver 7.03 allows remote attackers to obtain sensitive information via a crafted SOAP request to TCP port 1128...

6AI score0.11698EPSS

Exploits2References5

Check Point Advisories•added 2013/07/15 12:0 a.m.•0 views

SAP NetWeaver SOAP Request SXPG_COMMAND_EXECUTE Command Execution

A remote command execution vulnerability has been reported in SAP NetWeaver's SOAP interface. The vulnerability is due to insufficient validation of incoming SOAP requests. A remote, authenticated attacker can exploit this vulnerability by sending a specially crafted SOAP request to the affected...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by