CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

55308 matches found

EUVD-2026-35441

An Authentication Bypass vulnerability CWE-288 in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated attacker to create arbitrary administrative accounts and obtain full administrative access...

10CVSS5.6AI score

Exploits0References2

EUVD•added 4 hours ago•2 views

EUVD-2026-35545

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7.1AI score

Exploits0References1

Circl•added 5 hours ago•7 views

CVE-2026-7486

creationtimestamp| type| source ---|---|--- 2026-06-09 15:46:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnuk6irrwx2s...

9.8CVSS5.3AI score

Exploits0References1

Circl•added 6 hours ago•3 views

CVE-2016-20063

creationtimestamp| type| source ---|---|--- 2026-06-09 14:41:59+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mnugklqaj62a...

7.1CVSS5.3AI score

Exploits0References1

Microsoft CVE•added 7 hours ago•3 views

Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

7.3CVSS7.1AI score

Exploits0

Circl•added 7 hours ago•4 views

CVE-2025-10263

creationtimestamp| type| source ---|---|--- 2026-06-09 13:41:01+00:00| seen| https://infosec.exchange/users/andersonc0d3/statuses/116720431315436112 2026-06-09 13:42:27+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnuda5fphm2q...

5.3AI score

Exploits0References2

Circl•added 9 hours ago•2 views

CVE-2025-40808

creationtimestamp| type| source ---|---|--- 2026-06-09 12:30:13+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mnu76w7sj42g...

6.9CVSS5.3AI score

Exploits0References1

Circl•added 9 hours ago•8 views

CVE-2026-24349

creationtimestamp| type| source ---|---|--- 2026-06-09 11:57:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnu5epvqfc25 2026-06-09 12:30:13+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mnu76w7sj42g...

8.2CVSS5.3AI score

Exploits0References2

Circl•added 9 hours ago•6 views

CVE-2026-49741

creationtimestamp| type| source ---|---|--- 2026-06-09 11:47:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnu4ssm3pq2p...

8.7CVSS5.3AI score

Exploits0References1

NVD•added 10 hours ago•4 views

CVE-2026-47346

Backend users with file write permissions were able to upload form definition files with mixed-case extensions e.g., .FORM.YAML to bypass the Form Framework's upload restriction. Maliciously crafted form definition files can be used to execute arbitrary SQL statements, allowing attackers to...

7.6CVSS

Exploits0References3

Circl•added 10 hours ago•5 views

CVE-2025-62858

creationtimestamp| type| source ---|---|--- 2026-06-09 11:13:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnu2vsuvc72p...

5.1CVSS5.3AI score

Exploits0References1

Circl•added 10 hours ago•4 views

CVE-2026-41983

creationtimestamp| type| source ---|---|--- 2026-06-09 11:02:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnu2bgyoph2e...

4.3CVSS5.3AI score

Exploits0References1

Circl•added 10 hours ago•6 views

CVE-2026-46749

creationtimestamp| type| source ---|---|--- 2026-06-09 11:00:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnu273c2t32n...

7.5CVSS5.3AI score

Exploits0References1

Circl•added 10 hours ago•4 views

CVE-2026-41976

creationtimestamp| type| source ---|---|--- 2026-06-09 10:56:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mntzx5l6py2r...

6.6CVSS5.3AI score

Exploits0References1

CVE•added 10 hours ago•10 views

CVE-2026-47346

Summary: CVE-2026-47346 affects TYPO3 CMS prior to certain patch versions, where backend users with file write perms can upload form definition files with mixed-case extensions (e.g., .FORM.YAML) to bypass upload restrictions. This can be exploited to execute arbitrary SQL statements and escalate...

7.6CVSS6AI score

Exploits0References3

EUVD•added 10 hours ago•5 views

EUVD-2026-35391

Backend users with access to the Form Framework were able to use files not ending in .form.yaml as form definitions, which were processed without denying the incorrect file extension. Maliciously crafted form definition files can be used to execute arbitrary SQL statements, allowing attackers to...

7.6CVSS6AI score

Exploits0References3

Circl•added 11 hours ago•6 views

CVE-2023-29331

creationtimestamp| type| source ---|---|--- 2026-06-09 09:46:02+00:00| seen| https://infosec.exchange/users/certvde/statuses/116719508098466554...

7.5CVSS5.3AI score0.01128EPSS

Exploits0References1

GithubExploit•added 13 hours ago•34 views

Exploit for CVE-2026-39023

CVE-2026-39023 RCE poc - RESPONSIVE filemanager v.9.14.0 las...

6.3AI score

Exploits0

Circl•added 14 hours ago•3 views

CVE-2026-8499

creationtimestamp| type| source ---|---|--- 2026-06-09 07:24:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnto3pp7i72m...

5.3CVSS5.3AI score

Exploits0References1

Circl•added 14 hours ago•4 views

CVE-2026-5067

creationtimestamp| type| source ---|---|--- 2026-06-09 07:00:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mntmrkv26t24 2026-06-09 07:31:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mntoigel5i2r...

9.8CVSS5.3AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by