CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1050 matches found

CVE-2026-27351

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

5.4CVSS0.00036EPSS

Exploits0References1

CVE•added 2 days ago•8 views

CVE-2026-27351

CVE-2026-27351 affects the WordPress Crew HRM plugin up to version 1.2.2. Root cause: Missing Authorization through incorrectly configured access control. Impact includes Low integrity, Low availability, and No confidentiality impact per CVSS 3.1 (base score 5.4). Attack vector is Network with Lo...

5.4CVSS5.8AI score0.00036EPSS

Exploits0References1

EUVD•added 2 days ago•4 views

EUVD-2026-33931

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

5.4CVSS5.8AI score0.00036EPSS

Exploits0References1

Vulnrichment•added 2 days ago•4 views

CVE-2026-27351 WordPress Crew HRM plugin <= 1.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

5.4CVSS5.8AI score0.00036EPSS

Exploits0References1

Cvelist•added 2 days ago•33 views

CVE-2026-27351 WordPress Crew HRM plugin <= 1.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

5.4CVSS0.00036EPSS

Exploits0References1

Patchstack•added 2 days ago•4 views

WordPress Crew HRM plugin <= 1.2.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by benzdeus in WordPress Plugin Crew HRM versions = 1.2.2...

5.4CVSS5.8AI score0.00036EPSS

Exploits0Affected Software1

Positive Technologies•added 2 days ago•6 views

PT-2026-45747

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

5.4CVSS5.8AI score0.00036EPSS

Exploits0References2

Wired Threat Level•added 5 days ago•11 views

Cybercrime Crew Claims It Hacked Mike Lindell’s MyPillow

Plus: A ransomware group is now stealing data in person, BusPatrol wants to hand its license plate surveillance data to the cops, and more...

5.8AI score

Exploits0

Patchstack•added 2026/05/01 9:16 a.m.•3 views

WordPress Role Based Pricing for Woo by Meow Crew plugin <= 1.6.0 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin WooCommerce Role Based Pricing by Meow Crew versions = 1.6.0...

6.1CVSS5.8AI score0.00135EPSS

Exploits0References1Affected Software1

HackRead•added 2026/01/03 8:11 p.m.•4 views

Finnish Authorities Detain Crew After Undersea Internet Cable Severed

After a sudden internet cable break between Finland and Estonia, authorities have seized the cargo ship Fitburg. With two crew members arrested and sanctioned steel found on board, investigators are now probing if this was an accident or a deliberate act of hybrid warfare...

7AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-1984

Malware in sbrugna...

7.5CVSS6.4AI score0.00636EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-4777

Malware in sbrugna...

7.5CVSS6.4AI score0.00486EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-40144

Malicious code in bioql PyPI...

9CVSS6.5AI score0.0082EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-46788

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01871EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-46787

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00063EPSS

Exploits1References1

OSSF Malicious Packages•added 2025/09/11 5:54 a.m.•2 views

Malicious code in crew-toolbox (npm)

The package crew-toolbox was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 814628864e80153a94f63be13a31cda738fad89160a114cb24559afb0fdbf60f Any computer that has this package installed or running should be considered fully...

6.9AI score

Exploits0References1

Snyk•added 2025/09/11 5:54 a.m.•1 views

Malicious Package

Overview crew-toolbox is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score

Exploits0References2

OSV•added 2025/09/11 5:54 a.m.•1 views

MAL-2025-47056 Malicious code in crew-toolbox (npm)

6.9AI score

Exploits0References1

The Hacker News•added 2025/08/27 1:47 p.m.•14 views

ShadowSilk Hits 35 Organizations in Central Asia and APAC Using Telegram Bots

A threat activity cluster known as ShadowSilk has been attributed to a fresh set of attacks targeting government entities within Central Asia and Asia-Pacific APAC. According to Group-IB, nearly three dozen victims have been identified, with the intrusions mainly geared towards data exfiltration...

9.9CVSS8.8AI score0.94489EPSS

Exploits61

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-15150 Malicious code in avail-able-albu-m-down-load-441605-doom-crew-inc-ckkyk-vizpqd (npm)

The package avail-able-albu-m-down-load-441605-doom-crew-inc-ckkyk-vizpqd was found to contain malicious code...

7.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by