CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

173 matches found

OSV•added 2026/06/15 5:22 p.m.•7 views

MINI-4GRC-W528-8CV8

Bulletin has no description...

2.5CVSS5.2AI score0.00231EPSS

Exploits1

OSV•added 2026/06/08 3:38 a.m.•4 views

MINI-P5CV-VVP8-FJWG

Bulletin has no description...

9.6CVSS5.1AI score0.00365EPSS

Exploits0

RedhatCVE•added 2026/06/05 7:44 p.m.•7 views

CVE-2026-8139

Concrete CMS 9.5.0 and below is vulnerable to Stored XSS via external-link page cvName because updateCollectionAliasExternal bypasses being sanitized. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.0 with vector...

5.4CVSS5.4AI score0.0015EPSS

Exploits0References1

SUSE CVE•added 2026/05/27 11:14 a.m.•3 views

SUSE CVE-2018-7712

The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in OpenCV 3.4.1 allows remote attackers to cause a denial of service assertion failure because size.height = 120 may be false. Note: “OpenCV CVAssert is not an assertion C-like assert, it is regular C++ exception which can...

7.5CVSS7.1AI score0.02313EPSS

Exploits0References3

CVE•added 2026/05/21 9:45 p.m.•21 views

CVE-2026-8139

Concrete CMS versions 9.5.0 and earlier are vulnerable to stored XSS on the external-link page cvName due to updateCollectionAliasExternal bypassing sanitization. The issue is triggered by the sanitize bypass in updateCollectionAliasExternal, enabling stored scripts delivered to users. Affected p...

5.4CVSS5.8AI score0.0015EPSS

Exploits0References1Affected Software1

EUVD•added 2026/05/14 6:44 a.m.•7 views

EUVD-2026-30253

The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7 via the CV upload handler. This is due to missing file type validation. This makes it possible for unauthenticated attackers to upload files that may be executable, which makes...

9.8CVSS6.4AI score0.00665EPSS

Exploits1References4

Tenable Nessus•added 2026/04/20 12:0 a.m.•0 views

RHEL 9 : containernetworking-plugins (RHSA-2026:9109)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:9109 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfac...

10CVSS7AI score0.00765EPSS

Exploits3References10

OSV•added 2026/04/13 2:32 a.m.•0 views

MINI-CV9J-FXGF-6VRP

Bulletin has no description...

7.5CVSS5.7AI score0.00349EPSS

Exploits0

OSV•added 2026/04/12 8:48 a.m.•1 views

MINI-FCMV-88CV-9G62

Bulletin has no description...

8.8CVSS5.7AI score0.00532EPSS

Exploits0

HackRead•added 2026/03/11 12:14 p.m.•7 views

BlackSanta Malware Targets HR Staff with Fake CV Downloads

Aryaka researchers have identified a new threat from a Russian-speaking group using 'BlackSanta' malware. By disguising attacks as job applications, hackers are bypassing security to target recruitment workflows...

5.8AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-0828

Malware in sbrugna...

6CVSS6.4AI score0.00944EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2021-2143

Malware in sbrugna...

8.8CVSS5.9AI score0.0197EPSS

Exploits0References12