CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

88 matches found

CNNVD•added 2026/06/08 12:0 a.m.•7 views

Checkmk 安全漏洞

Checkmk is an IT monitoring platform developed by Checkmk Corporation. Versions of Checkmk prior to 2.5.0p5 contained security vulnerabilities. These vulnerabilities stemmed from improper authorization in the user message dashboard widgets. As a result, the message retrieval endpoint would return...

6.3CVSS5.4AI score0.00187EPSS

Exploits0References2

NVD•added 2026/06/04 3:16 p.m.•12 views

CVE-2026-10864

A vulnerability in the MISP dashboard widgets allowed an authenticated user to manipulate the fields option and influence which fields were returned by the New Users and New Organisations widgets. In some cases, requesting a field set that became empty after validation or redaction could cause th...

5.3CVSS0.00176EPSS

Exploits0References1

EUVD•added 2026/06/04 1:54 p.m.•7 views

EUVD-2026-34266

5.3CVSS5.8AI score0.00176EPSS

Exploits0References1

ATTACKERKB•added 2026/06/04 1:54 p.m.•6 views

CVE-2026-10864

5.3CVSS5.8AI score0.00176EPSS

Exploits0References2

Vulnrichment•added 2026/06/04 1:54 p.m.•8 views

CVE-2026-10864 MISP Dashboard widget field selection may expose restricted user and organisation data

5.3CVSS5.8AI score0.00176EPSS

Exploits0References1

CNNVD•added 2026/06/04 12:0 a.m.•3 views

MISP 安全漏洞

MISP is a set of open-source software solutions developed by MISP. This product is used for collecting, storing, distributing, and sharing network security metrics. It also includes functions for analyzing threats to network security and malware analysis. MISP has a security vulnerability that...

5.3CVSS5.3AI score0.00176EPSS

Exploits0References1

Positive Technologies•added 2026/06/04 12:0 a.m.•10 views

PT-2026-46238

Name of the Vulnerable Software and Affected Versions MISP affected versions not specified Description An issue in the dashboard widgets allows an authenticated user to manipulate the fields option to influence the data returned by the New Users and New Organisations widgets. When a requested fie...

5.3CVSS5.4AI score0.00176EPSS

Exploits0References4

Tenable Nessus•added 2026/05/15 12:0 a.m.•10 views

Zabbix 6.0.x < 6.0.45 / 7.0.x < 7.0.24 / 7.4.x < 7.4.8 XSS (ZBX-27760)

The version of Zabbix Server installed on the remote host is prior to 6.0.45, 7.0.24, 7.4.8. It is, therefore, affected by a stored cross-site scripting XSS vulnerability. The Item history widget in Zabbix 7.0+ or the Plain text widget in Zabbix 6.0 can execute injected JavaScript when HTML displ...

7.3CVSS5.8AI score0.00285EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 9:28 a.m.•5 views

CVE-2023-49743

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jeff Starr Dashboard Widgets Suite allows Stored XSS.This issue affects Dashboard Widgets Suite: from n/a through 3.4.1...

5.9CVSS6.5AI score0.00394EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•7 views

EUVD-2005-1729

Malware in sbrugna...

3.7CVSS6.4AI score0.00257EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-30314