CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-6317

Malware in sbrugna...

7.5CVSS7.8AI score0.00137EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 7:42 a.m.•7 views

CVE-2024-37163

SkyScrape is a GUI Dashboard for AWS Infrastructure and Managing Resources and Usage Costs. SkyScrape's API requests are currently unsecured HTTP requests, leading to potential vulnerabilities for the user's temporary credentials and data. This affects version 1.0.0...

7.5CVSS7.2AI score0.00204EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:57 a.m.•5 views

CVE-2023-6733

The WP-Members Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.4.8 via the wpmemfield shortcode. This makes it possible for authenticated attackers, with contributor access and above, to extract sensitive data includin...

6.5CVSS6.6AI score0.00226EPSS

Exploits0References1

OSV•added 2022/07/29 2:12 p.m.•9 views

SUSE-SU-2022:2597-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-26363, CVE-2022-26364: Fixed insufficient care with non-coherent mappings XSA-402 bsc1199966. - CVE-2022-21123, CVE-2022-21125, CVE-2022-21166: Fixed MMIO stale data vulnerabilities on x86 XSA-404 bsc1200549. - CVE-2022-26362: Fixed a rac...

8.8CVSS7.8AI score0.01411EPSS

Exploits3References17

OpenVAS•added 2022/07/28 12:0 a.m.•19 views

SUSE: Security Advisory (SUSE-SU-2022:2574-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.01411EPSS

Exploits3References8

CNVD•added 2021/02/02 12:0 a.m.•3 views

Smartbi's Big Data Analytics-BI Technology Platform Has Information Leakage Vulnerabilities

Ltd. is committed to providing one-stop business intelligence solutions for enterprise customers. There is an information leakage vulnerability in Smartbi Big Data Analytics-BI technology platform. An attacker can exploit the vulnerability to obtain sensitive information...

6.6AI score

Exploits0

Malwarebytes•added 2019/05/24 6:5 p.m.•254 views

Medical industry struggles with PACS data leaks

In the medical world, sharing patient data between organizations and specialists has always been an issue. X-Rays, notes, CT scans, and any other data or related files have always existed and been shared in their physical forms slides, paperwork. When a patient needed to take results of a test to...

7AI score

Exploits0

Malwarebytes•added 2019/05/23 7:22 p.m.•133 views

Knowing when it’s worth the risk: riskware explained

If there’s one thing I like more than trivia quizzes, it’s quotes. Positive, inspirational, and motivational quotes. Quotes that impart a degree of ancient wisdom, or those that make you stop and consider. Reading them melts our fears, sorrows, and feelings of inadequacy away. Some of the most...

7.1AI score

Exploits0

Cvelist•added 2018/07/06 9:0 p.m.•12 views

CVE-2016-6540 TrackR Bravo is missing authentication for the cloud service and allows querying or sending of GPS data from unauthenticated users

Unauthenticated access to the cloud-based service maintained by TrackR Bravo is allowed for querying or sending GPS data for any Trackr device by using the tracker ID number which can be discovered as described in CVE-2016-6539. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been...

6.5AI score0.00365EPSS

Exploits0References4

OSV•added 2017/09/20 4:29 p.m.•8 views

CVE-2015-5179

FreeIPA might display user data improperly via vectors involving non-printable characters...

7.5CVSS6.7AI score

Exploits0References5

OSV•added 2017/02/22 9:0 a.m.•17 views

SUSE-SU-2017:0534-1 Security update for php7

This update for php7 fixes the following security issues: - CVE-2016-7480: The SplObjectStorage unserialize implementation in ext/spl/splobserver.c in PHP did not verify that a key is an object, which allowed remote attackers to execute arbitrary code or cause a denial of service uninitialized...

9.8CVSS9.5AI score0.2113EPSS

Exploits5References27

Tenable Nessus•added 2015/02/24 12:0 a.m.•33 views

Oracle MySQL 5.6.x < 5.6.22 Multiple Vulnerabilities

Binary data 8920.prm...

7.5CVSS7.6AI score0.11718EPSS

Exploits0References8

OpenVAS•added 2011/01/25 12:0 a.m.•8 views

PHP Coupon Script 'page' Parameter SQL Injection Vulnerability

PHP Coupon Script is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. PHP Coupon Script 6.0 is...

0.1AI score

Exploits0References2

Tenable Nessus•added 2007/07/31 12:0 a.m.•11 views

SeaMonkey < 1.1.4 Multiple Vulnerabilities

Binary data 4153.prm...

4.3CVSS7.3AI score0.21702EPSS

Exploits3References2

Tenable Nessus•added 2005/02/15 12:0 a.m.•35 views

Compaq WBEM < 5.96 Multiple Remote Overflows

Binary data 2623.prm...

10CVSS7.3AI score0.04869EPSS

Exploits0References3