CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26078 matches found

Circl•added 2026/05/14 11:32 a.m.•7 views

CVE-2026-6174

creationtimestamp| type| source ---|---|--- 2026-05-14 11:32:05+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlspt3koty2u...

6.4CVSS5.8AI score0.00032EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•3 views

CVE-2025-39737

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.00021EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•3 views

CVE-2019-14194

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-16...

9.8CVSS7.3AI score0.0049EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•6 views

CVE-2025-39681

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.00025EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•5 views

CVE-2025-39752

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS7.3AI score0.00021EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•2 views

CVE-2025-37968

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.00078EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•5 views

CVE-2025-38712

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.0002EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•2 views

CVE-2025-39787

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.00021EPSS

Exploits0References1

Circl•added 2026/05/14 9:8 a.m.•5 views

CVE-2026-3892

creationtimestamp| type| source ---|---|--- 2026-05-14 09:08:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlshrszelm2i 2026-05-14 09:14:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlsi4pzt7o2i...

8.1CVSS5.8AI score0.00053EPSS

Exploits0References2

Circl•added 2026/05/14 8:30 a.m.•5 views

CVE-2026-6506

creationtimestamp| type| source ---|---|--- 2026-05-14 08:30:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlsfmrqirb2t 2026-05-14 09:12:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlshytfeay2n...

8.8CVSS5.8AI score0.00041EPSS

Exploits0References2

Circl•added 2026/05/14 7:52 a.m.•6 views

CVE-2025-14870

creationtimestamp| type| source ---|---|--- 2026-05-14 07:52:53+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-su-gitlab-ce/ee-14 2026-05-14 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/gitlab-multiple-vulnerabilities20260515...

7.5CVSS5.8AI score0.0005EPSS

Exploits0References2

Circl•added 2026/05/14 6:18 a.m.•4 views

CVE-2026-46445

creationtimestamp| type| source ---|---|--- 2026-05-14 06:18:53+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mls6czolng2a...

7.1CVSS5.8AI score0.00031EPSS

Exploits0References1

Positive Technologies•added 2026/05/14 12:0 a.m.•6 views

PT-2026-40975

Summary A Mass Assignment vulnerability exists in the variable update endpoint of FlowiseAI. The endpoint allows authenticated users to modify server-controlled properties such as workspaceId, createdDate, and updatedDate when updating a variable resource. Due to missing server-side validation an...

7.6CVSS5.9AI score

Exploits0References4

Positive Technologies•added 2026/05/14 12:0 a.m.•9 views

PT-2026-40976

Summary A Mass Assignment vulnerability exists in the tool update endpoint of FlowiseAI. The endpoint allows authenticated users to modify server-controlled properties such as workspaceId, createdDate, and updatedDate when updating a tool resource. Due to missing server-side validation and...

7.6CVSS5.9AI score

Exploits0References4

Positive Technologies•added 2026/05/14 12:0 a.m.•6 views

PT-2026-41206

Summary A Mass Assignment vulnerability exists in the assistant update endpoint of FlowiseAI. The endpoint allows authenticated users to modify server-controlled properties such as workspaceId, createdDate, and updatedDate when updating an assistant resource. Due to missing server-side validation...

7.6CVSS5.9AI score

Exploits0References4

Circl•added 2026/05/13 9:59 p.m.•3 views

CVE-2026-6667

creationtimestamp| type| source ---|---|--- 2026-05-13 21:59:40+00:00| seen| https://bsky.app/profile/intel.overresearched.net/post/3mlrcgdu3ss2c...

4.3CVSS5.8AI score0.00013EPSS

Exploits0References1

Circl•added 2026/05/13 8:22 p.m.•5 views

CVE-2026-34647

creationtimestamp| type| source ---|---|--- 2026-05-13 20:22:12+00:00| seen| https://bsky.app/profile/adobedigest.bsky.social/post/3mlr4y2lind2e...

7.4CVSS5.8AI score0.00109EPSS

Exploits0References1

Circl•added 2026/05/13 7:3 p.m.•3 views

CVE-2026-0243

creationtimestamp| type| source ---|---|--- 2026-05-13 19:03:20+00:00| seen| https://bsky.app/profile/ripjyr.bsky.social/post/3mlqyl2vfox2c 2026-05-14 06:51:24+00:00| seen| https://www.acn.gov.it/portale/w/vulnerabilita-in-prodotti-palo-alto-networks-1...

7.1CVSS5.8AI score0.00039EPSS

Exploits0References2

OSV•added 2026/05/13 5:19 p.m.•6 views

DRUPAL-CONTRIB-2026-037

This module enables you to export entity date fields as iCal feeds. The module doesn't sufficiently check entity or field access or sanitize user inputs when generating iCal feeds. This vulnerability is not mitigated by any permission, the routes are accessible to all anonymous users with no...

9.8CVSS5.8AI score0.00054EPSS

Exploits0References1

Github Security Blog•added 2026/05/13 3:33 p.m.•5 views

wger has an Uncontrolled Resource Consumption issue

Summary Any authenticated user can create a routine spanning an arbitrarily long date range e.g. 100 years and then trigger the datesequence computation via any of the routine detail endpoints. The server iterates once per day in an unbounded while loop with no maximum duration validation, causin...

5.8AI score

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by