CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7280 matches found

Hacker One•added 2026/03/02 7:38 a.m.•12 views

Ruby on Rails: ActiveStorage Disk Service Path Traversal via Custom Blob Key Injection

A vulnerability was discovered in the ActiveStorage Disk Service component of Ruby on Rails. The vulnerability allowed an attacker to achieve arbitrary file write, read, and delete on the server's filesystem by injecting a malicious blob key. The vulnerability was due to insufficient validation o...

5.9AI score

Exploits0

GitLab Advisory Database•added 2026/03/02 12:0 a.m.•8 views

`melange update-cache` has unbounded HTTP download that can exhaust disk in CI

melange update-cache downloads URIs from build configs via io.Copy without any size limit or HTTP client timeout pkg/renovate/cache/cache.go. An attacker-controlled URI in a melange config can cause unbounded disk writes, exhausting disk on the build runner. Affected versions = 0.40.5. Fix: Merge...

4.3CVSS5.9AI score0.00177EPSS

Exploits0References4Affected Software1

Tenable Nessus•added 2026/03/02 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005557)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005557 advisory. In the Linux kernel, the following vulnerability has been resolved: udf: fix uninit-value use in udfgetfileshortad Check for overflow when computing alen in...

7.8CVSS6.8AI score0.00268EPSS

Exploits0References3

Positive Technologies•added 2026/03/02 12:0 a.m.•5 views

PT-2026-23003

Name of the Vulnerable Software and Affected Versions melange versions prior to 0.40.5 Description melange enables users to create apk packages using declarative pipelines. In versions 0.40.5 and earlier, the melange update-cache function downloads URIs from build configurations using io.Copy...

9.9CVSS5.9AI score0.22162EPSS

Exploits68References136

Chainguard•added 2026/02/28 7:17 p.m.•5 views

GHSA-9H8M-3FM2-QJRQ vulnerabilities

Vulnerabilities for packages: trivy, knative-net-istio-fips, datadog-agent, restic-fips, fulcio, elastic-agent, google-osconfig-agent, kapp-controller-fips, k8sgateway, envoy-gateway-fips, flux-kustomize-controller-fips, gatekeeper-fips, apm-server-fips, containerd, gitaly, juicefs,...

5.8AI score

Exploits0

RedhatCVE•added 2026/02/27 4:13 a.m.•6 views

CVE-2026-27498

n8n is an open source workflow automation platform. Prior to versions 2.2.0 and 1.123.8, an authenticated user with permission to create or modify workflows could chain the Read/Write Files from Disk node with git operations to achieve remote code execution. By writing to specific configuration...

9CVSS6.3AI score0.00718EPSS

Exploits0References1

Fedora•added 2026/02/27 12:56 a.m.•4 views

[SECURITY] Fedora 43 Update: udisks2-2.11.1-1.fc43

The Udisks project provides a daemon, tools and libraries to access and manipulate disks, storage devices and technologies...

7.1CVSS5.9AI score0.00075EPSS

Exploits0

Tenable Nessus•added 2026/02/27 12:0 a.m.•5 views

JetBrains TeamCity < 2025.11.3 Multiple Vulnerabilities

The version of JetBrains TeamCity installed on the remote host is prior to 2025.11.3. It is, therefore, affected by multiple vulnerabilities: - Open redirect was possible in the React project creation flow. CVE-2026-28194 - Missing authorization allowed project developers to add parameters to bui...

6.1CVSS6AI score0.00174EPSS

Exploits0References4

NVD•added 2026/02/26 8:31 p.m.•8 views

CVE-2026-27509

Unitree Go2 firmware versions V1.1.7 through V1.1.9, and V1.1.11 EDU do not implement DDS authentication or authorization for the Eclipse CycloneDDS topic rt/api/programmingactuator/request handled by actuatormanager.py. A network-adjacent, unauthenticated attacker can join DDS domain 0 and publi...

8.5CVSS0.00481EPSS

Exploits1References3

ATTACKERKB•added 2026/02/26 6:56 p.m.•8 views

CVE-2026-27509

8.5CVSS6AI score0.00481EPSS

Exploits1References4Affected Software1

ATTACKERKB•added 2026/02/25 10:42 p.m.•3 views

CVE-2026-27498

9CVSS6.3AI score0.00718EPSS

Exploits0References6Affected Software1

Github Security Blog•added 2026/02/25 9:54 p.m.•8 views

n8n has Arbitrary Command Execution via File Write and Git Operations

Impact An authenticated user with permission to create or modify workflows could chain the Read/Write Files from Disk node with git operations to achieve remote code execution. By writing to specific configuration files and then triggering a git operation, the attacker could execute arbitrary she...

9CVSS6.4AI score0.00718EPSS

Exploits0References7Affected Software1

RedhatCVE•added 2026/02/25 4:18 p.m.•3 views

CVE-2025-10010

The CPSD CryptoPro Secure Disk application boots a small Linux operating system to perform user authentication before using BitLocker to decrypt the Windows partition. The system is located on a separate unencrypted partition which can be reached by anyone with access to the hard disk. Multiple...

6.8CVSS6.2AI score0.00254EPSS

Exploits0References1

Github Security Blog•added 2026/02/25 4:6 p.m.•6 views

TypiCMS Core has Stored Cross-Site Scripting (XSS) via SVG File Upload

I. Summary A Stored Cross-Site Scripting XSS vulnerability exists in the file upload module of TypiCMS. The application allows users with file upload permissions to upload SVG files. While there is a MIME type validation, the content of the SVG file is not sanitized. An attacker can upload a...

6.8CVSS6.3AI score0.00188EPSS

Exploits2References4Affected Software1