CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2026/05/20 6:59 p.m.•5 views

EUVD-2026-31157

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. XWiki Platform is a generic wiki platform. In versions prior to 18.1.0-rc-1, 17.10.3, 17.4.9, and 16.10.17, the POST /wikis/wikiName API executes a XAR import without performing any...

9.3CVSS5.8AI score0.00016EPSS

Exploits1References3

EUVD•added 2026/04/27 11:0 a.m.•2 views

EUVD-2026-25828

Flaws in page lifecycle management allow document structure changes to desynchronize internal component states, causing subsequent operations to access invalidated objects and crash the program...

5.5CVSS5.2AI score0.00015EPSS

Exploits0References1

OSV•added 2024/01/15 4:15 p.m.•0 views

CVE-2023-6029

The EazyDocs WordPress plugin before 2.3.6 does not have authorization and CSRF checks when handling documents and does not ensure that they are documents from the plugin, allowing unauthenticated users to delete arbitrary posts, as well as add and delete documents/sections...

7.5CVSS5.9AI score

Exploits0References1

RedHat Linux•added 2012/06/06 11:42 p.m.•2 views

Mozilla: Use-after-free while replacing/inserting a node in a document (MFSA 2012-38)

Use-after-free vulnerability in the nsINode::ReplaceOrInsertBefore function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 might allow remote attackers to execute arbitrary code via...

9.3CVSS7.8AI score0.01451EPSS

Exploits0References4