CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

101 matches found

RedhatCVE•added 2026/06/05 7:34 p.m.•7 views

CVE-2026-10597

OMICARD EDM developed by ITPison has a Insecure Direct Object Reference vulnerability, allowing unauthenticated remote attackers to modify a specific parameter to obtain user's email address...

6.9CVSS5.5AI score0.00244EPSS

Exploits0References1

NVD•added 2026/06/04 3:16 a.m.•8 views

CVE-2026-10597

OMICARD EDM developed by ITPison has a Insecure Direct Object Reference vulnerability, allowing unauthenticated remote attackers to modify a specific parameter to obtain user's email address...

6.9CVSS0.00244EPSS

Exploits0References2

CVE•added 2026/06/04 2:19 a.m.•17 views

CVE-2026-10597

Affected product/vendor: OMICARD EDM — ITPison. Vulnerability: Insecure Direct Object Reference (IDOR) that allows unauthenticated remote attackers to modify a specific parameter to obtain a user’s email address. Impact (as described): Unauthorized disclosure of user email information due to IDOR...

6.9CVSS5.8AI score0.00244EPSS

Exploits0References2

EUVD•added 2026/06/04 2:19 a.m.•11 views

EUVD-2026-34196

OMICARD EDM developed by ITPison has a Insecure Direct Object Reference vulnerability, allowing unauthenticated remote attackers to modify a specific parameter to obtain user's email address...

6.9CVSS5.8AI score0.00244EPSS

Exploits0References2

Positive Technologies•added 2026/06/04 12:0 a.m.•10 views

PT-2026-46130

OMICARD EDM developed by ITPison has a Insecure Direct Object Reference vulnerability, allowing unauthenticated remote attackers to modify a specific parameter to obtain user's email address...

6.9CVSS5.8AI score0.00244EPSS

Exploits0References3

CNNVD•added 2026/06/04 12:0 a.m.•7 views

ITPison OMICARD EDM 安全漏洞

ITPison OMICARD EDM is a high-speed electronic newspaper EDM marketing distribution system developed by the Chinese company ITPison. ITPison OMICARD EDM has a security vulnerability that stems from insecure direct object references. This vulnerability could allow unauthorized remote attackers to...

6.9CVSS5.4AI score0.00244EPSS

Exploits0References2

vulnersOsv•added 2026/04/22 8:23 p.m.•9 views

@headspinio/appium-roku-driver (>=2.6.1 <=2.7.0), @natlibfi/passport-melinda-aleph (=3.0.3-alpha.1) +2 more potentially affected by CVE-2026-41673 via @xmldom/xmldom (=0.9.0)

@xmldom/xmldom NPM version =0.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on @xmldom/xmldom and may be impacted: - @headspinio/appium-roku-driver =2.6.1, =3.0.0, =1.7.9-beta.3, =1.8.0-beta.2 Source cves: CVE-2026-41673 Source advisory:...

8.7CVSS5.8AI score0.00557EPSS

Exploits0

vulnersOsv•added 2026/04/22 8:23 p.m.•6 views

@headspinio/appium-roku-driver (>=2.6.1 <=2.7.0), @natlibfi/passport-melinda-aleph (=3.0.3-alpha.1) +2 more potentially affected by CVE-2026-41673 via @xmldom/xmldom (=0.9.0)

8.7CVSS5.8AI score0.00557EPSS

Exploits0

vulnersOsv•added 2026/04/22 8:19 p.m.•8 views

@headspinio/appium-roku-driver (>=2.6.1 <=2.7.0), @natlibfi/passport-melinda-aleph (=3.0.3-alpha.1) +2 more potentially affected by CVE-2026-41674 via @xmldom/xmldom (=0.9.0)

8.7CVSS5.8AI score0.00392EPSS

Exploits0

vulnersOsv•added 2026/04/22 8:16 p.m.•7 views

@headspinio/appium-roku-driver (>=2.6.1 <=2.7.0), @natlibfi/passport-melinda-aleph (=3.0.3-alpha.1) +2 more potentially affected by CVE-2026-41672 via @xmldom/xmldom (=0.9.0)

8.7CVSS5.8AI score0.0034EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2013-2387

Malware in sbrugna...

4CVSS6.4AI score0.01221EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2013-0421

Malware in sbrugna...

4.3CVSS6.4AI score0.01109EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-38108