CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/06/10 2:35 p.m.•21 views

CVE-2026-49760

CVE-2026-49760 is a stack-based buffer overflow in Erlang OTP’s erl_interface ei_s_print_term due to a 2000-character local buffer when formatting very large integers. An encoded term exceeding this size can overflow the buffer, with overflow bytes limited to ASCII 0-9 and A-F, restricting practi...

6.9CVSS5.7AI score0.00136EPSS

Exploits0References5Affected Software2

Positive Technologies•added 2026/06/10 12:0 a.m.•14 views

PT-2026-48469

Name of the Vulnerable Software and Affected Versions Erlang OTP versions 17.0 through 27.3.4.12 Erlang OTP versions 28.x prior to 28.5.0.2 Erlang OTP versions 29.x prior to 29.0.2 erl interface versions 3.7.16 through 5.5.2.0 erl interface versions 5.7.x prior to 5.7.0.1 erl interface versions...

6.9CVSS6.3AI score0.00136EPSS

Exploits0References11

CVE•added 2026/06/04 1:22 p.m.•12 views

CVE-2019-25732

CVE-2019-25732 affects PHP EI-Tube Script 3. The vulnerability is an SQL injection in the search parameter that allows unauthenticated attackers to send crafted GET requests to the search endpoint to extract sensitive data (usernames, passwords, version details). Root cause is improper handling/e...

ATTACKERKB•added 2026/06/04 1:22 p.m.•7 views

CVE-2019-25732

PHP EI-Tube Script 3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the search parameter. Attackers can send GET requests to the search endpoint with crafted SQL payloads in the query parameter to...

Exploits0References3Affected Software1

Cvelist•added 2026/06/04 1:22 p.m.•33 views

CVE-2019-25732 PHP EI-Tube Script 3 SQL Injection via search parameter

8.8CVSS0.00262EPSS

Vulnrichment•added 2026/06/04 1:22 p.m.•8 views

CVE-2019-25732 PHP EI-Tube Script 3 SQL Injection via search parameter

CNNVD•added 2026/06/04 12:0 a.m.•7 views

PHP EI-Tube Script SQL注入漏洞

The PHP EI-Tube Script is a video website construction system developed by Elis Atef. The PHP EI-Tube Script has a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the search parameter, which may allow unauthenticated attackers to execute arbitrary SQL...

8.8CVSS6.2AI score0.00262EPSS

Positive Technologies•added 2026/06/04 12:0 a.m.•15 views

PT-2026-46202

ATTACKERKB•added 2026/05/06 7:40 a.m.•8 views

Exploits0References4

CVE-2026-43108

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreglocpfrreqei It looks element length declared in servreglocpfrreqei for reason not matching servreglocpfrreq's reason field due which we could observe decoding error on PD crash...

5.7AI score0.00114EPSS

Exploits0References5Affected Software1

NVD•added 2026/04/20 9:16 p.m.•4 views

CVE-2026-29647

In OpenXiangShan NEMU, insufficient Smstateen permission enforcement allows lower-privileged code to access IMSIC state via stopei/vstopei CSRs even when mstateen0.IMSIC is cleared, potentially enabling cross-context information leakage or disruption of interrupt handling...

6.5CVSS0.00231EPSS

Vulnrichment•added 2026/04/20 12:0 a.m.•4 views

CVE-2026-29647

5.8AI score0.00231EPSS

SUSE CVE•added 2024/06/26 11:17 p.m.•1 views

SUSE CVE-2024-39470

In the Linux kernel, the following vulnerability has been resolved: eventfs: Fix a possible null pointer dereference in eventfsfindevents In function eventfsfindevents,there is a potential null pointer that may be caused by calling updateeventsattr which will perform some operations on the member...

5.5CVSS7.6AI score0.00213EPSS

OSV•added 2024/06/25 3:15 p.m.•0 views

DEBIAN-CVE-2024-39470

5.5CVSS4.8AI score0.00213EPSS

Packet Storm•added 2023/08/15 12:0 a.m.•326 views

EI Tube YouTube API 3 SQL Injection

==================================================================================================================================== | Title : EI Tube YouTube API V3 site builder Sql Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firef...

7.1AI score

Exploits0

NVD•added 2022/09/09 5:15 p.m.•11 views

CVE-2022-39810

An issue was discovered in WSO2 Enterprise Integrator 6.4.0. A Reflected Cross-Site Scripting XSS vulnerability has been identified in the Management Console under /carbon/ndatasource/validateconnection/ajaxprocessor.jsp via the driver parameter. Session hijacking or similar attacks would not be...

6.1CVSS0.57253EPSS

CNNVD•added 2022/02/04 12:0 a.m.•4 views

Hpe FlexNetwork 5130 Ei Switch Series 安全漏洞

Hpe FlexNetwork 5130 Ei Switch Series is a series of switches from Hpe USA. A security vulnerability exists in the Hpe FlexNetwork 5130 Ei Switch Series version that originates from a local buffer overflow...

7.8CVSS7.9AI score0.0023EPSS