CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

55 matches found

Tenable Nessus•added 2026/06/11 12:0 a.m.•9 views

GitLab 15.9 < 18.10.8 / 18.11 < 18.11.5 / 19.0 < 19.0.2 (CVE-2026-9694)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions, could have allowed an...

4.3CVSS5.6AI score0.00344EPSS

Exploits0References5

RedhatCVE•added 2026/06/02 4:2 a.m.•10 views

CVE-2026-47123

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifying agent user replies based on In-Reply-To / References headers. The notification reply path...

7.5CVSS5.9AI score0.0014EPSS

Exploits0References1

CNNVD•added 2026/06/01 12:0 a.m.•10 views

OTRS 安全漏洞

OTRS is a service management solution developed by the German company OTRS. Versions 8.0.X, 2023.X, 2024.X, 2025.X, and 2026.X up to version 2026.4.X of OTRS contained security vulnerabilities. These vulnerabilities were due to uncontrolled resource allocation during email processing, which could...

5.7CVSS5.3AI score0.00201EPSS

Exploits0References1

NVD•added 2026/05/29 8:16 p.m.•11 views

CVE-2026-47123

7.5CVSS0.0014EPSS

Exploits0References3

CNNVD•added 2026/05/29 12:0 a.m.•12 views

FreeScout 数据伪造问题漏洞

FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.220 contained a data manipulation vulnerability. This vulnerability stemmed from the use of In-Reply-To/References headers in...

7.5CVSS5.7AI score0.0014EPSS

Exploits0References2

NVD•added 2026/03/27 8:16 p.m.•3 views

CVE-2026-33654

nanobot is a personal AI assistant. Prior to version 0.1.6, an indirect prompt injection vulnerability exists in the email channel processing module nanobot/channels/email.py, allowing a remote, unauthenticated attacker to execute arbitrary LLM instructions and subsequently, system tools without...

9.8CVSS0.00489EPSS

Exploits1References1

CNNVD•added 2026/02/03 12:0 a.m.•6 views

pearweb 安全漏洞

PearWeb is a PHP extension and application repository developed by PEAR. Versions of PearWeb prior to 1.33.0 contained a security vulnerability. This vulnerability stemmed from the use of the pregReplace function with the / modifier in incorrectly updated email processing, potentially allowing PH...

9.8CVSS5.9AI score0.00395EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-0494

Malware in sbrugna...

5CVSS6.4AI score0.01055EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-27940

Malware in sbrugna...

6.5CVSS7.7AI score0.01473EPSS

Exploits0References16

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-1999-0551

Malware in sbrugna...

10CVSS6.4AI score0.01904EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-3375

Malware in sbrugna...

9.8CVSS9.2AI score0.09903EPSS

Exploits3References14

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2021-22725

Malware in sbrugna...

5.3CVSS5.3AI score0.01072EPSS

Exploits0References2

OSV•added 2025/05/12 10:15 p.m.•2 views

CVE-2025-24225

An injection issue was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5. Processing an email may lead to user interface spoofing...

6.5CVSS5.8AI score0.00419EPSS

Exploits0References3

OSV•added 2024/12/21 1:15 p.m.•3 views

CVE-2024-12883

A vulnerability was found in code-projects Job Recruitment 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /email.php. The manipulation of the argument email leads to cross site scripting. The attack can be launched remotely. The...

6.1CVSS3.6AI score0.00784EPSS

Exploits1References5

RedHat Linux•added 2024/05/22 9:45 a.m.•5 views

mutt: null pointer dereference

A null pointer dereference flaw was found in mutt when handling specially crafted characters. This issue could allow an attacker to send a specially crafted email that causes the email client to crash when reading or processing the email...

6.5CVSS5.7AI score0.00719EPSS

Exploits0References6

RedHat Linux•added 2024/04/30 9:54 a.m.•4 views

mutt: null pointer dereference

5.7CVSS5.7AI score0.00506EPSS

Exploits0References6

Microsoft KB•added 2024/03/12 12:0 a.m.•45 views

Description of Security Update 5 for Exchange Server 2019: March 12, 2024 (KB5036402)

Description of Security Update 5 for Exchange Server 2019: March 12, 2024 KB5036402 This security update rollup resolves vulnerabilities in Microsoft Exchange Server. To learn more about these vulnerabilities, see the following Common Vulnerabilities and Exposures CVE and security advisory:...

8.8CVSS9.6AI score0.0682EPSS

Exploits0

Positive Technologies•added 2024/02/12 12:0 a.m.•2 views

PT-2024-12962 · Open Xchange Gmbh +1 · Ox App Suite +2

Name of the Vulnerable Software and Affected Versions: No specific software name or affected versions are mentioned in the provided descriptions. Description: The issue concerns the processing of CID references in E-Mail, which can be exploited to inject malicious script code that bypasses the...

7.1CVSS7.4AI score0.00528EPSS

Exploits0References9

Hacker One•added 2023/06/05 2:49 a.m.•4 views

Basecamp: Spam & Clearance checks disabled with existing referenced Message-ID

A vulnerability in the inbound email processing allowed crafted emails to bypass spam filtering and The Screener when they appeared to be in reply to an existing thread...

5.6AI score

Exploits0