CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

CNNVD•added 2026/05/28 12:0 a.m.•6 views

Casdoor 安全漏洞

Casdoor is an open-source platform developed by Casdoor that supports various authentication and authorization protocols. Versions of Casdoor prior to 2.362.0 contained security vulnerabilities. These vulnerabilities stemmed from unverified email binding issues, which could lead to account...

9.1CVSS5.8AI score0.00039EPSS

Exploits0References2

Veracode•added 2026/04/20 6:40 a.m.•3 views

Sensitive Information Exposure

github.com/mattermost/mattermost-server is vulnerable to sensitive information exposure. The vulnerability is due to improper sanitization of user data, which allows system administrators to access password hashes and MFA secrets via the POST /api/v4/users/userid/email/verify/member endpoint...

4.9CVSS5.8AI score0.00044EPSS

Exploits0References5Affected Software2

CVE•added 2026/03/10 4:40 p.m.•9 views

CVE-2026-30941

Parse Server exposes a NoSQL injection in token handling for password reset and email verification endpoints on deployments using MongoDB. Prior to versions 8.6.14 and 9.5.2-alpha.1, the token field is passed to database queries without type validation, enabling unauthenticated attackers to injec...

8.7CVSS5.8AI score0.00059EPSS

Exploits0References3Affected Software1

EUVD•added 2025/11/14 12:30 p.m.•4 views

EUVD-2025-197607

Mattermost versions 10.11.x = 10.11.3, 10.5.x = 10.5.11, 10.12.x = 10.12.0 fail to sanitize user data which allows system administrators to access password hashes and MFA secrets via the POST /api/v4/users/userid/email/verify/member endpoint...

4.9CVSS6.5AI score0.00044EPSS

Exploits0References2

NVD•added 2025/11/14 11:15 a.m.•9 views

CVE-2025-11794

4.9CVSS0.00044EPSS

Exploits0References1

OSV•added 2025/11/14 11:15 a.m.•2 views

CVE-2025-11794

4.9CVSS6.9AI score

Exploits0References1

Positive Technologies•added 2025/11/14 12:0 a.m.•4 views

PT-2025-46949

Name of the Vulnerable Software and Affected Versions Mattermost versions 10.5.x through 10.5.11 Mattermost versions 10.11.x through 10.11.3 Mattermost versions 10.12.x through 10.12.0 Description The software does not properly sanitize user data, potentially allowing system administrators to...

4.9CVSS6.8AI score0.00044EPSS

Exploits0References15

Packet Storm•added 2017/03/28 12:0 a.m.•21 views

VX Search Enterprise 9.5.12 Buffer Overflow

Created: ScrR1pTK1dd13 Name: Greg Priest Mail: [email protected] Exploit Title: VX Search Enterprise v9.5.12 email verify exploit Date: 2017.03.28 Exploit Author: Greg Priest Version: VX Search Enterprise v9.5.12 Tested on: Windows7 x64 HUN/ENG Professional ''' import socket port = 2...

1AI score

Exploits0

exploitpack•added 2017/03/28 12:0 a.m.•10 views

VX Search Enterprise 9.5.12 - Verify Email Buffer Overflow

VX Search Enterprise 9.5.12 - Verify Email Buffer Overflow author = ''' Created: ScrR1pTK1dd13 Name: Greg Priest Mail: [email protected] Exploit Title: VX Search Enterprise v9.5.12 email verify exploit Date: 2017.03.28 Exploit Author: Greg Priest Version: VX Search Enterprise v9.5.12...

0.6AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by