CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

98 matches found

EUVD•added 2026/04/20 12:31 p.m.•0 views

EUVD-2025-209530

Fudo Enterprise in versions from 5.5.0 through 5.6.2 allows low privileged users to access certain administrator-only resources via improperly protected API endpoints. This includes sensitive information such as system logs and parts of system configuration settings. This vulnerability has been...

5.1CVSS5.7AI score0.00059EPSS

Exploits0References4

RedhatCVE•added 2026/02/19 7:21 p.m.•4 views

CVE-2026-20141

In Splunk Enterprise versions below 10.0.2, 10.0.3, 9.4.8, and 9.3.9, a low-privileged user who does not hold the "admin" Splunk role could access the Splunk Monitoring Console App endpoints due to an improper access control. This could lead to a sensitive information disclosure. The Monitoring...

6.5CVSS5.5AI score0.00048EPSS

Exploits0References1

NVD•added 2026/01/28 12:15 p.m.•2 views

CVE-2025-59892

Cross-Site request forgery CSRF vulnerability in Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18. An authenticated user could cause another user to perform unwanted actions within the application they are logged into. This vulnerability is possible due to the lack of...

8.5CVSS0.00034EPSS

Exploits0References1

CNNVD•added 2026/01/28 12:0 a.m.•3 views

Flexense Disk Pulse Enterprise Cross-Site Request Forgery Vulnerability

Flexense Disk Pulse Enterprise is a real-time file system monitoring software developed by Flexense Corporation. Version 10.4.18 of Flexense Disk Pulse Enterprise contains a cross-site request forgeing vulnerability. This vulnerability stems from insufficient user input validation for the...

8.5CVSS5.6AI score0.00011EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:12 a.m.•3 views

CVE-2019-2985

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Fluid Core. Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...

6.1CVSS6.2AI score0.0079EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:11 a.m.•4 views

CVE-2019-11403

In Gradle Enterprise before 2018.5.2, Build Cache Nodes would reflect the configured password back when viewing the HTML page source of the settings page...

9.8CVSS7AI score0.00346EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:7 a.m.•5 views

CVE-2019-20452

A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/core.access/src/RecycleBinManager.php. An authenticated user with basic privileges can inject objects and achieve remote code execution...

8.8CVSS7.8AI score0.04371EPSS

Exploits0References1

Positive Technologies•added 2025/12/04 12:0 a.m.•3 views

PT-2025-49111

Name of the Vulnerable Software and Affected Versions PX Enterprise affected versions not specified Description A flaw exists in PX Enterprise that could lead to the logging of sensitive information under certain circumstances. Approximately 10,000 devices worldwide may be affected. There are no...

8.4CVSS5.3AI score0.00017EPSS

Exploits0References5

CNNVD•added 2025/10/27 12:0 a.m.•2 views

Sourceforge Easywork Enterprise 安全漏洞

Sourceforge Easywork Enterprise is a Sourceforge open source enterprise management system. A security vulnerability exists in Sourceforge Easywork Enterprise version 2.1.3.354, which originates from storing sensitive information in memory in clear text and could lead to unauthorized activation of...

6.2CVSS6.2AI score0.00011EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-21769

Malware in sbrugna...

9.9CVSS9AI score0.01814EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-18456

Malware in sbrugna...

7.5CVSS7.5AI score0.00198EPSS

Exploits0References2