CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

94 matches found

ATTACKERKB•added 2026/03/17 11:21 p.m.•1 views

CVE-2026-26004

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS5.8AI score0.0004EPSS

Exploits1References4Affected Software1

EUVD•added 2026/02/25 4:6 p.m.•2 views

EUVD-2026-8597

Bugsink is vulnerable to Stored XSS via Pygments fallback in stacktrace rendering...

9.3CVSS5.2AI score0.00099EPSS

Exploits1References4

CNNVD•added 2026/02/25 12:0 a.m.•4 views

JetBrains YouTrack 安全漏洞

JetBrains YouTrack is a browser-based error tracking and project management software developed by Czech company JetBrains. This software features error tracking, the ability to create workflows, and monitoring of project progress. Versions of JetBrains YouTrack prior to version 2025.3.121962...

8.8CVSS5.8AI score0.00001EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:26 a.m.•1 views

CVE-2023-4378

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry token by changing the...

5.5CVSS6.8AI score0.00659EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:34 a.m.•3 views

CVE-2024-41656

Sentry is an error tracking and performance monitoring platform. Starting in version 10.0.0 and prior to version 24.7.1, an unsanitized payload sent by an Integration platform integration allows storing arbitrary HTML tags on the Sentry side with the subsequent rendering them on the Issues page...

7.1CVSS6.6AI score0.04185EPSS

Exploits0References1

Vulnrichment•added 2025/11/10 9:46 p.m.•2 views

CVE-2025-64509 Bugsink vulnerable to unauthenticated remote DoS via crafted Brotli input (via CPU)

Bugsink is a self-hosted error tracking tool. In versions prior to 2.0.6, a specially crafted Brotli-compressed envelope can cause Bugsink to spend excessive CPU time in decompression, leading to denial of service. This can be done if the DSN is known, which it is in many common setups JavaScript...

7.5CVSS5.9AI score0.00108EPSS

Exploits0References1

EUVD•added 2025/10/20 3:33 p.m.•1 views

EUVD-2025-31060

rollbar vulnerable to prototype pollution...

7.5CVSS6.3AI score0.00145EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-5596

Malware in sbrugna...

4.8CVSS4.9AI score0.00121EPSS

Exploits1References3