CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15679 matches found

Microsoft Exchange Server - Cross-Site Scripting

Microsoft Exchange Server, or OWA, is vulnerable to a cross-site scripting vulnerability in refurl parameter of frowny.asp. id: CVE-2021-31195 info: name: Microsoft Exchange Server - Cross-Site Scripting author: infosecsanyam severity: medium description: Microsoft Exchange Server, or OWA, is...

8.8CVSS6.9AI score0.73676EPSS

Exploits3References5

Nuclei•added 13 hours ago•17 views

Microsoft Exchange - Pre-Auth SSRF / ACL Bypass (ProxyNotFound)

Microsoft Exchange Server contains a remote code execution caused by improper input validation in the server component, letting remote attackers execute arbitrary code, exploit requires network access to the server. id: CVE-2021-28480 info: name: Microsoft Exchange - Pre-Auth SSRF / ACL Bypass...

10CVSS8.2AI score0.83337EPSS

Exploits4References5

Nuclei•added 13 hours ago•42 views

Microsoft Exchange - Pre-Auth SSRF / ACL Bypass (ProxyNotFound)

Microsoft Exchange Server contains a remote code execution caused by improper input validation in the server component, letting remote attackers execute arbitrary code, exploit requires network access to the server. id: CVE-2021-28481 info: name: Microsoft Exchange - Pre-Auth SSRF / ACL Bypass...

10CVSS8.1AI score0.83337EPSS

Exploits4References5

Circl•added 13 hours ago•5 views

CVE-2026-13036

creationtimestamp| type| source ---|---|--- 2026-06-25 05:07:36+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116809010712900782 2026-06-25 05:46:13+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260625 2026-06-25 12:00:14+00:00| seen|...

8.8CVSS5.8AI score

Exploits0References3

Circl•added 16 hours ago•5 views

CVE-2026-50551

creationtimestamp| type| source ---|---|--- 2026-06-25 02:08:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp3dwi46mr2x 2026-06-25 03:00:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mp3gsuacvy2b 2026-06-25 03:00:28+00:00| seen|...

9.9CVSS5.8AI score0.00291EPSS

Exploits0References3

Nuclei•added 17 hours ago•4217 views

Microsoft OWA Exchange Server 2003 - 'redir.asp' Open Redirection

Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access OWA for Exchange Server 2003 SP2 aka build 6.5.7638 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter. id: CVE-2008-1547 info: name:...

4.3CVSS6.1AI score0.45927EPSS

Exploits2References5

Circl•added yesterday•4 views

CVE-2026-53055

creationtimestamp| type| source ---|---|--- 2026-06-24 19:13:17+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116806673458605612...

5.8AI score

Exploits0References1

Circl•added yesterday•6 views

CVE-2026-53090

creationtimestamp| type| source ---|---|--- 2026-06-24 19:00:13+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116806622367648058...

5.8AI score

Exploits0References1

Circl•added yesterday•5 views

CVE-2026-52991

creationtimestamp| type| source ---|---|--- 2026-06-24 18:46:06+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116806566941197022...

5.8AI score

Exploits0References1

Circl•added yesterday•4 views

CVE-2026-52982

creationtimestamp| type| source ---|---|--- 2026-06-24 18:33:11+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116806516142028189...

5.8AI score

Exploits0References1

Circl•added yesterday•3 views

CVE-2026-52971

creationtimestamp| type| source ---|---|--- 2026-06-24 18:19:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116806461162472827...

5.8AI score

Exploits0References1

Circl•added yesterday•6 views

CVE-2026-13006

creationtimestamp| type| source ---|---|--- 2026-06-24 17:10:36+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116806191372211581...

7CVSS5.8AI score0.00122EPSS

Exploits0References1

Circl•added yesterday•5 views

CVE-2026-12417

creationtimestamp| type| source ---|---|--- 2026-06-24 08:03:09+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3mozhba5qeo2p 2026-06-24 10:30:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mozpiorzoj2l 2026-06-24 10:30:38+00:00| seen|...

9.8CVSS5.8AI score0.00454EPSS

Exploits1References5

Circl•added yesterday•7 views

CVE-2026-12416

creationtimestamp| type| source ---|---|--- 2026-06-24 08:03:01+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3mozhayscl62p 2026-06-24 09:00:33+00:00| seen| https://infosec.exchange/users/offseq/statuses/116804264395356312 2026-06-24 09:00:35+00:00| seen|...

9.8CVSS5.8AI score0.00364EPSS

Exploits1References5

Circl•added yesterday•6 views

CVE-2026-52919

creationtimestamp| type| source ---|---|--- 2026-06-24 07:58:04+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116804018776035123...

5.8AI score0.00164EPSS

Exploits0References1

EUVD•added yesterday•8 views

EUVD-2026-38722

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix tpmeter counter underflow during shutdown batadvtpsendershutdown unconditionally decrements the "sending" atomic counter. If multiple paths e.g. timeout, user cancel, and normal finish call this function, the...

5.7AI score0.00164EPSS

Exploits0References8

Circl•added yesterday•7 views

CVE-2026-12851

creationtimestamp| type| source ---|---|--- 2026-06-24 06:00:25+00:00| seen| https://infosec.exchange/users/offseq/statuses/116803556150711396...

9.1CVSS5.8AI score0.01684EPSS

Exploits0References1

Circl•added yesterday•5 views

CVE-2026-12112

creationtimestamp| type| source ---|---|--- 2026-06-24 05:16:13+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116803382310129567...

7.8CVSS5.8AI score0.00144EPSS

Exploits0References1

Circl•added yesterday•8 views

CVE-2026-11807

creationtimestamp| type| source ---|---|--- 2026-06-24 00:00:37+00:00| seen| https://infosec.exchange/users/offseq/statuses/116802141319916316 2026-06-24 00:00:39+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3moymcgce3a2j 2026-06-25 15:00:21+00:00| seen|...

9.6CVSS5.8AI score0.00362EPSS

Exploits0References3

NVD•added 2 days ago•5 views

CVE-2026-47386

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, two concurrent token-exchange requests using the same OAuth authorization code could each mint a distinct valid accesstoken, refreshtoken pair, breaking the single-use guarantee that PKCE relies on. This vulnerability ...

6.3CVSS0.00197EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by