CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added yesterday•7 views

EUVD-2026-36676

A flaw has been found in IObit Malware Fighter up to 13.2.0. Affected by this vulnerability is an unknown functionality of the component DLL Handler. This manipulation causes permission issues. The attack requires local access. The exploit has been published and may be used. The vendor was...

5.3CVSS5.4AI score0.00103EPSS

CVE•added yesterday•9 views

CVE-2026-12201

CVE-2026-12201 affects IObit Malware Fighter (up to 13.2.0) via an unknown functionality in the DLL Handler component, where manipulation leads to permission issues. The flaw enables a local attacker with access to the system to trigger the vulnerability; an exploit has been published. The docume...

5.3CVSS5.4AI score0.00103EPSS

Cvelist•added yesterday•21 views

CVE-2026-12201 IObit Malware Fighter DLL permission

5.3CVSS0.00103EPSS

RedhatCVE•added last week•5 views

CVE-2026-11553

A vulnerability was found in Tenda HG7HG9 and HG10 300001138enxpon. This affects the function formPPPEdit of the file /boaform/formPPPEdit. The manipulation of the argument encodename results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been made public and...

9CVSS8.4AI score0.00477EPSS

RedhatCVE•added 2026/06/09 2:58 a.m.•12 views

CVE-2026-11478

A flaw has been found in kokke tiny-regex-c up to f2632c6d9ed25272987471cdb8b70395c2460bdb. This vulnerability affects the function matchstar of the file re.c of the component Pattern Handler. This manipulation causes inefficient regular expression complexity. The attack is restricted to local...

4.8CVSS4.8AI score0.00113EPSS

Vulnrichment•added 2026/06/08 2:45 p.m.•7 views

CVE-2026-11523 Tenda W20E Web Management PortalAuth formPortalAuth stack-based overflow

A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of the file /goform/PortalAuth of the component Web Management Interface. Executing a manipulation of the argument gotoUrl can lead to stack-based buffer overflow. The attack can be launched remotely. Th...

9CVSS8.4AI score0.00466EPSS

NVD•added 2026/06/08 3:16 a.m.•10 views

CVE-2026-11478

4.8CVSS0.00113EPSS

EUVD•added 2026/06/08 2:0 a.m.•11 views

EUVD-2026-35009

4.8CVSS4.9AI score0.00113EPSS

CVE•added 2026/06/08 2:0 a.m.•14 views

CVE-2026-11478

CVE-2026-11478 affects kokke tiny-regex-c, specifically the Pattern Handler’s file re.c and its function matchstar. The issue is a manipulation that causes inefficient regular-expression complexity (a redos-like problem). The attack is local, and an exploit has been published and may be used. Ver...

4.8CVSS4.9AI score0.00113EPSS

Vulnrichment•added 2026/06/08 2:0 a.m.•5 views

CVE-2026-11478 kokke tiny-regex-c Pattern re.c matchstar redos

4.8CVSS4.8AI score0.00113EPSS

ATTACKERKB•added 2026/06/08 2:0 a.m.•5 views

CVE-2026-11478

4.8CVSS4.9AI score0.00113EPSS

ATTACKERKB•added 2026/06/07 7:30 p.m.•7 views

CVE-2026-11460

A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initiate the attack remotely. The exploit has been published and may be used. The maintainer was notifie...

7.5CVSS6.8AI score0.00311EPSS

Exploits0References6Affected Software1

RedhatCVE•added 2026/06/06 12:43 a.m.•7 views

CVE-2026-10870

A flaw has been found in Shibby Tomato 1.28.0000. This affects the function startdhcpc of the file /sbin/rc of the component Web UI. This manipulation causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. This project is...

8.6CVSS6.7AI score0.02199EPSS

RedhatCVE•added 2026/06/05 7:50 p.m.•6 views

CVE-2026-7583

A flaw has been found in Open5GS up to 2.7.7. This issue affects the function bsfsessfindbyipv6prefix of the file /src/bsf/context.c of the component BSF. This manipulation of the argument ipv6Prefix causes denial of service. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS5.1AI score0.00271EPSS

RedhatCVE•added 2026/06/05 7:50 p.m.•6 views

CVE-2026-7742

A flaw has been found in CodeAstro Online Classroom 1.0. The affected element is an unknown function of the file /OnlineClassroom/facultylogin. Executing a manipulation of the argument fid can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be us...

6.5CVSS6.5AI score0.00241EPSS

RedhatCVE•added 2026/06/05 7:49 p.m.•5 views

CVE-2026-5826

A flaw has been found in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /edit-category.php. Executing a manipulation of the argument Category can lead to cross site scripting. The attack can be launched remotely. The exploit has been published...

5.3CVSS3.8AI score0.00357EPSS

RedhatCVE•added 2026/06/05 7:48 p.m.•6 views

CVE-2026-10559

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is an unknown function of the file /index.php. Executing a manipulation of the argument page can lead to file inclusion. The attack may be performed from remote. The exploit has been published and may be us...

6.5CVSS6.2AI score0.00227EPSS