CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

954 matches found

ATTACKERKB•added 2026/04/05 6:0 a.m.•1 views

CVE-2026-5546

A flaw has been found in Campcodes Complete Online Learning Management System 1.0. This impacts the function addlesson of the file /application/models/Crudmodel.php. This manipulation causes unrestricted upload. It is possible to initiate the attack remotely. The exploit has been published and ma...

6.5CVSS5.6AI score0.00015EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2026/04/05 3:30 a.m.•1 views

CVE-2026-5539

A flaw has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /modifymember.php of the component Parameter Handler. This manipulation of the argument firstName causes cross site scripting. The attack can be initiated remotely. The exploit has been...

5.3CVSS4.4AI score0.00039EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2026/04/05 12:0 a.m.•1 views

PT-2026-30509

A flaw has been found in griptape-ai griptape 0.19.4. This affects an unknown part of the file griptapetoolscomputertool.py of the component ComputerTool. Executing a manipulation of the argument filename can lead to path traversal. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS5.5AI score0.00027EPSS

Exploits0References5

RedhatCVE•added 2026/04/04 5:0 p.m.•3 views

CVE-2026-5472

A flaw has been found in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. The affected element is an unknown function of the file /adminpanel/settings.php of the component Profile Picture Handler. This manipulation of the argument File causes unrestrict...

6.5CVSS6.2AI score0.00043EPSS

Exploits0References1

EUVD•added 2026/04/03 6:31 p.m.•3 views

EUVD-2026-18803

6.5CVSS6.2AI score0.00043EPSS

Exploits0References5

ATTACKERKB•added 2026/04/02 4:30 p.m.•1 views

CVE-2026-5354

A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpnconnect of the file /setup.cgi. Executing a manipulation of the argument policyname can lead to os command injection. The attack can be executed remotely. The exploit has been published and may ...

6.5CVSS6.4AI score0.00376EPSS

Exploits1References4Affected Software1

RedhatCVE•added 2026/04/02 10:53 a.m.•2 views

CVE-2026-5256

A flaw has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /modify.php of the component Parameter Handler. This manipulation of the argument firstName causes sql injection. Remote exploitation of the attack is possible. The exploit has be...

9.8CVSS6.8AI score0.00043EPSS

Exploits1References1

Circl•added 2026/04/01 11:27 p.m.•1 views

GHSA-H762-RHV3-H25V

creationtimestamp| type| source ---|---|--- 2026-04-01 23:27:26+00:00| published-proof-of-concept| Telegram/W-ZMhqLt3Z16f8AdFiB8UF-gG999hpwzW6X3s6aq-w7Q74...

4.8AI score

Exploits0

RedhatCVE•added 2026/04/01 11:0 p.m.•5 views

CVE-2026-5211

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This vulnerability affects the function...

9CVSS7.8AI score0.00039EPSS

Exploits1References1

Positive Technologies•added 2026/04/01 12:0 a.m.•4 views

PT-2026-29474

7.5CVSS6.8AI score0.00043EPSS

Exploits1References6

NVD•added 2026/03/31 8:16 p.m.•1 views

CVE-2026-5211

9CVSS0.00039EPSS

Exploits1References5

Cvelist•added 2026/03/31 7:30 p.m.•23 views

CVE-2026-5211 D-Link DNS-1550-04 app_mgr.cgi UPnP_AV_Server_Path_Del stack-based overflow

9CVSS0.00039EPSS

Exploits1References5

RedhatCVE•added 2026/03/31 4:59 a.m.•4 views

CVE-2026-5106

A flaw has been found in code-projects Exam Form Submission 1.0. The impacted element is an unknown function of the file /admin/updatefst.php. Executing a manipulation of the argument sname can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS4.2AI score0.0003EPSS

Exploits0References1

ATTACKERKB•added 2026/03/30 9:30 p.m.•1 views

CVE-2026-5153

A flaw has been found in Tenda CH22 1.0.0.1. The affected element is the function FormWriteFacMac of the file /goform/WriteFacMac. Executing a manipulation of the argument mac can lead to command injection. The attack may be launched remotely. The exploit has been published and may be used...

6.5CVSS5.7AI score0.01039EPSS

Exploits1References5Affected Software1

EUVD•added 2026/03/30 6:31 p.m.•2 views

EUVD-2026-17166

A flaw has been found in SourceCodester RSS Feed Parser 1.0. Affected by this issue is the function filegetcontents. This manipulation causes server-side request forgery. The attack is possible to be carried out remotely. The exploit has been published and may be used...

6.5CVSS6.3AI score0.00015EPSS

Exploits0References6

ATTACKERKB•added 2026/03/30 6:0 p.m.•2 views

CVE-2026-5126

6.5CVSS5.5AI score0.00015EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2026/03/29 11:3 p.m.•2 views

CVE-2026-5012

A flaw has been found in elecV2 elecV2P up to 3.8.3. This issue affects the function pm2run of the file /rpc. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been published and may be used. The project was informed of the problem ear...

7.5CVSS5.6AI score0.02213EPSS

Exploits0References1

EUVD•added 2026/03/29 3:30 p.m.•3 views

EUVD-2026-17033

A flaw has been found in Tenda FH1201 1.2.0.14408. Affected is the function formWrlExtraSet of the file /goform/WrlExtraSet of the component Parameter Handler. Executing a manipulation of the argument GO can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit...

9CVSS6.3AI score0.00092EPSS

Exploits1References6

NVD•added 2026/03/29 3:16 p.m.•2 views

CVE-2026-5046

9CVSS0.00092EPSS

Exploits1References5