CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

This Python script attempts to an authentication bypass against a cPanel login endpoint by crafting a modified login request and manipulating session-related data. Versions after 11.40 are affected...

9.8CVSS6AI score0.90543EPSS

Exploits62

Exploit DB•added 2026/05/04 12:0 a.m.•67 views

Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation

Exploit Title: Linux Kernel procreaddirde 6.18-rc5 - Local Privilege Escalation CVE: CVE-2025-40271 Date: 2026-03-19 Exploit Author: Aviral Srivastava Vendor: Linux Kernel kernel.org Affected: 3.14+ through 6.18-rc5 bug predates version tracking Fixed in stable: 5.10.247, 6.1.159, 6.12.73, 6.18-r...

7.8CVSS7AI score0.11946EPSS

Exploits8

Exploit DB•added 2026/05/04 12:0 a.m.•55 views

MindsDB 25.9.1.1 - Path Traversal

Exploit Title: MindsDB 25.9.1.1 - Path Traversal Date: 06-03-2026 Exploit Author: Lohitya Pushkar thewhiteh4t Vendor Homepage: https://mindsdb.com/ Software Link: https://github.com/mindsdb/mindsdb Version: not installed handlers BANNER = """ ------------------------------------- --- CVE-2026-274...

8.8CVSS5.8AI score0.11113EPSS

Exploits4

Exploit DB•added 2026/05/04 12:0 a.m.•70 views

Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking (CSWSH)

Exploit Title: Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking CSWSH Date: 2026-02-26 Exploit Author: Hazar Taspinar Vendor Homepage: https://www.traccar.org/ Software Link: https://github.com/traccar/traccar Version: = 6.11.1 Tested on: Windows 11 / Linux CVE: CVE-2025-68930...

7.1CVSS5.8AI score0.00541EPSS

Exploits4

Exploit DB•added 2026/05/04 12:0 a.m.•109 views

Linux nf_tables 6.19.3 - Local Privilege Escalation

Exploit Title: Linux Kernel 3.16 – 6.19.3 nftables RCU UAF LPE CVE: CVE-2026-23231 Date: 2026-03-19 Exploit Author: Aviral Srivastava Vendor: Linux Kernel kernel.org Affected: 3.16 – 6.19.3 Fixed in: 6.1.165, 6.6.128, 6.12.75, 6.18.14, 6.19.4 commit 71e99ee20fc3f662555118cf1159443250647533 Tested...

7.8CVSS7AI score0.23582EPSS

Exploits21

Exploit DB•added 2026/05/04 12:0 a.m.•65 views

Windows 11 24H2 - Local Privilege Escalation

Exploit Title: Windows 11 24H2 - Local Privilege Escalation Google Dork: inurl:http.sys "Windows 11 24H2" vulnerability | intitle:"HTTP.sys" "CVE-2026-21250" "Elevation of Privilege" Date: 2026-02-27 Exploit Author: London foggy snow Vendor Homepage: https://www.microsoft.com/en-us/msrc Software...

7.8CVSS5.8AI score0.0104EPSS

Exploits3

Exploit DB•added 2026/05/04 12:0 a.m.•49 views

Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE)

Exploit Title: Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow RCE Date: 2026-15-03 Exploit Author: JarrettgxzSec Vendor Homepage: www.linksys.com Version: FW " printf"! Example: python3 sys.argv0 192.168.1.100 192.168.1.1\n" sys.exit1 TARGETIP = sys.argv2 TARGETPORT = 80 ATTACKERIP =...

8.8CVSS5.8AI score0.04676EPSS

Exploits3

Packet Storm•added 2026/05/04 12:0 a.m.•39 views

📄 UltimatePOS 4.8 Cross Site Scripting

The administrative panel in UltimatePOS version 4.8 suffers from a persistent cross site scripting vulnerability. CVE-2025-60503 — Stored Cross-Site Scripting XSS in UltimatePOS UltimateFosters v4.8 Publication date: 2025-10-30 CVE ID: CVE-2025-60503 RESERVED Researcher: Vivien Lebas Vendor:...

8.7CVSS5.3AI score0.00327EPSS

Exploits3

GithubExploit•added 2026/05/03 10:44 p.m.•68 views

pentest-automation-framework

pentest-automation-framework Built this to speed up structure...

5.8AI score

Exploits0

GithubExploit•added 2026/05/03 10:4 p.m.•81 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

copyfail-check Shell scripts to detect Linux kernel vulnera...

7.8CVSS6.1AI score0.94016EPSS

Exploits227