CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

220580 matches found

EUVD•added 2026/06/02 12:31 a.m.•29 views

EUVD-2026-33831

A security flaw has been discovered in ggml-org whisper.cpp up to 1.8.2. This vulnerability affects the function whispermodelload of the file ggml/src/ggml.c. The manipulation results in null pointer dereference. Attacking locally is a requirement. The exploit has been released to the public and...

4.8CVSS5.4AI score0.00112EPSS

Exploits0References7

EUVD•added 2026/06/02 12:31 a.m.•11 views

EUVD-2026-33818

A vulnerability has been found in PackageKit up to 1.3.5. Affected is the function gfiletest of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket leads to improper authorization. The attack can be executed remotely. The exploit has been disclose...

5.3CVSS5.5AI score0.00222EPSS

Exploits0References7

EUVD•added 2026/06/02 12:31 a.m.•13 views

EUVD-2026-33820

A security vulnerability has been detected in Enderfga claw-orchestrator up to 3.7.0. The impacted element is the function validateRegex of the file claw-orchestrator/src/embedded-server.ts of the component Session Grep Endpoint. The manipulation of the argument body.pattern leads to inefficient...

5.3CVSS5.4AI score0.00354EPSS

Exploits0References10

EUVD•added 2026/06/02 12:31 a.m.•10 views

EUVD-2026-33816

A flaw has been found in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/formFireWall. This manipulation of the argument Profile causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be...

9CVSS6AI score0.00472EPSS

Exploits0References6

EUVD•added 2026/06/02 12:31 a.m.•13 views

EUVD-2026-33795

In multiple functions of ubsanthrowingruntime.cpp, there is a possible persistent denial of service due to an integer overflow. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6AI score0.00071EPSS

Exploits0References2

EUVD•added 2026/06/02 12:31 a.m.•11 views

EUVD-2026-33768

In multiple functions of AccessibilityManagerService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00071EPSS

Exploits0References2

ATTACKERKB•added 2026/06/02 12:30 a.m.•8 views

CVE-2026-10548

A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.23. This affects the function syncanthropicentryfromcredentialsfile of the file agent/credentialpool.py of the component Credential Pool Synchronization. The manipulation results in improper authentication. The attack...

5.3CVSS5.6AI score0.0014EPSS

Exploits0References5Affected Software1

EUVD•added 2026/06/02 12:30 a.m.•11 views

EUVD-2026-33856

5.3CVSS5.6AI score0.0014EPSS

Exploits0References5

Cvelist•added 2026/06/02 12:30 a.m.•51 views

CVE-2026-10548 NousResearch hermes-agent Credential Pool Synchronization credential_pool.py _sync_anthropic_entry_from_credentials_file improper authentication

5.3CVSS0.0014EPSS

Exploits0References5

NVD•added 2026/06/02 12:16 a.m.•10 views

CVE-2026-10302

A flaw has been found in itsourcecode Fees Management System 1.0. The impacted element is an unknown function of the file /managefee.php. Executing a manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

6.5CVSS0.002EPSS

Exploits0References6

NVD•added 2026/06/02 12:16 a.m.•12 views

CVE-2026-10528

A security flaw has been discovered in Orthanc DICOM Server up to 1.12.11. This issue affects the function DcmItem::read of the file OrthancFramework/Sources/DicomParsing/FromDcmtkBridge.cpp of the component DCMTK Parser. Performing a manipulation results in stack-based buffer overflow. Attacking...

4.8CVSS0.00124EPSS

Exploits0References8

NVD•added 2026/06/02 12:16 a.m.•12 views

CVE-2026-10301

A vulnerability was detected in itsourcecode Fees Management System 1.0. The affected element is an unknown function of the file index.php. Performing a manipulation of the argument page results in cross site scripting. The attack may be initiated remotely. The exploit is now public and may be us...

5.3CVSS0.00273EPSS

Exploits0References6

NVD•added 2026/06/02 12:16 a.m.•19 views

CVE-2026-10514

A vulnerability has been found in 1Panel-dev CordysCRM up to 1.6.2. This affects an unknown function of the file backend/framework/src/main/java/cn/cordys/config/RequestParamTrimConfig.java. The manipulation leads to cross site scripting. Remote exploitation of the attack is possible. The exploit...

4.8CVSS0.00251EPSS

Exploits0References9

OSV•added 2026/06/02 12:16 a.m.•6 views

DEBIAN-CVE-2026-10528

4.8CVSS5.8AI score0.00124EPSS

Exploits0References1

OSV•added 2026/06/02 12:16 a.m.•6 views

UBUNTU-CVE-2026-10528

4.8CVSS5.8AI score0.00124EPSS

Exploits0References10

ATTACKERKB•added 2026/06/02 12:15 a.m.•8 views

CVE-2026-10529

A weakness has been identified in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is an unknown function of the file src/main/java/com/zhiliao/module/web/system/ScheduleJobController.java of the component Task Scheduling Management Module. Executing a manipulation can...

4.8CVSS4.1AI score0.0021EPSS

Exploits0References6

Cvelist•added 2026/06/02 12:15 a.m.•37 views

CVE-2026-10529 westboy CicadasCMS Task Scheduling Management ScheduleJobController.java cross site scripting

4.8CVSS0.0021EPSS

Exploits0References6

EUVD•added 2026/06/02 12:15 a.m.•12 views

EUVD-2026-33855

4.8CVSS4.1AI score0.0021EPSS

Exploits0References6