CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/05/27 2:23 p.m.•10 views

CVE-2026-6957

8CVSS6AI score0.00296EPSS

NVD•added 2026/05/27 2:17 p.m.•19 views

CVE-2026-48971

Missing Authorization vulnerability in WebToffee Product Import Export for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Product Import Export for WooCommerce: from n/a through 2.5.6...

4.3CVSS0.00231EPSS

NVD•added 2026/05/27 2:17 p.m.•9 views

CVE-2026-45965

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix invalid deref of rawdata when exportbinary is unset If the exportbinary parameter is disabled on runtime, profiles that were loaded before that will still have their rawdata stored in apparmorfs, with a symbolic lin...

5.5CVSS0.0016EPSS

Exploits0References8

OSV•added 2026/05/27 2:17 p.m.•4 views

UBUNTU-CVE-2026-45965

5.5CVSS5.7AI score0.0016EPSS

Exploits0References3

CVE•added 2026/05/27 12:18 p.m.•17 views

CVE-2026-45965

CVE-2026-45965 affects the Linux kernel and stems from an invalid dereference of rawdata in AppArmor when export_binary is unset. The issue can cause a kernel NULL pointer dereference during readlink operations on policy data, potentially enabling local privilege/escalation paths or denial-of-ser...

5.5CVSS5.8AI score0.0016EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/05/27 12:18 p.m.•35 views

CVE-2026-45965 apparmor: fix invalid deref of rawdata when export_binary is unset

0.0016EPSS

Exploits0References8

Debian CVE•added 2026/05/27 12:18 p.m.•7 views

CVE-2026-45965

5.5CVSS5.7AI score0.0016EPSS

Exploits0

ATTACKERKB•added 2026/05/27 11:53 a.m.•7 views

CVE-2026-48971

Cvelist•added 2026/05/27 11:53 a.m.•35 views

CVE-2026-48971 WordPress Product Import Export for WooCommerce plugin <= 2.5.6 - Broken Access Control vulnerability

4.3CVSS0.00231EPSS

Vulnrichment•added 2026/05/27 11:53 a.m.•8 views

CVE-2026-48971 WordPress Product Import Export for WooCommerce plugin <= 2.5.6 - Broken Access Control vulnerability

CVE•added 2026/05/27 11:53 a.m.•20 views

CVE-2026-48971

CVE-2026-48971 affects the WordPress plugin WordPress Product Import Export for WooCommerce (WebToffee) up to version 2.5.6. The issue is a Missing Authorization/Broken Access Control vulnerability due to incorrectly configured access control levels, enabling an attacker to exploit over the netwo...

Patchstack•added 2026/05/27 11:52 a.m.•9 views

WordPress Product Import Export for WooCommerce plugin <= 2.5.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Product Import Export for WooCommerce versions = 2.5.6...

Exploits0Affected Software1

NVD•added 2026/05/27 9:16 a.m.•7 views

CVE-2024-47269

Cleartext transmission of sensitive information vulnerability in Export Key functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive information via unspecified vectors...

4.9CVSS0.0023EPSS

Vulnrichment•added 2026/05/27 8:29 a.m.•7 views

CVE-2024-47269

ATTACKERKB•added 2026/05/27 8:29 a.m.•6 views

CVE-2024-47269

Cvelist•added 2026/05/27 8:29 a.m.•29 views

CVE-2024-47269

4.9CVSS0.0023EPSS

EUVD•added 2026/05/27 8:29 a.m.•11 views

EUVD-2024-55595

CVE•added 2026/05/27 8:29 a.m.•16 views

CVE-2024-47269

CVE-2024-47269 affects Synology Surveillance Station prior to 9.2.2-11575 and 9.2.2-9575, where the Export Key functionality transmits sensitive information in cleartext. The root cause is cleartext transmission allowing remote authenticated users with administrator privileges to obtain sensitive...

Exploits0References1Affected Software1

Positive Technologies•added 2026/05/27 12:0 a.m.•6 views

PT-2026-43973