CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

123 matches found

CVE-2026-42251 Hard-coded credentials in KS-SOMED

Use of hard-coded credentials in KS-SOMED allowed an unauthorized attacker access to FTP server that hosted the application's update packages. The attacker with these credentials could upload a malicious update file, which then may have been distributed and installed on client machines as a...

8.7CVSS0.00041EPSS

Exploits0References2

Positive Technologies•added 4 days ago•7 views

PT-2026-45432

8.7CVSS5.8AI score0.00041EPSS

Exploits0References3

CNNVD•added 2026/03/23 12:0 a.m.•2 views

KlinikaXP Klinika XP和KlinikaXP Insertino 信任管理问题漏洞

KlinikaXP and KlinikaXP Insertino are software products developed by the Polish company KlinikaXP, used for managing medical clinics. They offer features such as appointment management, patient records, and billing processing. Previous versions of Klinika XP 5.39.01.01.01 and KlinikaXP Insertino...

8.7CVSS5.8AI score0.00061EPSS

Exploits0References2

OSV•added 2026/03/12 2:22 p.m.•2 views

GHSA-67RW-2X62-MQQM Copyparty ftp/sftp: Sharing a single file did not fully restrict source-folder access

There was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies in the following scenario: The shares feature is used for the specific purpose of creating a share of just a single file inside a folder Either the FTP or SFTP server is enabled, and...

2.3CVSS5.8AI score0.00016EPSS

Exploits0References3

Cvelist•added 2026/03/04 7:49 a.m.•23 views

CVE-2026-28778 Hardcoded FTP Credentials and LPE(via Insecure Permissions) for `xd` Local Account on IDC SFX2100

International Datacasting Corporation IDC SFX Series SuperFlex Satellite Receiver contains undocumented, hardcoded/insecure credentials for the xd user account. A remote unauthenticated attacker can log in via FTP using these credentials. Because the xd user has write permissions to their home...

7.9CVSS0.00579EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:11 a.m.•3 views

CVE-2025-1718

An authenticated user with file access privilege via FTP access can cause the Relion 670/650 and SAM600-IO series device to reboot due to improper disk space management...

7.1CVSS7.1AI score0.00318EPSS

Exploits0References1