CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

157 matches found

Linux Distros Unpatched Vulnerability : CVE-2026-46041

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - greybus: gb-beagleplay: fix sleep in atomic context in hdlctxframes hdlcappend calls usleeprange to wait for circular buffer space, but it is called with...

6AI score0.00023EPSS

Exploits0References2

RedhatCVE•added 2026/05/29 6:39 p.m.•17 views

CVE-2026-7259

A flaw was found in PHP. When an attacker input can influence the encoding passed to mbregexencoding and the application subsequently uses mbregex search APIs, a NULL pointer dereference can occur due to a mismatch between the Oniguruma and mbfl encoding support. This issue can cause a crash in t...

6.5CVSS5.8AI score0.00084EPSS

Exploits0References4

NVD•added 2026/05/27 2:17 p.m.•5 views

CVE-2026-46041

In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: fix sleep in atomic context in hdlctxframes hdlcappend calls usleeprange to wait for circular buffer space, but it is called with txproducerlock a spinlock held via hdlctxframes -...

0.00023EPSS

Exploits0References4

UbuntuCve•added 2026/05/27 12:0 a.m.•4 views

CVE-2026-46041

greybus: gb-beagleplay: fix sleep in atomic context in hdlctxframes...

5.8AI score0.00023EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: greybus: A use-after-free bug was fixed in gbinterfacerelease due to a race condition. In gbinterfacecreate, &intf-modeswitchcompletion is bound to gbinterfacemodeswitchwork. Then, it will be initiated by...

7.8CVSS6.4AI score0.00018EPSS

Exploits0References2

CNNVD•added 2025/11/25 12:0 a.m.•4 views

NVIDIA DGX Spark 安全漏洞

The NVIDIA DGX Spark is a personal AI computer from NVIDIA Corporation. A security vulnerability exists in NVIDIA DGX Spark GB10, which originates from privileged access to an accessible SoC protected area in SROOT, and could result in code execution, information disclosure, data tampering, denia...

9.3CVSS6.9AI score0.00014EPSS

Exploits0References4

Tenable Nessus•added 2025/11/18 12:0 a.m.•2 views

Siemens SCALANCE and RUGGEDCOM Devices Use After Free (CVE-2024-39495)

greybus: use-after-free vulnerability in gbinterfacerelease due to race condition. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504772;...

7.8CVSS6.8AI score0.00018EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-0861

Malware in sbrugna...

7.5CVSS6.4AI score0.01612EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2012-4151

Malware in sbrugna...

4.3CVSS9.4AI score0.01278EPSS

Exploits1References38

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-8212

Malware in sbrugna...

6.5CVSS6.4AI score0.0119EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-11722

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00669EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-9292

Malicious code in bioql PyPI...

4.3CVSS6.2AI score0.00341EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-42630

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00378EPSS

Exploits1References2

CNVD•added 2025/07/18 12:0 a.m.•2 views

WordPress GB Forms DB plugin code injection vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A code injection vulnerability exists in the WordPress GB Forms DB plugin that originates in the gbfdbtalktofront function that accepts user input and passes it through...

9.8CVSS8AI score0.01548EPSS

Exploits0References1

NVD•added 2025/07/11 7:15 a.m.•4 views

CVE-2025-5392

The GB Forms DB plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.0.2 via the gbfdbtalktofront function. This is due to the function accepting user input and then passing that through calluserfunc. This makes it possible for unauthenticated...

9.8CVSS0.01548EPSS

Exploits0References4

CVE•added 2025/07/11 6:43 a.m.•32 views

CVE-2025-5392

GB Forms DB plugin for WordPress ≤ 1.0.2 is vulnerable to unauthenticated remote code execution via gbfdb_talk_to_front() which passes user input to call_user_func, enabling attackers to execute code, inject backdoors, or create admin accounts. This is a critical flaw (CVSS v3.1: 9.8). Remediatio...

9.8CVSS7.5AI score0.01548EPSS

Exploits0References4

Vulnrichment•added 2025/07/11 6:43 a.m.•3 views

CVE-2025-5392 GB Forms DB <= 1.0.2 - Unauthenticated Remote Code Execution

9.8CVSS8.1AI score0.01548EPSS

Exploits0References4

Cvelist•added 2025/07/11 6:43 a.m.•6 views

CVE-2025-5392 GB Forms DB <= 1.0.2 - Unauthenticated Remote Code Execution

9.8CVSS0.01548EPSS

Exploits0References4

Positive Technologies•added 2025/07/11 12:0 a.m.•3 views

PT-2025-29211 · WordPress · Gb Forms Db

Name of the Vulnerable Software and Affected Versions: GB Forms DB plugin for WordPress versions up to and including 1.0.2 Description: The GB Forms DB plugin for WordPress is susceptible to Remote Code Execution via the gbfdb talk to front function. The function accepts user input and passes it...

9.8CVSS7.5AI score0.01548EPSS

Exploits0References9

CNNVD•added 2025/07/11 12:0 a.m.•3 views

WordPress plugin GB Forms DB 代码注入漏洞

9.8CVSS8.3AI score0.01548EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by