CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CVE-2026-40510

OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in pivprocesshistory in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device returning a URL field longe...

6.8CVSS0.00005EPSS

Exploits0References3

CNNVD•added 2026/02/03 12:0 a.m.•3 views

WordPress plugin WP ULike 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

5.3CVSS5.8AI score0.00014EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-7708

Malware in sbrugna...

8.8CVSS8.7AI score0.00296EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2021-13538

Malware in sbrugna...

8.8CVSS8.7AI score0.00372EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 8:19 a.m.•5 views

CVE-2019-17295

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the history function by a Regular user...

8.8CVSS8AI score0.00296EPSS

Exploits0References1

Positive Technologies•added 2024/06/27 12:0 a.m.•1 views

PT-2024-37336 · Unknown · Gaizhenbiao/Chuanhuchatgpt

Name of the Vulnerable Software and Affected Versions: gaizhenbiao/chuanhuchatgpt affected versions not specified Description: A Regular Expression Denial of Service ReDoS issue exists, located in the filter history function within the utils.py module. This function uses a regular expression sear...

7.5CVSS7.4AI score0.00106EPSS

Exploits1References4

CNVD•added 2021/02/20 12:0 a.m.•4 views

NeDi SQL Injection Vulnerability (CNVD-2021-22163)

NeDi is an open source software tool that discovers, maps and inventories network devices and tracks connected end nodes. A SQL injection vulnerability exists in the Monitoring History function in endpoint /Monitoring-History.php in NeDi 1.9C. An attacker can exploit this vulnerability to access...

8.8CVSS7.9AI score0.00372EPSS

Exploits1References1

NVD•added 2019/10/07 4:15 p.m.•8 views

CVE-2019-17295

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the history function by a Regular user...

8.8CVSS9.1AI score0.00296EPSS

Exploits0References1

Prion•added 2019/10/07 4:15 p.m.•8 views

Sql injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the history function by a Regular user...

6.5CVSS9AI score0.00296EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/10/07 3:5 p.m.•8 views

CVE-2019-17295

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the history function by a Regular user...

9.1AI score0.00296EPSS

Exploits0References1

UbuntuCve•added 2005/09/16 8:3 p.m.•18 views

CVE-2005-2877

The history revision control function in TWiki 02-Sep-2004 and earlier allows remote attackers to execute arbitrary code via shell metacharacters, as demonstrated via the rev parameter to TWikiUsers...

7.5CVSS6.3AI score0.84001EPSS

Exploits8References1

Cvelist•added 2005/09/16 4:0 a.m.•14 views

CVE-2005-2877

7.5AI score0.84001EPSS

Exploits8References4

securityvulns•added 2005/09/15 12:0 a.m.•29 views

TWiki Remote Command Execution Vulnerability

This advisory alerts you of a potential security issue with your TWiki installation: The TWiki history function allows arbitrary shell command execution. The permanent place for this advisory is http://twiki.org/cgi-bin/view/Codev/SecurityAlertExecuteCommandsWithRev . Please see updates and...

7.5CVSS7.4AI score0.84001EPSS

Exploits8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by