CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2026/02/28 1:55 a.m.•3 views

CVE-2026-21389

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the request body sent to the contacts import route...

8.8CVSS6.6AI score0.00282EPSS

Exploits0References1

EUVD•added 2026/02/27 3:30 a.m.•5 views

EUVD-2026-8946

8.8CVSS6.3AI score0.00282EPSS

Exploits0References4

NVD•added 2026/02/27 1:16 a.m.•2 views

CVE-2026-21389

8.8CVSS0.00282EPSS

Exploits0References3

ATTACKERKB•added 2026/02/27 12:38 a.m.•4 views

CVE-2026-21389

8.8CVSS6.4AI score0.00282EPSS

Exploits0References4

CVE•added 2026/02/27 12:38 a.m.•16 views

CVE-2026-21389

CVE-2026-21389 is an OS command injection affecting XWEB Pro

8.8CVSS6.3AI score0.00282EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/02/27 12:38 a.m.•6 views

CVE-2026-21389 Copeland XWEB and XWEB Pro OS Command Injection

8CVSS6.6AI score0.00282EPSS

Exploits0References3

Cvelist•added 2026/02/27 12:38 a.m.•19 views

CVE-2026-21389 Copeland XWEB and XWEB Pro OS Command Injection

8CVSS0.00282EPSS

Exploits0References3

EUVD•added 2025/11/14 9:30 p.m.•4 views

EUVD-2025-26365

A weakness has been identified in SimStudioAI sim up to ed9b9ad83f1a7c61f4392787fb51837d34eeb0af. Affected by this issue is the function Import of the file apps/sim/app/api/files/upload/route.ts of the component HTML File Parser. Executing manipulation of the argument File can lead to unrestricte...

6.5CVSS6.1AI score0.00091EPSS

Exploits1References8

RedhatCVE•added 2025/09/03 11:34 p.m.•4 views

CVE-2025-9800

6.5CVSS6.8AI score0.00091EPSS

Exploits1References1

Vulnrichment•added 2025/09/01 10:32 p.m.•2 views

CVE-2025-9800 SimStudioAI sim HTML File route.ts import unrestricted upload

6.5CVSS6.4AI score0.00091EPSS

Exploits1References7

Rows per page