CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/03/03 1:21 a.m.•2 views

CVE-2026-1487 LatePoint <= 5.2.7 - Authenticated (Administrator+) SQL Injection via JSON Import

CVE•added 2026/03/03 1:21 a.m.•13 views

CVE-2026-1487

CVE-2026-1487 relates to the LatePoint WordPress plugin (Calendar Booking Plugin for Appointments and Events), with vulnerability in all versions up to and including 5.2.7. The issue is an authenticated SQL injection via JSON Import, exploitable by attackers with Administrator-level access and ab...

EUVD•added 2026/03/03 1:21 a.m.•3 views

EUVD-2026-9271

Cvelist•added 2026/03/03 1:21 a.m.•25 views

CVE-2026-1487 LatePoint <= 5.2.7 - Authenticated (Administrator+) SQL Injection via JSON Import

6.5CVSS0.00036EPSS

ATTACKERKB•added 2026/03/03 1:21 a.m.•4 views

CVE-2026-1487

Positive Technologies•added 2026/03/03 12:0 a.m.•5 views

PT-2026-22761

Name of the Vulnerable Software and Affected Versions Nokia IMPACT versions through 19.11.2.10-20210118042150283 Description A Cross-Site Request Forgery CSRF issue exists in Nokia IMPACT. This allows a remote attacker to import and overwrite the entire application configuration. The issue is due...

8.1CVSS5.8AI score0.00027EPSS

Exploits0References9

Vulnrichment•added 2026/03/03 12:0 a.m.•0 views

CVE-2021-35486

A Cross-Site Request Forgery CSRF vulnerability in Nokia IMPACT through 19.11.2.10-20210118042150283 allows a remote attacker to import and overwrite the entire application configuration. Specifically, in /ui/rest-proxy/entity/import, neither the X-CSRF-NONCE HTTP header nor the CSRF-NONCE cookie...

6AI score0.00027EPSS

CNNVD•added 2026/03/03 12:0 a.m.•4 views

Nokia IMPACT 安全漏洞

Nokia IMPACT is a set of IoT intelligent management platforms developed by Finnish company Nokia. Versions of Nokia IMPACT such as 19.11.2.10 and earlier contain security vulnerabilities. These vulnerabilities stem from the lack of CSRF token verification, which could allow remote attackers to...

8.1CVSS5.8AI score0.00027EPSS

EUVD•added 2026/03/03 12:0 a.m.•3 views

EUVD-2021-22128

6AI score0.00027EPSS

Positive Technologies•added 2026/03/03 12:0 a.m.•3 views

PT-2026-22711

Tenable Nessus•added 2026/03/03 12:0 a.m.•7 views

GitLab 11.2 < 18.7.5 / 18.8 < 18.8.5 / 18.9 < 18.9.1 (CVE-2026-2845)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that could have allowed an authenticated user to cause denial of...

6.5CVSS6AI score0.00052EPSS

CVE•added 2026/03/03 12:0 a.m.•6 views

CVE-2021-35486

CVE-2021-35486 affects Nokia IMPACT up to version 19.11.2.10-20210118042150283. The issue is a CSRF vulnerability in the /ui/rest-proxy/entity/import endpoint where neither the X-CSRF-NONCE header nor the CSRF-NONCE cookie is validated, allowing a remote attacker to import and overwrite the entir...

8.1CVSS6AI score0.00027EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/03/03 12:0 a.m.•3 views

PT-2026-22744

OpenViking versions 0.2.1 and prior, fixed in commit 46b3e76, contain a path traversal vulnerability in the .ovpack import handling that allows attackers to write files outside the intended import directory. Attackers can craft malicious ZIP archives with traversal sequences, absolute paths, or...

8.4CVSS6AI score0.00015EPSS

CNNVD•added 2026/03/03 12:0 a.m.•3 views

OpenViking 安全漏洞

OpenViking is an open-source artificial intelligence agent-based context database developed by Volcengine. Versions of OpenViking prior to 0.2.1 contained security vulnerabilities. These vulnerabilities were due to path traversal issues during the .ovpack import process, which could allow attacke...

8.4CVSS5.8AI score0.00015EPSS

ATTACKERKB•added 2026/03/03 12:0 a.m.•2 views

CVE-2021-35486

8.1CVSS6AI score0.00027EPSS

Cvelist•added 2026/03/03 12:0 a.m.•22 views

CVE-2021-35486

0.00027EPSS