CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8834 matches found

EUVD•added 2026/05/29 12:42 p.m.•8 views

EUVD-2026-33297

FreePBX is an open source IP PBX. Prior to 16.0.22 and 17.0.5, the Dashboard module's getcontent AJAX handler includes PHP files based on user-supplied input without path sanitization. The $REQUEST'rawname' parameter is concatenated into an include call with a .class.php suffix, allowing path...

7.6CVSS6AI score0.00272EPSS

Exploits0References1

CVE•added 2026/05/29 12:0 a.m.•18 views

CVE-2026-39276

The CVE-2026-39276 vulnerability affects Emlog Pro v2.6.9, where the template upload feature is vulnerable to path traversal. An authenticated administrator can upload a crafted ZIP archive containing directory traversal sequences in filenames, enabling arbitrary PHP code execution. This can resu...

7.2CVSS6.1AI score0.00684EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2026/05/29 12:0 a.m.•11 views

PT-2026-44901

Name of the Vulnerable Software and Affected Versions Emlog Pro version 2.6.9 Description The template upload feature contains a path traversal issue, which occurs when an application uses user-supplied input to construct a pathname that is then used in a file operation. This allows authenticated...

7.2CVSS5.8AI score0.00684EPSS

Exploits1References5

Github Security Blog•added 2026/05/28 10:39 p.m.•18 views

Arcane Has an Authenticated Arbitrary Host File Read via Docker Compose Include Directives

Summary ProjectService.GetProjectFileContent returns the contents of any Docker Compose include directive declared in a project's compose file before any path-traversal validation runs. Because ProjectService.CreateProject writes attacker-supplied compose content to disk without validating includ...

7.7CVSS6AI score0.0046EPSS

Exploits0References4Affected Software1

OSV•added 2026/05/28 10:39 p.m.•10 views

GHSA-C3PX-H233-H6FQ Arcane Has an Authenticated Arbitrary Host File Read via Docker Compose Include Directives

7.7CVSS6AI score0.0046EPSS

Exploits0References4

PyPA•added 2026/05/28 4:16 p.m.•14 views

PYSEC-2026-192

Python Liquid is a Python engine for the Liquid template language. Prior to 2.2.0, the built-in FileSystemLoader and CachingFileSystemLoader do not guard against reading files outside their search paths when given an absolute path to resolve. This allows malicious template authors to load and...

8.2CVSS5.9AI score0.00335EPSS

Exploits0References1Affected Software1

PyPA•added 2026/05/28 4:16 p.m.•8 views

PYSEC-0000-CVE-2026-45017

8.2CVSS5.9AI score0.00335EPSS

Exploits0References1Affected Software1

NVD•added 2026/05/28 4:16 p.m.•21 views

CVE-2026-45017

8.2CVSS0.00335EPSS

Exploits0References1

OSV•added 2026/05/28 4:16 p.m.•6 views

PYSEC-2026-192

7.5CVSS5.9AI score0.00335EPSS

Exploits0References1

CVE•added 2026/05/28 2:24 p.m.•29 views

CVE-2026-45017

CVE-2026-45017 affects the Python Liquid engine. Before 2.2.0, FileSystemLoader and CachingFileSystemLoader fail to guard against reading files outside the search path when given absolute paths, enabling a malicious template author to load and render arbitrary files via {% include %} and {% rende...

8.2CVSS5.9AI score0.00335EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/05/28 2:24 p.m.•9 views

CVE-2026-45017 Python Liquid: Absolute paths escape filesystem loader search path

8.2CVSS5.9AI score0.00335EPSS

Exploits0References1

EUVD•added 2026/05/28 2:24 p.m.•15 views

EUVD-2026-32907

8.2CVSS5.9AI score0.00335EPSS

Exploits0References1

ATTACKERKB•added 2026/05/28 2:24 p.m.•5 views

CVE-2026-45017

8.2CVSS5.9AI score0.00335EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/05/28 2:24 p.m.•31 views

CVE-2026-45017 Python Liquid: Absolute paths escape filesystem loader search path

8.2CVSS0.00335EPSS

Exploits0References1

Positive Technologies•added 2026/05/28 12:0 a.m.•13 views

PT-2026-44732

Name of the Vulnerable Software and Affected Versions Arcane versions prior to 1.19.4 Description An authenticated user can perform an arbitrary read of any file accessible by the Arcane backend process. This occurs because the ProjectService.CreateProject function writes attacker-supplied compos...

7.7CVSS6AI score0.0046EPSS

Exploits0References11

EUVD•added 2026/05/27 1:20 p.m.•9 views

EUVD-2026-32498

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in SeedProd LLC SeedProd Pro allows PHP Local File Inclusion. This issue affects SeedProd Pro: from n/a before 6.19.5...

7.5CVSS5.8AI score0.00309EPSS

Exploits0References1

Cvelist•added 2026/05/27 1:20 p.m.•37 views

CVE-2026-48972 WordPress SeedProd Pro plugin < 6.19.5 - Local File Inclusion vulnerability

7.5CVSS0.00309EPSS

Exploits0References1

NVD•added 2026/05/27 7:16 a.m.•13 views

CVE-2026-8903

The Two-factor authentication formerly IP Vault plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the ipvsavechanges function. This makes it possible for unauthenticated attackers to...

4.3CVSS0.00139EPSS

Exploits0References4

Vulnrichment•added 2026/05/27 5:31 a.m.•10 views

CVE-2026-8903 Two-factor authentication (formerly IP Vault) <= 2.1 - Cross-Site Request Forgery to Settings Update

4.3CVSS5.7AI score0.00139EPSS

Exploits0References4

Positive Technologies•added 2026/05/27 12:0 a.m.•9 views

PT-2026-43974

7.5CVSS5.8AI score0.00309EPSS

Exploits0References2

Rows per page