CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

67 matches found

RedhatCVE•added 2026/06/05 7:24 p.m.•8 views

CVE-2026-8202

Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. This issue impacts MongoDB Server v7.0 versions prior to...

6.5CVSS5.4AI score0.00263EPSS

Exploits0References1

OPENSUSE Linux•added 2026/05/18 12:0 a.m.•13 views

Security update for cacti (important)

openSUSE Security Update: Security update for cacti Announcement ID: openSUSE-SU-2026:0169-1 Rating: important References: Affected Products: openSUSE Backports SLE-15-SP7 An update that contains security fixes can now be installed. Description: This update for cacti fixes the following issues: -...

6AI score

Exploits0

UbuntuCve•added 2026/05/13 4:17 a.m.•7 views

CVE-2026-8202

6.5CVSS5.8AI score0.00263EPSS

Exploits0References1

ATTACKERKB•added 2026/04/26 1:19 p.m.•2 views

CVE-2018-25295

ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the IP input field. Attackers can paste a 2000-byte buffer of repeated characters into the IP field and trigger a search operati...

6.9CVSS5.4AI score0.00124EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/04/23 6:59 a.m.•29 views

CVE-2026-41040

GROWI provided by GROWI, Inc. is vulnerable to a regular expression denial of service ReDoS via a crafted input string...

8.7CVSS0.00365EPSS

Exploits0References2

Positive Technologies•added 2026/04/23 12:0 a.m.•5 views

PT-2026-34645

GROWI provided by GROWI, Inc. is vulnerable to a regular expression denial of service ReDoS via a crafted input string...

8.7CVSS5.8AI score0.00365EPSS

Exploits0References3

CVE•added 2026/04/04 1:51 p.m.•8 views

CVE-2018-25243

Microsoft FastTube 1.0.1.0 is affected by a local denial-of-service vulnerability where an excessively long input to the search function (about 1900 characters) can crash the application when the search is executed. The issue is described as a DoS with local access and low attack complexity. No p...

6.9CVSS6.1AI score0.00123EPSS

Exploits0References3

Positive Technologies•added 2026/04/04 12:0 a.m.•4 views

PT-2026-30361

Microsoft Watchr 1.1.0.0 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string to the search functionality. Attackers can paste a buffer of 8145 characters into the search bar and trigger a search operation to caus...

6.9CVSS6.1AI score0.00117EPSS

Exploits0References4

NVD•added 2026/03/22 2:16 p.m.•3 views

CVE-2019-25592

PHPRunner 10.1 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the dashboard name field. Attackers can paste a buffer of 10000 characters into the Name field during dashboard creation to trigger an...

6.9CVSS0.0016EPSS

Exploits0References4

Vulnrichment•added 2026/01/16 7:9 p.m.•1 views

CVE-2021-47818 DupTerminator 1.4.5639.37199 - Denial of Service

DupTerminator 1.4.5639.37199 contains a denial of service vulnerability that allows attackers to crash the application by inputting a long character string in the Excluded text box. Attackers can generate a payload of 8000 repeated characters to trigger the application to stop working on Windows ...

7.5CVSS5.3AI score0.00394EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2014-8011

Malware in sbrugna...

9CVSS8.8AI score0.0351EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-3260

Malware in sbrugna...

5CVSS6.4AI score0.00968EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-9050

Malware in sbrugna...

6.5CVSS6.7AI score0.02716EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-0007

Malware in sbrugna...

5CVSS6AI score0.04995EPSS

Exploits0References16

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-7048

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.01178EPSS

Exploits0References11

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-34077

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00574EPSS

Exploits1References6

Github Security Blog•added 2025/07/23 3:31 p.m.•10 views

FastAPI Guard has a regex bypass

Summary The regular expression patched to mitigate the ReDoS vulnerability by limiting the length of string fails to catch inputs that exceed this limit. Details In version 3.0.1, you can find a commit like the one in the link below, which was made to prevent ReDoS...

8.8CVSS6.3AI score0.00734EPSS

Exploits1References5Affected Software1

CNNVD•added 2025/06/18 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unadapted input string length that could result in a buffer overflow...

7.8CVSS6.7AI score0.00181EPSS

Exploits0References6

CNVD•added 2025/06/13 12:0 a.m.•3 views

GNU C Stock in Unspecified Vulnerabilities

The GNU C library is a standard library implementation of C developed by the GNU project to provide core API support for Linux systems, and is the basis for most C programs to run. The GNU C library suffers from a security vulnerability. An attacker could exploit the vulnerability to overwrite...

5.6CVSS7AI score0.00206EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:8 p.m.•5 views

CVE-2020-7058

datainput.php in Cacti 1.2.8 allows remote code execution via a crafted Input String to Data Collection - Data Input Methods - Unix - Ping Host. NOTE: the vendor has stated "This is a false alarm...

8.8CVSS7.7AI score0.02254EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by