CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/21 8:19 a.m.•3 views

EUVD-2025-209536

ATTACKERKB•added 2026/04/21 8:19 a.m.•3 views

CVE-2025-13826

Cvelist•added 2026/04/21 8:19 a.m.•31 views

CVE-2025-13826 Incorrect input validation on the Zervit portable HTTP/Web server

8.2CVSS0.00253EPSS

CVE•added 2026/04/21 8:19 a.m.•12 views

CVE-2025-13826

Zervit’s portable HTTP/web server is vulnerable to remote DoS due to inadequate validation of user-supplied input during a configuration reset request. The impact can cause the application to stop responding, requiring a manual restart. CVSS v4 metrics in the description show a base score of 8.2 ...

CNNVD•added 2026/04/21 12:0 a.m.•6 views

Zervit 输入验证错误漏洞

Zervit is an open-source HTTP/Web server developed by Zervit. Zervit has a vulnerability related to input validation. This vulnerability arises due to insufficient input validation during configuration reset requests, which may lead to a remote denial-of-service attack, causing the application to...

Vulnrichment•added 2026/04/21 12:0 a.m.•6 views

CVE-2026-31013

Dovestones Softwares ADPhonebook 4.0.1.1 has a reflected cross-site scripting XSS vulnerability in the search parameter of the /ADPhonebook?Department=HR endpoint. User-supplied input is reflected in the HTTP response without proper input validation or output encoding, allowing execution of...

5.9AI score0.00194EPSS

CNVD•added 2026/04/21 12:0 a.m.•7 views

Microsoft PowerShell Elevation of Privilege Vulnerability

Microsoft PowerShell is a Microsoft-developed cross-platform task automation solution that includes a command-line shell, scripting language, and configuration management framework. An elevation of privilege vulnerability exists in Microsoft PowerShell, which is caused by incorrect input validati...

7.8CVSS5.8AI score0.0023EPSS

Exploits0

CNNVD•added 2026/04/21 12:0 a.m.•9 views

OpenEXR 输入验证错误漏洞

OpenEXR is an open standard for high dynamic range image HDR file format, open-sourced by the Academy Software Foundation. Versions 3.4.0 to 3.4.9, 3.3.0 to 3.3.9, and 3.2.0 to 3.2.7 of OpenEXR contain a input validation vulnerability. This vulnerability stems from line 1722 of the...

8.4CVSS5.9AI score0.0045EPSS

CNNVD•added 2026/04/21 12:0 a.m.•5 views

OpenEXR 输入验证错误漏洞

OpenEXR is an open standard for high dynamic range image HDR file format, open-sourced by the Academy Software Foundation. Versions 3.4.0 to 3.4.9 of OpenEXR contain a input validation vulnerability. This vulnerability stems from an integer overflow in the 32-bit signed integer bpl value of the...

5.3CVSS5.9AI score0.00302EPSS

Exploits1References1

Positive Technologies•added 2026/04/21 12:0 a.m.•5 views

PT-2026-33990

Name of the Vulnerable Software and Affected Versions PHP Point of Sale version 19.4 Description An issue exists where a lack of proper validation of user input allows an attacker to render HTML in the victim's browser. This occurs when sending a request to the endpoint '/reports/generate/specifi...

5.1CVSS5.8AI score0.00158EPSS

Exploits0References5

CNNVD•added 2026/04/21 12:0 a.m.•10 views

LinkAce 输入验证错误漏洞

LinkAce is a self-hosted repository developed by Kevin Woblick, designed to collect links to your favorite websites. Versions of LinkAce prior to 2.5.4 contained a vulnerability related to input validation errors. This vulnerability stemmed from the improper trust given to the X-Forwarded-Host...

8.1CVSS5.8AI score0.00288EPSS

CNNVD•added 2026/04/21 12:0 a.m.•6 views

n.eko 输入验证错误漏洞

n.eko is a self-hosted virtual browser developed by Miroslav Šedivý, using Docker and WebRTC. Versions 3.0.0 to 3.0.10, as well as 3.1.0 to 3.1.1, have vulnerabilities related to input validation. These vulnerabilities allow any authenticated user to instantly gain complete control over the entir...

8.8CVSS5.8AI score0.00437EPSS

CNNVD•added 2026/04/21 12:0 a.m.•7 views

OpenEXR 输入验证错误漏洞

8.4CVSS5.9AI score0.0045EPSS

CNVD•added 2026/04/21 12:0 a.m.•4 views

Microsoft Azure Monitor Agent Input Validation Error Vulnerability (CNVD-2026-18593)

Microsoft Azure Monitor Agent is a monitoring agent program from Microsoft USA. A security vulnerability exists in Microsoft Azure Monitor Agent. An attacker can exploit the vulnerability to elevate privileges...

7.8CVSS5.4AI score0.00307EPSS

Exploits0

Tenable Nessus•added 2026/04/21 12:0 a.m.•7 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-006993)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006993 advisory. In the Linux kernel, the following vulnerability has been resolved: HID: asus: fix UAF via HIDCLAIMEDINPUT validation After hidhwstart is called hidinputconnect will...

7.8CVSS6.3AI score0.00152EPSS

Exploits0References4

Tenable Nessus•added 2026/04/21 12:0 a.m.•6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013140)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013140 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: fix input validation logic for actionmeta Fix condition to check 'greater or equal' to...

6.8AI score0.00193EPSS

Exploits0References4

Positive Technologies•added 2026/04/21 12:0 a.m.•4 views

PT-2026-33922