CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

Positive Technologies•added 2026/03/27 12:0 a.m.•6 views

PT-2026-28632

Appsmith versions prior to 1.98 expose sensitive instance management API endpoints without authentication. Unauthenticated attackers can query endpoints like /api/v1/consolidated-api/view and /api/v1/tenants/current to retrieve configuration metadata, license information, and unsalted SHA-256...

6.9CVSS5.9AI score0.00387EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2011-0889

Malware in sbrugna...

4.3CVSS6.2AI score0.01495EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-7456

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.02773EPSS

Exploits0References6

RedhatCVE•added 2025/05/23 12:17 a.m.•6 views

CVE-2022-45462

Alarm instance management has command injection when there is a specific command configured. It is only for logged-in users. We recommend you upgrade to version 2.0.6 or higher...

9.8CVSS7.4AI score0.02773EPSS

Exploits0References1

Prion•added 2022/11/23 9:15 a.m.•21 views

Command injection

Alarm instance management has command injection when there is a specific command configured. It is only for logged-in users. We recommend you upgrade to version 2.0.6 or higher...

7.5CVSS9.8AI score0.02773EPSS

Exploits0References2Affected Software1

CVE•added 2022/11/23 12:0 a.m.•76 views

CVE-2022-45462

Summary: Apache DolphinScheduler contains a command injection vulnerability in the Alarm/Alert Instance Management service when a specific command is configured. The issue affects versions prior to 2.0.6 and could allow an attacker to inject commands. The vulnerability is rated critical (CVSS v3....

9.8CVSS9.8AI score0.02773EPSS

Exploits0References2Affected Software1

Kitploit•added 2021/05/08 12:30 p.m.•93 views

Red-Detector - Scan Your EC2 Instance To Find Its Vulnerabilities Using Vuls.io

Scan your EC2 instance to find its vulnerabilities using Vuls https://vuls.io/en/. Audit your EC2 instance to find security misconfigurations using Lynis https://cisofy.com/solutions/lynis. Scan your EC2 instance for signs of a rootkit using Chkrootkit http://www.chkrootkit.org/. Requirements 1...

7.4AI score

Exploits0References1

OpenVAS•added 2018/03/07 12:0 a.m.•26 views

Oracle Database Server Multiple Unspecified Vulnerabilities-01 (Mar 2018)

Oracle Database Server is prone to multiple unspecified security vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.8CVSS6.3AI score0.01845EPSS

Exploits0References1

Information Security Automation•added 2017/10/31 9:29 p.m.•74 views

Starting/stopping Amazon EC2 instances using CLI and Python SDK

It's a very good practice to scan your perimeter from the outside of your network, simulating an attacker. However, you will need to deploy the scanners somewhere to do this. Hosting on Amazon EC2 can be a good and cost-effective option, especially if you start instances with vulnerability scanne...

7.1AI score

Exploits0

Tenable Nessus•added 2011/11/16 12:0 a.m.•51 views

Oracle Database Multiple Vulnerabilities (July 2008 CPU)

The remote Oracle database server is missing the July 2008 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Advanced Queuing - Advanced Replication - Authentication - Core RDBMS - Data Pump - Database Scheduler - Instance Managemen...

6.5CVSS5.4AI score0.03357EPSS

Exploits0References14

NVD•added 2011/07/20 10:55 p.m.•15 views

CVE-2011-0879

Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect integrity via unknown vectors...

4.3CVSS6AI score0.01508EPSS

Exploits0References2

Prion•added 2011/07/20 10:55 p.m.•15 views

Design/Logic Flaw

Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors...

4.3CVSS6.4AI score0.01495EPSS

Exploits0References2Affected Software2

Cvelist•added 2011/07/20 10:36 p.m.•20 views

CVE-2011-0879

5.9AI score0.01508EPSS

Exploits0References2

CVE•added 2011/07/20 10:36 p.m.•96 views

CVE-2011-0879

CVE-2011-0879 refers to an Oracle vulnerability in the Oracle Enterprise Manager Grid Control/Instance Management component. The TeamSHATTER advisory describes a cross-site scripting (XSS) flaw on the metricDetail$type page that can be exploited remotely, potentially allowing an attacker to steal...

4.3CVSS6.1AI score0.01508EPSS

Exploits0References2Affected Software1

NVD•added 2008/07/15 11:41 p.m.•12 views

CVE-2008-2590

Unspecified vulnerability in the Instance Management component in Oracle Database 10.1.0.5 and Enterprise Manager 10.1.0.6 has unknown impact and remote authenticated attack vectors...

3.5CVSS5.8AI score0.01084EPSS

Exploits0References8

Cvelist•added 2008/07/15 11:0 p.m.•22 views

CVE-2008-2590

Unspecified vulnerability in the Instance Management component in Oracle Database 10.1.0.5 and Enterprise Manager 10.1.0.6 has unknown impact and remote authenticated attack vectors...

5.8AI score0.01084EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by