CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/02/11 1:34 p.m.•7 views

CVE-2025-8668

CVE-2025-8668 describes an Improper Neutralization of Input During Web Page Generation (XSS) vulnerability in E-Kalite Turboard software. The issue permits Reflected XSS via input that is not properly sanitized during page generation. Affected timeframe: Turboard from 2025.07 through 11022026. Th...

9.4CVSS5.9AI score0.00021EPSS

Vulnrichment•added 2026/02/11 7:54 a.m.•1 views

CVE-2025-10912 IDOR in saastech.io's TemizlikYolda

Authorization Bypass Through User-Controlled Key vulnerability in Saastech Cleaning and Internet Services Inc. TemizlikYolda allows Manipulating User-Controlled Variables.This issue affects TemizlikYolda: through 11022026. NOTE: The vendor was contacted early about this disclosure but did not...

5.4CVSS5.5AI score0.00053EPSS

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2001-0622

Malware in sbrugna...

5CVSS6.4AI score0.0057EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2000-0566

Malware in sbrugna...

5CVSS6.4AI score0.05655EPSS

Exploits1References5

The Hacker News•added 2025/08/27 9:28 a.m.•4 views

Blind Eagle's Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS Infra

Cybersecurity researchers have discovered five distinct activity clusters linked to a persistent threat actor known as Blind Eagle between May 2024 and July 2025. These attacks, observed by Recorded Future Insikt Group, targeted various victims, but primarily within the Colombian government acros...

7AI score

RedhatCVE•added 2025/05/23 9:58 a.m.•4 views

CVE-2024-27974

Cross-site request forgery vulnerability in FUJIFILM printers which implement CentreWare Internet Services or Internet Services allows a remote unauthenticated attacker to alter user information. In the case the user is an administrator, the settings such as the administrator's ID, password, etc...

6.3CVSS6.9AI score0.00239EPSS

OpenVAS•added 2024/05/14 12:0 a.m.•12 views

Fuji Xerox / Fujifilm Printers CSRF Vulnerability (Mar 2024)

Multiple Fuji Xerox / Fujifilm printers are prone to cross-site request forgery CSRF vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

6.3CVSS7.4AI score0.00239EPSS

NVD•added 2024/03/18 8:15 a.m.•7 views

CVE-2024-27974

6.3CVSS6.6AI score0.00239EPSS

Vulnrichment•added 2024/03/18 7:59 a.m.•12 views

CVE-2024-27974

6.9AI score0.00239EPSS

Wired Threat Level•added 2022/07/08 1:0 p.m.•13 views

An ISP Scam Targeted Low-Income People Seeking Government Aid

The US Federal Communications Commission says a man posing as a fake broadband service promised victims discounts on internet services and devices...

2AI score

The Hacker News•added 2021/08/20 4:2 p.m.•33 views

Cloudflare mitigated one of the largest DDoS attack involving 17.2 million rps

Web infrastructure and website security company Cloudflare on Thursday disclosed that it mitigated the largest ever volumetric distributed denial of service DDoS attack recorded to date. The attack, launched via a Mirai botnet, is said to have targeted an unnamed customer in the financial industr...

1AI score

OpenVAS•added 2020/12/30 12:0 a.m.•14 views

Linux: Read /etc/inetd.* and /etc/xinetd.* files

xinetd performs the same function as inetd: it starts programs that provide Internet services. Instead of having such servers started at system initialization time, and be dormant until a connection request arrives, xinetd is the only daemon process started and it listens on all service ports for...

7AI score

CNVD•added 2020/12/17 12:0 a.m.•2 views

Weixin open source WeChat public number management system has XSS vulnerabilities

The business scope of Cebu City Taosheng Network Technology Co., Ltd. includes: network technology research and development, consulting, services, electronic equipment sales, Internet information services, operating telecommunications business, etc...

6.9AI score

ThreatPost•added 2020/07/08 12:50 p.m.•121 views

15 Billion Credentials Currently Up for Grabs on Hacker Forums

Fifteen billion usernames and passwords for a range of internet services are currently for sale on underground forums – shedding light on the sheer scope of compromised credentials that are fueling account takeovers on the internet. A report released Wednesday — “From Exposure to Takeover” by the...

7.5AI score

Exploits0References12

Akamai Blog•added 2020/06/16 2:0 p.m.•29 views

Making the Most of SPS Secure Consumer: Go To Market Best Practices

Seeing opportunities as residential internet services have been transformed into business internet services, ISPs and Mobile Network Operators MNOs are making moves to use the power of their networks to protect customers. As they progress through the decision and deployment cycles, we often get...

0.3AI score

CNVD•added 2020/02/22 12:0 a.m.•1 views

Webshell Bypass Vulnerability in D-Shield Firewall of Shenzhen Di Element Technology Co. Ltd (CNVD-2020-18722)

D-ShieldFirewall is an active defense protection software specially designed for IIS to prevent websites and servers from being invaded by internal and external protection, and is designed based on the concept that the fewer the functions, the safer the server is under the normal operation of all...

6.8AI score

n0where•added 2018/11/26 8:17 a.m.•37 views

Track People on the Internet: trape

Trape is a OSINT analysis and research tool, which allows people to track and execute intelligent social engineering attacks in real time. It was created with the aim of teaching the world how large Internet companies could obtain confidential information such as the status of sessions of their...

0.6AI score

CNVD•added 2018/08/03 12:0 a.m.•1 views

Yixing Yulu Media Co., Ltd. website construction system suffers from SQL injection vulnerability

Yixing Yulu Media Co., Ltd. is to provide enterprises with the most comprehensive, thoughtful, professional Internet solutions, to provide WeChat small program, WeChat public number, domain name registration, web hosting, enterprise mailboxes, website construction, website development, website...

7.6AI score