CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

183 matches found

Vulnrichment•added 2026/02/12 10:48 p.m.•5 views

CVE-2019-25339 GHIA CamIP 1.2 for iOS - 'Password' Denial of Service

GHIA CamIP 1.2 for iOS contains a denial of service vulnerability in the password input field that allows attackers to crash the application. Attackers can paste a 33-character buffer of repeated characters into the password field to trigger an application crash on iOS devices...

7.5CVSS5.8AI score0.00033EPSS

Exploits0References3

NVD•added 2026/02/10 9:15 p.m.•4 views

CVE-2025-12699

The ZOLL ePCR IOS application reflects unsanitized user input into a WebView. Attacker-controlled strings placed into PCR fields run number, incident, call sign, notes are interpreted as HTML/JS when the app prints or renders that content. In the proof of concept POC, injected scripts return loca...

6.7CVSS0.00005EPSS

Exploits0References3

NVD•added 2026/02/03 10:16 p.m.•3 views

CVE-2020-37086

Easy Transfer 1.7 iOS mobile application contains a directory traversal vulnerability that allows remote attackers to access unauthorized file system paths without authentication. Attackers can exploit the vulnerability by manipulating path parameters in GET and POST requests to list or download...

6.9CVSS0.03234EPSS

Exploits0References4

NVD•added 2026/02/01 1:15 p.m.•3 views

CVE-2022-50952

Banco Guayaquil 8.0.0 mobile iOS application contains a persistent cross-site scripting vulnerability in the TextBox Name Profile input. Attackers can inject malicious script code through a POST request that executes on application review without user interaction...

6.4CVSS0.00016EPSS

Exploits0References3

EUVD•added 2026/02/01 12:56 p.m.•2 views

EUVD-2022-55945

6.4CVSS5.9AI score0.00016EPSS

Exploits0References3

ATTACKERKB•added 2026/01/29 2:28 p.m.•2 views

CVE-2020-36995

Mocha Telnet Lite for iOS 4.2 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the user configuration input. Attackers can overwrite the 'User' field with 350 bytes of repeated characters to trigger an application crash and prevent normal...

7.5CVSS5.9AI score0.00019EPSS

Exploits0References3Affected Software1

RedhatCVE•added 2026/01/09 11:36 a.m.•3 views

CVE-2021-41719

Maharashtra State Electricity Distribution Company Limited Mahavitran IOS Application 16.1 application till version 16.1 communicates using the GET method to process requests that contain sensitive information such as user account name and password, which can expose that information through the...

7.5CVSS6.7AI score0.00311EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:27 a.m.•5 views

CVE-2021-33982

An insufficient session expiration vulnerability exists in the "Fish | Hunt FL" iOS app version 3.8.0 and earlier, which allows a remote attacker to reuse, spoof, or steal other user and admin sessions...

7.5CVSS6.7AI score0.0024EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:57 a.m.•4 views

CVE-2020-12129

The AirDisk Pro app 5.5.3 for iOS allows XSS via the createFolder parameter of the Create Folder function...

6.1CVSS5.6AI score0.00328EPSS

Exploits2References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-19526

Malware in sbrugna...

5.4CVSS4.9AI score0.00071EPSS

Exploits0References2