CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

43 matches found

Altenergy Power Control Software - SQL Injection

A vulnerability classified as critical was found in Altenergy Power Control Software up to 20241108. This vulnerability affects the function getstatuszigbee of the file /index.php/display/statuszigbee. The manipulation of the argument date leads to sql injection. The attack can be initiated...

6.5CVSS6.5AI score0.03725EPSS

Exploits0References3

GithubExploit•added 2026/02/24 8:6 p.m.•261 views

Exploit for CVE-2025-1242

ICSA-26-055-03 — Gardyn Home Kit IoT Vulnerabilities CISA ICS...

9.8CVSS5.6AI score0.01811EPSS

Exploits3

NVD•added 2026/02/20 4:22 p.m.•10 views

CVE-2026-22885

A vulnerability exists in EnOcean SmartServer IoT version 4.60.009 and prior, which would allow remote attackers, in the LON IP-852 management messages, to send specially crafted IP-852 messages resulting in a memory leak from the program's memory...

3.7CVSS0.00368EPSS

Exploits0References4

CVE•added 2026/02/20 3:32 p.m.•9 views

CVE-2026-20761

CVE-2026-20761 affects EnOcean SmartServer IoT prior to 4.60.009. A remote attacker can exploit the LON IP-852 management message handling to execute arbitrary OS commands on the device. Public sources concur on this impact; no exploit details are provided in the documents. The Red Hat advisory a...

8.1CVSS5.8AI score0.00876EPSS

Exploits0References4

Nuclei•added 2026/02/04 7:0 a.m.•6 views

DAEnetIP4 METO v1.25 - Session Hijacking

DAEnetIP4 METO v1.25 contains improper session management in the /loginok.htm endpoint, letting attackers hijack sessions, exploit requires attacker to control or intercept session tokens. id: CVE-2025-28242 info: name: DAEnetIP4 METO v1.25 - Session Hijacking author: 0xAkoko severity: high...

9.8CVSS5.9AI score0.01681EPSS

Exploits0References2

Cvelist•added 2026/01/29 7:2 p.m.•23 views

CVE-2026-1610 Tenda AX12 Pro V2 Telnet Service hard-coded credentials

A vulnerability was found in Tenda AX12 Pro V2 16.03.49.24cn. Affected by this issue is some unknown functionality of the component Telnet Service. Performing a manipulation results in hard-coded credentials. The attack is possible to be carried out remotely. A high degree of complexity is needed...

9.2CVSS0.00673EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-18707

Malware in sbrugna...

5CVSS5AI score0.00747EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-10255

Malware in sbrugna...

4.9CVSS5.1AI score0.03122EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-18709

Malware in sbrugna...

4.9CVSS4.7AI score0.00963EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-19311

Malware in sbrugna...

7.8CVSS7.6AI score0.00434EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2020-3534

Malware in sbrugna...

7.8CVSS7.6AI score0.00219EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-26102