CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

Positive Technologies•added 2026/05/08 12:0 a.m.•9 views

PT-2026-39274

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.0 Description The validate collection access function employs an incomplete allowlist that only verifies ownership for collections starting with user-memory- and file-. Other collection names, such as the...

4.3CVSS5.8AI score0.00221EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2005-3845

Malware in sbrugna...

4.3CVSS6.4AI score0.01177EPSS

Exploits0References6

OSV•added 2025/01/02 2:26 p.m.•5 views

CVE-2024-56137 MaxKB RCE vulnerability in function library

MaxKB, which stands for Max Knowledge Base, is an open source knowledge base question-answering system based on a large language model and retrieval-augmented generation RAG. Prior to version 1.9.0, a remote command execution vulnerability exists in the module of function library. The vulnerabili...

6.8CVSS7.5AI score0.00772EPSS

Exploits1References3

CNNVD•added 2024/05/15 12:0 a.m.•4 views

KYKMS 安全漏洞

KYKMS is a knowledge base management system. KYKMS suffers from a cross-site scripting vulnerability that can be exploited by remote attackers to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when malicious data is viewed...

9.8CVSS5.8AI score0.00455EPSS

Exploits1References2

CNVD•added 2020/03/13 12:0 a.m.•4 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Request Forgery Vulnerability (CNVD-2020-17145)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site request forgery vulnerability exists in Chadha Software Technologies PHPKB Standard Multi-Language. The vulnerability...

4.3CVSS6.8AI score0.00485EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•1 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-18659)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site scripting vulnerability exists in the way URIs are handled in the admin/header.php file in Chadha Software Technologies...

4.8CVSS6.4AI score0.00611EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•2 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-18653)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site scripting vulnerability exists in the way URIs are handled in the admin/header.php file in Chadha Software Technologies...

4.8CVSS6.4AI score0.00611EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•2 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Request Forgery Vulnerability (CNVD-2020-17150)

4.3CVSS6.8AI score0.00485EPSS

Exploits1References1

NVD•added 2005/11/27 11:3 a.m.•14 views

CVE-2005-3850

Cross-site scripting XSS vulnerability in search.asp in Online Knowledge Base System OKBSYS Lite Edition 1.0 allows remote attackers to inject arbitrary web script or HTML via hex-encoded values in the q parameter...

4.3CVSS5.7AI score0.01177EPSS

Exploits0References5

securityvulns•added 2005/11/25 12:0 a.m.•34 views

OKBSYS Lite 1.0 "search.asp" XSS vuln.

Online Knowledge Base System: Lite Edition 1.0 XSS vuln. Vuln. dicovered by : r0t Date: 25 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/okbsys-lite-10-searchasp-xss-vuln.html Vendor:www.onlinetechtools.com Product link:http://www.onlinetechtools.com/products/okbsys/ affected...

0.3AI score

Exploits0

Packet Storm•added 2005/06/21 12:0 a.m.•29 views

paFaq10beta4.txt

GulfTech Security Research June 20th, 2005 Vendor : php Arena URL : http://www.phparena.net/pafaq.php Version : paFAQ 1.0 Beta 4 Risk : Multiple Vulnerabilities Description: paFAQ is a FAQ/Knowledge base system that allows webmasters to keep an organized database of Frequently Asked Questions; a...

7.4AI score

Exploits0

Microsoft Security Update•added 1970/01/01 12:0 a.m.•16 views

Update for Windows Server 2008 R2 for Itanium-based Systems (KB4049068)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

2.4AI score

Exploits0

Microsoft Security Update•added 1970/01/01 12:0 a.m.•12 views

Security Update for Windows Server 2008 (KB3080446)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

1.7AI score

Exploits0

Microsoft Security Update•added 1970/01/01 12:0 a.m.•13 views

Security Update for Microsoft .NET Framework 4.6 and 4.6.1 for Windows 8.1 and Server 2012 R2 for x64 (KB3135998)

1.6AI score

Exploits0

Microsoft Security Update•added 1970/01/01 12:0 a.m.•10 views

2019-07 Servicing Stack Update for Windows 10 Version 1709 for x86-based Systems (KB4509093)

4AI score

Exploits0

Microsoft Security Update•added 1970/01/01 12:0 a.m.•16 views

2022-10 Servicing Stack Update for Windows 8.1 for x86-based Systems (KB5018922)