CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

409 matches found

Vulnrichment•added 2026/05/27 12:0 a.m.•4 views

CVE-2025-69600

Command injection in Raynet rvia RayVentory Scan Engine 12.6 Update 8 and previous versions allows adversaries to execute commands via getconfig, upload, inventory, and oracle options...

5.9AI score0.00074EPSS

Exploits2References3

NVD•added 2026/05/18 8:16 p.m.•7 views

CVE-2026-47092

Claude HUD through 0.0.12, patched in commit 234d9aa, contains a command injection vulnerability that allows local attackers to execute arbitrary commands by manipulating the COMSPEC environment variable. Attackers can set COMSPEC to an arbitrary binary path before claude-hud performs its version...

7.8CVSS0.00097EPSS

Exploits0References4

NVD•added 2026/05/14 3:16 p.m.•6 views

CVE-2026-44482

soundcloud-rpc is a SoundCloud Client with Discord Rich Presence, Dark Mode, Last.fm and AdBlock support. Prior to 0.1.8, a track title containing an HTML payload executed locally in the Electron app. This means attacker-controlled SoundCloud track metadata can lead to local command execution on...

9.6CVSS0.00127EPSS

Exploits0References1

EUVD•added 2026/05/14 2:51 p.m.•5 views

EUVD-2026-30300

9.6CVSS6AI score0.00127EPSS

Exploits0References1

ATTACKERKB•added 2026/05/14 2:51 p.m.•3 views

CVE-2026-44482

9.6CVSS6AI score0.00127EPSS

Exploits0References2Affected Software1

CNNVD•added 2026/05/14 12:0 a.m.•4 views

soundcloud-rpc 输入验证错误漏洞

soundcloud-rpc is a music client developed by Richard Habitzreuter, which supports Discord state synchronization and ad blocking. Versions of soundcloud-rpc prior to 0.1.8 had a vulnerability related to input validation errors. This vulnerability stemmed from the execution of song titles containi...

9.6CVSS6AI score0.00127EPSS

Exploits0References1

NVD•added 2026/05/12 2:17 p.m.•5 views

CVE-2026-35071

Dell PowerScale InsightIQ, versions 6.0.0 through 6.2.0, contains an improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution...

8.2CVSS0.00046EPSS

Exploits0References1

OSV•added 2026/04/27 8:35 p.m.•3 views

JLSEC-2026-281 RClone: Unauthenticated operations/fsinfo allows attacker-controlled backend instantiation and local command execution

Summary The RC endpoint operations/fsinfo is exposed without AuthRequired: true and accepts attacker-controlled fs input. Because rc.GetFs... supports inline backend definitions, an unauthenticated attacker can instantiate an attacker-controlled backend on demand. For the WebDAV backend,...

9.2CVSS6.2AI score0.05146EPSS

Exploits1References5

NVD•added 2026/04/26 1:16 p.m.•2 views

CVE-2026-7039

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed...

8.5CVSS0.00096EPSS

Exploits0References5

Positive Technologies•added 2026/04/26 12:0 a.m.•6 views

PT-2026-35222

8.5CVSS5.1AI score0.00096EPSS

Exploits0References6

CNNVD•added 2026/04/26 12:0 a.m.•2 views

Context Sync 命令注入漏洞

Context Sync is a local-first project memory tool developed by Mamba Personal Developer, based on MCP. Versions of Context Sync 2.0.0 and earlier had a command injection vulnerability, which originated from the os command injection present in the src/git-integration.ts file within the Git...

7.5CVSS7.1AI score0.01715EPSS

Exploits0References1

RedhatCVE•added 2026/04/24 1:22 p.m.•3 views

CVE-2026-6349

The iSherlock developed by HGiga has an OS Command Injection vulnerability, allowing unauthenticated local attackers to inject arbitrary OS commands and execute them on the server...

9.8CVSS5.6AI score0.02957EPSS

Exploits0References1

OSV•added 2026/04/23 12:16 a.m.•3 views

DEBIAN-CVE-2026-41179

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Starting in version 1.48.0 and prior to version 1.73.5, the RC endpoint operations/fsinfo is exposed without AuthRequired: true and accepts attacker-controlled fs input. Because rc.GetFs...

9.8CVSS5.6AI score0.05146EPSS

Exploits1References1

NVD•added 2026/04/23 12:16 a.m.•1 views

CVE-2026-41179

9.8CVSS0.05146EPSS

Exploits1References7

CVE•added 2026/04/23 12:3 a.m.•17 views

CVE-2026-41179

CVE-2026-41179 affects rclone before 1.73.5 where the RC endpoint operations/fsinfo is exposed without AuthRequired and accepts attacker-controlled fs input. This allows an unauthenticated attacker to instantiate an attacker-controlled backend via rc.GetFs(...) and trigger WebDAV bearer_token_com...

9.8CVSS5.9AI score0.05146EPSS

Exploits1References7Affected Software1

Debian CVE•added 2026/04/23 12:3 a.m.•2 views

CVE-2026-41179

9.8CVSS5.6AI score0.05146EPSS

Exploits1

AlpineLinux•added 2026/04/23 12:3 a.m.•4 views

CVE-2026-41179

9.8CVSS5.6AI score0.05146EPSS

Exploits1

Snyk•added 2026/04/23 12:3 a.m.•1 views

Missing Authentication for Critical Function

Overview Affected versions of this package are vulnerable to Missing Authentication for Critical Function in the operations/fsinfo endpoint in the RC server process. An attacker can execute arbitrary local commands by sending crafted requests to an exposed RC server that is running without...

9.8CVSS5.9AI score0.05146EPSS

Exploits1References2