CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

RedhatCVE•added 2026/03/09 7:53 p.m.•2 views

CVE-2026-3762

A vulnerability has been found in SourceCodester Client Database Management System 1.0/3.1. Impacted is an unknown function of the file /superadmindeletemanager.php of the component Endpoint. The manipulation of the argument managerid leads to improper authorization. It is possible to initiate th...

9.8CVSS5.5AI score0.00021EPSS

Exploits1References1

EUVD•added 2026/03/08 9:30 p.m.•1 views

EUVD-2026-10265

7.5CVSS5.5AI score0.00021EPSS

Exploits1References6

NVD•added 2026/03/08 7:16 p.m.•3 views

CVE-2026-3762

9.8CVSS0.00021EPSS

Exploits1References5

OSV•added 2026/03/08 7:16 p.m.•0 views

CVE-2026-3762

9.8CVSS5.4AI score0.00021EPSS

Exploits1References5

CVE•added 2026/03/08 6:32 p.m.•4 views

CVE-2026-3762

SourceCodester Client Database Management System versions 1.0–3.1 are affected in the Endpoint component, specifically the /superadmin_delete_manager.php function. The vulnerability stems from improper authorization caused by manipulating the manager_id argument, enabling remote exploitation. Sev...

9.8CVSS5.5AI score0.00021EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2026/03/08 6:32 p.m.•1 views

CVE-2026-3762

7.5CVSS5.5AI score0.00021EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/03/08 6:32 p.m.•2 views

CVE-2026-3762 SourceCodester Client Database Management System Endpoint superadmin_delete_manager.php improper authorization

7.5CVSS5.5AI score0.00021EPSS

Exploits1References5

EUVD•added 2026/03/08 3:30 p.m.•2 views

EUVD-2026-10237

A flaw has been found in SourceCodester Client Database Management System 1.0. Affected is an unknown function of the file /fetchmanagerdetails.php of the component Endpoint. This manipulation of the argument managerid causes improper authorization. The attack can be initiated remotely. The explo...

7.5CVSS6.8AI score0.00065EPSS

Exploits1References6

NVD•added 2026/03/08 1:16 p.m.•2 views

CVE-2026-3734

7.5CVSS0.00065EPSS

Exploits1References5

CNNVD•added 2026/03/08 12:0 a.m.•3 views

SourceCodester Client Database Management System 授权问题漏洞

SourceCodester Client Database Management System is an open-source client database management system developed by SourceCodester. There were vulnerabilities related to authorization in the 1.0 and 3.1 versions of the SourceCodester Client Database Management System. These vulnerabilities stemmed...

9.8CVSS7.1AI score0.00021EPSS

Exploits1References6

RedhatCVE•added 2026/01/15 4:26 a.m.•2 views

CVE-2025-71084

In the Linux kernel, the following vulnerability has been resolved: RDMA/cm: Fix leaking the multicast GID table reference If the CM ID is destroyed while the CM event for multicast creating is still queued the cancelworksync will prevent the work from running which also prevents destroying the...

5.8AI score0.00033EPSS

Exploits0References4

SUSE CVE•added 2026/01/14 12:25 a.m.•1 views

SUSE CVE-2025-71084

2.5CVSS6.4AI score0.00033EPSS

Exploits0References20

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-1397

Malware in sbrugna...

9.3CVSS6.1AI score0.03015EPSS

Exploits1References12

RedHat Linux•added 2025/09/02 2:56 a.m.•4 views

kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...

7.8CVSS6.7AI score0.00063EPSS

Exploits0References5

OSV•added 2024/05/21 3:15 p.m.•1 views

DEBIAN-CVE-2021-47378

In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: destroy cm id before destroy qp to avoid use after free We should always destroy cmid before destroy qp to avoid to get cma event after qp was destroyed, which may lead to use after free. In RDMA connection establishme...

9.8CVSS5.6AI score0.00087EPSS

Exploits0References1

OSV•added 2024/05/21 3:15 p.m.•4 views

UBUNTU-CVE-2021-47378

9.8CVSS6.2AI score0.00087EPSS

Exploits0References6

OSV•added 2023/11/09 6:15 a.m.•0 views

CVE-2023-47488

Cross Site Scripting vulnerability in Combodo iTop v.3.1.0-2-11973 allows a local attacker to obtain sensitive information via a crafted script to the attribmanagerid parameter in the General Information page and the id parameter in the contact page...

6.1CVSS5.8AI score0.04632EPSS

Exploits0References3

CNNVD•added 2023/11/09 12:0 a.m.•1 views

Combodo iTop Cross-Site Scripting Vulnerability

Combodo iTop is a French company Combodo ITIL-based development and for the daily operation of the IT environment of open source Web applications. The program provides incident management, configuration management and problem management and other functions. A cross-site scripting vulnerability...

6.1CVSS5.7AI score0.04632EPSS

Exploits0References3

RedHat Linux•added 2022/11/15 11:55 a.m.•1 views

kernel: nvme-rdma: destroy cm id before destroy qp to avoid use after free

A vulnerability was found in the Linux kernel's nvme-rdma driver where the driver failed to destroy a component cmid before another component qp was destroyed. This issue occurs when the kernel incorrectly manages memory during RDMA, leading to a potential use-after-free...

9.8CVSS7.2AI score0.00087EPSS

Exploits0References5

UbuntuCve•added 2008/03/24 5:44 p.m.•18 views

CVE-2008-1390

The AsteriskGUI HTTP server in Asterisk Open Source 1.4.x before 1.4.19-rc3 and 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6, AsteriskNOW before 1.0.2, Appliance Developer Kit before revision 104704, and s800i 1.0.x before 1.1.0.2 generates insufficiently random manager ID values...

9.3CVSS5.9AI score0.03015EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by