CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

USN-8372-1 age vulnerability

It was discovered that age did not properly validate plugin names. An attacker could possibly use this issue to cause execution of an arbitrary program by supplying a crafted recipient or identity string...

9.8CVSS5.9AI score0.00565EPSS

Exploits0References2

Cvelist•added 2026/05/21 9:25 a.m.•32 views

CVE-2026-42000 Insufficient Validation of Names During AXFR

Insufficient Validation of Names During AXFR...

6.8CVSS0.00016EPSS

Exploits0References1

Positive Technologies•added 2026/05/21 12:0 a.m.•3 views

PT-2026-42446

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Insufficient validation of names occurs during AXFR Asynchronous Full Transfer, a mechanism used by DNS servers to replicate zone data from a primary server to a...

8.6CVSS5.8AI score0.00016EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2014-3566

Malware in sbrugna...

6.1CVSS6.3AI score0.00286EPSS

Exploits1References3

CNNVD•added 2025/06/12 12:0 a.m.•1 views

GitLab Community Edition和GitLab Enterprise Edition 安全漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A security vulnerability exists in GitLab CE/EE versions prior to 17.10.7, 17.11.3, an...

7.5CVSS6.2AI score0.00486EPSS

Exploits0References3

Redos•added 2025/05/13 12:0 a.m.•30 views

ROS-2-668

2.668 Denial of service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS8AI score0.05481EPSS

Exploits2

OSV•added 2022/09/23 1:15 a.m.•1 views

UBUNTU-CVE-2021-41803

HashiCorp Consul 1.8.1 up to 1.11.8, 1.12.4, and 1.13.1 do not properly validate the node or segment names prior to interpolation and usage in JWT claim assertions with the auto config RPC. Fixed in 1.11.9, 1.12.5, and 1.13.2."...

7.1CVSS7AI score0.00309EPSS

Exploits0References4

Debian CVE•added 2022/09/23 12:0 a.m.•38 views

CVE-2021-41803

7.1CVSS6.8AI score0.00309EPSS

Exploits0

CNVD•added 2022/06/09 12:0 a.m.•22 views

Online Car Wash Booking System Arbitrary File Deletion Vulnerability

Online Car Wash Booking System is an online car wash booking system by Carlo Montero. v1.0 of Online Car Wash Booking System is vulnerable to an arbitrary file deletion vulnerability in /ocwbs/classes/Master.php? f=deleteimg page lacks validation for file names, which can be exploited to cause...

6.5CVSS2.4AI score0.00329EPSS

Exploits1References1

Redos•added 2021/09/08 12:0 a.m.•30 views

ROS-2-549

2.549 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS7AI score0.05481EPSS

Exploits3

Redos•added 2021/09/08 12:0 a.m.•6 views

ROS-2-1846

2.1846 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS7.4AI score0.07483EPSS

Exploits2

Redos•added 2021/09/08 12:0 a.m.•13 views

ROS-2-849

2.849 Denial of Service in libX11CVE-2021-31535 1. Vulnerability Description: The vulnerability allows a local user to execute a denial of service DoS attack. The vulnerability exists due to insufficient validation of color names in the XLookupColor function. A local user can launch a specially...

9.8CVSS9.3AI score0.05481EPSS

Exploits2

NVD•added 2019/11/13 4:15 p.m.•10 views

CVE-2014-3592

OpenShift Origin: Improperly validated team names could allow stored XSS attacks...

6.1CVSS6AI score0.00286EPSS

Exploits1References2

Tenable Nessus•added 2019/11/06 12:0 a.m.•57 views

RHEL 8 : openssh (RHSA-2019:3702)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3702 advisory. OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files...

6.8CVSS7.2AI score0.54213EPSS

Exploits9References20

OSV•added 2018/06/07 2:29 a.m.•12 views

CVE-2018-3726

crud-file-server node module before 0.8.0 suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names...

6.1CVSS6.2AI score

Exploits0References2

Prion•added 2018/06/07 2:29 a.m.•15 views

Cross site scripting

crud-file-server node module before 0.8.0 suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names...

4.3CVSS5.9AI score0.00293EPSS

Exploits1References2Affected Software1

OpenVAS•added 2009/01/07 12:0 a.m.•48 views

Ubuntu USN-702-1 (samba)

The remote host is missing an update to samba announced via advisory USN-702-1. OpenVAS Vulnerability Test $Id: ubuntu7021.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7021.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-702-1 samba Authors: Thomas Reinke...

9.3CVSS0.2AI score0.21405EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by