CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

34 matches found

RedhatCVE•added 2026/01/07 9:39 a.m.•6 views

CVE-1999-0886

The security descriptor for RASMAN allows users to point to an alternate location via the Windows NT Service Control Manager...

9CVSS7AI score0.34254EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2005-4605

Malware in sbrugna...

7.5CVSS6.4AI score0.02468EPSS

Exploits0References6

RedhatCVE•added 2025/05/22 9:26 p.m.•6 views

CVE-2021-38393

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerAlarmGroup.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter agid before using it as part of an SQL query....

10CVSS8.5AI score0.01647EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 9:25 p.m.•4 views

CVE-2021-38390

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter egyid before using it as part of an SQL query...

10CVSS8.5AI score0.01647EPSS

Exploits0References1

ATTACKERKB•added 2024/05/31 12:0 a.m.•24 views

CVE-2024-29824

An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code. Recent assessments: cdelafuente-r7 at July 23, 2024 8:10am UTC reported: Ivanti Endpoint Manager EPM versions 2022 SU5 a...

9.6CVSS9.1AI score0.93975EPSS

In wildExploits5References3

NVD•added 2021/08/30 6:15 p.m.•13 views

CVE-2021-38390

10CVSS0.01647EPSS

Exploits0References1

NVD•added 2021/08/30 6:15 p.m.•12 views

CVE-2021-38391

A Blind SQL injection vulnerability exists in the /DataHandler/AM/AMHandler.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter type before using it as part of an SQL query. A...

10CVSS0.01066EPSS

Exploits0References1

Prion•added 2021/08/30 6:15 p.m.•12 views

Sql injection

10CVSS9.8AI score0.01647EPSS

Exploits0References1Affected Software1

Prion•added 2021/08/30 6:15 p.m.•19 views

Sql injection

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerCFG.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter keyword before using it as part of an SQL query. A...

10CVSS9.8AI score0.02323EPSS

Exploits0References1Affected Software1

Prion•added 2021/08/30 6:15 p.m.•20 views

Sql injection

10CVSS9.8AI score0.01066EPSS

Exploits0References1Affected Software1

Prion•added 2021/08/30 6:15 p.m.•12 views

Sql injection

10CVSS9.8AI score0.01647EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/08/30 5:33 p.m.•12 views

CVE-2021-38390

9.9AI score0.01647EPSS

Exploits0References1

Cvelist•added 2021/08/30 5:33 p.m.•11 views

CVE-2021-32983

9.9AI score0.02323EPSS

Exploits0References1

Cvelist•added 2021/08/30 5:31 p.m.•15 views

CVE-2021-38393

9.9AI score0.01647EPSS

Exploits0References1

Cvelist•added 2021/08/30 5:30 p.m.•11 views

CVE-2021-38391

10AI score0.01066EPSS

Exploits0References1

Zero Day Initiative•added 2020/02/11 12:0 a.m.•30 views

Symantec Endpoint Protection Manager secars Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Symantec Endpoint Protection Manager. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...

3.3CVSS3.4AI score0.00067EPSS

Exploits0References1

Zero Day Initiative•added 2019/11/14 12:0 a.m.•27 views

Symantec Endpoint Protection Manager OpenSSL Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Symantec Endpoint Protection Manager. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

5.3CVSS3AI score0.00055EPSS

Exploits0References1

seebug.org•added 2014/07/01 12:0 a.m.•16 views

BindView HackerShield 1.0/1.1 HackerShield AgentAdmin Password Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/628/info The BindView HackerShield product originally Netect's HackerShield creates an NT service account called NetectAgentAdmin$. This account is a member of the local administrators group on an NT host. The service...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•10 views

IBM Remote Control Software 1.0 Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/284/info The IBM Remote Control Software package requires a client module to be loaded on NT hosts to be remotey controlled. This client module is loaded as an NT service and must run under either the local system account...

7.1AI score

Exploits0

myhack58•added 2011/03/31 12:0 a.m.•15 views

Joe guest(joekoe) CMS 4.0 upload and SQL injection vulnerabilities-vulnerability warning-the black bar safety net

Joekoe CMS 4.0 brings you a perfect design, in the member interaction and Security aspects of a unique innovative system for the Windows NT Service environment of a Web site or a business platform of the best solutions. Its well-designed architecture with functional mechanisms, from the individua...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by