CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

215 matches found

Exploit DB•added 2026/05/15 12:0 a.m.•38 views

Windows Snipping Tool - NTLMv2 Hash Hijack

Exploit Title: Windows Snipping Tool - NTLMv2 Hash Hijack Date: 2026-04-22 Exploit Author: nu11secur1ty Video Demo: https://www.patreon.com/posts/cve-2026-33829-156243398 Vendor Homepage: https://www.microsoft.com Software Link: Built-in Windows Snipping Tool Version: Windows 10, Windows 11,...

4.3CVSS5.8AI score0.0026EPSS

Exploits1

GithubExploit•added 2026/05/01 5:46 a.m.•46 views

Exploit for External Control of File Name or Path in Microsoft

CVE-2025-24054 PoC A simple Proof of Concept for CVE-2025-2...

6.5CVSS7.6AI score0.08036EPSS

Exploits18

ATTACKERKB•added 2026/04/15 5:26 p.m.•0 views

CVE-2026-32631

Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 do not have protections that prevent attackers from obtaining a user's NTLM hash. The NTLM hash can be obtained by tricking users into cloning a malicious repository, or checking out a malicious branch, that accesses a...

7.4CVSS5.8AI score0.00086EPSS

Exploits0References6Affected Software1

Vulnrichment•added 2026/04/14 9:21 p.m.•1 views

CVE-2026-39906 Unisys WebPerfect Image Suite 3.0 NTLMv2 Hash Leakage via .NET Remoting

Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose a deprecated .NET Remoting TCP channel that allows remote unauthenticated attackers to leak NTLMv2 machine-account hashes by supplying a Windows UNC path as a target file argument through object-unmarshalling...

7CVSS5.8AI score0.00094EPSS

Exploits1References3

OSV•added 2026/03/10 8:34 p.m.•1 views

CVE-2025-66413 Git for Windows leaks NTLM hash when cloning from an attacker-controlled server

Git for Windows is the Windows port of Git. Prior to 2.53.02, it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server. Since NTLM hashing is weak, it is possible for the attacker to brute-force the user's account name and password. This vulnerability is...

7.4CVSS5.8AI score0.00058EPSS

Exploits1References4

Cvelist•added 2026/03/10 8:34 p.m.•24 views

CVE-2025-66413 Git for Windows leaks NTLM hash when cloning from an attacker-controlled server

7.4CVSS0.00058EPSS

Exploits1References2

Cvelist•added 2025/12/15 11:11 a.m.•19 views

CVE-2025-11670 NTLM Hash Exposure Vulnerability

Zohocorp ManageEngine ADManager Plus versions before 8025 are vulnerable to NTLM Hash Exposure. This vulnerability is exploitable only by technicians who have the “Impersonate as Admin” option enabled...

6.4CVSS0.00042EPSS

Exploits0References1

CNVD•added 2025/12/10 12:0 a.m.•65 views

Apache HTTP Server Cross-Site Request Forgery Vulnerability

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. A cross-site request forgery vulnerability exists in Apache HTTP Server, which can be exploited by an attacker to cause NTLM hash...

7.5CVSS6.8AI score0.00064EPSS

Exploits0References1

Positive Technologies•added 2025/12/09 12:0 a.m.•1 views

PT-2025-50229

Name of the Vulnerable Software and Affected Versions Umbraco versions 10.0.0 through 13.12.0 Description Umbraco, an ASP.NET CMS, experiences an issue related to the unsafe handling and deletion of temporary files during the dictionary upload process. An attacker with backoffice access can...

4.9CVSS6.8AI score0.00041EPSS

Exploits0References6

CNVD•added 2025/11/14 12:0 a.m.•0 views

Rockwell Automation Studio 5000 Simulation Interface Server-Side Request Forgery Vulnerability

Rockwell Automation Studio 5000 Simulation Interface is a simulation modeling tool from Rockwell Automation. The Rockwell Automation Studio 5000 Simulation Interface suffers from a server-side request forgery vulnerability that stems from the server not implementing sufficient authentication...

8.9CVSS5.9AI score0.00032EPSS

Exploits0References1

Cvelist•added 2025/10/14 5:0 p.m.•4 views

CVE-2025-59185 NTLM Hash Disclosure Spoofing Vulnerability

...

6.5CVSS0.00088EPSS

Exploits0References1

RedhatCVE•added 2025/10/10 8:22 p.m.•1 views

CVE-2025-35057

Newforma Info Exchange NIX '/RemoteWeb/IntegrationServices.ashx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the NIX service account...

6CVSS6.9AI score0.00046EPSS

Exploits0References1

EUVD•added 2025/10/09 9:31 p.m.•1 views

EUVD-2025-33569

Newforma Info Exchange NIX '/UserWeb/Common/MarkupServices.ashx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the customer-configured NIX service account...

8.2CVSS6.4AI score0.00051EPSS

Exploits0References3

NVD•added 2025/10/09 9:15 p.m.•2 views

CVE-2025-35061

Newforma Info Exchange NIX '/NPCSRemoteWeb/LegacyIntegrationServices.asmx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the user-configured NIX service account...

8.2CVSS0.00051EPSS

Exploits0References2

CVE•added 2025/10/09 8:21 p.m.•7 views

CVE-2025-35058

Newforma Info Exchange (NIX) contains a vulnerable endpoint /UserWeb/Common/MarkupServices.ashx that can be triggered by a remote, unauthenticated attacker to force NIX to establish an SMB connection to an attacker‑controlled system, enabling the attacker to capture the NTLMv2 hash of the configu...

8.2CVSS6.6AI score0.00051EPSS

Exploits0References2Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-2252

Malware in sbrugna...

6.5CVSS6.6AI score0.00178EPSS

Exploits2References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-5057

Malware in sbrugna...

8.8CVSS8.6AI score0.00842EPSS

Exploits1References2