CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

206 matches found

RedhatCVE•added 2026/04/07 5:6 p.m.•3 views

CVE-2026-5650

A vulnerability was found in code-projects Online Application System for Admission 1.0. Impacted is an unknown function of the file /enrollment/database/oas.sql. Performing a manipulation results in insecure storage of sensitive information. The attack is possible to be carried out remotely. The...

6.9CVSS5.6AI score0.00044EPSS

Exploits0References1

Vulnrichment•added 2026/04/06 11:30 a.m.•1 views

CVE-2026-5650 code-projects Online Application System for Admission oas.sql sensitive information

6.9CVSS5.7AI score0.00044EPSS

Exploits0References5

CVE•added 2026/04/06 11:30 a.m.•1 views

CVE-2026-5650

The CVE-2026-5650 entry concerns code-projects Online Application System for Admission 1.0. A vulnerability affects an unknown function within the file /enrollment/database/oas.sql, enabling manipulation that leads to insecure storage of sensitive information. The attack is described as remotely ...

6.9CVSS5.7AI score0.00044EPSS

Exploits0References5

vulnersOsv•added 2026/03/19 5:43 p.m.•4 views

org.webjars.npm:file-entry-cache (>=5.0.1 <=6.0.1), org.webjars.npm:flat-cache (>=2.0.1 <=3.0.4) +6 more potentially affected by CVE-2026-33228 via org.webjars.npm:flatted (>=2.0.1 <=3.3.4)

org.webjars.npm:flatted MAVEN version =2.0.1, =5.0.1, =2.0.1, =3.3.1, =0.3.16, =0.2.107, =1.1.13, =0.1.30, =1.7.6, =2.0.2 Source cves: CVE-2026-33228 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-15700434...

9.8CVSS6AI score0.0007EPSS

Exploits1

vulnersOsv•added 2026/03/12 8:41 p.m.•4 views

org.webjars.npm:file-entry-cache (>=5.0.1 <=6.0.1), org.webjars.npm:flat-cache (>=2.0.1 <=3.0.4) +6 more potentially affected by CVE-2026-32141 via org.webjars.npm:flatted (>=2.0.1 <=3.3.4)

org.webjars.npm:flatted MAVEN version =2.0.1, =5.0.1, =2.0.1, =3.3.1, =0.3.16, =0.2.107, =1.1.13, =0.1.30, =1.7.6, =2.0.2 Source cves: CVE-2026-32141 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-15518042...

7.5CVSS7.1AI score0.00022EPSS

Exploits1

RedhatCVE•added 2026/01/09 8:58 a.m.•6 views

CVE-2023-31242

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A specially-crafted series of network requests can lead to arbitrary authentication. An attacker can send a sequence of requests to trigger this vulnerability...

9.8CVSS7.1AI score0.00021EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 8:40 a.m.•7 views

CVE-2022-26026

A denial of service vulnerability exists in the OAS Engine SecureConfigValues functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted network request can lead to loss of communications. An attacker can send a network request to trigger this vulnerability...

7.5CVSS6.6AI score0.00398EPSS

Exploits1References1

Snyk•added 2025/11/27 3:49 p.m.•1 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. The package was flagged as malicious during the Sha1-hulud supply chain attack. Although the Sha1-hulud IoCs are not present within the package, the contents of the affected version were removed from the officia...

9.8CVSS6.8AI score

Exploits0References3

OSV•added 2025/11/24 11:53 p.m.•1 views

MAL-2025-191458 Malicious code in @medusajs/medusa-oas-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48124e119c7f2c21e744172a5901266335824c5ceac7a1c631805772baa3798a The package @medusajs/medusa-oas-cli was found to contain malicious code. Source: ghsa-malware...

6.8AI score

Exploits0References1

vulnersOsv•added 2025/11/24 11:52 p.m.•4 views

@medusajs/inventory (>=1.1.0-20230320210331 <=1.1.0-snapshot-20230320172940), @medusajs/medusa-oas-cli (>=0.2.0-20230320210331 <=2.11.4-preview-20251124000311) +2 more potentially affected by unknown CVE via @medusajs/medusa (>=2.0.0-next-20230310121604 <=2.11.4-preview-20251124000311)

@medusajs/medusa NPM version =2.0.0-next-20230310121604, =1.1.0-20230320210331, =0.2.0-20230320210331, =0.0.6, =0.0.2, =0.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191457...

5.8AI score

Exploits0

vulnersOsv•added 2025/11/24 11:51 p.m.•4 views

@medusajs/medusa (>=2.10.0 <=2.11.4-preview-20251124032825), @medusajs/medusa-oas-cli (>=2.10.0 <=2.11.4-preview-20251124000311) potentially affected by unknown CVE via @medusajs/analytics-posthog (>=2.10.0-preview-20250818120145 <=2.11.4-preview-20251124032825)

@medusajs/analytics-posthog NPM version =2.10.0-preview-20250818120145, =2.10.0, =2.10.0, =2.11.4-preview-20251124000311 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191456...

5.8AI score

Exploits0