CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Linux Distros Unpatched Vulnerability : CVE-2026-47192

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - kas - None Ubuntu Linux - Unknown description CVE-2026-47192 Note that Nessus relies on the presence of the package as reported by the vendor...

5.8AI score

Exploits0References3

Tenable Nessus•added 2026/05/05 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-42997

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in idrac in OpenStack Ironic before 35.0.1. During import, a user invoking molds can request authorization to be sent to a remote...

7.7CVSS5.8AI score0.00012EPSS

Exploits0References3

Tenable Nessus•added 2025/08/11 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-6592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/auth/AuthManager.Php. This issue affects...

2.1CVSS5.8AI score0.00017EPSS

Exploits0References2

Vulnrichment•added 2024/10/26 8:26 p.m.•10 views

CVE-2020-26310 GHSL-2020-305: Regular Expression Denial of Service (ReDoS) in Pure JavaScript HTML5 Parser

Validate.js provides a declarative way of validating javascript objects. All versions as of 30 November 2020 contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...

8.7CVSS6.9AI score0.00193EPSS

Exploits0References2

Positive Technologies•added 2024/10/05 12:0 a.m.•1 views

PT-2024-30879 · Innate Images Llc · Vr Calendar

Name of the Vulnerable Software and Affected Versions: VR Calendar versions n/a through 2.4.0 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability, which allows PHP Local File Inclusion in VR Calendar b...

7.5CVSS6.7AI score0.01077EPSS

Exploits0References9

Positive Technologies•added 2024/08/02 12:0 a.m.•2 views

PT-2024-22384 · Bm Soft · Bmplanning

Name of the Vulnerable Software and Affected Versions: BM SOFT BMPlanning version 1.0.0.1 Description: The issue allows authenticated users to execute arbitrary SQL commands via parameters such as SEC IDF, LIE IDF, PLANF IDF, CLI IDF, DOS IDF, and possibly others to the "/BMServerR.dll/BMRest" AP...

8.8CVSS7.9AI score0.00073EPSS

Exploits1References6

Positive Technologies•added 2024/04/27 12:0 a.m.•1 views

PT-2024-30001 · Tenda · Tenda I22

Name of the Vulnerable Software and Affected Versions: Tenda i22 version 1.0.0.34687 Description: A critical issue has been found in the function formSetUrlFilterRule, where the manipulation of the argument groupIndex leads to a stack-based buffer overflow. This can be initiated remotely. The...

9CVSS7.3AI score0.00206EPSS

Exploits0References6

Positive Technologies•added 2024/03/08 12:0 a.m.•1 views

PT-2024-14058 · Trendnet · Trendnet Ac1200 Tew-821Dap

Name of the Vulnerable Software and Affected Versions: TRENDnet Trendnet AC1200 TEW-821DAP version 3.00b06 Description: The issue allows an attacker to execute arbitrary code via the adm mod pwd action, which is a buffer overflow vulnerability. This vulnerability can be exploited to gain...

8CVSS8.6AI score0.00111EPSS

Exploits1References6

Positive Technologies•added 2024/02/09 12:0 a.m.•2 views

PT-2024-18015 · Linksys · Linksys Wrt54G

Name of the Vulnerable Software and Affected Versions: Linksys WRT54GL version 4.30.18 Description: A vulnerability was found in the Web Management Interface of the Linksys WRT54GL, affecting an unknown part of the file /wlaninfo.htm. This issue leads to information disclosure. The exploit has be...

4.3CVSS6.7AI score0.00044EPSS

Exploits0References7

Positive Technologies•added 2023/09/08 12:0 a.m.•2 views

PT-2023-27983 · Jeecg · Jeecg

Name of the Vulnerable Software and Affected Versions: Jeecg versions up to 3.5.3 Description: The issue is an arbitrary file read vulnerability. It can be exploited via the interface "/testConnection". Recommendations: For versions up to 3.5.3, as a temporary workaround, consider restricting...

7.5CVSS6.9AI score0.01938EPSS

Exploits1References9

Positive Technologies•added 2023/06/29 12:0 a.m.•2 views

PT-2023-24974 · Xiamen Si Xin Communication Technology · Video Management System

Name of the Vulnerable Software and Affected Versions: Xiamen Si Xin Communication Technology Video management system versions 3.1 through 4.1 Description: An issue was discovered with the JSESSION IDs in the system, allowing attackers to gain escalated privileges. Recommendations: For versions 3...

8.8CVSS7.1AI score0.00112EPSS

Exploits1References3

Positive Technologies•added 2023/02/02 12:0 a.m.•1 views

PT-2023-13602 · Ibm · Ibm Tivoli Workload Scheduler

Name of the Vulnerable Software and Affected Versions: IBM Tivoli Workload Scheduler versions 9.4 through 10.1 Description: The issue is related to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to expose sensitive information or consume...

9.1CVSS9AI score0.00477EPSS

Exploits0References4

Positive Technologies•added 2020/01/23 12:0 a.m.•2 views

PT-2020-9881 · Fasttrack · Fasttrack Admin By Request

Name of the Vulnerable Software and Affected Versions: FastTrack Admin By Request version 6.1.0.0 Description: The issue concerns the elevation of privileges to Administrator level. Normally, group policies restrict this ability to a select range of users. However, when a user without direct acce...

8.2CVSS7.9AI score0.00116EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by