CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE•added 2026/05/11 3:3 p.m.•7 views

CVE-2026-42609

Grav CVE-2026-42609 describes a business-logic flaw in the Grav Admin Panel where a low-privileged user with admin user-creation permissions can overwrite a higher-privilege account by creating a new user with an existing username. The system incorrectly updates the existing account’s metadata an...

8.1CVSS5.8AI score0.00041EPSS

Exploits1References4Affected Software1

CNNVD•added 2026/04/03 12:0 a.m.•4 views

Sudo 安全漏洞

Sudo is a program developed by the Sudo Project, open source, designed for use in Unix-like systems. It allows users to execute commands with special permissions in a secure manner. Versions of Sudo 1.9.17p2 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the...

7.4CVSS5.9AI score0.00006EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2010-3472

Malware in sbrugna...

5CVSS6.3AI score0.00544EPSS

Exploits0References10

RedhatCVE•added 2025/05/22 3:24 a.m.•6 views

CVE-2018-9471

In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to type confusion. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS7.8AI score0.00139EPSS

Exploits0References1

CNNVD•added 2024/10/21 12:0 a.m.•4 views

Nginx UI 路径遍历漏洞

Nginx UI is a WebUI for Nginx by Jacky Personal Developer. A path traversal vulnerability exists in Nginx UI 2.0.0-beta.35 and earlier versions, which originates from obtaining a value from a json field without authentication, writing an arbitrary file to the server, and leading to loss of...

8.7CVSS6.9AI score0.00522EPSS

Exploits1References3

CNNVD•added 2021/08/30 12:0 a.m.•1 views

Atlassian Jira 代码问题漏洞

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A security vulnerability exists in Atlassian Jira Server and Data Center versions prior to 8.13.9, 8.14.0 to 8.18.0, which can b...

7.5CVSS7.3AI score0.00314EPSS

Exploits0References1

Cvelist•added 2010/09/20 9:0 p.m.•20 views

CVE-2010-3474

IBM DB2 9.7 before FP3 does not perform the expected drops or invalidations of dependent functions upon a loss of privileges by the functions' owners, which allows remote authenticated users to bypass intended access restrictions via calls to these functions, a different vulnerability than...

5.8AI score0.00544EPSS

Exploits0References9

Cvelist•added 2010/08/31 9:0 p.m.•20 views

CVE-2010-3196

IBM DB2 9.7 before FP2, when AUTOREVAL is IMMEDIATE, allows remote authenticated users to cause a denial of service loss of privileges to a view owner by defining a dependent view...

6AI score0.0038EPSS

Exploits0References3

Prion•added 2009/09/29 9:30 p.m.•19 views

Design/Logic Flaw

IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP2 does not perform the expected drops of certain table functions upon a loss of privileges by the functions' definers, which has unspecified impact and remote attack vectors...

7.5CVSS6.7AI score0.00847EPSS

Exploits0References12Affected Software1

Cvelist•added 2009/09/29 9:0 p.m.•22 views

CVE-2009-3471

6.2AI score0.00847EPSS

Exploits0References12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by