CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/06/12 9:27 a.m.•30 views

CVE-2026-11845 IEI Integration Corp｜iVEC-IEI Virtualization Edge Computer - OS Command Injection

The iVEC-IEI Virtualization Edge Computer developed by IEI Integration Corp has a OS Command Injection vulnerability, allowing privileged remote attackers to inject arbitrary OS commands and execute them on the device...

8.6CVSS0.00951EPSS

Cvelist•added 2026/06/12 9:12 a.m.•32 views

CVE-2026-11844 IEI Integration Corp｜iVEC-IEI Virtualization Edge Computer - Arbitrary File Read

6.9CVSS0.00407EPSS

EUVD•added 2026/06/12 9:12 a.m.•7 views

EUVD-2026-36404

6.9CVSS5.4AI score0.00407EPSS

Positive Technologies•added 2026/06/12 12:0 a.m.•13 views

PT-2026-48840

8.6CVSS5.8AI score0.00951EPSS

Positive Technologies•added 2026/06/12 12:0 a.m.•10 views

PT-2026-48839

6.9CVSS5.3AI score0.00407EPSS

RedhatCVE•added 2026/06/05 7:34 p.m.•7 views

CVE-2026-10057

ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...

4.8CVSS5.5AI score0.00176EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:34 p.m.•7 views

CVE-2026-10058

4.8CVSS5.5AI score0.00176EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:13 p.m.•7 views

CVE-2026-40838

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getDeviceScalings function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

7.1CVSS5.8AI score0.00262EPSS

Exploits0References1

NVD•added 2026/05/29 9:16 a.m.•12 views

CVE-2026-10057

4.8CVSS0.00176EPSS

NVD•added 2026/05/29 9:16 a.m.•13 views

CVE-2026-10058

4.8CVSS0.00176EPSS

EUVD•added 2026/05/29 8:34 a.m.•15 views

EUVD-2026-33267

Vulnrichment•added 2026/05/29 8:34 a.m.•10 views

CVE-2026-10057 ITP Technology｜ITS Intelligent SCADA System - Stored Cross-Site Scripting

Cvelist•added 2026/05/29 8:34 a.m.•32 views

CVE-2026-10057 ITP Technology｜ITS Intelligent SCADA System - Stored Cross-Site Scripting

4.8CVSS0.00176EPSS

CVE•added 2026/05/29 8:34 a.m.•17 views

CVE-2026-10057

CVE-2026-10057 affects the ITS Intelligent SCADA System from ITP Technology. The vulnerability is a Stored Cross-Site Scripting (XSS) issue that lets privileged remote attackers inject persistent JavaScript that runs in users’ browsers when a page loads. The available documents confirm the affect...

Positive Technologies•added 2026/05/29 12:0 a.m.•10 views

PT-2026-44763

Positive Technologies•added 2026/05/29 12:0 a.m.•12 views

PT-2026-44764

Positive Technologies•added 2026/05/27 12:0 a.m.•11 views

PT-2026-43562

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL UPDATE command allowing for reading the whole database and changing values in a non critical table. This can resu...

7CVSS6AI score0.00239EPSS

GithubExploit•added 2026/05/22 8:44 p.m.•74 views

Exploit for OS Command Injection in Beyondtrust Privileged_Remote_Access

CVE-2026-1731 — BeyondTrust Remote Support & PRA Pre-auth RCE...

9.9CVSS7.5AI score0.86091EPSS

Exploits11

ATTACKERKB•added 2026/05/02 9:6 a.m.•2 views

CVE-2026-7490

CTMS and CPAS developed by Sunnet has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS6.4AI score0.00465EPSS