CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2026/01/22 12:0 a.m.•3 views

EUVD-2026-3876

PHPgurukul Online Course Registration v3.1 lacks Cross-Site Request Forgery CSRF protection on all administrative forms. An attacker can perform unauthorized actions on behalf of authenticated administrators by tricking them into visiting a malicious webpage...

6.5CVSS5.5AI score0.00035EPSS

Exploits1References4

EUVD•added 2026/01/14 3:6 p.m.•1 views

EUVD-2026-2494

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: svcauthgss: avoid NULL deref on zero length gsstoken in gssreadproxyverf A zero length gsstoken results in pages == 0 and intoken-pages0 is NULL. The code unconditionally evaluates pageaddressintoken-pages0 for the initia...

6.2AI score0.00033EPSS

Exploits0References6

EUVD•added 2026/01/02 6:30 p.m.•3 views

EUVD-2026-0459

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score

Exploits0References1

EUVD•added 2025/12/18 9:31 p.m.•2 views

EUVD-2025-204329

A reflected cross-site scripting vulnerability in Kentico Xperience allows authenticated users to inject malicious scripts in the administration interface. Attackers can exploit this vulnerability to execute arbitrary scripts within the administrative context...

5.1CVSS6AI score0.00027EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-32034

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00056EPSS

Exploits0References3