CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

114 matches found

ATTACKERKB•added 2026/03/07 4:32 p.m.•3 views

CVE-2026-30856

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.3.0, a vulnerability involving tool name collision and indirect prompt injection allows a malicious remote MCP server to hijack tool execution. By exploiting an ambiguous naming...

5.9CVSS5.9AI score0.00255EPSS

Exploits1References2Affected Software1

RedhatCVE•added 2026/02/03 2:7 p.m.•5 views

CVE-2025-6593

A flaw was found in MediaWiki. A remote attacker, by enticing a user to interact with malicious content, could potentially exploit a vulnerability in the includes/user/User.Php file. This could lead to the disclosure of limited sensitive information. Mitigation Mitigation for this issue is either...

2.1CVSS5.1AI score0.00396EPSS

Exploits0References2

Tenable Nessus•added 2026/01/07 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000213)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000213 advisory. The Linux kernel 4.x starting from 4.1 and 5.x before 5.0.8 allows Information Exposure partial kernel address disclosure, leading to a KASLR bypass. Specifically, i...

7.5CVSS6.9AI score0.03252EPSS

Exploits0References4

CNVD•added 2025/12/24 12:0 a.m.•4 views

Advantech WebAccess/SCADA Code Issue Vulnerability

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. A code issue vulnerability exists in Advantech...

9.8CVSS6.2AI score0.00531EPSS

Exploits0References1