CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/05/17 12:0 a.m.•6 views

PublicCMS 授权问题漏洞

PublicCMS is an open-source content management system CMS developed in Java by PublicCMS Company in China. Version 5.202506.d of PublicCMS has a vulnerability related to authorization. This vulnerability stems from the execute function in the Trade Address Query Handler component, specifically in...

6.9CVSS6AI score0.00403EPSS

CNNVD•added 2026/05/17 12:0 a.m.•6 views

Investintech SlimPDF Reader 缓冲区错误漏洞

Investintech SlimPDF Reader is a free PDF reader and viewer provided by the Canadian company Investintech. Versions of Investintech SlimPDF Reader 2.0.13 and earlier contain a buffer error vulnerability. This vulnerability stems from a stack buffer overflow in the sub3B4610 function within the...

7.5CVSS6.9AI score0.00261EPSS

CNNVD•added 2026/05/17 12:0 a.m.•6 views

oinone-pamirs 输入验证错误漏洞

Oinone-Pamirs is an AI-driven low-code development framework developed by Oinone. Versions of Oinone-Pamirs 7.2.0 and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from a deserialization issue in the JsonUtils.parseMap function within the...

6.5CVSS6.7AI score0.00242EPSS

CNNVD•added 2026/05/12 12:0 a.m.•7 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a security vulnerability. This vulnerability stemmed from insufficient policy execution in the IFrame Sandbox component, which could allow remote attackers to bypass navigation...

4.3CVSS6AI score0.00182EPSS

Exploits0References3

CNNVD•added 2026/05/11 12:0 a.m.•5 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a null pointer dereferencing in the smfnsmfhandlecreatedatainhsm...

6.5CVSS5.8AI score0.00378EPSS

Exploits1References1

4.8CVSS5.6AI score0.00202EPSS

Devs Palace ERP Online 跨站脚本漏洞

Devs Palace ERP Online is a cloud-based enterprise resource planning and business management system developed by Devs Palace. Versions of Devs Palace ERP Online 4.0.0 and earlier contained a cross-site scripting vulnerability. This vulnerability stemmed from an unknown function in the...

4.8CVSS5.6AI score0.00202EPSS

Devs Palace ERP Online 跨站脚本漏洞

CNNVD•added 2026/05/10 12:0 a.m.•5 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a function in the delete Endpoint component called...

7.5CVSS6.1AI score0.00487EPSS

Exploits1References2

CNNVD•added 2026/05/10 12:0 a.m.•7 views

CodeAstro Online Catering Ordering System 注入漏洞

The CodeAstro Online Catering Ordering System is an online catering ordering system developed by CodeAstro Corporation. Version 1.0 of the CodeAstro Online Catering Ordering System has a SQL injection vulnerability. This vulnerability stems from the handling of parameter IDs in the...

6.5CVSS6.7AI score0.00196EPSS

9CVSS7.6AI score0.00481EPSS

EFM ipTIME A8004T 缓冲区错误漏洞

The EFM ipTIME A8004T is a wireless router produced by the South Korean company EFM. The version 14.18.2 of the EFM ipTIME A8004T contains a buffer error vulnerability. This vulnerability stems from an stack buffer overflow issue in the formWifiBasicSet function within the file/goform/WifiBasicSe...

6.9CVSS6.1AI score0.00292EPSS

Canias ERP 安全漏洞

Canias ERP is a comprehensive management system developed by the Swiss company Canias, covering enterprise resource planning and business process management. Version 8.03 of Canias ERP contains a security vulnerability. This vulnerability stems from an improper authorization in the function...

CNNVD•added 2026/05/10 12:0 a.m.•5 views

Canias ERP 安全漏洞

6.3CVSS5.8AI score0.00289EPSS

CNNVD•added 2026/05/10 12:0 a.m.•5 views

Canias ERP 授权问题漏洞

Canias ERP is a comprehensive management system developed by the Swiss company Canias, covering enterprise resource planning and business process management. Version 8.03 of Canias ERP contains an authorization vulnerability. This vulnerability stems from the parameter clientVersion in the Login...

6.9CVSS6.1AI score0.00403EPSS

6.5CVSS5.8AI score0.00372EPSS

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a function in the SMF component file/src/smf/n4-build.c called...

Exploits1References1

CNNVD•added 2026/05/08 12:0 a.m.•7 views

SourceCodester Pizzafy Ecommerce System 跨站脚本漏洞

SourceCodester Pizzafy Ecommerce System is an open-source e-commerce system developed by SourceCodester. Version 1.0 of the SourceCodester Pizzafy Ecommerce System contains a cross-site scripting vulnerability. This vulnerability arises from the parameter 'page' in the file 'admin/index.php', whi...

5.3CVSS5.7AI score0.00269EPSS

CNNVD•added 2026/05/08 12:0 a.m.•7 views

SourceCodester Comment System 注入漏洞

The SourceCodester Comment System is an open-source comment system developed by SourceCodester. Version 1.0 of the SourceCodester Comment System has a vulnerability caused by SQL injection due to the parameter manipulation in the file postcomment.php. This vulnerability could be exploited through...

7.5CVSS7.1AI score0.00254EPSS

CNNVD•added 2026/05/08 12:0 a.m.•6 views

xiaozhi-mcphub 路径遍历漏洞

xiaozhi-mcphub is an MCP tool bridge and multi-endpoint management tool adapted to Xiaozhi AI platform by Junsen Huang's personal developer. A path traversal vulnerability exists in xiaozhi-mcphub 1.0.3 and earlier versions, which originates from the operation of the parameter manifest.name in th...

6.5CVSS6.6AI score0.00283EPSS