CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Snyk•added 2026/05/08 8:44 p.m.•5 views

Allocation of Resources Without Limits or Throttling

7.4CVSS5.8AI score0.00173EPSS

RedhatCVE•added 2026/05/08 8:21 p.m.•5 views

CVE-2026-41906

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.214, the Change Customer modal correctly hides out-of-scope customers through the mailbox-filtered search endpoint, but the backend conversationchangecustomer action accepts any supplied...

7.1CVSS5.7AI score0.00168EPSS

Exploits0References1

RedhatCVE•added 2026/05/08 8:21 p.m.•7 views

CVE-2026-41924

WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains an OS command injection vulnerability in the makeRequest.cgi binary that allows unauthenticated remote attackers to execute arbitrary shell commands by injecting malicious input into the settime or StartSniffer functions. Attackers can...

9.3CVSS6.1AI score0.02707EPSS

Exploits0References1

OSV•added 2026/05/08 7:47 p.m.•5 views

CLSA-2026-1778269628 libssh: Fix of CVE-2026-0964

CVE-2026-0964: SCP path traversal via crafted filenames in sshscppullrequest allowing files to be written outside the intended directory...

6.3CVSS5.8AI score0.00408EPSS

Exploits0References1

Vulnrichment•added 2026/05/08 7:23 p.m.•8 views

CVE-2026-42185 People: Privilege Escalation via Missing Role Ceiling in Mail Domain Invitation

People is an application to handle users and teams, and distribute permissions across La Suite. Prior to version 1.25.0, a user holding the Administrator role on a mail domain could send a crafted invitation request to promote any existing user including users with no current domain access to the...

ATTACKERKB•added 2026/05/08 7:23 p.m.•4 views

CVE-2026-42185

Exploits0References4Affected Software1

CVE•added 2026/05/08 7:23 p.m.•14 views

CVE-2026-42185

CVE-2026-42185 - People (La Suite): Prior to version 1.25.0, an authenticated user with Administrator on a mail domain could send a crafted invitation to elevate any user to Owner, yielding full domain ownership without the target’s acceptance. This is a privilege-escalation in the invitation flo...

EUVD•added 2026/05/08 7:23 p.m.•6 views

EUVD-2026-28821

CVE•added 2026/05/08 7:12 p.m.•19 views

CVE-2026-44694

CVE-2026-44694 affects n8n-MCP before 2.50.2. An authenticated SSRF vulnerability exists in the webhook trigger tools, the n8n API client (N8N_API_URL), and per-request URLs via the x-n8n-url header in multi-tenant HTTP mode. Exploitation allows a valid MCP session to cause the host to send HTTP ...

9.1CVSS5.8AI score0.00235EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/05/08 7:12 p.m.•35 views

CVE-2026-44694 n8n-MCP: Authenticated SSRF in n8n-mcp webhook and API client paths

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. From version 2.18.7 to before version 2.50.2, there is an authenticated server-side request forgery vulnerability affecting the webhook trigger tools, the n8n API client N8NAPIURL, a...

7.2CVSS0.00235EPSS

Snyk•added 2026/05/08 7:9 p.m.•8 views

Server-side Request Forgery (SSRF)

Overview bugsink is a Self-hosted Error Tracking Affected versions of this package are vulnerable to Server-side Request Forgery SSRF in the validatewebhookurl process. An attacker can cause the application to send outbound HTTP POST requests to unintended hosts, including internal or...

5.3CVSS5.8AI score0.00286EPSS

Cvelist•added 2026/05/08 6:58 p.m.•30 views

CVE-2026-41495 n8n-MCP Logs Sensitive Request Data on Unauthorized /mcp Requests

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to version 2.47.11, when n8n-mcp runs in HTTP transport mode, incoming requests to the POST /mcp endpoint had their request metadata written to server logs regardless of the...

5.3CVSS0.00255EPSS

OSV•added 2026/05/08 6:31 p.m.•1 views

GHSA-3RF6-X59V-5JFV dash-uploader has a directory traversal vulnerability

Impact An unauthenticated path traversal vulnerability exists in dash-uploader versions 0.1.0 through 0.7.0a2. The library's HTTP request handler at dashuploader/httprequesthandler.py reads three form parameters uploadid, resumableFilename, resumableIdentifier from request.form.get and passes the...

9.8CVSS6AI score0.05982EPSS

Exploits4References8

GithubExploit•added 2026/05/08 5:22 p.m.•97 views

Exploit for Server-Side Request Forgery in Espocrm

CVE-2026-33534 - EspoCRM 9.3.3 Authenticated SSRF Authenticat...

4.3CVSS5.8AI score0.01978EPSS

Exploits5

OSV•added 2026/05/08 5:20 p.m.•5 views

GHSA-R48C-V28R-PF6V MCP Registry has an unauthenticated SSRF: HTTP namespace verification dials 6to4 / NAT64 / site-local IPv6 addresses, bypassing private-address allowlist

Summary The Registry's HTTP-based namespace verification POST /v0/auth/http, POST /v0.1/auth/http uses safeDialContext internal/api/handlers/v0/auth/http.go:67-110 to refuse dialling private/internal addresses when fetching the well-known public-key file from a publisher-supplied domain. The...

6.3CVSS5.9AI score0.00285EPSS

Exploits1References6

Snyk•added 2026/05/08 5:6 p.m.•5 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF due to the improper validation of the audience parameter in the OIDC authentication process. An attacker can gain unauthorized publish permissions by replaying a valid GitHub OIDC token obtained from one...

4.7CVSS5.5AI score0.00219EPSS