CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2 days ago•7 views

EUVD-2026-35022

4.8CVSS3.6AI score0.00033EPSS

RedhatCVE•added 5 days ago•6 views

CVE-2026-10624

A vulnerability has been found in SourceCodester Human Resource Management 1.0. Affected by this vulnerability is an unknown functionality of the file /detailview.php of the component Employee View Page. Such manipulation of the argument employeeid leads to improper control of resource identifier...

5.3CVSS5AI score0.00038EPSS

EUVD•added 2026/06/02 8:30 p.m.•8 views

EUVD-2026-34024

CVE•added 2026/06/02 8:30 p.m.•13 views

CVE-2026-10624

The vulnerability affects SourceCodester Human Resource Management 1.0, in the Employee View Page’s detailview.php. Manipulating the employeeid parameter leads to improper control of resource identifiers (an IDOR-style issue). Exploitation can be performed remotely, and public disclosure of the e...

Vulnrichment•added 2026/06/02 8:30 p.m.•6 views

CVE-2026-10624 SourceCodester Human Resource Management Employee View detailview.php resource injection

ATTACKERKB•added 2026/06/02 8:30 p.m.•5 views

CVE-2026-10624

Exploits0References6Affected Software1

ATTACKERKB•added 2026/06/02 2:1 p.m.•7 views

CVE-2026-27351

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

5.4CVSS5.8AI score0.0004EPSS

Exploits0References2

Positive Technologies•added 2026/06/02 12:0 a.m.•6 views

PT-2026-45853

Name of the Vulnerable Software and Affected Versions SourceCodester Human Resource Management version 1.0 Description An issue exists in the Employee View Page component within the '/detailview.php' endpoint. Remote manipulation of the employeeid argument leads to improper control of resource...

5.3CVSS5.7AI score0.00038EPSS

Exploits0References10

CNNVD•added 2026/05/29 12:0 a.m.•5 views

Avro 资源管理错误漏洞

Avro is a fast Go Avro decoder developed by hamba. Versions prior to 2.33.0 contained a resource management vulnerability. This vulnerability stemmed from the Avro array and mapping decoders’ tendency to loop through a counter controlled by the attacker without checking the error status of the...

8.7CVSS5.8AI score0.00055EPSS

CNNVD•added 2026/05/29 12:0 a.m.•4 views

brace-expansion 资源管理错误漏洞

Brace-expansion is a JavaScript extension developed by Julian Gruber. Versions of Brace-expansion 5.0.0 to 5.0.6 had a resource management vulnerability. This vulnerability stemmed from the max option being applied too late. When expanding a large range of values, the sequence generation loop...

6.5CVSS5.8AI score0.00041EPSS

CNNVD•added 2026/05/29 12:0 a.m.•6 views

Rizin 资源管理错误漏洞

Rizin is a free, open-source reverse-engineering framework developed by the Rizin organization. It is used for analyzing binary files, disassembling code, debugging programs, as a forensics tool, and as a command-line hexadecimal editor capable of opening disk files. Rizin has a resource manageme...

3.3CVSS5.8AI score0.00017EPSS

Exploits0References2

CNNVD•added 2026/05/29 12:0 a.m.•6 views

FreeRDP 资源管理错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.26.0 contained a resource management vulnerability. This vulnerability stemmed from the RDPEAR NDR parser acceptingNDR pointers with multiple logical pointer fields. It...

8.8CVSS5.8AI score0.0005EPSS

Exploits1References1

RedhatCVE•added 2026/05/28 8:1 p.m.•7 views

CVE-2026-46126

A flaw was found in the Linux kernel's RDMA/mana component. This issue occurs during the error unwind flow in the manaibcreateqprss function, specifically related to the Work Queue WQ table cleanup. Incorrect handling of the cleanup process, including a double decrement and an undone operation,...

5.5CVSS5.8AI score0.00023EPSS

Exploits0References4

ATTACKERKB•added 2026/05/28 9:40 a.m.•5 views

CVE-2026-46228

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.8AI score0.00022EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/05/28 12:0 a.m.•6 views

pypdf 资源管理错误漏洞

pypdf is an open-source, free Python library developed by py-pdf. It allows for splitting, merging, cropping, and converting pages within PDF files. Prior to version 6.12.0, pypdf had a resource management vulnerability caused by the use of large character offsets when extracting text in layout...

5.5CVSS5.8AI score0.00012EPSS

Exploits0References3

OSV•added 2026/05/27 2:17 p.m.•3 views

UBUNTU-CVE-2026-45875

In the Linux kernel, the following vulnerability has been resolved: mfd: arizona: Fix regulator resource leak on wm5102clearwritesequencer failure The wm5102clearwritesequencer helper may return an error and just return, bypassing the cleanup sequence and causing regulators to remain enabled,...

5.7AI score0.00032EPSS

Exploits0References3

Cvelist•added 2026/05/27 12:59 p.m.•35 views

CVE-2026-46103 can: ucan: fix devres lifetime

In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

0.00032EPSS