CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2026/05/27 4:28 a.m.•8 views

EUVD-2025-209950

The Yoast SEO plugin for WordPress is vulnerable to Insecure Direct Object References in all versions up to, and including, 26.5. This is due to insufficient authorization checks in the Meta Search REST API endpoint that fail to verify post ownership. This makes it possible for authenticated...

4.3CVSS5.7AI score0.00211EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2021-9658

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00986EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 8:14 a.m.•3 views

CVE-2024-29192

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to Cross-Site Request Forgery. The /api/config endpoint allows one to modify the existing configuration with user-supplied values. While the API is only allowing localhost to interact without authentication, an...

8.8CVSS8.9AI score0.00471EPSS

Exploits1References1

Fedora•added 2025/01/15 1:40 a.m.•19 views

[SECURITY] Fedora 40 Update: perl-Net-OAuth-0.30-1.fc40

Perl implementation of OAuth, an open protocol to allow secure API authentication in a simple and standard method from desktop and web applications. In practical terms, a mechanism for a Consumer to request protected resources from a Service Provider on behalf of a user...

5.3CVSS9.4AI score0.00585EPSS

Exploits0

OSV•added 2024/08/05 9:29 p.m.•13 views

GHSA-QGJ8-G9Q4-7F2P gotortc vulnerable to Cross-Site Request Forgery

8.8CVSS9AI score0.00471EPSS

Exploits1References4

GitLab Advisory Database•added 2024/08/05 12:0 a.m.•15 views

gotortc vulnerable to Cross-Site Request Forgery

8.8CVSS7.4AI score0.00471EPSS

Exploits1References5Affected Software1

NVD•added 2024/04/04 6:15 p.m.•21 views

CVE-2024-29192

8.8CVSS9AI score0.00471EPSS

Exploits1References2

Cvelist•added 2024/04/04 6:8 p.m.•27 views

CVE-2024-29192 GHSL-2023-206 gotortc Cross-Site Request Forgery vulnerability

8.8CVSS9.2AI score0.00471EPSS

Exploits1References2

CVE•added 2024/04/04 6:8 p.m.•80 views

CVE-2024-29192

CVE-2024-29192 affects gotortc (camera streaming app). The vulnerability arises from CSRF in the /api/config endpoint, which can modify existing configuration with user-supplied values and, via the exec handler, enable arbitrary command execution. The issue exists even though the API may be restr...

8.8CVSS9AI score0.00471EPSS

Exploits1References2Affected Software1

OSV•added 2024/04/04 6:8 p.m.•29 views

CVE-2024-29192 GHSL-2023-206 gotortc Cross-Site Request Forgery vulnerability

8.8CVSS8.6AI score0.00471EPSS

Exploits1References4

Positive Technologies•added 2022/08/18 12:0 a.m.•4 views

PT-2022-17800 · Intel · Intel Seapi

Name of the Vulnerable Software and Affected Versions: IntelR SEAPI all versions Description: The issue is related to incorrect default permissions in the installation binaries, which may allow an authenticated user to potentially enable escalation of privilege via local access. Recommendations: ...

7.8CVSS7.1AI score0.0018EPSS

Exploits0References4

CNVD•added 2021/06/07 12:0 a.m.•7 views

Micro Focus Secure API Manager Information Disclosure Vulnerability

Secure API Manager is a complete solution from Micro Focus USA for creating, managing, maintaining, and monitoring the APIs you use in your IT environment.It provides a repository where you can store and manage all the APIs you use. An information disclosure vulnerability exists in Micro Focus...

7.5CVSS6.3AI score0.00986EPSS

Exploits0References1

OSV•added 2021/06/04 1:15 p.m.•1 views

CVE-2021-22516

Insertion of Sensitive Information into Log File vulnerability in Micro Focus Secure API Manager SAPIM product, affecting version 2.0.0. The vulnerability could lead to sensitive information being in a log file...

7.5CVSS5.8AI score0.00986EPSS

Exploits0References1

NVD•added 2021/06/04 1:15 p.m.•10 views

CVE-2021-22516

7.5CVSS0.00986EPSS

Exploits0References1