CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2026/01/18 3:2 p.m.•2 views

EUVD-2026-3177

A vulnerability was identified in Yonyou KSOA 9.0. Affected is an unknown function of the file /worksheet/workmod.jsp of the component HTTP GET Parameter Handler. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit is publicly available an...

7.5CVSS6.4AI score0.00015EPSS

Exploits0References5

EUVD•added 2026/01/14 3:5 p.m.•1 views

EUVD-2026-2513

In the Linux kernel, the following vulnerability has been resolved: scs: fix a wrong parameter in scsmagic scsmagic needs a 'void ' variable, but a 'struct taskstruct ' is given. 'taskscstsk' is the starting address of the task's shadow call stack, and 'scsmagictaskscstsk' is the end address of t...

5.9AI score0.00033EPSS

Exploits0References6

EUVD•added 2026/01/13 3:5 p.m.•2 views

EUVD-2026-2347

A vulnerability has been identified in the installation/uninstallation of the Nessus Agent Tray App on Windows Hosts which could lead to escalation of privileges...

8.8CVSS6.5AI score0.00015EPSS

Exploits0References2

EUVD•added 2025/12/24 9:30 p.m.•1 views

EUVD-2025-205316

FaceSentry Access Control System 6.4.8 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to change administrator passwords, add new admin users, or open access control doors by...

5.1CVSS6.2AI score0.00029EPSS

Exploits2References4

EUVD•added 2025/11/05 9:7 a.m.•3 views

EUVD-2025-37780

The Control-M/Agent is vulnerable to unauthenticated remote code execution, arbitrary file read and write and similar unauthorized actions when mutual SSL/TLS authentication is not enabled i.e. in the default configuration. NOTE: The vendor believes that this vulnerability only occurs when...

10CVSS7.5AI score0.00438EPSS

Exploits0References4