CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

174 matches found

AlmaLinux•added 2026/05/27 12:0 a.m.•12 views

Important: cockpit security update

Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fixes: cockpit: Cockpit: Arbitrary command execution via crafted links in...

8CVSS5.9AI score0.00799EPSS

Exploits0References4

Fedora•added 2026/05/21 11:21 p.m.•11 views

[SECURITY] Fedora 44 Update: cockpit-362-1.fc44

The Cockpit Web Console enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more...

8CVSS7AI score0.00799EPSS

Exploits0

vulnersOsv•added 2026/05/14 4:36 p.m.•4 views

be.vlaanderen.informatievlaanderen.ldes.ldio:ldio-application (=2.12.0), be.vlaanderen.informatievlaanderen.vsds:ldes-server-admin (>=2.10.0 <=3.4.0) +543 more potentially affected by CVE-2026-45292 via io.opentelemetry:opentelemetry-extension-trace-propagators (>=0.7.0 <=1.61.0)

io.opentelemetry:opentelemetry-extension-trace-propagators MAVEN version =0.7.0, =2.10.0, =3.6.0, =1.1.0, =2.10.0, =2.10.0, =2.10.0, =3.0.0, =3.3.0, =3.3.0, =3.3.0, =3.3.0, =3.4.0 - br.com.sawcunhaos:scos-foundation-security =1.1.0 - ch.admin.bit.jeap:jeap-archrepo-dbsc...

5.3CVSS5.4AI score0.00501EPSS

Exploits0

EUVD•added 2026/04/23 3:44 a.m.•5 views

EUVD-2026-25178

Froxlor is open source server administration software. Prior to version 2.3.6, PhpHelper::parseArrayToString writes string values into single-quoted PHP string literals without escaping single quotes. When an admin with changeserversettings permission adds or updates a MySQL server via the API, t...

9.1CVSS5.9AI score0.0048EPSS

Exploits1References3

Positive Technologies•added 2026/04/23 12:0 a.m.•7 views

PT-2026-34633

Froxlor is open source server administration software. Prior to version 2.3.6, PhpHelper::parseArrayToString writes string values into single-quoted PHP string literals without escaping single quotes. When an admin with change serversettings permission adds or updates a MySQL server via the API,...

9.1CVSS5.9AI score0.0048EPSS

Exploits1References4

Fedora•added 2026/04/16 11:42 p.m.•5 views

[SECURITY] Fedora 44 Update: cockpit-360.1-1.fc44

9.8CVSS5.8AI score0.13889EPSS

Exploits3

OSV•added 2026/02/26 2:39 a.m.•4 views

CVE-2026-27975 Ajenti has a potential Remote Code Execution

Ajenti is a Linux and BSD modular server admin panel. Prior to version 2.2.13, an unauthenticated user could gain access to a server to execute arbitrary code on this server. This is fixed in the version 2.2.13...

9.3CVSS6.3AI score0.00533EPSS

Exploits0References4

Fedora•added 2026/02/26 1:11 a.m.•6 views

[SECURITY] Fedora 43 Update: 389-ds-base-3.1.4-7.fc43

389 Directory Server is an LDAPv3 compliant server. The base package includes the LDAP server and command line utilities for server administration...

6CVSS5.9AI score0.0056EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2011-4646

Malware in sbrugna...

5CVSS6.4AI score0.0116EPSS

Exploits0References3