CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: Apache Server versions prior to the fixed version Description: An improper neutralization of inputs used in expression language allows remote code execution with the highest privileges on the server. This issue affects the Apache Server,...

10CVSS7.6AI score0.02211EPSS

Exploits0References7

RedhatCVE•added 2025/05/23 9:27 a.m.•4 views

CVE-2024-12908

Delinea addressed a reported case on Secret Server v11.7.31 protocol handler version 6.0.3.26 where, within the protocol handler function, URI's were compared before normalization and canonicalization, potentially leading to over matching against the approved list. If this attack were successfull...

6.9CVSS7.8AI score0.0033EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:29 p.m.•3 views

CVE-2021-29461

Discord Recon Server is a bot that allows one to do one's reconnaissance process from one's Discord. A vulnerability in Discord Recon Server prior to 0.0.3 could be exploited to read internal files from the system and write files into the system resulting in remote code execution. This issue has...

9CVSS7.6AI score0.01351EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:6 a.m.•6 views

CVE-2019-0952

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'...

8.8CVSS8.1AI score0.36107EPSS

Exploits0References1

Cvelist•added 2025/02/10 7:8 p.m.•16 views

CVE-2025-24016 Remote code execution in Wazuh server

Wazuh is a free and open source platform used for threat prevention, detection, and response. Starting in version 4.4.0 and prior to version 4.9.1, an unsafe deserialization vulnerability allows for remote code execution on Wazuh servers. DistributedAPI parameters are a serialized as JSON and...

9.9CVSS0.93874EPSS

Exploits10References1

NVD•added 2024/07/09 5:15 p.m.•24 views

CVE-2024-38044

DHCP Server Service Remote Code Execution Vulnerability...

7.2CVSS0.04757EPSS

Exploits0References1

NVD•added 2024/05/03 3:15 a.m.•9 views

CVE-2023-42033

Visualware MyConnection Server doPostUploadfiles Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Visualware MyConnection Server. Although authentication is required to exploit this...

7.2CVSS7.5AI score0.01606EPSS

Exploits0References2

Vulnrichment•added 2023/10/10 5:8 p.m.•6 views

CVE-2023-36778 Microsoft Exchange Server Remote Code Execution Vulnerability

...

8CVSS7.8AI score0.01171EPSS

Exploits0References1

Vulnrichment•added 2023/01/03 3:11 a.m.•4 views

CVE-2022-43931

Out-of-bounds write vulnerability in Remote Desktop Functionality in Synology VPN Plus Server before 1.4.3-0534 and 1.4.4-0635 allows remote attackers to execute arbitrary commands via unspecified vectors...

10CVSS8AI score0.03924EPSS

Exploits0References1

NVD•added 2012/05/25 7:55 p.m.•12 views

CVE-2012-2429

The server in xArrow before 3.4.1 performs an invalid read operation, which allows remote attackers to execute arbitrary code via unspecified vectors...

10CVSS7.6AI score0.04442EPSS

Exploits0References1

Cvelist•added 2006/05/01 7:0 p.m.•13 views

CVE-2006-2115

Format string vulnerability in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via unspecified vectors that are not properly handled in a syslog function call...

7.7AI score0.03344EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by