CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2 days ago•3 views

CVE-2026-44729

Twenty is an open source CRM. In 1.18.0 and earlier, the file serving endpoints in Twenty CRM at /files/ and /file/:fileFolder/:id serve uploaded files using fileStream.piperes without setting any Content-Type, Content-Disposition, or X-Content-Type-Options response headers. This allows an...

8.7CVSS5.4AI score0.00036EPSS

Exploits1References1

Friends Of PHP•added 3 days ago•3 views

Stored Cross-Site Scripting (XSS) via uploaded files served inline in FileField and ImageField

More info at https://github.com/EasyCorp/EasyAdminBundle/security/advisories/GHSA-8559-gwj3-q37r...

5.8AI score

Exploits0Affected Software1

Github Security Blog•added 6 days ago•12 views

When Vitest UI server is listening, arbitrary file can be read and executed

Summary Arbitrary file can be read on Windows when Vitest UI server is listening, especially when exposed to the network. Impact Only users that match either of the following conditions are affected: - explicitly exposes the Vitest UI server to the network using --api.host or api.host config opti...

6.4AI score

Exploits0References8Affected Software1

Positive Technologies•added 6 days ago•9 views

PT-2026-45492

Name of the Vulnerable Software and Affected Versions Vitest versions prior to 4.1.0 Description A flaw in the UI/API server on Windows allows remote attackers to bypass file access restrictions and read arbitrary files when the server is exposed to the network. The issue occurs because the API...

9.8CVSS6.5AI score

Exploits0References12

ATTACKERKB•added 2026/05/26 4:56 p.m.•6 views

CVE-2026-44729

8.7CVSS5.8AI score0.00036EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2026/05/26 4:56 p.m.•7 views

CVE-2026-44729 Twenty: Stored Cross-Site Scripting via Unsanitized File Serving (Missing Content-Type/Content-Disposition Headers)

8.7CVSS5.8AI score0.00036EPSS

Exploits1References1

CVE•added 2026/05/26 4:56 p.m.•11 views

CVE-2026-44729

Twenty CRM versions 1.18.0 and earlier expose file serving endpoints at /files/* and /file/:fileFolder/:id that serve uploaded files via fileStream.pipe(res) without Content-Type, Content-Disposition, or X-Content-Type-Options headers. An authenticated attacker can upload an HTML file containing ...

8.7CVSS5.8AI score0.00036EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/05/26 4:56 p.m.•27 views

CVE-2026-44729 Twenty: Stored Cross-Site Scripting via Unsanitized File Serving (Missing Content-Type/Content-Disposition Headers)

8.7CVSS0.00036EPSS

Exploits1References1

Snyk•added 2026/05/26 2:43 p.m.•7 views

Improper Resource Shutdown or Release

Overview vllm is an A high-throughput and memory-efficient inference and serving engine for LLMs Affected versions of this package are vulnerable to Improper Resource Shutdown or Release via the OpenAI-compatible Serving Path component. An attacker can cause the service to become unavailable by...

6.9CVSS6.1AI score0.00075EPSS

Exploits0References2

NVD•added 2026/05/26 2:16 p.m.•11 views

CVE-2026-9540

6.9CVSS0.00075EPSS

CVE•added 2026/05/26 10:30 a.m.•9 views

CVE-2026-9540

CVE-2026-9540 affects vllm-project vllm 0.19.0, specifically an issue in the OpenAI-compatible Serving Path that allows remote manipulation leading to a denial of service. The vulnerability’s exploitation is described as publicly available, with a pull request to fix it awaiting acceptance. CVSS ...

Cvelist•added 2026/05/26 10:30 a.m.•33 views

CVE-2026-9540 vllm-project vllm OpenAI-compatible Serving Path denial of service

6.9CVSS0.00075EPSS

EUVD•added 2026/05/26 10:30 a.m.•7 views

EUVD-2026-31810

Vulnrichment•added 2026/05/26 10:30 a.m.•5 views

CVE-2026-9540 vllm-project vllm OpenAI-compatible Serving Path denial of service

Positive Technologies•added 2026/05/26 12:0 a.m.•5 views

PT-2026-43245

CNNVD•added 2026/05/26 12:0 a.m.•6 views

Exploits0References8

vLLM 安全漏洞

vLLM is an open-source solution designed for LLM-based models, featuring high throughput and efficient memory usage for reasoning and services. Version vLLM 0.19.0 contains a security vulnerability. This vulnerability stems from unknown handling operations in the OpenAI-compatible Serving Path...

6.9CVSS6AI score0.00075EPSS

RedhatCVE•added 2026/05/20 7:57 p.m.•5 views

CVE-2026-33741

EspoCRM is an open source customer relationship management application. Versions 9.3.3 and below allow authenticated users to upload SVG attachments through normal attachment-capable fields and later serve those SVG files as top-level inline documents through both the attachment and image entry...

6.8CVSS5.8AI score0.00041EPSS

RedhatCVE•added 2026/05/15 1:57 a.m.•4 views

CVE-2026-31238

The Ludwig framework thru 0.10.4 is vulnerable to insecure deserialization CWE-502 in its model serving component. When starting a model server with the ludwig serve command, the framework loads model weight files using torch.load without enabling the security-restrictive weightsonly=True...

9.8CVSS6.3AI score0.00088EPSS

Cvelist•added 2026/05/12 9:8 p.m.•29 views

CVE-2026-44259 efw4.X: Stored XSS via previewServlet

efw4.X is an Enterprise Framework for Web. Prior to 4.08.010, the previewServlet serves files with their detected MIME type based on file extension, without any content sanitization or security headers. Files with .html, .htm, or .svg extensions are served as text/html or image/svg+xml...

4.6CVSS0.00029EPSS