CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 6 hours ago•6 views

EUVD-2026-38734

5.8AI score

CVE•added 10 hours ago•7 views

CVE-2026-10531

The CVE describes Stored XSS in the WordPress plugin “AI Share & Summarize” prior to version 2.0.4. The root cause is insufficient sanitisation/escaping of shortcode attributes (notably title_style) before output, enabling users with the Contributor role or higher to inject scripts on pages. Affe...

5.4CVSS5.8AI score

Nuclei•added 12 hours ago•24 views

Alfresco Share - Open Redirect

Alfresco Share before 5.2.6, 6.0.N and 6.1.N contains an open redirect vulnerability via a crafted POST request. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2019-14223 info: name:...

6.1CVSS6.4AI score0.04511EPSS

Exploits1References5

Nuclei•added 12 hours ago•16 views

Sassy Social Share <= 3.3.3 - Cross-Site Scripting

The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'urls' parameter called via the 'heateorssssharingcount' AJAX action in versions up to, and including, 3.3.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS6AI score0.1544EPSS

Exploits1References3

NVD•added yesterday•3 views

CVE-2026-47279

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the public shared-view relation endpoints accepted a caller-supplied column ID without verifying that the column was visible in the shared view, so anyone holding a share UUID could read links from any LTAR column on t...

6.9CVSS0.00051EPSS

CVE•added last week•57 views

CVE-2026-48818

CVE-2026-48818 concerns Starlette’s StaticFiles on Windows. In versions up to 1.0.1, when handling UNC paths (for example, \attacker.com\share), os.path.realpath can initiate an outbound SMB connection before the path is rejected, triggering SSRF and exposing the service account’s NTLMv2 credenti...

7.5CVSS5.3AI score0.00277EPSS

NVD•added 2026/06/16 8:16 p.m.•5 views

CVE-2026-48777

FileBrowser Quantum is a free, self-hosted, web-based file manager. Versions prior to 1.3.2-stable, 1.4.0-beta and 1.4.1-beta are vulnerable to Path Traversal through the publicPatchHandler in backend/http/public.go which joins user-controlled fromPath and toPath body fields with the trusted...

9.3CVSS0.00446EPSS

Cvelist•added 2026/06/16 6:40 p.m.•26 views

CVE-2026-48777 FileBrowser Quantum: Path Traversal in public share PATCH allows file ops outside shared directory

9.3CVSS0.00446EPSS

CVE•added 2026/06/16 6:40 p.m.•16 views

CVE-2026-48777

CVE-2026-48777 — FileBrowser Quantum has a path-traversal in the public share PATCH endpoint. Versions prior to 1.3.2-stable, 1.4.0-beta, and 1.4.1-beta allow an attacker with a public share link that has AllowModify=true to move, copy, or rename files outside the share root by abusing publicPatc...

9.3CVSS5.4AI score0.00446EPSS

EUVD•added 2026/06/15 9:30 p.m.•7 views

EUVD-2026-36783

Incorrect access control in the share-based read endpoints of Sismics Docs Teedy v1.11 allow unauthorized attackers to access sensitive endpoints via a crafted request...

5.2AI score0.00287EPSS

Exploits0References2

NVD•added 2026/06/15 8:16 p.m.•7 views

CVE-2026-50885

Incorrect access control in the share-based read endpoints of Sismics Docs Teedy v1.11 allow unauthorized attackers to access sensitive endpoints via a crafted request...

7.5CVSS0.00287EPSS

Positive Technologies•added 2026/06/15 12:0 a.m.•8 views

PT-2026-49326

Name of the Vulnerable Software and Affected Versions Sismics Docs Teedy version 1.11 Description Incorrect access control in the share-based read endpoints allows unauthorized attackers to access sensitive endpoints by sending a crafted request. Recommendations At the moment, there is no...

7.5CVSS5.9AI score0.00287EPSS

Cvelist•added 2026/06/15 12:0 a.m.•28 views

CVE-2026-50885

Incorrect access control in the share-based read endpoints of Sismics Docs Teedy v1.11 allow unauthorized attackers to access sensitive endpoints via a crafted request...

0.00287EPSS

CVE•added 2026/06/15 12:0 a.m.•10 views

CVE-2026-50885

CVE-2026-50885 concerns Sismics Docs (Teedy) with version v1.11, where an incorrect access control flaw in the share-based read endpoints enables unauthorized attackers to access sensitive endpoints via a crafted request. The related advisories consistently describe limited information about root...

7.5CVSS5.3AI score0.00287EPSS

GithubExploit•added 2026/06/13 7:11 a.m.•99 views

Exploit for Cross-Site Request Forgery (CSRF) in Jupyter Jupyterhub

CVE-2026-40864 — JupyterHub XSRF bypass via cross-origin form...

5.4CVSS5.5AI score0.00159EPSS

Exploits1

OSV•added 2026/06/12 9:53 p.m.•7 views

GHSA-J9JX-HP4C-GHHH File Browser has incorrect access control for public directory shares via rule path rebasing

Summary File Browser's public share handlers rebase the share owner's filesystem root to the shared directory and then evaluate descendant paths against the owner's global and per-user rules using the rebased relative path instead of the original path relative to the owner's scope. As a result, a...

7.5CVSS5.6AI score0.00031EPSS

Github Security Blog•added 2026/06/12 9:53 p.m.•10 views

File Browser has incorrect access control for public directory shares via rule path rebasing

5.5AI score0.00031EPSS

Exploits0References4Affected Software2

OSV•added 2026/06/12 9:7 p.m.•5 views

GHSA-3Q2P-72CJ-682C File Browser: Improper Access Control Occurs via Pre-Created Public Share for a Non-existent Path

Summary This is similar vulnrability of CVE-2026-0035, which was fixed in Android MediaProvider with high severity. In the original Java issue, MediaStore.createWriteRequest accepted attacker-controlled URIs and created a future grant even when the referenced media item did not exist yet. The...

7.1CVSS5.6AI score0.00029EPSS