CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

164 matches found

EUVD•added 3 days ago•5 views

EUVD-2026-36746

PublicCMS V5.202506.d has a Cross Site Scripting XSS vulnerability in the site configuration management module...

5.1AI score0.00181EPSS

Exploits0References2

NVD•added 3 days ago•4 views

CVE-2026-36521

PublicCMS V5.202506.d has a Cross Site Scripting XSS vulnerability in the site configuration management module...

6.1CVSS0.00181EPSS

Exploits0References1

Cvelist•added 3 days ago•26 views

CVE-2026-36521

PublicCMS V5.202506.d has a Cross Site Scripting XSS vulnerability in the site configuration management module...

0.00181EPSS

Exploits0References1

CVE•added 3 days ago•6 views

CVE-2026-36521

PublicCMS V5.202506.d has a Cross Site Scripting XSS vulnerability in the site configuration management module...

6.1CVSS5.2AI score0.00181EPSS

Exploits0References1

Positive Technologies•added 3 days ago•6 views

PT-2026-49286

PublicCMS V5.202506.d has a Cross Site Scripting XSS vulnerability in the site configuration management module...

5.2AI score0.00181EPSS

Exploits0References2

Cvelist•added 2026/06/09 11:48 a.m.•22 views

CVE-2016-20063 Single Personal Message 1.0.3 WordPress Plugin SQL Injection

Single Personal Message 1.0.3 contains an SQL injection vulnerability that allows authenticated users to execute arbitrary SQL queries by injecting malicious code through the message parameter. Attackers can access the admin interface and supply crafted SQL statements in the message parameter to...

7.1CVSS0.00221EPSS

Exploits0References5

Vulnrichment•added 2026/06/09 11:48 a.m.•7 views

CVE-2016-20063 Single Personal Message 1.0.3 WordPress Plugin SQL Injection

7.1CVSS6AI score0.00221EPSS

Exploits0References5

RedhatCVE•added 2026/05/27 2:12 a.m.•15 views

CVE-2026-36239

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality...

4.3CVSS5.8AI score0.00307EPSS

Exploits1References1

EUVD•added 2026/05/26 9:32 p.m.•10 views

EUVD-2026-32033

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality...

5.8AI score0.00307EPSS

Exploits1References4

NVD•added 2026/05/26 9:16 p.m.•10 views

CVE-2026-36239

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality...

4.3CVSS0.00307EPSS

Exploits1References3

ATTACKERKB•added 2026/05/26 12:0 a.m.•4 views

CVE-2026-36239

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality...

5.8AI score0.00307EPSS

Exploits1References4

CVE•added 2026/05/26 12:0 a.m.•19 views

CVE-2026-36239

CVE-2026-36239 involves PbootCMS where a code injection flaw exists in the site configuration handling. The connected exploit report specifically describes an authenticated RCE in PbootCMS v3.2.12 backend via the sitecopyright footer field, caused by insecure deserialization and output handling i...

4.3CVSS5.8AI score0.00307EPSS

Exploits1References3

Positive Technologies•added 2026/05/26 12:0 a.m.•8 views

PT-2026-43395

Name of the Vulnerable Software and Affected Versions PbootCMS version 3.2.11 Description Code injection is possible within the site configuration functionality. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

4.3CVSS5.7AI score0.00307EPSS

Exploits1References5

Vulnrichment•added 2026/05/26 12:0 a.m.•7 views

CVE-2026-36239

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality...

5.8AI score0.00307EPSS

Exploits1References3

CNNVD•added 2026/05/26 12:0 a.m.•7 views

PbootCMS 安全漏洞

PbootCMS is an open-source enterprise website content management system developed using the PHP language. Version PbootCMS 3.2.11 contains a security vulnerability, which stems from code injection in the site configuration function...

4.3CVSS5.8AI score0.00307EPSS

Exploits1References4

Cvelist•added 2026/05/26 12:0 a.m.•32 views

CVE-2026-36239

PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality...

0.00307EPSS

Exploits1References3

OSV•added 2026/05/25 2:46 p.m.•7 views

BIT-DISCOURSE-2026-33514 Discourse: Information Disclosure in Form Template API Due to Missing Authorization

Discourse is an open-source discussion platform. In versions prior to 2026.1.4, 2026.3.1, 2026.4.1 and 2026.5.0, an authenticated user on a Discourse instance with the form templates feature enabled can read the name and structured content of form templates that are intended exclusively for...

6CVSS5.7AI score0.0025EPSS

Exploits0References3

Vulnrichment•added 2026/05/19 12:59 a.m.•6 views

CVE-2026-33514 Discourse: Information Disclosure in Form Template API Due to Missing Authorization

Discourse is an open-source discussion platform. In versions prior to 2026.1.4, 2026.3.1, 2026.4.1 and 2026.5.0-latest.1, an authenticated user on a Discourse instance with the form templates feature enabled can read the name and structured content of form templates that are intended exclusively...

6CVSS5.7AI score0.0025EPSS

Exploits0References2

ATTACKERKB•added 2026/05/19 12:59 a.m.•5 views

CVE-2026-33514

6CVSS5.7AI score0.0025EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/05/18 6:58 a.m.•8 views

CVE-2026-3495 Unescaped variables during error page composition

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13 fail to escape some variables that could contain malicious content during error page composition which allows an attacker with access to edit some site configuration to execute some malicious code via injecting some JS as part of those...

3.8CVSS5.9AI score0.00142EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by