CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

ATTACKERKB•added 2026/04/20 11:8 p.m.•2 views

CVE-2026-41299

OpenClaw before 2026.3.28 contains an authorization bypass vulnerability in the chat.send gateway method where ACP-only provenance fields are gated by self-declared client metadata from WebSocket handshake rather than verified authorization state. Authenticated operator clients can spoof ACP...

7.1CVSS5.8AI score0.00203EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2006-2531

Malware in sbrugna...

7.5CVSS6.4AI score0.0736EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-17798

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00374EPSS

Exploits0References2

CVE•added 2025/06/10 4:36 p.m.•84 views

CVE-2024-50568

CVE-2024-50568 affects Fortinet FortiOS and FortiProxy: a non-endpoint channel vulnerability (CWE-300) allows an unauthenticated attacker with device-specific data to spoof the identity of a downstream device in the security fabric via crafted TCP requests. Affected versions include FortiOS 7.0.0...

5.9CVSS5.7AI score0.00374EPSS

Exploits0References1Affected Software1

Prion•added 2022/07/05 4:15 p.m.•54 views

Sql injection

SQL Injection vulnerability in User Stats interface /vicidial/userstats.php of VICIdial via the filedownload parameter allows attacker to spoof identity, tamper with existing data, allow the complete disclosure of all data on the system, destroy the data or make it otherwise unavailable, and beco...

9CVSS8.8AI score0.02726EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by