CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

308 matches found

Tenable Nessus•added 2026/05/11 12:0 a.m.•5 views

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017672)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017672 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Stored Procedure. Supported versions that are affected are 8.0.23 and prior. Easily...

4.9CVSS6.7AI score0.00989EPSS

Exploits0References4

OSV•added 2026/04/22 8:7 p.m.•4 views

GHSA-WRWH-C28M-9JJH @nocobase/plugin-collection-sql: SQL Validation Bypass Through Missing `checkSQL` Call

Summary The checkSQL validation function that blocks dangerous SQL keywords e.g., pgreadfile, LOADFILE, dblink is applied on the collections:create and sqlCollection:execute endpoints but is entirely missing on the sqlCollection:update endpoint. An attacker with collection management permissions...

7.2CVSS6.1AI score0.00194EPSS

Exploits1References6

Debian•added 2026/04/21 4:37 p.m.•3 views

[SECURITY] [DLA 4523-1] python-geopandas security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4523-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb April 21, 2026 https://wiki.debian.org/LTS -...

8.6CVSS5.7AI score0.00015EPSS

Exploits1

GithubExploit•added 2026/03/08 1:45 p.m.•97 views

Information-security-SQL-XSS-CSRF-practical-assignment

No d...

5.8AI score

Exploits0

IBM Security Bulletins•added 2026/01/25 12:4 p.m.•3 views

Security Bulletin: A vulnerability in NanoID affect IBM® Db2® Big SQL on IBM Cloud Pak for Data.

Summary A vulnerability in NanoID affect IBM® Db2® Big SQL 7 on IBM Cloud Pak for Data 4 and 5. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version. CWE:CWE-835: Loop with Unreachable Exit Condition...

4.3CVSS5.7AI score0.0011EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/01/09 8:57 a.m.•2 views

CVE-2023-4537

Comarch ERP XL client is vulnerable to MS SQL protocol downgrade request from a server side, what could lead to an unencrypted communication vulnerable to data interception and modification. This issue affects ERP XL: from 2020.2.2 through 2023.2...

7.4CVSS7.4AI score0.00113EPSS

Exploits0References1