CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/04/08 11:16 a.m.•1 views

CVE-2026-1865

6.5CVSS5.9AI score0.00306EPSS

Exploits0References3

GithubExploit•added 2026/04/08 10:46 a.m.•258 views

Exploit for SQL Injection in Apache Superset

CVE-2026-23980 - Apache Superset Authenticated SQL Injection...

9.8CVSS5.9AI score0.04433EPSS

Exploits2

GithubExploit•added 2026/04/08 10:16 a.m.•114 views

shannon-defender-skill

shannondefenderskill 🛡️ Shannon Defender – Trae Solo Coder...

5.9AI score

Exploits0

EUVD•added 2026/04/08 9:31 a.m.•4 views

EUVD-2026-20146

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Brainstorm Force OttoKit suretriggers allows Blind SQL Injection.This issue affects OttoKit: from n/a through = 1.1.20...

5.9AI score0.00279EPSS

EUVD•added 2026/04/08 9:31 a.m.•5 views

EUVD-2026-20133

Movable Type provided by Six Apart Ltd. contains an SQL Injection vulnerability which may allow an attacker to execute an arbitrary SQL statement...

7.3CVSS7.3AI score0.00349EPSS

Exploits0References4

EUVD•added 2026/04/08 9:31 a.m.•6 views

EUVD-2026-20164

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RealMag777 FOX woocommerce-currency-switcher allows Blind SQL Injection.This issue affects FOX: from n/a through = 1.4.5...

5.9AI score0.00279EPSS

EUVD•added 2026/04/08 9:31 a.m.•6 views

EUVD-2026-20160

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NSquared Simply Schedule Appointments simply-schedule-appointments allows Blind SQL Injection.This issue affects Simply Schedule Appointments: from n/a through = 1.6.9.27...

5.9AI score0.00253EPSS

EUVD•added 2026/04/08 9:31 a.m.•4 views

EUVD-2026-20137

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPMU DEV - Your All-in-One WordPress Platform Broken Link Checker broken-link-checker allows Blind SQL Injection.This issue affects Broken Link Checker: from n/a through = 2.4.7...

5.9AI score0.00279EPSS

EUVD•added 2026/04/08 9:31 a.m.•5 views

EUVD-2026-20107

The Attendance Manager plugin for WordPress is vulnerable to SQL Injection via the 'attmgroff' parameter in all versions up to, and including, 0.6.2. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

5.4CVSS5.9AI score0.00179EPSS

Exploits0References4

NVD•added 2026/04/08 9:16 a.m.•10 views

CVE-2026-39497

NVD•added 2026/04/08 9:16 a.m.•9 views

CVE-2026-39495

8.5CVSS0.00253EPSS

NVD•added 2026/04/08 9:16 a.m.•1 views

CVE-2026-39496

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YayMail yaymail allows Blind SQL Injection.This issue affects YayMail: from n/a through = 4.3.3...

NVD•added 2026/04/08 9:16 a.m.•6 views

CVE-2026-39486

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WP Chill Download Monitor download-monitor allows Blind SQL Injection.This issue affects Download Monitor: from n/a through = 5.1.8...

8.5CVSS0.00256EPSS

NVD•added 2026/04/08 9:16 a.m.•6 views

CVE-2026-39475

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Syed Balkhi User Feedback userfeedback-lite allows Blind SQL Injection.This issue affects User Feedback: from n/a through = 1.10.1...

8.5CVSS0.00264EPSS

NVD•added 2026/04/08 9:16 a.m.•11 views

CVE-2026-39479

NVD•added 2026/04/08 9:16 a.m.•2 views

CVE-2026-39466