CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3905 matches found

CVE-2026-6448 Quiz and Survey Master (QSM) <= 11.1.2 - Authenticated (Admin+) SQL Injection via 'order' and 'limit' Parameters

The Quiz and Survey Master QSM – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'order' parameter in all versions up to, and including, 11.1.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on...

4.9CVSS

Exploits0References12

ATTACKERKB•added yesterday•4 views

CVE-2026-6448

4.9CVSS5.7AI score

Exploits0References13

CVE•added yesterday•9 views

CVE-2026-6448

The CVE-2026-6448 entry concerns the WordPress plugin Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker. All versions up to 11.1.2 are listed as vulnerable to time-based blind SQL Injection via the order parameter due to insufficient escaping and improper query preparation. The issue enab...

4.9CVSS5.7AI score

Exploits0References12

RedhatCVE•added yesterday•1 views

CVE-2026-7510

A vulnerability was determined in OWAP DefectDojo up to 2.55.4. Affected by this vulnerability is an unknown functionality of the component Benchmark/Engagement/Product/Survey. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. The exploit has been...

6.5CVSS6.1AI score0.00018EPSS

Exploits0References1

Positive Technologies•added yesterday•6 views

PT-2026-47068

4.9CVSS5.7AI score

Exploits0References13

Patchstack•added 3 days ago•5 views

WordPress Quiz And Survey Master plugin <= 11.1.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by endy in WordPress Plugin Quiz And Survey Master versions = 11.1.2...

5.5AI score

Exploits0Affected Software1

Packet Storm News•added 5 days ago•2 views

Human Factors in Cybersecurity in Icelandic Small and Medium-Sized Enterprises

Cybersecurity threats are increasing in all aspects of society due to the integration of digital systems into modern-day life and a volatile geo-political landscape. Technical factors are an ongoing arms race; however, the threat surface from human and social factors is still present, often...

5.8AI score

Exploits0

RedhatCVE•added 2026/05/28 2:15 p.m.•6 views

CVE-2026-9442

A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST Request Handler. Executing a manipulation of the argument selSSID can lead to buffer overflow. The attack can be launched remotely. Th...

9CVSS7.8AI score0.00046EPSS

Exploits0References1

RedhatCVE•added 2026/05/26 8:14 p.m.•9 views

CVE-2026-9427

A flaw has been found in Edimax EW-7438RPn 1.31. This impacts the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component webs. This manipulation of the argument selSSID/submit-url causes stack-based buffer overflow. The attack is possible to be carried out remotely. The...

9CVSS7.8AI score0.00046EPSS

Exploits0References1

CVE•added 2026/05/25 8:30 a.m.•9 views

CVE-2026-9442

CVE-2026-9442 affects Edimax BR-6478AC devices running version 1.23, impacting the POST request handler function /goform/formiNICSiteSurvey. The vulnerability arises from a manipulation of the argument selSSID in formiNICSiteSurvey, leading to a buffer overflow. Exploitation is described as remot...

9CVSS7.8AI score0.00046EPSS

Exploits0References4

ATTACKERKB•added 2026/05/25 8:30 a.m.•6 views

CVE-2026-9442

9CVSS7.8AI score0.00046EPSS

Exploits0References4Affected Software1

EUVD•added 2026/05/25 8:30 a.m.•6 views

EUVD-2026-31653

9CVSS7.8AI score0.00046EPSS

Exploits0References4

Vulnrichment•added 2026/05/25 8:30 a.m.•5 views

CVE-2026-9442 Edimax BR-6478AC POST Request formiNICSiteSurvey buffer overflow

9CVSS7.8AI score0.00046EPSS

Exploits0References4

NVD•added 2026/05/25 5:16 a.m.•7 views

CVE-2026-9427

9CVSS0.00046EPSS

Exploits0References4

ATTACKERKB•added 2026/05/25 4:45 a.m.•7 views

CVE-2026-9427

9CVSS6.2AI score0.00046EPSS

Exploits0References4Affected Software1

EUVD•added 2026/05/25 4:45 a.m.•10 views

EUVD-2026-31631

9CVSS7.8AI score0.00046EPSS

Exploits0References4

CNNVD•added 2026/05/25 12:0 a.m.•4 views

Edimax EW-7438RPn 安全漏洞

Edimax EW-7438RPn is a wireless signal extender from Taiwan, China-based Edimax. A security vulnerability exists in the Edimax EW-7438RPn version 1.31, which originates from a parameter manipulation of the function formWlSiteSurvey in the file /goform/formWlSiteSurvey by the webs component, which...

9CVSS7.6AI score0.00046EPSS

Exploits0References4

CNNVD•added 2026/05/25 12:0 a.m.•3 views

Edimax BR-6478AC 安全漏洞

Edimax BR-6478AC is a dual-band Gigabit router from China Xunzhou Edimax. A security vulnerability exists in Edimax BR-6478AC version 1.23, which originates from the operation of the function formiNICSiteSurvey in the file /goform/formiNICSiteSurvey in the POST Request Handler...

9CVSS7.8AI score0.00046EPSS

Exploits0References5

NVD•added 2026/05/24 11:16 p.m.•14 views

CVE-2026-9403

A vulnerability was determined in Edimax BR-6675nD 1.12. The impacted element is the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component POST Request Handler. This manipulation of the argument selSSID causes buffer overflow. The attack may be initiated remotely. The...

9CVSS0.00046EPSS

Exploits0References4

ATTACKERKB•added 2026/05/24 10:45 p.m.•5 views

CVE-2026-9403

9CVSS6.2AI score0.00046EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by