CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

241905 matches found

Chainguard•added 2026/06/02 1:18 p.m.•6 views

GHSA-W8M4-4V35-V6X3 vulnerabilities

Vulnerabilities for packages: uutils...

5.8AI score

Exploits0

NVD•added 2026/06/02 10:16 a.m.•8 views

CVE-2025-53209

Incorrect Privilege Assignment vulnerability in Themeisle Masteriyo LMS PRO allows Privilege Escalation. This issue affects Masteriyo LMS PRO: from n/a through 2.20.0...

9.8CVSS0.00437EPSS

Exploits0References1

RedhatCVE•added 2026/06/02 10:2 a.m.•14 views

CVE-2026-20455

In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10873936; Issue ID: MSV-6784...

7.8CVSS5.8AI score0.00108EPSS

Exploits0References1

RedhatCVE•added 2026/06/02 10:2 a.m.•11 views

CVE-2026-20454

In geniezone, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10873936; Issue ID: MSV-6786...

6.4CVSS5.8AI score0.00078EPSS

Exploits0References1

RedhatCVE•added 2026/06/02 10:2 a.m.•10 views

CVE-2026-20453

6.7CVSS5.8AI score0.00114EPSS

Exploits0References1

EUVD•added 2026/06/02 9:43 a.m.•8 views

EUVD-2025-210035

Incorrect Privilege Assignment vulnerability in Themeisle Masteriyo LMS PRO allows Privilege Escalation. This issue affects Masteriyo LMS PRO: from n/a through 2.20.0...

9.8CVSS5.8AI score0.00437EPSS

Exploits0References1

RedHat Linux•added 2026/06/02 8:29 a.m.•7 views

xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption

A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence function. An attacker with access to the X11 server can exploit this without user interaction, leading to a server crash and potentially...

7.8CVSS5.7AI score0.00179EPSS

Exploits0References4

GithubExploit•added 2026/06/02 7:58 a.m.•55 views

specter-network-scanner

Specter Network Scanner 🕵️‍♂️ !Pythonhttps://img.shields.i...

5.8AI score

Exploits0

Chainguard•added 2026/06/02 7:18 a.m.•8 views

GHSA-X4MC-MQM7-GG39 vulnerabilities

Vulnerabilities for packages: uutils...

5.8AI score

Exploits0

Chainguard•added 2026/06/02 7:18 a.m.•10 views

CVE-2026-35374 vulnerabilities

Vulnerabilities for packages: uutils...

6.3CVSS5.8AI score0.00074EPSS

Exploits0

OSV•added 2026/06/02 6:11 a.m.•6 views

BELL-CVE-2026-46226

Bulletin has no description...

5.5CVSS5.7AI score0.00119EPSS

Exploits0References1

GithubExploit•added 2026/06/02 6:9 a.m.•59 views

JDWPEx

JDWP Remote Code Execution Exploit A Python 3 implement...

6.7AI score

Exploits0

SUSE Linux•added 2026/06/02 5:58 a.m.•9 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-49979: net: fix refcount bug in skpsockget bsc1245109. CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 bsc1243603. CVE-2026-23239: espintcp: Fix race condition in...

8.8CVSS6.8AI score0.93057EPSS

Exploits21References256

RedhatCVE•added 2026/06/02 4:3 a.m.•11 views

CVE-2026-10169

A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected by this vulnerability is the function ajaxforgotpassword of the file application/controllers/Login.php of the component Forgot Password Endpoint. The...

6.3CVSS5.1AI score0.0028EPSS

Exploits0References1

RedhatCVE•added 2026/06/02 4:2 a.m.•9 views

CVE-2026-45312

RAGFlow is an open-source RAG Retrieval-Augmented Generation engine. In 0.24.0 and earlier, a Jinja2 template injection in the prompt generator rag/prompts/generator.py allows any authenticated user to execute arbitrary OS commands on the server. Any normal user can register, create a Canvas...

9.9CVSS6.1AI score0.00294EPSS

Exploits0References1

NVD•added 2026/06/02 3:16 a.m.•10 views

CVE-2026-10568

A vulnerability was detected in itsourcecode Fees Management System 1.0. Affected is an unknown function of the file /managepayment.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be used...

6.5CVSS0.002EPSS

Exploits0References6

NVD•added 2026/06/02 2:16 a.m.•11 views

CVE-2026-10558

A vulnerability was detected in SourceCodester Pizzafy Ecommerce System 1.0. Impacted is an unknown function of the file /admin/index.php. Performing a manipulation of the argument page results in file inclusion. The attack is possible to be carried out remotely. The exploit is now public and may...

6.5CVSS0.00227EPSS

Exploits0References6

NVD•added 2026/06/02 2:16 a.m.•5 views

CVE-2026-10559

A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is an unknown function of the file /index.php. Executing a manipulation of the argument page can lead to file inclusion. The attack may be performed from remote. The exploit has been published and may be us...

6.5CVSS0.00227EPSS

Exploits0References6