CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

241501 matches found

Cvelist•added 2026/05/14 12:59 p.m.•33 views

CVE-2025-15025 IDOR in Yordam Informatics' Library Automation System

Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploitation of Trusted Identifiers. This issue affects Library Automation System: from v.21.6 befor...

8.8CVSS0.00015EPSS

Exploits0References1

CVE•added 2026/05/14 12:59 p.m.•10 views

CVE-2025-15025

CVE-2025-15025 : In the Library Automation System, versions prior to 22.1 (from 21.6) are affected by an authorization bypass via a User-Controlled key, leading to exploitation of trusted identifiers. The issue is described as an IDOR-style authorization bypass with high impact (confidentiality, ...

8.8CVSS5.8AI score0.00015EPSS

Exploits0References1

Vulnrichment•added 2026/05/14 12:59 p.m.•4 views

CVE-2025-15025 IDOR in Yordam Informatics' Library Automation System

Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploitation of Trusted Identifiers. This issue affects Library Automation System: from v.21.6 befor...

8.8CVSS5.8AI score0.00015EPSS

Exploits0References1

EUVD•added 2026/05/14 12:59 p.m.•6 views

EUVD-2025-209843

Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploitation of Trusted Identifiers. This issue affects Library Automation System: from v.21.6 befor...

8.8CVSS5.8AI score0.00015EPSS

Exploits0References1

NVD•added 2026/05/14 11:16 a.m.•8 views

CVE-2025-68421

Comarch ERP Optima client makes use of a hard-coded password for a database user. These credentials cannot be changed. It is possible for a remote attacker to gain an access to the database with elevated privileges including executing system commands on a server. This issue has been fixed in...

8.7CVSS0.00068EPSS

Exploits0References2

GithubExploit•added 2026/05/14 10:43 a.m.•53 views

AutoPentest-Framework

AutoPentest Framework A modular Automated Penetration Testing...

Circl•added 2026/05/14 10:0 a.m.•5 views

CVE-2019-14194

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-16...

9.8CVSS7.3AI score0.0049EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•4 views

CVE-2019-14202

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-16...

9.8CVSS7.3AI score0.00559EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•3 views

CVE-2025-38697

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

7.8CVSS7.2AI score0.00019EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•5 views

CVE-2025-39703

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.00025EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•3 views

CVE-2025-38687

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

4.7CVSS6.7AI score0.00029EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•5 views

CVE-2025-38732

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.00025EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•6 views

CVE-2024-54017

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-13...

6.9CVSS7.3AI score0.00041EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•5 views

CVE-2025-38712

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.0002EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•4 views

CVE-2025-39676

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.00024EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•6 views

CVE-2019-13104

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-16...

7.8CVSS7AI score0.00249EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•6 views

CVE-2019-14195

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-16...

9.8CVSS6.9AI score0.00262EPSS

Exploits0References1

Circl•added 2026/05/14 10:0 a.m.•3 views

CVE-2025-38701

creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

5.5CVSS6.7AI score0.0002EPSS

Exploits0References1

RedhatCVE•added 2026/05/14 8:21 a.m.•7 views

CVE-2026-21019

Improper input validation in FacAtFunction in Galaxy Watch prior to SMR May-2026 Release 1 allows local attacker to execute arbitrary code with system privilege...

8.6CVSS6.2AI score0.00039EPSS

Exploits0References1

RedhatCVE•added 2026/05/14 7:53 a.m.•5 views

CVE-2026-42779

A flaw was found in Apache MINA. An attacker can exploit a vulnerability in the AbstractIoBuffer.resolveClass method, specifically when IoBuffer.getObject is called, to bypass the classname allowlist. This bypass allows for the execution of arbitrary code, potentially leading to full system...

9.8CVSS6AI score0.00083EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by