CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

39 matches found

EUVD•added 2026/04/10 9:31 a.m.•2 views

EUVD-2026-21344

Livestatus injection in the notification test mode in Checkmk 2.5.0b4 and 2.4.0p26 allows an authenticated user with access to the notification test page to inject arbitrary Livestatus commands via a crafted service description...

5.1CVSS5.9AI score0.00047EPSS

Exploits0References2

NVD•added 2026/04/10 9:16 a.m.•1 views

CVE-2026-33456

7.6CVSS0.00047EPSS

Exploits0References1

Cvelist•added 2026/04/10 8:31 a.m.•25 views

CVE-2026-33456 Potential livestatus injection in notification test

5.1CVSS0.00047EPSS

Exploits0References1

NVD•added 2026/03/11 7:16 p.m.•0 views

CVE-2019-25468

NetGain EM Plus 10.1.68 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary system commands by submitting malicious parameters to the scripttest.jsp endpoint. Attackers can send POST requests with shell commands embedded in the 'content'...

9.8CVSS0.00327EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-9444

Malware in sbrugna...

4.8CVSS5.2AI score0.00285EPSS

Exploits0References3

GithubExploit•added 2025/08/12 12:21 a.m.•89 views

Wavlink-WN530G3A-Cmd-Injection

Wavlink-WN530G3A-Cmd-Injection This repo details the proof of...

8.1AI score

Exploits0

Malwarebytes•added 2024/12/11 10:28 p.m.•6 views

Test page title

Test page heading...

7.3AI score

Exploits0

Positive Technologies•added 2024/08/26 12:0 a.m.•1 views

PT-2024-30161 · Unknown · Kashipara Music Management System

Name of the Vulnerable Software and Affected Versions: Kashipara Music Management System version 1.0 Description: A Reflected Cross Site Scripting XSS issue was found in the "/music/controller.php?page=test" endpoint, allowing remote attackers to execute arbitrary code via the page parameter. Thi...

6.3CVSS6.8AI score0.00342EPSS

Exploits1References7

NVD•added 2024/05/03 5:15 p.m.•8 views

CVE-2024-33793

netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...

5.3CVSS7.4AI score0.00122EPSS

Exploits1References1

OSV•added 2024/05/03 5:15 p.m.•0 views

CVE-2024-33793

netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...

5.3CVSS6AI score0.00122EPSS

Exploits1References1

Positive Technologies•added 2024/05/03 12:0 a.m.•3 views

PT-2024-25484 · Netis Systems · Netis-Systems Mex605

Name of the Vulnerable Software and Affected Versions: netis-systems MEX605 version 2.00.06 Description: The issue allows attackers to execute arbitrary OS commands via a crafted payload to the "ping test page". Recommendations: For netis-systems MEX605 version 2.00.06, consider restricting acces...

5.3CVSS7.8AI score0.00122EPSS

Exploits1References5

Cvelist•added 2024/05/03 12:0 a.m.•13 views

CVE-2024-33793

netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...

7.6AI score0.00122EPSS

Exploits1References1

Vulnrichment•added 2024/05/03 12:0 a.m.•10 views

CVE-2024-33793

netis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page...

7.7AI score0.00122EPSS

Exploits1References1

SUSE CVE•added 2023/02/15 6:15 a.m.•1 views

SUSE CVE-2006-2195

Cross-site scripting XSS vulnerability in horde 3 horde3 before 3.1.1 allows remote attackers to inject arbitrary web script or HTML via 1 templates/problem/problem.inc and 2 test.php...

6.8CVSS6AI score0.04367EPSS

Exploits1References6

OSV•added 2022/11/29 5:15 p.m.•0 views

CVE-2022-44355

SolarView Compact 7.0 is vulnerable to Cross-site Scripting XSS via /networktest.php...

6.1CVSS5.8AI score0.00293EPSS

Exploits1References1

NVD•added 2022/11/17 9:15 p.m.•7 views

CVE-2022-43162

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/viewtest.php...

7.2CVSS0.00274EPSS

Exploits1References1

OSV•added 2022/11/01 2:15 p.m.•0 views

CVE-2022-43126

Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/tests/managetest.php...

7.2CVSS5.8AI score0.00274EPSS

Exploits1References1

CNNVD•added 2022/11/01 12:0 a.m.•1 views

Online Diagnostic Lab Management System SQL注入漏洞

Online Diagnostic Lab Management System is an online diagnostic lab management system. A SQL injection vulnerability exists in Online Diagnostic Lab Management System v1.0, which was discovered to contain an SQL injection vulnerability via the id parameter of /admin/tests/managetest.php...

7.2CVSS7.3AI score0.00274EPSS

Exploits1References2

ATTACKERKB•added 2022/04/26 1:33 p.m.•1 views

CVE-2022-27854

Stored Cross-Site Scripting XSS vulnerability in Alexander Ustimenko's Psychological tests & quizzes plugin = 0.21.19 on WordPress possible for users with contributor or higher role via testpagesubmitbuttoncaption parameter...

5.4CVSS5.6AI score0.0018EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2022/04/26 12:0 a.m.•3 views

PT-2022-18643 · Unknown · Alexander Ustimenko'S Psychological Tests & Quizzes Plugin

Name of the Vulnerable Software and Affected Versions: Alexander Ustimenko's Psychological tests & quizzes plugin versions = 0.21.19 Description: The issue is a Stored Cross-Site Scripting XSS vulnerability. It affects users with a contributor or higher role. The vulnerability can be exploited vi...

5.4CVSS5.2AI score0.0018EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by