CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/02/20 11:16 p.m.•7 views

CVE-2026-2033

8.1CVSS0.018EPSS

ATTACKERKB•added 2026/02/20 10:12 p.m.•3 views

CVE-2026-2033

8.1CVSS6.6AI score0.018EPSS

Exploits0References3

Vulnrichment•added 2026/02/20 10:12 p.m.•5 views

CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability

8.1CVSS8.6AI score0.018EPSS

Cvelist•added 2026/02/20 10:12 p.m.•414 views

CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability

8.1CVSS0.018EPSS

Packet Storm News•added 2026/02/20 12:0 a.m.•19 views

Advanced BLE Scanner with RPA Resolution for Flipper Zero

This project implements a high-performance Bluetooth Low Energy BLE scanner on Flipper Zero, supporting all BLE versions from 4.0 to 5.3. It can discover nearby devices, track specific devices by MAC address, and resolve privacy-randomized Resolvable Private Addresses RPA using Identity Resolving...

5.5AI score

Wired Threat Level•added 2026/02/19 10:0 a.m.•5 views

How to Organize Safely in the Age of Surveillance

From threat modeling to encrypted collaboration apps, we’ve collected experts’ tips and tools for safely and effectively building a group—even while being targeted and tracked by the powerful...

5.5AI score

NVD•added 2026/02/18 6:24 p.m.•5 views

CVE-2025-70151

code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code execution via unrestricted file upload. The endpoints updateprofilepicture.php and uploadpicture.php store uploaded files in a web-accessible uploads/ directory using the original, user-supplied...

8.8CVSS0.00589EPSS

GithubExploit•added 2026/02/18 10:21 a.m.•149 views

Exploit for Expression Language Injection in Vmware Spring_Data_Mongodb

SpringData - SpEL RCE Exploit - CVE-2022-22980 Exploit pour l...

9.8CVSS5.6AI score0.13925EPSS

Exploits3

CNNVD•added 2026/02/18 12:0 a.m.•5 views

Code-Projects Scholars Tracking System 安全漏洞

The Code-Projects Scholars Tracking System is an open-source scholar tracking system developed by Code-Projects. Version 1.0 of the Code-Projects Scholars Tracking System contains a security vulnerability. This vulnerability stems from the lack of verification of file types and extensions during...

8.8CVSS6.3AI score0.00589EPSS

Cvelist•added 2026/02/18 12:0 a.m.•26 views

CVE-2025-70152

code-projects Community Project Scholars Tracking System 1.0 is vulnerable to SQL Injection in the admin user management endpoints /admin/saveuser.php and /admin/updateuser.php. These endpoints lack authentication checks and directly concatenate user-supplied POST parameters firstname, lastname,...

9.8CVSS0.00398EPSS

Packet Storm News•added 2026/02/18 12:0 a.m.•14 views

btrpa-scan BLE Scanner

btrpa-scan is a Bluetooth Low Energy BLE scanner with advanced Resolvable Private Address RPA resolution. Discover nearby BLE devices, track a specific device by MAC address, or resolve privacy-randomized addresses using an Identity Resolving Key IRK...

5.5AI score

Vulnrichment•added 2026/02/18 12:0 a.m.•3 views

CVE-2025-70152

9.8CVSS6AI score0.00398EPSS

Circl•added 2026/02/17 7:30 a.m.•5 views

CVE-2026-0829

creationtimestamp| type| source ---|---|--- 2026-02-17 07:30:39+00:00| seen| https://infosec.exchange/users/offseq/statuses/116084797377415876 2026-02-17 07:30:39+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mf22a5y24x25 2026-02-25 21:02:32+00:00| seen|...

5.8CVSS4.7AI score0.00682EPSS

Exploits0References3

Packet Storm News•added 2026/02/17 12:0 a.m.•4 views

TOR Virtual Network Tunneling Tool 0.4.9.5

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow...

5.7AI score

vulnersOsv•added 2026/02/16 12:30 p.m.•2 views

pretix-tracking-scripts (>=1.0.0 <=1.0.1) potentially affected by CVE-2026-2415 via pretix (=2024.11.0)

pretix PYPI version =2024.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on pretix and may be impacted: - pretix-tracking-scripts =1.0.0, =1.0.1 Source cves: CVE-2026-2415 Source advisory: OSV:GHSA-R8P8-QW9W-J9QV...

9CVSS5.8AI score0.00243EPSS

The Hacker News•added 2026/02/16 10:24 a.m.•30 views

New ZeroDayRAT Mobile Spyware Enables Real-Time Surveillance and Data Theft

Cybersecurity researchers have disclosed details of a new mobile spyware platform dubbed ZeroDayRAT that's being advertised on Telegram as a way to grab sensitive data and facilitate real-time surveillance on Android and iOS devices. "The developer runs dedicated channels for sales, customer...

5.6AI score