CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1564 matches found

RedhatCVE•added 2026/01/07 9:37 a.m.•5 views

CVE-2019-7880

A stored cross-site scripting vulnerability exists in the admin panel of Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This could be exploited by an authenticated user with privileges to marketing email templates to inject malicious javascript...

4.8CVSS5.6AI score0.00092EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:36 a.m.•7 views

CVE-2019-7868

A stored cross-site scripting vulnerability exists in the admin panel of Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can be exploited by an authenticated user with permissions to manage tax rules...

4.8CVSS5.7AI score0.00069EPSS

Exploits0References1

CNNVD•added 2025/12/17 12:0 a.m.•1 views

DriveLock 安全漏洞

DriveLock is an endpoint security and data protection platform from DriveLock Germany. A security vulnerability exists in DriveLock versions prior to 24.1.6, 24.2.7, and 25.1.5, which stems from a local unprivileged user being able to manipulate a privileged process, potentially leading to...

9.9CVSS6.4AI score0.00056EPSS

Exploits0References1

Tenable Nessus•added 2025/12/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-12744

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the ABRT daemon's handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them direct...

8.8CVSS7AI score0.0009EPSS

Exploits1References2

NVD•added 2025/12/01 11:15 a.m.•3 views

CVE-2025-2879

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform improper GPU processing operations to expose sensitive data.This issue affects...

5.1CVSS0.00016EPSS

Exploits0References1

CNNVD•added 2025/12/01 12:0 a.m.•2 views

Synaptics Fingerprint Driver 安全漏洞

Synaptics Fingerprint Driver is a regional touch and swipe fingerprint driver from Synaptics, Inc. A security vulnerability exists in Synaptics Fingerprint Driver that originates from a specially crafted DLL file that can be exploited by a local user, potentially resulting in elevated privileges...

6.6CVSS6.6AI score0.00023EPSS

Exploits0References2

RedhatCVE•added 2025/10/22 12:11 a.m.•5 views

CVE-2025-60511

Moodle OpenAI Chat Block plugin 3.0.1 2025021700 suffers from an Insecure Direct Object Reference IDOR vulnerability due to insufficient validation of the blockId parameter in /blocks/openaichat/api/completion.php. An authenticated student can impersonate another user's block e.g., administrator...

4.3CVSS6.7AI score0.00043EPSS

Exploits0References1