CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/03/01 12:30 a.m.•4 views

EUVD-2026-9106

7.1CVSS6AI score0.00274EPSS

Exploits0References4

OSV•added 2026/02/28 10:16 p.m.•2 views

CVE-2026-28557

6.5CVSS5.9AI score

CVE•added 2026/02/28 9:47 p.m.•11 views

CVE-2026-28557

The vulnerability CVE-2026-28557 affects wpForo Forum 2.4.14, due to a missing capability check in the wpforo_synch_roles AJAX handler. Any authenticated user can access the usergroups admin page to obtain a nonce and bulk-remap all wpForo usergroups to arbitrary WordPress roles, enabling privile...

7.1CVSS6AI score0.00274EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/02/28 9:47 p.m.•5 views

CVE-2026-28557 wpForo Forum < 2.4.16 Privilege Escalation via Role Synchronization Handler

7.1CVSS5.9AI score0.00274EPSS

Cvelist•added 2026/02/28 9:47 p.m.•23 views

CVE-2026-28557 wpForo Forum < 2.4.16 Privilege Escalation via Role Synchronization Handler

7.1CVSS0.00274EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-12859

Malware in sbrugna...

7.5CVSS7.4AI score0.01439EPSS

RedhatCVE•added 2025/05/23 4:3 a.m.•5 views

CVE-2023-37067

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section...

4.8CVSS6AI score0.00333EPSS

Exploits0

RedhatCVE•added 2025/05/22 4:11 p.m.•6 views

CVE-2020-11889

An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of comusers allow the unauthorized deletion of usergroups...

5.3CVSS6.8AI score0.0076EPSS

OSV•added 2025/04/03 2:13 p.m.•3 views

BIT-JOOMLA-2021-26036 [20210702] - Core - DoS through usergroup table manipulation

An issue was discovered in Joomla! 2.5.0 through 3.9.27. Missing validation of input could lead to a broken usergroups table...

7.5CVSS7.3AI score0.01439EPSS

OSV•added 2025/04/03 2:10 p.m.•6 views

BIT-JOOMLA-2020-15699

An issue was discovered in Joomla! through 3.9.19. Missing validation checks on the usergroups table object can result in a broken site configuration...

5.3CVSS5.6AI score0.00663EPSS

ATTACKERKB•added 2023/07/07 5:15 p.m.•2 views

CVE-2023-37067

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section...

4.8CVSS5.7AI score0.00333EPSS

NVD•added 2023/07/07 5:15 p.m.•10 views

CVE-2023-37067

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section...

4.8CVSS4.9AI score0.00333EPSS

OSV•added 2023/07/07 5:15 p.m.•11 views

CVE-2023-37067

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section...

4.8CVSS6.1AI score

Prion•added 2023/07/07 5:15 p.m.•20 views

Design/Logic Flaw

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section...

4.3CVSS4.8AI score0.00333EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/07/07 12:0 a.m.•10 views

CVE-2023-37067

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section...

6.2AI score0.00333EPSS

Cvelist•added 2023/07/07 12:0 a.m.•15 views

CVE-2023-37067

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the classes/usergroups management section...

5.5AI score0.00333EPSS

CVE•added 2023/07/07 12:0 a.m.•42 views

CVE-2023-37067

CVE-2023-37067 affects Chamilo LMS 1.11.x up to 1.11.20. The vulnerability allows an admin-privileged user to inject cross-site scripting (XSS) in the classes/usergroups management section. The public-facing materials describe the issue as an admin-level XSS risk, but explicit exploit details, af...

4.8CVSS5.2AI score0.00333EPSS

Exploits0References2Affected Software1

OSV•added 2021/07/07 11:15 a.m.•13 views

CVE-2021-26036

An issue was discovered in Joomla! 2.5.0 through 3.9.27. Missing validation of input could lead to a broken usergroups table...

7.5CVSS6.6AI score

NVD•added 2021/07/07 11:15 a.m.•22 views

CVE-2021-26036

An issue was discovered in Joomla! 2.5.0 through 3.9.27. Missing validation of input could lead to a broken usergroups table...

7.5CVSS0.01439EPSS