CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

UbuntuCve•added 2026/03/24 1:17 a.m.•0 views

CVE-2026-33320

Dasel is a command-line tool and library for querying, modifying, and transforming data structures. Starting in version 3.0.0 and prior to version 3.3.1, Dasel's YAML reader allows an attacker who can supply YAML for processing to trigger extreme CPU and memory consumption. The issue is in the...

6.2CVSS6.3AI score0.00008EPSS

Exploits1References3

Vulnrichment•added 2025/10/17 2:2 p.m.•2 views

CVE-2025-11902 yanyutao0402 ChanCMS findField sql injection

A vulnerability was detected in yanyutao0402 ChanCMS up to 3.3.2. Affected by this vulnerability is the function findField of the file /cms/article/findField. Performing a manipulation of the argument cid results in sql injection. The attack can be initiated remotely. The exploit is now public an...

6.5CVSS6.4AI score0.00034EPSS

Exploits1References5

Github Security Blog•added 2023/06/22 3:30 p.m.•23 views

fuadmin vulnerable to insecure file upload

funadmin v3.3.2 and v3.3.3 are vulnerable to insecure file upload via the plugins install...

9.8CVSS7AI score0.00421EPSS

Exploits1References3Affected Software1

OSV•added 2023/06/22 3:15 p.m.•15 views

CVE-2023-36097

funadmin v3.3.2 and v3.3.3 are vulnerable to Insecure file upload via the plugins install...

9.8CVSS7.1AI score

Exploits0References1

NVD•added 2023/06/22 3:15 p.m.•10 views

CVE-2023-36097

funadmin v3.3.2 and v3.3.3 are vulnerable to Insecure file upload via the plugins install...

9.8CVSS9.5AI score0.00421EPSS

Exploits1References1

CVE•added 2023/02/13 12:0 a.m.•49 views

CVE-2022-48077

CVE-2022-48077 concerns Genymotion Desktop v3.3.2, which is reported to contain a DLL hijacking vulnerability that allows an attacker to escalate privileges and execute arbitrary code via a crafted DLL. The available documents identify a local attacker scenario with low attack complexity and requ...

7.8CVSS8AI score0.00065EPSS

Exploits0References2Affected Software1

Packet Storm•added 2019/12/30 12:0 a.m.•139 views

HomeAutomation 3.3.2 Cross Site Request Forgery

HomeAutomation v3.3.2 CSRF Add Admin Exploit Vendor: Tom Rosenback and Daniel Malmgren Product web page: http://karpero.mine.nu/ha/ Affected version: 3.3.2 Summary: HomeAutomation is an open-source web interface and scheduling solution. It was initially made for use with the Telldus TellStick, bu...

0.5AI score

Exploits0

Zero Science Lab•added 2019/12/29 12:0 a.m.•80 views

HomeAutomation v3.3.2 Authentication Bypass Exploit

Summary HomeAutomation is an open-source web interface and scheduling solution. It was initially made for use with the Telldus TellStick, but is now based on a plugin system and except for Tellstick it also comes with support for Crestron, OWFS and Z-Wave using OpenZWave. It controls your devices...

9.8CVSS7.3AI score0.01868EPSS

Exploits2

OSV•added 2019/05/10 3:29 p.m.•11 views

CVE-2017-12795

OpenMRS openmrs-module-htmlformentry 3.3.2 is affected by: Improper Input Validation...

9.8CVSS6.9AI score

Exploits0References4

Packet Storm•added 2012/03/13 12:0 a.m.•25 views

e-Rapido 3.3.2 Cross Site Scripting

Exploit Title: e-Rapido v3.3.2 Cross Site Scripting Date: 13.03.2012 Author: l20ot Web Browser : Mozilla Firefox Blog : http://www.twitter.com/l20ot ------------------------------------------------------ msg Parameter is vulerable to XSS! Demo:...

Exploits0

securityvulns•added 2009/12/01 12:0 a.m.•35 views

Xxasp v3.3.2 Sql injection

Securitylab.ir Application Info: Name: Xxasp Version: 3.3.2 Discoverd By: [email protected] Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir ===========================================================...

0.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by