CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8132 matches found

WordPress Mapplic <= 6.1 / Mapplic Lite <= 1.0 - Authenticated Stored XSS via SVG File Upload

The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Stored Cross-Site Scripting via arbitrary URL injection in versions up to and including 6.1 and 1.0 respectively. Authenticated users with author-level permissions can inject arbitrary remote URLs for SVG map files. When a user...

8.3CVSS5.6AI score0.03132EPSS

Exploits1References4

Nuclei•added 6 hours ago•66 views

WordPress Responsive Vector Maps < 6.4.2 - Arbitrary File Read

WordPress Responsive Vector Maps 6.4.2 contains an arbitrary file read vulnerability because the plugin does not have proper authorization and validation of the rvmuploadregionsfilepath parameter in the rvmimportregions AJAX action, allowing any authenticated user to read arbitrary files on the w...

6.5CVSS6.7AI score0.10223EPSS

Exploits2References5

SUSE CVE•added 9 hours ago•2 views

SUSE CVE-2026-11688

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00084EPSS

Exploits0References3

EUVD•added 11 hours ago•4 views

EUVD-2026-35859

A bug in query analysis processing of the $vectorSearch aggregation stage for Queryable Encryption QE or Client-Side Field Level Encryption CSFLE results in literal values for encrypted fields within the $vectorSearch stage filter expressions to be sent to the server as plaintext instead of...

7.1CVSS5.4AI score

Exploits0References2

Cvelist•added yesterday•6 views

CVE-2026-41696 Spring Data MongoDB Bind Parameter Literal Quoting Breakout

Spring Data MongoDB repository query methods annotated with @Query that use regex parameter binding perform insufficient validation of the bound parameter. An attacker can supply a crafted string to break out of the intended regular expression quoting. Affected versions: Spring Data MongoDB 5.0.0...

5.9CVSS

Exploits0References1

NVD•added yesterday•4 views

CVE-2026-9741

7.1CVSS

Exploits0References1

OSV•added yesterday•4 views

GHSA-FQC7-9XJW-JRH3 SymfonyRuntime CVE-2024-50340 Patch Bypass: Web Requests Can Still Set APP_ENV/APP_DEBUG via parse_str/SAPI Argv Mismatch

Description CVE-2024-50340 GHSA-x8vp-gf4q-mw5j addressed an issue where, with registerargcargv=On, a crafted query string let an unauthenticated GET change the kernel environment and debug flag by feeding --env/--no-debug through $SERVER'argv'. The fix shipped in symfony/runtime 5.4.46 / 6.4.14 /...

6.9CVSS5.5AI score

Exploits0References2

Cvelist•added yesterday•14 views

CVE-2026-9741 Client side encryption fails to encrypt values in a $vectorSearch

7.1CVSS

Exploits0References1

CVE•added yesterday•6 views

CVE-2026-9741

CVE-2026-9741 affects the MongoDB client-side encryption/QueryAble Encryption workflow, specifically the $vectorSearch aggregation stage. The root cause is in query analysis processing for QE or CSFLE, where literal values for encrypted fields used in the $vectorSearch stage filter expressions ar...

7.1CVSS5.4AI score

Exploits0References1

RedhatCVE•added yesterday•3 views

CVE-2026-46444

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.1.2, all CRUD endpoints for OpenAI Assistants Vector Store have no authentication middleware and the route path /api/v1/openai-assistants-vector-store is not in WHITELISTURLS. However, it i...

8.7CVSS5.4AI score0.00082EPSS

Exploits0References1

EUVD•added yesterday•4 views

EUVD-2026-35489

Issue summary: When an application drives an AES-OCB context through the public EVPCipher one-shot interface, the application-supplied initialisation vector IV is silently discarded. Impact summary: Every message encrypted under the same key uses the same effective nonce regardless of the IV...

7.5CVSS5.8AI score

Exploits0References7

OSV•added yesterday•1 views

ALPINE-CVE-2026-45445

7.5CVSS5.8AI score

Exploits0References1

NVD•added yesterday•2 views

CVE-2026-45445

7.5CVSS

Exploits0References6

CVE•added yesterday•3 views

CVE-2026-45643

Summary of CVE-2026-45643 : Affected product is Microsoft Word (Office). The vulnerability is an untrusted pointer dereference in Word that allows an attacker to achieve local code execution on a vulnerable system with high impact (confidentiality, integrity, and availability). The CVSS-3.1 vecto...

7.8CVSS5.7AI score

Exploits0References1

Vulnrichment•added yesterday•2 views

CVE-2026-45445 AES-OCB IV Ignored on EVP_Cipher() Path

5.8AI score

Exploits0References6

RedhatCVE•added yesterday•4 views

CVE-2026-25558

QloApps through 1.7.0 contains a stored cross-site scripting vulnerability in the admin file manager that allows authenticated administrators to inject malicious JavaScript by uploading crafted SVG files. Attackers can embed JavaScript event handlers such as onload within SVG files uploaded throu...

4.8CVSS5.5AI score0.00033EPSS

Exploits0References1

EUVD•added yesterday•5 views

EUVD-2026-35321

An attacker can craft a large number of unique requests that trigger a failure, exhausting the capacity of the application-wide stateful retry cache. Once the cache is full, it permanently rejects any further updates, causing all later stateful retries and circuit breakers in the application to...

5.9CVSS5.5AI score0.0004EPSS

Exploits0References1

SUSE CVE•added yesterday•4 views

SUSE CVE-2026-46295

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Do IRR scan in kvmapicupdateirr even if PIR is empty Fall back to apicfindhighestvector when PID.ON is set but PIR turns out to be empty, to correctly report the highest pending interrupt from the existing IRR. In a...

5.4AI score0.00017EPSS

Exploits0References3

EUVD•added yesterday•5 views

EUVD-2026-35214

8.8CVSS6AI score0.00084EPSS

Exploits0References3