CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

343 matches found

Cvelist•added 2026/06/04 12:0 a.m.•35 views

CVE-2026-36180

A lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass file system read-only protections and modify system files and binaries for the duration of a boot session via a bind-mount attack...

0.00158EPSS

Exploits0References3

CNNVD•added 2026/05/21 12:0 a.m.•8 views

Drupal 跨站脚本漏洞

Drupal is an open-source content management system developed using the PHP language by the Drupal community. Versions of Drupal 7.x-1.11 and earlier, including 7.x-1.x, have a cross-site scripting vulnerability. This vulnerability stems from the rendering pipeline of the Term Reference Tree...

5.4CVSS5.7AI score0.00172EPSS

Exploits1References1

Positive Technologies•added 2026/02/04 12:0 a.m.•7 views

PT-2026-6098

Name of the Vulnerable Software and Affected Versions Movable Type versions 7.x and 8.4.x Description Movable Type has a stored cross-site scripting issue in the Edit Comment functionality. An attacker could execute arbitrary script in a logged-in user’s web browser by storing crafted input. The...

5.4CVSS5.4AI score0.00208EPSS

Exploits0References5

ATTACKERKB•added 2026/01/14 6:38 p.m.•2 views

CVE-2025-14556

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Drupal Flag allows Cross-Site Scripting XSS.This issue affects Flag: from 7.X-3.0 through 7.X-3.9...

5.4CVSS5.4AI score0.00175EPSS

Exploits1References3Affected Software1

CNNVD•added 2026/01/10 12:0 a.m.•3 views

react-router 输入验证错误漏洞

react-router is a Remix open source declarative routing for React. An input validation error vulnerability exists in React Router versions 6.0.0 through 6.30.1 and 7.0.0 through 7.9.5, which originates in specially crafted routes and could lead to redirection attacks...

6.5CVSS6.3AI score0.00198EPSS

Exploits0References1

Tenable Nessus•added 2025/11/25 12:0 a.m.•3 views

Fedora 43 : python-mkdocs-include-markdown-plugin (2025-1b1bb708af)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-1b1bb708af advisory. v7.2.0 New features - Add new argument order to sort multiple inclusions. v7.1.8 Bug fixes - Escape substitution placeholders to prevent malformed...

6.5CVSS5.6AI score0.00311EPSS

Exploits0References2

CNNVD•added 2025/10/27 12:0 a.m.•2 views

StarCharge Artemis AC Charger 安全漏洞

StarCharge Artemis AC Charger is an AC charger from StarCharge Singapore. A security vulnerability exists in the StarCharge Artemis AC Charger version 7-22 kW 1.0.4, which stems from the use of a hard-coded AES key, which could allow an attacker to forge or decrypt a valid login token...

7.5CVSS6.7AI score0.0027EPSS

Exploits0References3