CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 7 hours ago•3 views

EUVD-2026-39699

Unauthenticated SQL Injection in 워드프레스 결제 심플페이 = 5.5.6 versions...

9.3CVSS5.8AI score

Exploits0References1

NVD•added 2026/06/10 4:17 a.m.•13 views

CVE-2026-26239

A buffer overflow vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5208 and later...

8.7CVSS0.00292EPSS

Exploits0References1

NVD•added 2026/06/10 4:17 a.m.•10 views

CVE-2026-24720

An allocation of resources without limits or throttling vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource. We ha...

6.5CVSS0.0028EPSS

Exploits0References1

CVE•added 2026/03/20 5:17 a.m.•43 views

CVE-2026-33036

CVE-2026-33036 concerns the fast-xml-parser library. A bypass vulnerability in versions 4.0.0-beta.3 through 5.5.5 allows numeric character references (&#NNN;, &#xHH;) and standard XML entities to evade entity expansion limits (maxTotalExpansions, maxExpandedLength) intended to fix CVE-2026-26278...

7.5CVSS5.8AI score0.00576EPSS

Exploits1References3Affected Software1

CVE•added 2026/02/11 12:17 p.m.•13 views

CVE-2025-57713

CVE-2025-57713 concerns QNAP File Station 5. The weakness is a weak authentication mechanism that could allow remote attackers to obtain sensitive information. Disclosed across multiple sources, with a fix released in File Station 5 5.5.6.5166 and later; affected versions prior to this may be vul...

7.5CVSS5.5AI score0.00512EPSS

Exploits0References1Affected Software1

CVE•added 2026/02/11 12:16 p.m.•11 views

CVE-2025-62855

CVE-2025-62855 describes a path traversal vulnerability in File Station 5. A local attacker who has an administrator account can exploit the flaw to read contents of unexpected files or system data. The issue is reported to be exploitable over the network with low attack complexity and no user in...

5.3CVSS5.5AI score0.00339EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/02/11 12:0 a.m.•8 views

PT-2026-7578

A path traversal vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: File Station 5...

5.3CVSS5.5AI score0.00537EPSS

Exploits0References2

Positive Technologies•added 2025/11/07 12:0 a.m.•6 views

PT-2025-45443

Name of the Vulnerable Software and Affected Versions File Station 5 versions prior to 5.5.6.5018 Description A flaw exists where a remote attacker, having obtained a user account, could potentially trigger a denial-of-service DoS attack due to a NULL pointer dereference. Recommendations Update t...

5.3CVSS6.4AI score0.00297EPSS

Exploits0References3

OSV•added 2025/01/15 4:15 p.m.•3 views

CVE-2024-56295

Missing Authorization vulnerability in Poll Maker Team Poll Maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Poll Maker: from n/a through 5.5.6...

6.5CVSS7.3AI score0.00429EPSS

Exploits0References1

Positive Technologies•added 2016/10/17 12:0 a.m.•4 views

PT-2016-7899 · Oracle +7 · Mysql Server +6

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.5.56 and earlier MySQL Server versions 5.6.36 and earlier MySQL Server versions 5.7.18 and earlier Description: The issue allows a low privileged attacker with network access via multiple protocols to compromise MySQL...

7.7CVSS6.8AI score0.04945EPSS

Exploits11References224

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by