CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

74 matches found

CNNVD•added 2026/05/27 12:0 a.m.•4 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.216 contained a resource management vulnerability. This vulnerability stemmed from a problem with reusing resources after they were released, which could allow a remote attacker to execute...

7.5CVSS6.2AI score0.00077EPSS

Exploits0References3

Positive Technologies•added 2026/05/12 12:0 a.m.•6 views

PT-2026-40280

In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, 8.5. before 8.5.6, due to improper sanitation of user data, it allows an attacker to compose an URL, which will cause the target to execute arbitrary JavaScript code XSS on the target's machine when the target is viewing...

8.8CVSS6.2AI score0.00076EPSS

Exploits1References3

OSV•added 2026/04/02 5:16 p.m.•0 views

UBUNTU-CVE-2026-35387

OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcceptedAlgorithms or HostbasedAcceptedAlgorithms is misinterpreted to mean all ECDSA algorithms...

6.5CVSS5.8AI score0.00052EPSS

Exploits0References4

Positive Technologies•added 2026/01/27 12:0 a.m.•4 views

PT-2026-5043

Name of the Vulnerable Software and Affected Versions DNN formerly DotNetNuke versions prior to 9.13.10 DNN formerly DotNetNuke versions prior to 10.2.0 Description DNN formerly DotNetNuke is an open-source web content management platform. Prior to versions 9.13.10 and 10.2.0, the module title...

9.1CVSS5.9AI score0.00055EPSS

Exploits0References16

Cvelist•added 2025/12/17 12:0 a.m.•23 views

CVE-2025-67790

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. An unprivileged user could cause occasionally a Blue Screen Of Death BSOD on Windows computers by using an IOCTL and an unterminated string...

0.00064EPSS

Exploits0References1

RedhatCVE•added 2025/10/27 1:33 p.m.•4 views

CVE-2025-4106

An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0...

8.9CVSS6.9AI score0.00059EPSS

Exploits0References1