CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

Talos Blog•added 2026/05/14 6:0 p.m.•5 views

The time of much patching is coming

Welcome to this week's edition of the Threat Source newsletter. Many solutions have been proposed to reduce software bugs: zero-defect mandates, pair programming, formal methods, and mathematical software proofs. The reality is that software engineering is hard. Identifying and fixing bugs before...

5.9AI score

Exploits0

Packet Storm News•added 2026/02/22 12:0 a.m.•3 views

FuzzySQL: Uncovering Hidden Vulnerabilities in DBMS Special Features with LLM-Driven Fuzzing

Traditional database fuzzing techniques primarily focus on syntactic correctness and general SQL structures, leaving critical yet obscure DBMS features, such as system-level modes e.g., GTID, programmatic constructs e.g., PROCEDURE, advanced process commands e.g., KILL, largely underexplored...

6.2AI score

Exploits0

GoogleProjectZero•added 2025/05/23 12:0 a.m.•25 views

The Windows Registry Adventure #7: Attack surface analysis

Posted by Mateusz Jurczyk, Google Project Zero In the first three blog posts of this series, I sought to outline what the Windows Registry actually is, its role, history, and where to find further information about it. In the subsequent three posts, my goal was to describe in detail how this...

7.8CVSS9AI score0.24325EPSS

Exploits9

UbuntuCve•added 2025/02/26 7:1 a.m.•9 views

CVE-2022-49636

In the Linux kernel, the following vulnerability has been resolved: vlan: fix memory leak in vlannewlink Blamed commit added back a bug I fixed in commit 9bbd917e0bec "vlan: fix memory leak in vlandevsetegresspriority" If a memory allocation fails in vlanchangelink after other allocations...

5.5CVSS6.4AI score0.00246EPSS

Exploits0References24

OpenVAS•added 2025/01/08 12:0 a.m.•23 views

Ubuntu: Security Advisory (USN-7169-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.00352EPSS

Exploits1References2

Zero Science Lab•added 2023/02/27 12:0 a.m.•309 views

Osprey Pump Controller 1.0.1 Administrator Backdoor Access

Summary Providing pumping systems and automated controls for golf courses and turf irrigation, municipal water and sewer, biogas, agricultural, and industrial markets. Osprey: door-mounted, irrigation and landscape pump controller. Technology hasn't changed dramatically on pump and electric motor...

9.8CVSS7.2AI score0.00771EPSS

Exploits1

OpenVAS•added 2018/07/23 12:0 a.m.•47 views

Debian: Security Advisory (DSA-4254-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.02077EPSS

Exploits0References4

exploitpack•added 2015/04/08 12:0 a.m.•18 views

Balero CMS 0.7.2 - Multiple JSHTML Injection Vulnerabilities

Balero CMS 0.7.2 - Multiple JSHTML Injection Vulnerabilities document.cookie="counter=1confirm'XSS'; path=/balerocms/"; csrf+stored xss+filter bypass+session hijack: document.location="http://www.zeroscience.mk/pent...

0.6AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•20 views

phpList 2.10.17 Remote SQL Injection and XSS Vulnerability

No description provided by source. phpList 2.10.17 Remote SQL Injection and XSS Vulnerability Vendor: phpList Ltd Product web page: http://www.phplist.com Affected version: 2.10.17 Summary: phplist is the world's most popular open source email campaign manager. phplist is free to download, instal...

7.1AI score

Exploits0

Packet Storm•added 2011/12/31 12:0 a.m.•20 views

Grebweb CMS Cross Site Scripting / SQL Injection

. \ \ | | | / | \ | | / | \ \ / | |/ / / / \ | | \ |/ \ | | / /\ | \ | /\ / / / / / /// .ORG ---------------------------------------------------------------- Grebweb Cms alert0 PoC 2 Enter In Search Box XSS Code PoC : http://localhost/index.php Demo : http://www.yagyashree.com/index.php...

0.3AI score

Exploits0

Tenable Nessus•added 2007/10/25 12:0 a.m.•31 views

Debian DSA-1392-1 : xulrunner - several vulnerabilities

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1095 Michal Zalewski discovered that the unload event handler had access to the address of...

9.3CVSS8.4AI score0.12736EPSS

Exploits3References18

Packet Storm•added 2005/02/26 12:0 a.m.•22 views

iGeneric12.txt

Hello All, I have discovered multiple vulnerabilities in: iGeneric eShop 1.2 Authors Site: http://www.igeneric.co.uk +-Examples:--------------------------------------------------+ Information Disclosure & Possible SQL Injection:...

7.4AI score

Exploits0

securityvulns•added 2005/02/24 12:0 a.m.•31 views

[NOBYTES.COM: #5] iGeneric eShop 1.2 - Information Disclosure & Possible SQL Injection

0.7AI score

Exploits0

securityvulns•added 2004/05/15 12:0 a.m.•38 views

SYM04-008, Symantec Client Firewall Remote Access and Denial of Service Issues

Symantec Security Advisory SYM04-008 12 May, 2004 Symantec Client Firewall Remote Access and Denial of Service Issues Revision History None Risk Impact High Overview eEye Digital Security notified Symantec Corporation of four vulnerability issues they discovered in the Symantec Client Firewall...

10CVSS0.3AI score0.12798EPSS

Exploits0