CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

755 matches found

Ulterius Server < 1.9.5.0 - Directory Traversal

Ulterius Server before 1.9.5.0 allows HTTP server directory traversal via the process function in RemoteTaskServer/WebServer/HttpServer.cs. id: CVE-2017-16806 info: name: Ulterius Server 1.9.5.0 - Directory Traversal author: geeknik severity: high description: Ulterius Server before 1.9.5.0 allow...

7.5CVSS7.2AI score0.86498EPSS

Exploits6References5

Nuclei•added 14 hours ago•46 views

Joomla! Webservice - Password Disclosure

An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints. id: CVE-2023-23752 info: name: Joomla! Webservice - Password Disclosure author: badboycxcc,Sascha Brendel severity: medium description: | An issue was discovered in...

7.5CVSS6.7AI score0.94522EPSS

Exploits42References5

EUVD•added 2026/04/09 9:31 p.m.•2 views

EUVD-2026-21012

Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.18, from 10.0.0-M1 through 10.1.52, from 9.0.13 through 9..115, from 8.5.38 through 8.5.100, from 7.0.100 through 7.0.109. Users are...

5.8AI score0.12919EPSS

Exploits1References2

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

MiracleLinux 7 : nss-3.21.3-2.el7, nss-util-3.21.3-1.1.el7 (AXSA:2016-941:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-941:01 advisory. nss Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...

9.3CVSS7.8AI score0.01626EPSS

Exploits0References4

RedhatCVE•added 2026/01/09 9:18 a.m.•5 views

CVE-2021-22557

SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173...

7.8CVSS7.3AI score0.00537EPSS

Exploits4References1

RedhatCVE•added 2026/01/09 9:17 a.m.•11 views

CVE-2025-23210

phpoffice/phpspreadsheet is a pure PHP library for reading and writing spreadsheet files. Affected versions have been found to have a Bypass of the Cross-site Scripting XSS sanitizer using the javascript protocol and special characters. This issue has been addressed in versions 3.9.0, 2.3.7, 2.1....

4.8CVSS6.1AI score0.00113EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:13 a.m.•4 views

CVE-2022-31135

Akashi is an open source server implementation of the Attorney Online video game based on the Ace Attorney universe. Affected versions of Akashi are subject to a denial of service attack. An attacker can use a specially crafted evidence packet to make an illegal modification, causing a server...

7.8CVSS6.7AI score0.00241EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:44 a.m.•6 views

CVE-2022-23510

cube-js is a headless business intelligence platform. In version 0.31.23 all authenticated Cube clients could bypass SQL row-level security and run arbitrary SQL via the newly introduced /v1/sql-runner endpoint. This issue has been resolved in version 0.31.24. Users are advised to either upgrade ...

9.6CVSS7.3AI score0.00384EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-2445

Malware in sbrugna...

7.5CVSS7.4AI score0.00334EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-0614

Malware in sbrugna...

7.5CVSS7.6AI score0.0394EPSS

Exploits0References11