CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information...

6CVSS6.1AI score0.00134EPSS

Exploits0References1

NVD•added 2025/07/11 3:15 p.m.•2 views

CVE-2025-52950

A Missing Authorization vulnerability in Juniper Networks Security Director allows an unauthenticated network-based attacker to read or tamper with multiple sensitive resources via the web interface. Numerous endpoints on the Juniper Security Director appliance do not validate authorization and...

9.6CVSS0.00239EPSS

Exploits0References1

RedhatCVE•added 2025/06/26 12:25 p.m.•4 views

CVE-2025-39204

A vulnerability exists in the Web interface of the MicroSCADA X SYS600 product. The filtering query in the Web interface can be malformed, so returning data can leak unauthorized information to the user...

8.5CVSS6.8AI score0.00259EPSS

Exploits0References1

NVD•added 2025/06/25 4:15 p.m.•2 views

CVE-2025-20264

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to bypass the authorization mechanisms for specific administrative functions. This vulnerability is due to insufficient authorization enforcement mechanisms fo...

6.4CVSS0.00289EPSS

Exploits0References1

Vulnrichment•added 2025/03/17 4:31 a.m.•8 views

CVE-2025-2361 Mercurial SCM Web Interface cross site scripting

A vulnerability was found in Mercurial SCM 4.5.3/71.19.145.211. It has been declared as problematic. This vulnerability affects unknown code of the component Web Interface. The manipulation of the argument cmd leads to cross site scripting. The attack can be initiated remotely. The exploit has be...

5.3CVSS4.4AI score0.00221EPSS

Exploits0References3

NVD•added 2025/02/19 4:15 p.m.•2 views

CVE-2025-20211

A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. This vulnerability exists because the web-based management interface do...

6.1CVSS0.00167EPSS

Exploits0References1

NVD•added 2023/07/05 10:15 a.m.•7 views

CVE-2023-2880

Frauscher Sensortechnik GmbH FDS001 for FAdC/FAdCi v1.3.3 and all previous versions are vulnerable to a path traversal vulnerability of the web interface by a crafted URL without authentication. This enables an remote attacker to read all files on the filesystem of the FDS001 device...

7.5CVSS7.4AI score0.00125EPSS

Exploits0References1

CVE•added 2017/06/13 6:0 a.m.•47 views

CVE-2017-6670

CVE-2017-6670 affects Cisco Unified Communications Domain Manager (CUCM) web-based GUI. The issue is an Open Redirect vulnerability caused by improper input validation of HTTP request parameters, allowing an unauthenticated, remote attacker to redirect users to a malicious web page. Affected rele...

6.1CVSS6.3AI score0.00255EPSS

Exploits0References3Affected Software1