CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Snyk•added 2026/05/05 6:13 p.m.•10 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview inngest is an Official SDK for Inngest.com. Inngest is the reliability layer for modern applications. Inngest combines durable execution, events, and queues into a zero-infra platform with built-in observability. Affected versions of this package are vulnerable to Exposure of Sensitive...

8.7CVSS5.8AI score0.00382EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability in Twisted

In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF...

6.1CVSS6.9AI score0.02535EPSS

Exploits1References2

Fedora•added 2026/04/19 1:25 a.m.•5 views

[SECURITY] Fedora 42 Update: curl-8.11.1-8.fc42

curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMA P, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies,...

7.5CVSS7.3AI score0.00715EPSS

Exploits4

Snyk•added 2025/11/18 5:40 p.m.•1 views

Improper Check for Unusual or Exceptional Conditions

Overview drupal/core is an an open source content management platform powering millions of websites and applications. Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions via the sanitize function in the RequestSanitizer.php file, allowing cache...

5.4CVSS6.8AI score0.00281EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2012-2879

Malware in sbrugna...

4.3CVSS6.4AI score0.00813EPSS

Exploits0References3

OSV•added 2024/02/02 1:15 a.m.•1 views

CVE-2023-50327

IBM PowerSC 1.3, 2.0, and 2.1 uses insecure HTTP methods which could allow a remote attacker to perform unauthorized file request modification. IBM X-Force ID: 275109...

5.3CVSS5.8AI score0.00492EPSS

Exploits0References2

Positive Technologies•added 2024/02/01 12:0 a.m.•4 views

PT-2024-13904 · Ibm · Ibm Powersc

Name of the Vulnerable Software and Affected Versions: IBM PowerSC versions 1.3 through 2.1 Description: The issue is related to the use of insecure HTTP methods, which could allow a remote attacker to perform unauthorized file request modification. Recommendations: For versions 1.3 through 2.1,...

5.3CVSS5AI score0.00492EPSS

Exploits0References6

OSV•added 2023/11/02 5:25 p.m.•2 views

CLSA-2023-1698945913 python3: Fix of CVE-2020-26116

CVE-2020-26116: prevent header injection in http methods...

7.2CVSS6.6AI score0.06358EPSS

Exploits1References1

OSV•added 2021/10/27 1:15 a.m.•3 views

CVE-2021-35233

The HTTP TRACK & TRACE methods were enabled in Kiwi Syslog Server 9.7.1 and earlier. These methods are intended for diagnostic purposes only. If enabled, the web server will respond to requests that use these methods by returning exact HTTP request that was received in the response to the client...

5.3CVSS5.8AI score0.00929EPSS

Exploits0References2

OSV•added 2020/03/16 1:15 p.m.•1 views

CVE-2020-9519

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

5.3CVSS6AI score0.00862EPSS

Exploits0References1

RedHat Linux•added 2019/10/22 1:50 p.m.•3 views

python-twisted: Improper neutralization of CRLF characters in URIs and HTTP methods

In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF...

6.1CVSS7.4AI score0.02535EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by