CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

146 matches found

ATTACKERKB•added 2026/05/29 12:32 p.m.•7 views

CVE-2026-49324

Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...

4.6CVSS5.8AI score0.00174EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/05/29 12:0 a.m.•9 views

PT-2026-44853

Improper handling of physical conditions in the bike-shutdown control of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows a physical attacker with access to the Wireless Control Module WCM wiring harness to bypass the anti-theft shutdown. The WCM signals shutdown to a peer ECU via...

4.6CVSS5.8AI score0.0016EPSS

Exploits0References2

NVD•added 2026/05/12 2:16 a.m.•14 views

CVE-2026-45392

DOM-based cross-site scripting XSS in Cribl Stream before 4.17.1 allows a remote attacker to execute arbitrary JavaScript in the browser of an authenticated user who is tricked into visiting a crafted URL and interacting with the page...

9.8CVSS0.00281EPSS

Exploits0References2

Github Security Blog•added 2026/04/24 4:37 p.m.•7 views

k8sGPT has Prompt Injection through its k8sGPT-Operator

Summary In the auto-remediation pipeline, objecttoexecution.go was deserializing the AI-generated YAML directly into a Deployment object, but there was lack of validation from the original Deployment object. Details This issue was fixed after coordination with Alex Jones. PoC To minimize the...

5.3AI score

Exploits0References2Affected Software1

CNNVD•added 2026/03/12 12:0 a.m.•4 views

ImageMagick 安全漏洞

ImageMagick is ImageMagick open source set of open source image processing software. Can read, convert or write images in a variety of formats. ImageMagick suffers from a buffer overflow vulnerability that originates beyond the end of the write stack buffer when a memory allocation failure occurs...

6.7CVSS6AI score0.00096EPSS

Exploits0References1

Malwarebytes•added 2026/02/26 10:34 a.m.•5 views

Instagram flagged explicit messages to minors in 2018. Image-blurring arrived six years later

Meta took six years to blur explicit images on Instagram, even though internal emails show executives were aware in 2018 that minors were receiving them, according to newly unsealed court documents. In a deposition given last year, Adam Mosseri now the head of Instagram discusses an email thread...

5.6AI score

Exploits0

Wired Threat Level•added 2026/02/06 10:14 p.m.•3 views

ICE Agent’s ‘Dragging’ Case May Help Expose Evidence in Renee Good Shooting

The government has withheld details of the investigation of Renee Good’s killing—but an unrelated case involving the ICE agent who shot her could force new revelations...

5.3AI score

Exploits0

Positive Technologies•added 2025/09/08 12:0 a.m.•5 views

PT-2025-36492

Name of the Vulnerable Software and Affected Versions: KioSoft "Stored Value" Unattended Payment Solutions affected versions not specified Description: KioSoft "Stored Value" Unattended Payment Solutions utilize vulnerable NFC cards. An attacker could potentially modify the balance on these cards...

9.1CVSS6.1AI score0.00714EPSS

Exploits0References9

CNNVD•added 2025/05/22 12:0 a.m.•4 views

FreeFloat FTP Server 安全漏洞

FreeFloat FTP Server is an FTP service from FreeFloat. A buffer overflow vulnerability exists in FreeFloat FTP Server. The vulnerability is due to incorrect boundary checking of the component MKDIR command handler, no details of the vulnerability are provided at this time...

9.8CVSS7.3AI score0.00588EPSS

Exploits1References4

NVD•added 2024/12/04 11:30 a.m.•21 views

CVE-2024-52276

User Interface UI Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which i...

8.2CVSS0.00346EPSS

Exploits0References4

CNNVD•added 2024/11/19 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an overflow in the damonfeedloopnextinput function. No details of the vulnerability are provided at this tim...

5.5CVSS6.8AI score0.00197EPSS

Exploits0References3

CNNVD•added 2024/11/19 12:0 a.m.•5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that placing packets into a dql queue after the dma engine has been started can result in a...

4.7CVSS6.5AI score0.00136EPSS

Exploits0References3

Openbugbounty•added 2024/07/18 8:30 a.m.•5 views

hanseriksson.se Cross Site Scripting vulnerability OBB-3947401

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

Openbugbounty•added 2024/06/01 3:28 a.m.•13 views

rominvent.ro Cross Site Scripting vulnerability OBB-3931957

6.2AI score

Exploits0

Openbugbounty•added 2024/04/28 4:19 p.m.•11 views

pakkendpakket.nl Improper Access Control vulnerability OBB-3923968

7AI score

Exploits0

Openbugbounty•added 2024/04/27 12:13 a.m.•7 views

modelautoenzo.nl Improper Access Control vulnerability OBB-3923103