CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

306 matches found

Cvelist•added 2026/04/05 12:36 p.m.•16 views

CVE-2026-5599 API allows deletion of users of other instance

A user with API access and "manage users" permission in any venueless world is able to trigger deletion of user accounts in other worlds...

7.3CVSS0.00054EPSS

Exploits0References1

CNNVD•added 2026/04/05 12:0 a.m.•2 views

venueless 安全漏洞

Venueless is an open-source online activity platform developed by Venueless. There are security vulnerabilities in Venueless, stemming from improper permission management. These vulnerabilities could allow users with API access and the “Manage Users” permission to delete user accounts from other...

7.3CVSS5.8AI score0.00054EPSS

Exploits0References2

NVD•added 2026/03/27 1:16 p.m.•0 views

CVE-2026-4982

A user with permission "update world" in any Venueless world is able to exfiltrate chat messages from direct messages or channels in other worlds on the same server due to a bug in the reporting feature. The exploitability is limited by the fact that the attacker needs to know the internal channe...

7.3CVSS0.00126EPSS

Exploits0References1

Cvelist•added 2026/03/27 12:32 p.m.•17 views

CVE-2026-4982 Unauthorized access to chat contents

7.3CVSS0.00126EPSS

Exploits0References1

EUVD•added 2026/03/27 12:32 p.m.•1 views

EUVD-2026-16593

7.3CVSS5.9AI score0.00126EPSS

Exploits0References1

CNNVD•added 2026/03/27 12:0 a.m.•3 views

venueless 安全漏洞

Venueless is an open-source online activity platform developed by Venueless. There are security vulnerabilities in Venueless; these vulnerabilities stem from defects in the reporting feature, which may allow users with update world permissions to disclose chat messages from other worlds on the sa...

7.3CVSS5.8AI score0.00126EPSS

Exploits0References1

Schneier on Security•added 2026/01/23 10:3 p.m.•3 views

Friday Squid Blogging: Giant Squid in the Star Trek Universe

Spock befriends a giant space squid in the comic Star Trek: Strange New Worlds: The Seeds of Salvation 5. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy...

5.5AI score

Exploits0

RedhatCVE•added 2026/01/09 9:50 a.m.•4 views

CVE-2020-24199

Arbitrary File Upload in the Vehicle Image Upload component in Project Worlds Car Rental Management System v1.0 allows attackers to conduct remote code execution...

9.8CVSS7.5AI score0.03387EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-3895

Malware in sbrugna...

7.2CVSS7AI score0.00435EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2020-21584

Malware in sbrugna...

6.1CVSS6.3AI score0.00648EPSS

Exploits1References4