CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2 days ago•7 views

ROOT-OS-UBUNTU-2404-CVE-2025-38068 CVE-2025-38068 in rootio-linux - Patched by Root

Root has patched CVE-2025-38068 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

7.8CVSS6.9AI score0.00154EPSS

OSV•added 2 days ago•5 views

ROOT-OS-UBUNTU-2404-CVE-2025-21881 CVE-2025-21881 in rootio-linux - Patched by Root

Root has patched CVE-2025-21881 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS7.6AI score0.00166EPSS

OSV•added 2 days ago•5 views

ROOT-OS-UBUNTU-2404-CVE-2025-71192 CVE-2025-71192 in rootio-linux - Patched by Root

Root has patched CVE-2025-71192 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.4AI score0.00156EPSS

OSV•added 2 days ago•5 views

ROOT-OS-UBUNTU-2404-CVE-2025-68763 CVE-2025-68763 in rootio-linux - Patched by Root

Root has patched CVE-2025-68763 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.4AI score0.00173EPSS

IBM Security Bulletins•added 2 days ago•3 views

Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2025-11143

Summary IBM Engineering Systems Design Rhapsody was affected by CVE-2025-11143. Although the vulnerability is generally rated low to medium severity due to the specific conditions required for exploitation, it can become more impactful in complex multi-layered architectures where consistent URL...

6.5CVSS6.8AI score0.00159EPSS

Exploits0Affected Software1

Vulnrichment•added 2 days ago•6 views

CVE-2026-12206 Grit42 Grit data_table_entity.rb DataTableEntity sql injection

A vulnerability was identified in Grit42 Grit up to 0.11.0. This issue affects the function Grit::Assays::DataTableEntity of the file modules/assays/backend/app/models/grit/assays/datatableentity.rb. The manipulation leads to sql injection. The attack is possible to be carried out remotely. The...

6.5CVSS6.2AI score0.00196EPSS

Exploits0References5

EUVD•added 2 days ago•7 views

EUVD-2026-36677

A vulnerability has been found in Intelliants Subrion CMS up to 4.0.3. Affected by this issue is some unknown functionality of the component Blocks Endpoint. Such manipulation of the argument CSS class name leads to cross site scripting. The attack may be launched remotely. The exploit has been...

4.8CVSS3.3AI score0.00214EPSS

Exploits0References5

NVD•added 2 days ago•7 views

CVE-2026-12193

A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtlHandler in the library RevoDetector.sys of the component IOCTL Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is...

8.5CVSS0.0019EPSS

Exploits0References10

PT-2026-49614

CVE ID :CVE-2026-54292 Published : June 15, 2026, 6:33 p.m. | 1 hour, 17 minutes ago Description :None Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.2AI score0.00043EPSS

Exploits0References1

9.3CVSS5.7AI score0.00283EPSS

PT-2026-49434

Unauthenticated SQL Injection in wpForo Forum = 3.0.4 versions...

Positive Technologies•added 2 days ago•7 views

PT-2026-49259

Name of the Vulnerable Software and Affected Versions Cisco Catalyst SD-WAN Manager affected versions not specified Description A directory or path traversal flaw exists in the web UI of Cisco Catalyst SD-WAN Manager formerly SD-WAN vManage. The issue stems from improper validation of user-suppli...

6.5CVSS5.2AI score0.01741EPSS

Exploits1References20

7.2CVSS5.3AI score0.00446EPSS

PT-2026-49378

Shop manager PHP Object Injection in WooCommerce PDF Invoices & Packing Slips 5.9.0 versions...

Positive Technologies•added 2 days ago•6 views

PT-2026-49615

CVE ID :CVE-2026-54294 Published : June 15, 2026, 6:33 p.m. | 1 hour, 17 minutes ago Description :None Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.2AI score0.00045EPSS

Exploits0References1

Positive Technologies•added 2 days ago•7 views

PT-2026-49616

CVE ID :CVE-2026-54295 Published : June 15, 2026, 6:32 p.m. | 1 hour, 18 minutes ago Description :None Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.2AI score0.0004EPSS

Exploits0References1

PT-2026-49519

Unauthenticated Sensitive Data Exposure in Signature Add-On for WooCommerce = 2.0 versions...

7.5CVSS5.2AI score0.00245EPSS

6.1CVSS5.9AI score0.00054EPSS

PT-2026-49342

Summary The "Shareable Playground" or "Public Flows" in code contains a potential arbitrary file-read vulnerability, depending on the exact flow configuration used. By making a flow public, public execution of the flow is allowed. The execution request can contain a list of files that gets read b...

Exploits0References4

Redos•added 2 days ago•4 views

ROS-20260615-73-0033

The vulnerability of the RDP client FreeRDP is related to the lack of checks for division by zero. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.5CVSS4.7AI score0.00303EPSS

Exploits1

Positive Technologies•added 2 days ago•8 views

PT-2026-49516

Customer Privilege Escalation in Dokan = 5.0.2 versions...

8.8CVSS5.2AI score0.00283EPSS

Positive Technologies•added 2 days ago•7 views

PT-2026-49521

Subscriber SQL Injection in Taskbuilder = 5.0.7 versions...

8.5CVSS5.7AI score0.00349EPSS