Lucene search
K

363816 matches found

NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-54193

Contributor Arbitrary File Deletion in Fusion Builder = 3.15.4 versions...

7.7CVSS0.00337EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.11 views

CVE-2026-54417

An integer overflow in the mtarnext function in src/microtar.c in rxi microtar 0.1.0 allows a remote attacker to cause a denial of service uncontrolled CPU consumption / infinite loop via a crafted tar archive. mtarnext computes the offset to the next record as rounduph.size, 512 +...

8.7CVSS0.00417EPSS
Exploits0References3
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-54809

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VillaTheme GIFT4U allows Blind SQL Injection. This issue affects GIFT4U: from n/a through 1.0.10...

9.3CVSS0.00241EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.12 views

CVE-2026-52716

Unauthenticated Arbitrary File Deletion in WorkScout-Core = 1.7.11 versions...

6.5CVSS0.00351EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2026-52707

Unauthenticated Local File Inclusion in Kastell = 2.0 versions...

8.1CVSS0.00428EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.26 views

CVE-2026-49268

A remote attacker can inject LDAP special characters into the Distinguished Name DN construction in DefaultLdapRealm class. User-supplied username input is directly concatenated into the LDAP DN template without any escaping of RFC 2253 special characters. This allows an attacker to manipulate th...

9.1CVSS0.00494EPSS
Exploits0References2
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-49108

Unauthenticated PHP Object Injection in Moderno 1.43 versions...

9.8CVSS0.00304EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-40752

Unauthenticated PHP Object Injection in Manufaktur Solutions = 1.1.1 versions...

8.1CVSS0.00308EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2026-40738

Unauthenticated PHP Object Injection in Eldon = 1.4.1 versions...

8.1CVSS0.00308EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.19 views

CVE-2026-40756

Unauthenticated PHP Object Injection in Zoya = 1.4 versions...

8.1CVSS0.0025EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2026-40733

Unauthenticated PHP Object Injection in ShiftUp = 1.3 versions...

8.1CVSS0.00308EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.14 views

CVE-2026-40757

Unauthenticated PHP Object Injection in Château = 1.2.1 versions...

8.1CVSS0.0025EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-39559

Unauthenticated Local File Inclusion in Uppercase 1.2.2 versions...

8.1CVSS0.00338EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2026-39590

Unauthenticated Local File Inclusion in Atomlab = 2.4.5 versions...

8.1CVSS0.00338EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2026-39576

Unauthenticated PHP Object Injection in SingleMalt = 1.5 versions...

8.1CVSS0.00395EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2026-39556

Unauthenticated PHP Object Injection in Konsept = 1.9 versions...

8.1CVSS0.00308EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-39560

Unauthenticated PHP Object Injection in Hiroshi = 1.5.1 versions...

8.1CVSS0.00308EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2026-40720

Unauthenticated Cross Site Scripting XSS in Royal Elementor Addons Pro 1.7.1041 versions...

7.1CVSS0.00175EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2026-39442

Unauthenticated PHP Object Injection in PressMart = 1.2.26 versions...

8.1CVSS0.00308EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.11 views

CVE-2026-39445

Unauthenticated PHP Object Injection in Alukas 3.0.0 versions...

8.1CVSS0.00395EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-39523

Unauthenticated Local File Inclusion in Solene Core = 2.3.2 versions...

8.1CVSS0.00338EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2026-10641

Zephyr's Bluetooth Classic Hands-Free Profile HFP Hands-Free role parser subsys/bluetooth/host/classic/hfphf.c contains an out-of-bounds write. During Service Level Connection setup the HF sends AT+CIND=? and parses the AG's +CIND: response in cindhandle, which assigns a per-entry counter index a...

7.1CVSS0.00282EPSS
Exploits1References2
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2025-69170

Unauthenticated Local File Inclusion in Eventicity = 1.5 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2025-69174

Unauthenticated Local File Inclusion in Etude = 1.6 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2025-69166

Unauthenticated Local File Inclusion in Gunslinger = 1.7 versions...

8.1CVSS0.00435EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2025-69175

Unauthenticated Local File Inclusion in Line Agency = 1.3.1 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2025-69189

Missing Authorization vulnerability in EMV JobBank allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects JobBank: from n/a through 1.2.3...

7.3CVSS0.00178EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2025-69164

Unauthenticated Local File Inclusion in Skyward = 1.10 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.7 views

CVE-2025-69140

Unauthenticated Cross Site Scripting XSS in SweetDate Core 1.1.5 versions...

7.1CVSS0.0018EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2025-69144

Unauthenticated Local File Inclusion in Preservation = 1.10 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2025-69158

Unauthenticated Local File Inclusion in Granola = 1.13 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2025-69157

Unauthenticated Local File Inclusion in Gamic = 1.15 versions...

8.1CVSS0.00435EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.12 views

CVE-2025-69127

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS0.00386EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.12 views

CVE-2025-69126

Unauthenticated Local File Inclusion in Fortius = 2.3.0 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2025-69130

Subscriber PHP Object Injection in Entrepreneur - Booking for Small Businesses WordPress Theme = 3.1.3 versions...

8.8CVSS0.00482EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.11 views

CVE-2025-69128

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in EMV JobCareer allows Path Traversal. This issue affects JobCareer: from n/a through 7.3...

8.6CVSS0.0046EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.14 views

CVE-2025-69111

Unauthenticated PHP Object Injection in Reisen = 1.4.1 versions...

9.8CVSS0.00386EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2025-69123

Unauthenticated Local File Inclusion in Snow Club = 1.1 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2025-69120

Unauthenticated Local File Inclusion in Dazzle = 1.0.0 versions...

8.1CVSS0.00435EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2025-69115

Unauthenticated Local File Inclusion in LuxMed | Medicine & Healthcare Doctor WordPress Theme = 1.2.2 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.12 views

CVE-2025-60230

Deserialization of Untrusted Data vulnerability in Themeton The Barber Shop allows Object Injection. This issue affects The Barber Shop: from n/a through 1.9...

9.8CVSS0.00426EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.10 views

CVE-2025-68524

Unauthenticated Cross Site Scripting XSS in Avante 3.0.5 versions...

7.1CVSS0.0023EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.11 views

CVE-2025-66391

In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write operations, e.g., the system will send a one-time password to an attacker-controlled email address when the attacker attempts to reset the password of a user account...

8.8CVSS0.00383EPSS
Exploits0References2
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2025-60231

Deserialization of Untrusted Data vulnerability in EMV The Hospital nrghospital allows Object Injection. This issue affects The Hospital: from n/a through 1.8.1...

9.8CVSS0.00313EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.19 views

CVE-2025-60236

Deserialization of Untrusted Data vulnerability in EMV Creatify allows Object Injection. This issue affects Creatify: from n/a through 1.5...

9.8CVSS0.00313EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.6 views

CVE-2025-69106

Unauthenticated Local File Inclusion in Imba = 1.5.0 versions...

8.1CVSS0.00435EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.11 views

CVE-2025-59554

Unauthenticated SQL Injection in Advanced Ads – Tracking 3.0.7 versions...

9.3CVSS0.00383EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.19 views

CVE-2025-60229

Deserialization of Untrusted Data vulnerability in Themeton Lagom allows Object Injection. This issue affects Lagom: from n/a through 2.0...

9.8CVSS0.00426EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.9 views

CVE-2025-15657

Unauthenticated Insecure Direct Object References IDOR in School Management = 93.1.0 versions...

5.3CVSS0.00228EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 1:21 p.m.9 views

CVE-2026-9690

Unauthenticated Arbitrary File Download in WP Media folder Addon = 4.0.1 versions...

7.5CVSS0.00467EPSS
Exploits0References1
Total number of security vulnerabilities363816