База данных безопасности

БАЗА ДАННЫХ
УЯЗВИМОСТЕЙ

Комплексная база данных CVE, эксплойтов из Exploit-DB и каталога CISA KEV. Ежедневно обновляется.

CVE

8K+

Эксплойты

2K+

KEV

104

Ежедневно

ЖИВО

Критические и эксплуатируемые

Каталог KEV

CRITICAL

CVE-2018-25335

WordPress Plugin Peugeot Music 1.0 contains an arbitrary file upload vulnerability that allows unaut...

CRITICAL

CVE-2018-25332

GitBucket 4.23.1 contains an unauthenticated remote code execution vulnerability that allows attacke...

CRITICAL

CVE-2018-25320

ACL Analytics versions 11.x through 13.0.0.579 contain an arbitrary code execution vulnerability tha...

CRITICAL

CVE-2021-47952

python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to exec...

CRITICAL

CVE-2020-37239

libbabl 0.1.62 contains a broken double free detection vulnerability that allows attackers to bypass...

Последние CVE

Все CVE

CVE-2026-8786

6.3MEDIUM

A vulnerability has been found in Tencent WeKnora up to 0.3.6. Affected by this issue is the function getKnowledgeBaseForInitialization of the file internal/handler/initialization.go of the component ...

5/18/2026CWE-285, CWE-639

CVE-2026-8785

7.3HIGH

A flaw has been found in projectworlds hospital-management-system-in-php 1.0. Affected by this vulnerability is the function getAllPatientDetail of the file update_info.php of the component GET Parame...

5/18/2026CWE-74, CWE-89

CVE-2026-8784

4.2MEDIUM

A vulnerability was detected in npitre cramfs-tools up to 2.2. Affected is the function change_file_status of the file cramfsck.c. Performing a manipulation results in symlink following. The attack re...

5/18/2026CWE-59, CWE-61

CVE-2026-8783

4.3MEDIUM

A security vulnerability has been detected in omec-project amf up to 2.1.3-dev. This impacts the function UERadioCapabilityCheckResponse of the file ngap/dispatcher.go. Such manipulation leads to null...

5/18/2026CWE-404, CWE-476

CVE-2026-8782

4.3MEDIUM

A weakness has been identified in omec-project amf up to 2.1.3-dev. This affects an unknown function of the file ngap/handler.go of the component NGAP Message Handler. This manipulation causes null po...

5/18/2026CWE-404, CWE-476

CVE-2026-8781

4.3MEDIUM

A security flaw has been discovered in omec-project amf up to 2.1.3-dev. The impacted element is the function RANConfiguration of the file ngap/handler.go. The manipulation results in null pointer der...

5/18/2026CWE-404, CWE-476

Последние эксплойты

Все эксплойты

EDB-52465

webappsmultiple

WordPress Quiz Maker 6.7.0.56 - SQL Injection

CVE-2025-10042

Rahul Sreenivasan12/25/2025

EDB-52463

webappsmultiple

FreeBSD rtsold 15.x - Remote Code Execution via DNSSL

CVE-2025-14558

Lukas Johannes Möller12/25/2025

EDB-52464

webappsmultiple

Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie

Каталог CISA KEV

Полный каталог

ID CVE	Поставщик	Продукт	Дата добавления	Вымогатели
CVE-2026-42897	Microsoft	Microsoft	2026-05-15	-
CVE-2026-20182	Cisco	Catalyst SD-WAN	2026-05-14	-
CVE-2026-42208	BerriAI	LiteLLM	2026-05-08	-
CVE-2026-6973	Ivanti	Endpoint Manager Mobile (EPMM)	2026-05-07	-
CVE-2026-0300	Palo Alto Networks	PAN-OS	2026-05-06	-

Источники данных

Программа CVE (MITRE)NVD (NIST)Exploit-DB (OffSec)Каталог CISA KEV

Эта база данных предоставляется только для образовательных целей и авторизованных исследований безопасности.

БАЗА ДАННЫХУЯЗВИМОСТЕЙ

Критические и эксплуатируемые

CVE-2018-25335

CVE-2018-25332

CVE-2018-25320

CVE-2021-47952

CVE-2020-37239

Последние CVE

CVE-2026-8786

CVE-2026-8785

CVE-2026-8784

CVE-2026-8783

CVE-2026-8782

CVE-2026-8781

Последние эксплойты

WordPress Quiz Maker 6.7.0.56 - SQL Injection

FreeBSD rtsold 15.x - Remote Code Execution via DNSSL

Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie

Summar Employee Portal 3.98.0 - Authenticated SQL Injection

esm-dev 136 - Path Traversal

Pluck 4.7.7-dev2 - PHP Code Execution

Каталог CISA KEV

Источники данных

БАЗА ДАННЫХ
УЯЗВИМОСТЕЙ