🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2020-37035 | High | 8.2 |
e-Learning PHP Script 0.1.0 contains a SQL injection vulnerability in the search functionality that allows attackers to …
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37051 | High | 8.2 |
Online-Exam-System 2015 contains a time-based blind SQL injection vulnerability in the feedback form that allows attacke…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37057 | High | 8.2 |
Online-Exam-System 2015 contains a SQL injection vulnerability in the feedback module that allows attackers to manipulat…
|
✅ Patch | Jan 30, 2026 |
| CVE-2026-0805 | High | 8.2 |
An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authen…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37030 | High | 7.8 |
Outline Service 1.3.3 contains an unquoted service path vulnerability that allows local users to potentially execute arb…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37058 | High | 7.8 |
Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows service configuration.…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37059 | High | 7.8 |
Popcorn Time 6.2.1.14 contains an unquoted service path vulnerability that allows local non-privileged users to potentia…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37060 | High | 7.8 |
Atomic Alarm Clock 6.3 contains a local privilege escalation vulnerability in its service configuration that allows atta…
|
✅ Patch | Jan 30, 2026 |
| CVE-2026-25153 | High | 7.7 |
Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37034 | High | 7.5 |
HelloWeb 2.0 contains an arbitrary file download vulnerability that allows remote attackers to download system files by …
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37038 | High | 7.5 |
Code Blocks 20.03 contains a denial of service vulnerability that allows attackers to crash the application by manipulat…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37039 | High | 7.5 |
Frigate 2.02 contains a denial of service vulnerability that allows attackers to crash the application by sending oversi…
|
✅ Patch | Jan 30, 2026 |
| CVE-2020-37041 | High | 7.5 |
OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the static/css endpoint. An unauthenticated attacker can…
|
⚡ Exploit ✅ Patch | Jan 30, 2026 |
| CVE-2024-4027 | High | 7.5 |
A flaw was found in Undertow. Servlets using a method that calls HttpServletRequestImpl.getParameterNames() can cause an…
|
✅ Patch | Jan 30, 2026 |
| CVE-2025-36184 | High | 7.2 |
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 could allow an instance owner to execu…
|
✅ Patch | Jan 30, 2026 |
| CVE-2026-1281 | Critical | 9.0 |
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability — Ivanti Endpoint Manager Mobile (EPMM) contains a co…
|
⚡ Exploit ✅ Patch | Jan 29, 2026 |
| CVE-2026-24780 | High | 8.8 |
AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that aut…
|
⚡ Exploit ✅ Patch | Jan 29, 2026 |
| CVE-2026-25047 | High | 8.8 |
deepHas provides a test for the existence of a nested object key and optionally returns that key. A prototype pollution …
|
⚡ Exploit ✅ Patch | Jan 29, 2026 |
| CVE-2020-37001 | High | 8.4 |
Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attack…
|
✅ Patch | Jan 29, 2026 |
| CVE-2020-36999 | High | 8.2 |
Elaniin CMS 1.0 contains an authentication bypass vulnerability that allows attackers to access the dashboard by manipul…
|
✅ Patch | Jan 29, 2026 |