Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (6 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2026-26149 1 Microsoft 3 Power-apps, Power Apps, Power Apps Desktop Client 2026-05-07 9 Critical
Improper neutralization of escape, meta, or control sequences in Microsoft Power Apps allows an authorized attacker to perform spoofing over a network.
CVE-2026-32172 1 Microsoft 2 Power-apps, Power Apps 2026-04-29 8 High
Uncontrolled search path element in Microsoft Power Apps allows an unauthorized attacker to execute code over a network.
CVE-2026-20960 1 Microsoft 2 Power Apps, Power Apps Desktop Client 2026-04-16 8 High
Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a network.
CVE-2025-47733 1 Microsoft 2 Power Apps, Power Pages 2026-02-13 9.1 Critical
Server-Side Request Forgery (SSRF) in Microsoft Power Apps allows an unauthorized attacker to disclose information over a network
CVE-2023-32024 1 Microsoft 1 Power Apps 2025-02-28 3 Low
Microsoft Power Apps Spoofing Vulnerability
CVE-2023-32052 1 Microsoft 1 Power Apps 2025-02-28 5.4 Medium
Microsoft Power Apps (online) Spoofing Vulnerability