CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 4 hours ago•2 views

SUSE CVE-2026-42342

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the manifest endpoint, resulting in response...

SUSE CVE•added 4 hours ago•2 views

SUSE CVE-2026-46244

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: Fix IPv6 innerthoff desync In nftinnerparsel2l3, when processing inner IPv6 packets, ipv6findhdr correctly computes the transport header offset traversing all extension headers, but the result is immediately...

5.8AI score

Exploits0References2

SUSE CVE•added 4 hours ago•2 views

SUSE CVE-2026-49943

CZ.NIC BIRD Internet Routing Daemon through 2.19.0 contains a stack-based buffer overflow in the BGP ASPATH mask matching implementation in nest/a-path.c. The aspathmatch function uses a fixed-size stack array of 2048 + 1 pmpos entries, while parsepath expands ASPATH segments from a received BGP...

6.3CVSS6.1AI score0.0004EPSS

Exploits1References3

Fedora•added 4 hours ago•3 views

[SECURITY] Fedora 44 Update: pie-1.4.5-1.fc44

PIE PHP Installer for Extensions. PIE can install an extension to any installed PHP version. A list of extensions that support PIE can be found on https://packagist.org/extensions. Documentation: /usr/share/doc/pie/docs/usage.md...

5.8AI score

Exploits0

GithubExploit•added 5 hours ago•11 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Tuzitio Camaleon_Cms

HTB Facts — Full Writeup Difficulty: Medium OS: Lin...

7.7CVSS5.9AI score0.44011EPSS

Exploits11

RedhatCVE•added yesterday•5 views

CVE-2026-35718

A path traversal vulnerability in the /admin/downloadMedias.cgi endpoint of VIVOTEK INC FD8136-VVTK firmware 0300a allows authenticated attackers to read any file on the device via sending a crafted request...

6.5CVSS5.8AI score0.00017EPSS

Exploits0References1

EUVD•added yesterday•5 views

EUVD-2026-34031

browserstack-runner has an unauthenticated arbitrary file read via path traversal in HTTP server...

7.1CVSS5.9AI score0.00024EPSS

OSV•added yesterday•4 views

GHSA-8RPW-6CQH-2V9H browserstack-runner has an unauthenticated arbitrary file read via path traversal in HTTP server

Summary The HTTP server in browserstack-runner serves files from the project directory via the default handler. This handler uses path.joinprocess.cwd, uri to resolve file paths but does not validate that the resulting path stays within the project root. Combined with the server binding on 0.0.0....

7.1CVSS6AI score0.00024EPSS

Exploits0References4

Github Security Blog•added yesterday•3 views

browserstack-runner has an unauthenticated arbitrary file read via path traversal in HTTP server

7.1CVSS6AI score0.00024EPSS

Exploits0References4Affected Software1

OSV•added yesterday•2 views

GHSA-Q29V-XC37-WH5M Docling: Unsafe URI and Path Handling in HTML Backend

Impact The HTML backend did not perform sufficient validation during resource handling: - Accepted file:// URIs enabling local file system access when enablelocalfetch=True - Path resolution allowed traversal outside intended directories via ../ sequences and absolute paths - Did not block intern...

7.1CVSS5.8AI score

Exploits0References4

Exploits0References4Affected Software1

Docling: Unsafe URI and Path Handling in HTML Backend

5.8AI score

Exploits0References3Affected Software1

Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands

Impact The LaTeX backend's handling of \includegraphics, \input, and \include commands lacked path containment validation. Attackers could craft malicious LaTeX documents with path traversal sequences e.g., ../../../etc/passwd to: - Read arbitrary files from the file system accessible to the...

5.9AI score

OSV•added yesterday•1 views

GHSA-2J5P-7P5M-CVQR Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands

5.5CVSS5.9AI score

EUVD•added yesterday•6 views

EUVD-2026-34000

React Router vulnerable to DoS via unbounded path expansion in manifest endpoint...

Exploits0References2

React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint

There exists a potential DOS attack vector in React Router Framework Mode applications as well as Remix v2.10.0 - 2.17.4. Certain requests can be crafted to consume disproportionate resources on the server, resulting in response time degredation and/or service unavailability for end users. !NOTE...

Exploits0References3Affected Software2

OSV•added yesterday•1 views

GHSA-8X6R-G9MW-2R78 React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint

8.7CVSS5.8AI score0.00041EPSS

React Router's same-origin redirect with path starting // causes open redirect via protocol-relative URL reinterpretation

Certain URLs passed to the redirect function can trigger an open redirect to an external domain depending on the level of validation done by the application prior to returning the redirect. !NOTE This does not impact your React Router application if you are using Declarative Mode...

Exploits0References3Affected Software1

OSV•added yesterday•1 views

GHSA-CJQG-RQ2H-2FVJ Docling: Unsafe Zip Extraction in EasyOCR Model Download

Impact In versions 2.91.0, The EasyOCR model download functionality extracted ZIP archives without validating member paths, enabling Zip Slip attacks. If an attacker could compromise the model download source via supply chain attack, DNS spoofing, or MITM, they could write arbitrary files to any...

7.5CVSS6.3AI score