CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 4 days ago•9 views

PT-2026-46962

sanic-cors version 2.2.0 and prior contains an improper regular expression in the try match function in sanic cors/core.py that uses re.match without end-anchoring. This allows an attacker to bypass CORS origin allowlists by registering a domain that begins with a trusted origin string, to gain...

5.5AI score0.00015EPSS

CVE•added 4 days ago•5 views

CVE-2026-37737

Sanic-Cors 2.2.0 and earlier versions contain an improper regular expression in the try_match() function of sanic_cors/core.py that uses re.match without end anchoring. This allows bypassing CORS origin allowlists by registering a domain that starts with a trusted origin string, leading to unauth...

6.5CVSS5.5AI score0.00015EPSS

Exploits0References4

OSV•added 2026/06/01 11:42 a.m.•6 views

BIT-KIBANA-2026-42398 Server-Side Request Forgery (SSRF) in Kibana Leading to Unauthorized Network Access

Server-Side Request Forgery CWE-918 in Kibana allows authenticated users with connector management privileges to bypass the operator-configured connection allowlist. By configuring a Webhook connector with a crafted target, an attacker can cause Kibana to issue outbound requests to destinations...

7.7CVSS5.8AI score0.00033EPSS

NVD•added 2026/05/26 9:16 p.m.•8 views

CVE-2026-44843

8.2CVSS0.00045EPSS

Cvelist•added 2026/05/26 7:47 p.m.•26 views

CVE-2026-44843 LangChain: Unsafe deserialization of attacker-controlled LangChain objects through overly broad `load()` allowlists

8.2CVSS0.00045EPSS

ATTACKERKB•added 2026/05/26 7:47 p.m.•8 views

CVE-2026-44843

Exploits0References2Affected Software1

CVE•added 2026/05/26 7:47 p.m.•16 views

CVE-2026-44843

LangChain CVE-2026-44843 affects LangChain-core runtimes prior to 0.3.85 and 1.3.3, which use older code paths with broad object allowlists that can revive trusted LangChain-serializable objects via load()/loads() calls. This may let attacker-controlled serialized constructor dictionaries instant...

Exploits0References1Affected Software1

Vulnrichment•added 2026/05/26 7:47 p.m.•13 views

CVE-2026-44843 LangChain: Unsafe deserialization of attacker-controlled LangChain objects through overly broad `load()` allowlists

Positive Technologies•added 2026/05/21 12:0 a.m.•6 views

PT-2026-42635

Description The object-destructuring assignment syntax introduced in Twig 3.24.0 generates a call to CoreExtension::getAttribute with the $sandboxed argument hardcoded to false, regardless of whether a SandboxExtension is active. This permanently disables the sandbox's property and method policy...

8.7CVSS5.8AI score

Positive Technologies•added 2026/05/21 12:0 a.m.•6 views

PT-2026-42691

Name of the Vulnerable Software and Affected Versions Twig versions 3.24.0 through 3.24.x Description The object-destructuring assignment syntax generates a call to the getAttribute function within CoreExtension where the $sandboxed argument is hardcoded to false. This occurs regardless of whethe...

8.7CVSS5.8AI score

Exploits0References13

ATTACKERKB•added 2026/05/19 1:33 p.m.•3 views

CVE-2026-43634

HestiaCP versions 1.2.0 through 1.9.4 contain an IP spoofing vulnerability that allows unauthenticated remote attackers to bypass authentication security controls by supplying an arbitrary IP address in the CF-Connecting-IP HTTP header without verifying the request originated from Cloudflare's...

8.7CVSS6AI score0.00057EPSS

Exploits0References6Affected Software1

CVE•added 2026/05/19 1:33 p.m.•11 views

CVE-2026-43634

CVE-2026-43634 affects HestiaCP versions 1.2.0–1.9.4. The vulnerability is an IP spoofing flaw: unauthenticated attackers can send arbitrary IPs via the CF-Connecting-IP header, bypassing authentication controls and Cloudflare network verification. This can defeat fail2ban brute-force protections...

8.7CVSS6AI score0.00057EPSS

Vulnrichment•added 2026/05/19 1:33 p.m.•6 views

CVE-2026-43634 HestiaCP 1.2.0-1.9.4 IP Spoofing via CF-Connecting-IP Header

8.7CVSS6AI score0.00057EPSS

EUVD•added 2026/05/19 1:33 p.m.•9 views

EUVD-2026-30935

10CVSS6AI score0.00203EPSS

OSV•added 2026/05/08 11:7 p.m.•0 views

GHSA-PJWX-R37V-7724 LangChain vulnerable to unsafe deserialization of attacker-controlled objects through overly broad `load()` allowlists

LangChain contains older runtime code paths that deserialize run inputs, run outputs, or other application-controlled payloads using overly broad object allowlists. These paths may call load with allowedobjects="all". This does not enable arbitrary Python object deserialization, but it does allow...

Github Security Blog•added 2026/05/08 11:7 p.m.•4 views

LangChain vulnerable to unsafe deserialization of attacker-controlled objects through overly broad `load()` allowlists

Exploits0References2Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•3 views

PT-2026-39304

Name of the Vulnerable Software and Affected Versions langchain versions prior to 0.3.27 Description LangChain contains runtime code paths that deserialize inputs, outputs, or other application-controlled payloads using overly broad object allowlists, specifically calling load with allowed...

8.2CVSS5.8AI score0.00045EPSS

Exploits0References16

Snyk•added 2026/05/06 9:19 p.m.•6 views

Incorrect Authorization

Overview @openclaw/matrix is an OpenClaw Matrix channel plugin Affected versions of this package are vulnerable to Incorrect Authorization via the DM pairing-store process. An attacker can gain unauthorized access to privileged room control commands by leveraging DM-paired sender IDs to bypass...

8.8CVSS5.8AI score0.00057EPSS

Snyk•added 2026/05/06 9:19 p.m.•7 views

Incorrect Authorization

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Incorrect Authorization via the DM pairing-store process. An attacker can gain unauthorized access to privileged room control commands by leveraging DM-paired sender IDs to bypass...

8.8CVSS5.8AI score0.00057EPSS