Lucene search
K

41740 matches found

Nuclei
Nuclei
added 7 hours ago11 views

MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation

The MStore API plugin for WordPress is vulnerable to Unauthorized Account Access and Privilege Escalation in versions up to, and including, 4.10.7 due to improper implementation of the Apple login feature. This allows unauthenticated attackers to log in as any user as long as they know the user's...

9.8CVSS7AI score0.02888EPSS
Exploits0References4
Cvelist
Cvelist
added 5 days ago37 views

CVE-2026-0277 Prisma Access Agent: Improper Certificate Validation on iOS

An improper certificate validation vulnerability in the Prisma® Access Agent for iOS enables an attacker to perform a man-in-the-middle MitM attack to intercept VPN traffic. The Prisma Access Agent on Windows, macOS, Linux, Android and ChromeOS are not affected...

8.7CVSS0.00125EPSS
Exploits0References1
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-59890 setuptools: MANIFEST.in exclusion bypass in sdist via Unicode normalization collision (NFC/NFD) on macOS APFS/HFS+

setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. Prior to 83.0.0, FileList applied MANIFEST.in exclude, global-exclude, recursive-exclude, and prune directives by matching compiled glob patterns against on-disk file names without Unico...

6.1CVSS0.00269EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2026/07/02 3:24 p.m.8 views

ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories

This week’s security news is mostly about weak spots. Browsers, bots, sandboxes, AI systems, and email flows all show the same problem in different ways. Everything looks normal until someone tests a small gap and finds a way through. This is not one big break. It is small permissions, weak check...

7.8CVSS7.8AI score0.06749EPSS
Exploits3
Cvelist
Cvelist
added 2026/07/01 10:22 p.m.24 views

CVE-2026-14424

Use after free in Dawn in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.00215EPSS
Exploits0References2
Circl
Circl
added 2026/07/01 3:15 a.m.9 views

CVE-2026-43713

creationtimestamp| type| source ---|---|--- 2026-07-01 03:15:02+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:59+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:43+00:00| seen|...

6.5CVSS5.9AI score0.00312EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.9 views

CVE-2026-43712

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:42+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:59+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:43+00:00| seen|...

6.5CVSS5.9AI score0.00202EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.9 views

CVE-2026-43709

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:39+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:59+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:43+00:00| seen|...

6.5CVSS5.9AI score0.0024EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.9 views

CVE-2026-43708

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:37+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:59+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:43+00:00| seen|...

4.3CVSS5.9AI score0.00205EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.8 views

CVE-2026-43706

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:32+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:58+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:42+00:00| seen|...

6.5CVSS5.9AI score0.00182EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.8 views

CVE-2026-43704

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:28+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:58+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:42+00:00| seen|...

5.3CVSS5.9AI score0.00218EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.11 views

CVE-2026-43703

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:25+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:58+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:42+00:00| seen|...

6.5CVSS5.9AI score0.00225EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.9 views

CVE-2026-43701

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:23+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:58+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:42+00:00| seen|...

7.1CVSS5.9AI score0.00182EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:51 a.m.9 views

CVE-2026-39868

creationtimestamp| type| source ---|---|--- 2026-07-01 02:51:08+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:58+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:42+00:00| seen|...

9.1CVSS7AI score0.00371EPSS
Exploits0References6
Circl
Circl
added 2026/07/01 2:49 a.m.10 views

CVE-2026-43717

creationtimestamp| type| source ---|---|--- 2026-07-01 02:49:59+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:01:00+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:44+00:00| seen|...

6.5CVSS5.9AI score0.00189EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 2:49 a.m.6 views

CVE-2026-43716

creationtimestamp| type| source ---|---|--- 2026-07-01 02:49:57+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0818 2026-07-01 16:00:59+00:00| seen| https://www.thezdi.com/blog/2026/6/30/the-june-2026-apple-security-update-review 2026-07-02 01:00:43+00:00| seen|...

6.5CVSS7AI score0.00297EPSS
Exploits0References4
EUVD
EUVD
added 2026/07/01 12:34 a.m.6 views

EUVD-2026-40830

Incorrect security UI in Passwords in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00179EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40810

Incorrect security UI in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00179EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 12:34 a.m.8 views

EUVD-2026-40753

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00244EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 12:34 a.m.6 views

EUVD-2026-40716

Incorrect security UI in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.8AI score0.00163EPSS
Exploits0References3
Rows per page
Query Builder