CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/06/11 6:55 p.m.•11 views

CVE-2026-49949

CodexBar

6CVSS5.5AI score0.00253EPSS

Snyk•added 2026/06/11 1:27 p.m.•7 views

Insufficiently Protected Credentials

Overview @hapi/wreck is a HTTP Client Utilities library. Affected versions of this package are vulnerable to Insufficiently Protected Credentials due to the improper origin validation in the cross-origin redirect handling. An attacker can obtain sensitive credential headers by crafting cross-port...

8.7CVSS5.4AI score0.0001EPSS

Positive Technologies•added 2026/06/11 12:0 a.m.•10 views

PT-2026-48685

Impact Wreck strips credential headers Authorization, Cookie, Proxy-Authorization before following a cross-origin redirect, but the origin check compares hostnames only and ignores scheme and port. As a result, credentials are forwarded intact across same-host port changes and HTTPS-to-HTTP...

6.5CVSS5.5AI score0.0001EPSS

RedhatCVE•added 2026/06/05 7:33 p.m.•9 views

CVE-2026-45222

Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, allowing local attackers to read bearer tokens and API credentials stored in /.summarize/daemon.json...

6.9CVSS5.5AI score0.00098EPSS

RedhatCVE•added 2026/06/05 7:13 p.m.•8 views

CVE-2026-40945

Oxia is a metadata store and coordination system. Prior to 0.16.2, when OIDC authentication fails, the full bearer token is logged at DEBUG level in plaintext. If debug logging is enabled in production, JWT tokens are exposed in application logs and any connected log aggregation system. This...

8.7CVSS5.5AI score0.00308EPSS

RedhatCVE•added 2026/06/02 10:2 p.m.•12 views

CVE-2026-49139

Nanobot prior to version 0.2.1 contains a server-side request forgery vulnerability in the Microsoft Teams channel handler that allows remote attackers to exfiltrate Bot Framework bearer tokens by supplying a forged activity with an attacker-controlled serviceUrl value. Attackers can poison the...

Vulnrichment•added 2026/06/01 7:50 p.m.•8 views

CVE-2026-49139 Nanobot < 0.2.1 SSRF via Microsoft Teams Channel serviceUrl Poisoning

EUVD•added 2026/06/01 7:50 p.m.•11 views

EUVD-2026-33759

Positive Technologies•added 2026/06/01 12:0 a.m.•14 views

PT-2026-45561

Positive Technologies•added 2026/05/28 12:0 a.m.•8 views

Exploits0References5

PT-2026-44417

Name of the Vulnerable Software and Affected Versions calicoctl affected versions not specified Description When the client is invoked with --log-level=info or --log-level=debug, it prints the full contents of its loaded connection-configuration struct to stderr in a single log line. This struct...

7.2CVSS5.8AI score0.00224EPSS

Exploits0References6

Cvelist•added 2026/05/27 3:52 p.m.•40 views

CVE-2026-44315 free5GC: NEF 3gpp-pfd-management API is unauthenticated; forged bearer tokens can create, read, and delete PFD transactions

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the 3gpp-pfd-management API without inbound OAuth2/bearer-token authorization. A network attacker who can reach NEF on the SBI can create, read, and delete PFD-management transaction state with a...

9.4CVSS0.00314EPSS

Exploits1References3

Vulnrichment•added 2026/05/27 3:52 p.m.•7 views

CVE-2026-44315 free5GC: NEF 3gpp-pfd-management API is unauthenticated; forged bearer tokens can create, read, and delete PFD transactions

9.4CVSS5.9AI score0.00314EPSS

Exploits1References3

OSV•added 2026/05/22 3:25 a.m.•9 views

MAL-2026-4774 Malicious code in vulndify-mcp-server (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6110bfbfb3eac275094aefd342ef273350829f83c53c480e29df1f872b335650 The package advertises itself in the README as offering only a benign hello MCP tool, but src/vulndifymcpserver/server.py registers two additional,...

5.8AI score

OSV•added 2026/05/21 4:39 a.m.•7 views

MAL-2026-4472 Malicious code in @zhengshuo888/huoke (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f352f11f7811b28966799c9359f99dbbe9829240066504be17c100981dd45ab On npm install, the package's postinstall hook runs node bin/huoke.js install-skill, which uses execSync to invoke curl -fsSL against...

5.8AI score

Exploits0References2

RedhatCVE•added 2026/05/13 8:23 p.m.•10 views

CVE-2026-41495

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to version 2.47.11, when n8n-mcp runs in HTTP transport mode, incoming requests to the POST /mcp endpoint had their request metadata written to server logs regardless of the...

5.3CVSS5.7AI score0.00255EPSS

RedhatCVE•added 2026/05/12 8:21 p.m.•9 views

CVE-2026-42282

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to version 2.47.13, when n8n-mcp runs in HTTP transport mode, authenticated MCP tools/call requests had their full arguments and JSON-RPC params written to server logs by the...

4.3CVSS5.9AI score0.0025EPSS

EUVD•added 2026/05/11 9:31 p.m.•10 views

EUVD-2026-29196

6.9CVSS5.8AI score0.00098EPSS

Github Security Blog•added 2026/05/11 9:31 p.m.•13 views

@steipete/summarize allows local attackers to read bearer tokens and API credentials stored in ~/.summarize/daemon.json

6.9CVSS5.8AI score0.00098EPSS

Exploits0References6Affected Software1

RedhatCVE•added 2026/05/11 8:26 p.m.•10 views

CVE-2026-42333

Quarkus OpenAPI Generator is Quarkus' extensions for generation of Rest Clients and server stubs generation. Prior to versions 2.11.1-lts, 2.16.0-lts, and 2.17.0, the generated authentication filter matches OpenAPI path templates too broadly when deciding whether to attach credentials. A security...

6.3CVSS5.7AI score0.004EPSS