Lucene search
K

687 matches found

Nuclei
Nuclei
added 4 hours ago7 views

ionCube Tester Plus <= 1.3 - Local File Inclusion

The ionCube Tester Plus plugin for WordPress versions = 1.3 is vulnerable to unauthenticated arbitrary file read via path traversal. The 'ininame' parameter in loader-wizard.php is not properly sanitized, allowing attackers to read sensitive files such as wp-config.php and /etc/passwd without...

7.5CVSS5.9AI score0.01609EPSS
Exploits0References2
Circl
Circl
added yesterday3 views

CVE-2026-14046

creationtimestamp| type| source ---|---|--- 2026-07-01 21:26:56+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmhgxkheu2y 2026-07-02 07:50:30+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260702...

4.3CVSS5.8AI score0.00185EPSS
Exploits0References2
OSV
OSV
added yesterday9 views

ROOT-OS-UBUNTU-2204-CVE-2026-43022 CVE-2026-43022 in rootio-linux - Patched by Root

Root has patched CVE-2026-43022 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

5.5CVSS5.8AI score0.00107EPSS
Exploits0
Cvelist
Cvelist
added 6 days ago29 views

CVE-2026-57915 Apache Kerby: Kerberos Pre-Authentication Bypass

It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an unrecognized or unsupported type. Users are recommended to upgrade to version 2.1.2, which fixes this issue...

0.00321EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/06/24 11:4 a.m.7 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.18.45 packages and security update

Red Hat OpenShift Container Platform release 4.18.45 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.18. Red Hat Product Security has rated this update as having a...

9.1CVSS6.6AI score0.01557EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/23 5:26 p.m.6 views

EUVD-2026-38550

CMS Cryptographic Message Syntax parsing in gpgsm in GnuPG through 2.5.20 mishandles the CMS format for AES-GCM because aes-ICVlen is supposed to be 12 bytes but 4 bytes is accepted. NOTE: this is related to CVE-2026-34182...

9.1CVSS5.8AI score0.00237EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in libdbi-perl

A issue was discovered in the DBI module through version 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically specified via the fdir attribute in the data source name DSN. NOTE: This issue exists due to an incomplete fix for CVE-2014-10401...

6.1CVSS6.7AI score0.00488EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2026/06/08 11:2 p.m.7 views

ai.agentican:agentican-framework-core (>=0.1.0-alpha.2 <=0.1.0-alpha.4), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.4) +19976 more potentially affected by CVE-2026-47244 via io.netty:netty-codec-http2 (>=4.1.0.Beta4 <=4.1.134.Final)

io.netty:netty-codec-http2 MAVEN version =4.1.0.Beta4, =0.1.0-alpha.2, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.3, =0.1.0-alpha.2, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.28.0 and more Source cves:...

5.3CVSS5.7AI score0.00292EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/04 9:20 a.m.38 views

CVE-2026-50214 Shared Secret Quota Inflation

The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost network access plans...

9.3CVSS0.00167EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/01 7:35 a.m.8 views

CVE-2026-48726

A bug in Apache Airflow's auth manager logout handling left previously-issued JWT tokens valid after the user clicked logout in the UI: the logout flow for FabAuthManager and KeycloakAuthManager did not actually reach the underlying revoketoken call, so the JWT remained accepted by the API server...

9.1CVSS5.9AI score0.00667EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.12 views

RHEL 9 : PackageKit (RHSA-2026:19354)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:19354 advisory. PackageKit is a D-Bus abstraction layer that allows the session user to manage packages in a secure way using a cross-distribution, cross-architectu...

8.8CVSS6AI score0.0046EPSS
Exploits10References4
vulnersOsv
vulnersOsv
added 2026/05/12 3:6 p.m.6 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +958 more potentially affected by CVE-2026-44293 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44293 Source advisory: SNYK:JS-PROTOBUFJS-16643421...

8.8CVSS5.7AI score0.00321EPSS
Exploits0
Circl
Circl
added 2026/05/10 7:31 p.m.8 views

CVE-2026-45387

creationtimestamp| type| source ---|---|--- 2026-05-10 19:31:55+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-h2cw-7qw9-56xr...

4.3CVSS5.8AI score0.0022EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2026/05/06 1:21 a.m.11 views

0lever-utils (>=0.0.2 <=0.0.7), a12rta (=0.1.0) +1801 more potentially affected by CVE-2026-44405 via paramiko (>=1.15.0 <=4.0.0)

paramiko PYPI version =1.15.0, =0.0.2, =1.0.1, =0.0.15, =1.0.0, =0.15.0, =0.2.0, =1.0.1, =0.5.0, =2026.2.3, =0.0.0, =0.0.1, =0.1.1, =0.1.4 and more Source cves: CVE-2026-44405 Source advisory: SNYK:PYTHON-PARAMIKO-16425764...

3.4CVSS6.5AI score0.00114EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/04 4:12 a.m.9 views

ai-24sea (>=0.1.0 <=1.1.1), ai-documentation-writer (>=0.1.0 <=0.1.1) +31 more potentially affected by CVE-2026-7724 via prefect (>=3.0.0rc20 <=3.6.22)

prefect PYPI version =3.0.0rc20, =0.1.0, =0.1.0, =0.16.0, =0.6.1, =6.0.0, =1.0.1, =2.2.8, =2.25.0, =1.1.0, =1.3.0b5, =0.0.2, =0.1.11, =1.1.0, =2.3.0rc19 - mcp-prefect =0.1.0 and more Source cves: CVE-2026-7724 Source advisory: SNYK:PYTHON-PREFECT-16383760...

5CVSS5.7AI score0.0025EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/25 11:48 p.m.7 views

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (>=0.8.3 <=0.9.5) +20 more potentially affected by CVE-2026-44117 via openclaw (>=2026.3.22 <=2026.4.2)

openclaw NPM version =2026.3.22, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 - @xmoxmo/bncr =0.0.8 - morpho-vault-manager =0.1.0 and more Source cves: CVE-2026-44117 Source advisory: SNYK:JS-OPENCLAW-16298053...

6.3CVSS5.4AI score0.00236EPSS
Exploits0
Circl
Circl
added 2026/04/22 11:20 p.m.8 views

CVE-2026-41170

creationtimestamp| type| source ---|---|--- 2026-04-22 23:20:48+00:00| seen| Telegram/bXcnMEVg4MqmghIUy-Ivhp7SDQD9oC-u5oUbMXpQMRT1SlU...

8.5CVSS5.8AI score0.00238EPSS
Exploits0
OSV
OSV
added 2026/04/20 3:4 p.m.4 views

SUSE-SU-2026:21357-1 Security update for rust1.94

This update for rust1.94 fixes the following issues: Changes in rust1.94: - Don't force gcc-15 on SLE-16 and higher bsc1261876 Update to rust1.94.1: - Release notes can be found externally: https://github.com/rust-lang/rust/releases/tag/1.94.1 - Avoid unwrapping varint decoding during parameters...

8.7CVSS5.2AI score0.005EPSS
Exploits0References4
Wolfi
Wolfi
added 2026/04/17 8:0 p.m.12 views

CVE-2026-5878 vulnerabilities

Vulnerabilities for packages: chromium...

4.3CVSS5.7AI score0.00191EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/16 12:20 p.m.8 views

Security Bulletin: IBM SOAR QRadar Plugin App is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM SOAR QRadar Plugin App has addressed the applicable CVEs with an update. Vulnerability Details CVEID:CVE-2025-68146 DESCRIPTION: filelock is a...

6.5CVSS5.9AI score0.00184EPSS
Exploits1Affected Software1
Rows per page
Query Builder