CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 10 hours ago•15 views

CVE-2026-13006

CVE-2026-13006 affects Java applications using logback-core up to version 1.5.34. The issue arises in conditional configuration file processing, allowing an attacker to execute arbitrary code while bypassing protections against CVE-2025-11226. A successful attack requires Janino on the classpath ...

7CVSS6.2AI score

Cvelist•added 10 hours ago•11 views

CVE-2026-13006 Incomplete protection against CVE-2025-11226

7CVSS

EUVD•added 10 hours ago•4 views

EUVD-2026-38691

7CVSS6.2AI score0.00151EPSS

OSSF Malicious Packages•added 2 days ago•5 views

Malicious code in inversiones-common (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 347a767ebbbb5843e6b005c167d98c9ab7b3ea943fadd88401682f2a2b14b2a4 setup.py executes a beacon function at module top level before setup is called, so the payload fires automatically on pip install inversiones-common...

6.1AI score

NVD•added 6 days ago•11 views

CVE-2026-56075

PraisonAI before 4.5.128 contains an arbitrary shell command execution vulnerability where the UI modules hardcode approvalmode to auto, overriding administrator configuration from PRAISONAPPROVALMODE environment variable. Authenticated attackers can instruct the LLM agent to execute arbitrary...

8.8CVSS0.00476EPSS

Cvelist•added 6 days ago•19 views

CVE-2026-56075 PraisonAI - Arbitrary Shell Command Execution via Hardcoded Approval Mode Override

8.8CVSS0.00476EPSS

NVD•added 6 days ago•11 views

CVE-2026-48980

pamusb provides hardware authentication for Linux using removable media. In versions prior to 0.9.2, getenv environment variables XRDPSESSION, DISPLAY and TMUX allow environment variable injection into local-check logic. These environment variables influence whether a current session is local or...

6.3CVSS0.00127EPSS

Cvelist•added 6 days ago•14 views

CVE-2026-48980 pam_usb: getenv() used in PAM context allows environment variable injection into local-check logic

6.3CVSS0.00127EPSS

Positive Technologies•added 6 days ago•11 views

PT-2026-50823

External Control of File Name or Path in xDS SDS DataSource Summary DataSourceStream in the :xds module resolves control-plane-supplied filename and environment variable fields from SDS Secret resources without any allow-list or base-directory confinement. A semi-trusted or compromised xDS contro...

5.9CVSS5.5AI score0.00198EPSS

Exploits0References5

Positive Technologies•added 6 days ago•11 views

PT-2026-50715

Name of the Vulnerable Software and Affected Versions Bitnami Cassandra container images versions 4.0.x prior to 4.0.20-photon-5-r7 Bitnami Cassandra container images versions 4.1.x prior to 4.1.11-photon-5-r7 Bitnami Cassandra container images versions 5.0.x prior to 5.0.8-photon-5-r4 /...

9.8CVSS6AI score0.00338EPSS

Exploits0References7

CVE•added 2026/06/17 2:8 p.m.•11 views

CVE-2026-55743

OpenHuman desktop agent (before 0.54.0, fixed in 0.56.0) contains two policy flaws in src/openhuman/security/policy.rs that bypass the shell allowlist, enabling remote code execution via indirect prompt injection. First, is_args_safe() blocks -exec and -ok while not blocking -execdir/-okdir (whic...

9.6CVSS6.7AI score0.00704EPSS

NVD•added 2026/06/16 7:17 p.m.•9 views

CVE-2026-53858

OpenClaw before 2026.5.2 contains an environment variable injection vulnerability where workspace .env STATEDIRECTORY could influence bundled runtime dependency roots. Attackers can manipulate the STATEDIRECTORY variable to load runtime dependencies from unintended local paths, potentially...

7.1CVSS0.00124EPSS

NVD•added 2026/06/16 7:17 p.m.•10 views

CVE-2026-53842

OpenClaw before 2026.5.2 contains an environment variable injection vulnerability allowing workspace .env files to influence Python runtime selection through CLOUDSDKPYTHON during Gmail setup gcloud execution. Attackers with repository access can manipulate the CLOUDSDKPYTHON variable to execute...

7.1CVSS0.00133EPSS

Cvelist•added 2026/06/16 6:5 p.m.•19 views

CVE-2026-53858 OpenClaw < 2026.5.2 - Arbitrary Runtime Dependency Loading via STATE_DIRECTORY Environment Variable

7.1CVSS0.00124EPSS

CVE•added 2026/06/16 6:5 p.m.•10 views

CVE-2026-53858

OpenClaw (pre-2026.5.2) is affected by CVE-2026-53858: an environment variable injection flaw where the workspace .env STATE_DIRECTORY can influence bundled runtime dependency roots. An attacker can manipulate STATE_DIRECTORY to load runtime dependencies from unintended local paths, potentially e...

7.1CVSS5.3AI score0.00124EPSS

Exploits0References2Affected Software1

CVE•added 2026/06/16 6:4 p.m.•11 views

CVE-2026-53842

OpenClaw prior to 2026.5.2 is affected by an environment variable injection in CLOUDSDK_PYTHON that can influence Python runtime selection during Gmail setup gcloud execution. Attackers with repository access can set CLOUDSDK_PYTHON to point to unintended local Python paths, potentially enabling ...

7.1CVSS5.9AI score0.00133EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2026/06/16 12:0 a.m.•10 views

PT-2026-49775

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.5.2 Description An environment variable injection exists where the STATE DIRECTORY variable in a workspace .env file can influence bundled runtime dependency roots. This allows attackers to manipulate STATE...

7.1CVSS5.6AI score0.00124EPSS

Exploits0References5

OSSF Malicious Packages•added 2026/06/15 5:23 p.m.•10 views

Malicious code in surf-lending (npm)

Sibling of [email protected] campaign C2 path /surflending/. Sentinel-9.9.9 dep-confusion squat; preinstall node index.js || true exfils env secrets mnemonic/key/token/blockfrost to raw C2 2.25.140.71:8443/surflending/npm-confusion. c913 + c252. --- -= Per source details. Do not edit below this...

5.4AI score

OSV•added 2026/06/15 5:23 p.m.•7 views

MAL-2026-5808 Malicious code in surf-lending (npm)

5.4AI score