Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13404 matches found

Positive Technologies
Positive Technologiesadded 2026/03/20 12:0 a.m.2 views

PT-2026-26614

An issue was discovered in Zimbra Collaboration ZCS 10.0 and 10.1. A stored cross-site scripting XSS vulnerability exists in the Zimbra Briefcase feature due to insufficient sanitization of specific uploaded file types. When a user opens a publicly shared Briefcase file containing malicious...

5.8AI score0.00043EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/03/20 12:0 a.m.3 views

CVE-2026-33370

An issue was discovered in Zimbra Collaboration ZCS 10.0 and 10.1. A stored cross-site scripting XSS vulnerability exists in the Zimbra Briefcase feature due to insufficient sanitization of specific uploaded file types. When a user opens a publicly shared Briefcase file containing malicious...

5.8AI score0.00043EPSS
Exploits0References5
CVE
CVEadded 2026/03/20 12:0 a.m.2 views

CVE-2026-33370

CVE-2026-33370 affects Zimbra Collaboration (ZCS) 10.0 and 10.1. A stored XSS in the Zimbra Briefcase feature arises from insufficient sanitization of certain uploaded file types. When a user opens a publicly shared Briefcase file containing malicious scripts, the embedded JavaScript can execute ...

6.1CVSS5.8AI score0.00043EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/20 12:0 a.m.3 views

PT-2026-26574

Name of the Vulnerable Software and Affected Versions Content Visibility for Divi Builder version 4.01 Description A contributor-controlled expression reaches the eval function through real feature paths. More than 2,000 active installations are reported. Recommendations At the moment, there is n...

8.8CVSS5.8AI score0.00249EPSS
Exploits0References7
NVD
NVDadded 2026/03/19 9:17 p.m.2 views

CVE-2026-27491

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, a type coercion issue in a post actions API endpoint allowed non-staff users to issue warnings to other users. Warnings are a staff-only moderation feature. The vulnerability required the...

6.9CVSS0.00048EPSS
Exploits0References4
EUVD
EUVDadded 2026/03/19 8:47 p.m.2 views

EUVD-2026-13190

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, a type coercion issue in a post actions API endpoint allowed non-staff users to issue warnings to other users. Warnings are a staff-only moderation feature. The vulnerability required the...

6.9CVSS5.8AI score0.00048EPSS
Exploits0References4
CVE
CVEadded 2026/03/19 7:30 p.m.5 views

CVE-2026-32238

OpenEMR CVE-2026-32238: A command injection vulnerability in the backup functionality affects versions prior to 8.0.0.2 due to insufficient input validation. An authenticated attacker could exploit this weakness. The issue is fixed in version 8.0.0.2. Remediation: upgrade to 8.0.0.2 or apply the ...

9.1CVSS5.8AI score0.00101EPSS
Exploits3References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/19 12:0 a.m.5 views

PT-2026-26359

Name of the Vulnerable Software and Affected Versions Discourse versions prior to 2026.3.0-latest.1 Discourse versions prior to 2026.2.1 Discourse versions prior to 2026.1.2 Description Discourse is an open-source discussion platform. A type coercion issue exists in a post actions API endpoint...

6.9CVSS5.9AI score0.00048EPSS
Exploits0References9
CNNVD
CNNVDadded 2026/03/19 12:0 a.m.2 views

wgcloud 安全漏洞

WGCloud is a lightweight distributed server monitoring and operation system developed by Tianshiyeben as an individual developer. WGCloud versions 3.6.3 and earlier have security vulnerabilities. These vulnerabilities stem from the test connection feature in backend database management, which...

7.5CVSS6AI score0.00077EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/03/19 12:0 a.m.4 views

PT-2026-26360

Name of the Vulnerable Software and Affected Versions Discourse versions prior to 2026.3.0-latest.1 Discourse versions prior to 2026.2.1 Discourse versions prior to 2026.1.2 Description Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, t...

6.1CVSS5.8AI score0.00018EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2026/03/18 9:39 p.m.5 views

CVE-2026-31966

A flaw was found in htslib, a library for reading and writing bioinformatics file formats. Specifically, within the CRAM Compressed Reference-oriented Alignment Map decoding process, insufficient validation of feature data series could allow a remote attacker to craft malicious CRAM records. This...

9.1CVSS5.7AI score0.00022EPSS
Exploits0References2
OSV
OSVadded 2026/03/18 8:16 p.m.4 views

UBUNTU-CVE-2026-31966

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

9.1CVSS6.1AI score0.00022EPSS
Exploits0References6
NVD
NVDadded 2026/03/18 7:16 p.m.3 views

CVE-2026-31963

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

8.8CVSS0.00061EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/03/18 7:16 p.m.1 views

CVE-2026-31963

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

8.8CVSS6.2AI score0.00061EPSS
Exploits0References3
CVE
CVEadded 2026/03/18 6:58 p.m.6 views

CVE-2026-31966

HTSlib CVE-2026-31966 affects the CRAM reader where cram_decode_seq() may copy data from before the start or after the end of the reference due to insufficient validation of the feature data series. This can leak arbitrary data to the caller and may crash the program by accessing invalid memory. ...

9.1CVSS6AI score0.00022EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/18 6:58 p.m.1 views

CVE-2026-31966 HTSlib CRAM reader has out-of-bounds read due to improper validation of input

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

6.9CVSS6AI score0.00022EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/03/18 6:22 p.m.4 views

CVE-2026-31963

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

8.8CVSS6.4AI score0.00061EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/18 6:22 p.m.0 views

CVE-2026-31963 HTSlib CRAM reader has heap buffer overflow due to improper validation of input

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

8.8CVSS6.4AI score0.00061EPSS
Exploits0References2
OSV
OSVadded 2026/03/18 6:22 p.m.1 views

CVE-2026-31963 HTSlib CRAM reader has heap buffer overflow due to improper validation of input

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

8.8CVSS6.3AI score0.00061EPSS
Exploits0References4
CVE
CVEadded 2026/03/18 6:22 p.m.6 views

CVE-2026-31963

HTSlib CRAM reader vulnerability (CVE-2026-31963) arises from an out-by-one error when decoding CRAM features that extend beyond the record boundary. This can write one attacker-controlled byte past the end of a heap buffer, causing a heap buffer overflow. The issue may crash the program, overwri...

8.8CVSS6.4AI score0.00061EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder