Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

89552 matches found

Redos
Redosadded 2026/05/26 12:0 a.m.12 views

ROS-20260526-73-0014

Vulnerability in registry related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow a remote attacker to launch an ssrf attack...

7.5CVSS5.8AI score0.00274EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2026/05/25 11:37 p.m.14 views

CVE-2026-40682

A flaw was found in Apache OpenNLP. A remote attacker can exploit this vulnerability by providing a specially crafted dictionary file. This can lead to an XML External Entity XXE injection, which allows for the disclosure of local files or enables server-side request forgery SSRF, where the serve...

9.1CVSS5.8AI score0.00403EPSS
Exploits0References5
NVD
NVDadded 2026/05/25 11:16 p.m.10 views

CVE-2026-39436

Cross-Site Request Forgery CSRF vulnerability in bgermann CformsII allows Cross Site Request Forgery. This issue affects CformsII: from n/a through 15.1.3...

7.1CVSS0.00131EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/05/25 11:11 p.m.15 views

CVE-2026-41682

A flaw was found in pupnp, an SDK for developing Universal Plug and Play UPnP applications. This vulnerability, known as Server-Side Request Forgery SSRF, arises from port truncation in the parseuri function. A remote attacker can exploit this flaw to confuse port assignments, potentially enablin...

6.9CVSS5.7AI score0.00346EPSS
Exploits0References2
NVD
NVDadded 2026/05/25 10:16 p.m.7 views

CVE-2026-24554

Cross-Site Request Forgery CSRF vulnerability in Convers Lab WPSubscription allows Cross Site Request Forgery. This issue affects WPSubscription: from n/a through 1.9.1...

4.3CVSS0.00122EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/25 10:15 p.m.8 views

EUVD-2026-31766

Cross-Site Request Forgery CSRF vulnerability in bgermann CformsII allows Cross Site Request Forgery. This issue affects CformsII: from n/a through 15.1.3...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/25 10:15 p.m.6 views

CVE-2026-39436

Cross-Site Request Forgery CSRF vulnerability in bgermann CformsII allows Cross Site Request Forgery. This issue affects CformsII: from n/a through 15.1.3...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/25 10:15 p.m.20 views

CVE-2026-39436 WordPress CformsII plugin <= 15.1.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in bgermann CformsII allows Cross Site Request Forgery. This issue affects CformsII: from n/a through 15.1.3...

7.1CVSS0.00131EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/05/25 10:13 p.m.11 views

WordPress CformsII plugin <= 15.1.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ilay Striechman in WordPress Plugin CformsII versions = 15.1.3...

7.1CVSS5.8AI score0.00131EPSS
Exploits0Affected Software1
CVE
CVEadded 2026/05/25 9:41 p.m.20 views

CVE-2026-24554

Affected software: WordPress WPSubscription plugin (versions up to 1.9.1). Issue: Cross-Site Request Forgery (CSRF) vulnerability as described in CVE-2026-24554. CVSS v3.1 base score: 4.3 (Medium); attack vector NETWORK, attack complexity Low, privileges required None, user interaction Required, ...

4.3CVSS5.8AI score0.00122EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/25 9:41 p.m.7 views

CVE-2026-24554 WordPress WPSubscription plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Convers Lab WPSubscription allows Cross Site Request Forgery. This issue affects WPSubscription: from n/a through 1.9.1...

4.3CVSS5.8AI score0.00122EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/25 9:41 p.m.10 views

EUVD-2026-31755

Cross-Site Request Forgery CSRF vulnerability in Convers Lab WPSubscription allows Cross Site Request Forgery. This issue affects WPSubscription: from n/a through 1.9.1...

4.3CVSS5.8AI score0.00122EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/25 9:41 p.m.5 views

CVE-2026-24554

Cross-Site Request Forgery CSRF vulnerability in Convers Lab WPSubscription allows Cross Site Request Forgery. This issue affects WPSubscription: from n/a through 1.9.1...

4.3CVSS5.8AI score0.00122EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/25 9:41 p.m.19 views

CVE-2026-24554 WordPress WPSubscription plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Convers Lab WPSubscription allows Cross Site Request Forgery. This issue affects WPSubscription: from n/a through 1.9.1...

4.3CVSS0.00122EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/05/25 9:40 p.m.10 views

WordPress WPSubscription plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by theviper17 in WordPress Plugin WPSubscription versions = 1.9.1...

4.3CVSS5.8AI score0.00122EPSS
Exploits0Affected Software1
NVD
NVDadded 2026/05/25 9:16 p.m.8 views

CVE-2026-24597

Cross-Site Request Forgery CSRF vulnerability in WpDevArt Organization chart allows Cross Site Request Forgery. This issue affects Organization chart: from n/a through 1.7.5...

4.3CVSS0.00122EPSS
Exploits0References1
NVD
NVDadded 2026/05/25 9:16 p.m.17 views

CVE-2026-44598

With valid login credentials, URL Redirection to Untrusted Site 'Open Redirect', Server-Side Request Forgery SSRF vulnerability in Apache Shiro. This issue affects Apache Shiro from 2.0-alpha to 2.1.0, and 3.0.0-alpha-1, only when using shiro-jakarta-ee integration module. Users are recommended t...

5.4CVSS0.00383EPSS
Exploits0References2
NVD
NVDadded 2026/05/25 9:16 p.m.18 views

CVE-2026-24574

Cross-Site Request Forgery CSRF vulnerability in Recorp Export WP Page to Static HTML/CSS allows Cross Site Request Forgery. This issue affects Export WP Page to Static HTML/CSS: from n/a through 6.0.0...

6.5CVSS0.0014EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/05/25 9:16 p.m.9 views

CVE-2026-44598

With valid login credentials, URL Redirection to Untrusted Site 'Open Redirect', Server-Side Request Forgery SSRF vulnerability in Apache Shiro. This issue affects Apache Shiro from 2.0-alpha to 2.1.0, and 3.0.0-alpha-1, only when using shiro-jakarta-ee integration module. Users are recommended t...

5.4CVSS5.9AI score0.00383EPSS
Exploits0References4
OSV
OSVadded 2026/05/25 9:16 p.m.5 views

UBUNTU-CVE-2026-44598

With valid login credentials, URL Redirection to Untrusted Site 'Open Redirect', Server-Side Request Forgery SSRF vulnerability in Apache Shiro. This issue affects Apache Shiro from 2.0-alpha to 2.1.0, and 3.0.0-alpha-1, only when using shiro-jakarta-ee integration module. Users are recommended t...

5.4CVSS5.9AI score0.00383EPSS
Exploits0References5
Rows per page
Query Builder