Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

389 matches found

CVE
CVEadded yesterday7 views

CVE-2026-32652

Dell AIOps Collector pre-1.18.3 is vulnerable to a Use of Default Credentials flaw. A low-privilege attacker with console access could gain filesystem access on fresh installations not upgraded to 1.18.3+. Upgraded installations (1.18.3+) are not affected. Remediate by upgrading to 1.18.3 or later.

7.8CVSS5.5AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 6 days ago6 views

PT-2026-49062

Radius Controller May Delete a Container Resource via an Injected Deployment Annotation Multi-Tenant Installs Summary A configuration-validation issue in the Radius Kubernetes controller can cause it to issue a DELETE for the container resource referenced by a tampered radapp.io/status annotation...

7.7CVSS5.7AI score0.00051EPSS
Exploits0References4
OSV
OSVadded 2026/06/11 6:49 a.m.6 views

MAL-2026-5615 Malicious code in sysau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b2cf08a271605de33b2c202bb8a5a6689251e9a4711a628a88c57ebf0ec4f07 On install/load, index.js auto-runs a bootstrap that silently installs Python 3.12 via winget, falling back to a /quiet curl of python-3.12.3-amd64.e...

5.6AI score
Exploits0References1
Mageia
Mageiaadded 2026/06/09 5:29 a.m.7 views

Updated packagekit packages fix security vulnerability

PackageKit vulnerable to TOCTOU Race on Transaction Flags leads to arbitrary package installation as root. CVE-2026-41651...

8.8CVSS7.7AI score0.00413EPSS
Exploits10References6
SUSE CVE
SUSE CVEadded 2026/06/07 4:50 a.m.4 views

SUSE CVE-2026-10923

Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

8.8CVSS6AI score0.00341EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/07 4:48 a.m.6 views

SUSE CVE-2026-11008

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00299EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/06/05 7:31 p.m.6 views

CVE-2026-6813

The Continually plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.3.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

4.4CVSS5.6AI score0.00195EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2026/06/05 2:0 p.m.8 views

Chromium: CVE-2026-11008 Insufficient validation of untrusted input in WebAppInstalls

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.00299EPSS
Exploits0
EUVD
EUVDadded 2026/06/05 12:31 a.m.7 views

EUVD-2026-34472

Inappropriate implementation in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00225EPSS
Exploits0References3
NVD
NVDadded 2026/06/04 11:17 p.m.5 views

CVE-2026-11023

Inappropriate implementation in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00225EPSS
Exploits0References2
OSV
OSVadded 2026/06/04 11:17 p.m.6 views

DEBIAN-CVE-2026-11023

Inappropriate implementation in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00225EPSS
Exploits0References1
OSV
OSVadded 2026/06/04 11:17 p.m.3 views

DEBIAN-CVE-2026-11008

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00299EPSS
Exploits0References1
OSV
OSVadded 2026/06/04 11:16 p.m.4 views

DEBIAN-CVE-2026-10923

Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

8.8CVSS6AI score0.00341EPSS
Exploits0References1
CVE
CVEadded 2026/06/04 11:4 p.m.9 views

CVE-2026-11023

The CVE-2026-11023 issue affects Google Chrome prior to 149.0.7827.53 and is caused by an inappropriate implementation in the WebAppInstalls component. The vulnerability could allow a remote attacker who has compromised the renderer process to bypass the same-origin policy via a crafted HTML page...

6.5CVSS5.8AI score0.00225EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.6 views

CVE-2026-11023

Inappropriate implementation in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00225EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/06/04 11:3 p.m.6 views

CVE-2026-10923

Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

6AI score0.00341EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:3 p.m.11 views

CVE-2026-10923

CVE-2026-10923 describes a use-after-free vulnerability in the WebAppInstalls component of Google Chrome on Android, affecting versions prior to 149.0.7827.53. The flaw allows a local attacker to execute arbitrary code by interacting with a malicious file, representing a memory corruption issue w...

8.8CVSS6.2AI score0.00341EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/06/04 11:3 p.m.27 views

CVE-2026-10923

Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

0.00341EPSS
Exploits0References2
NVD
NVDadded 2026/06/04 3:16 p.m.7 views

CVE-2026-41065

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 are vulnerable to remote code execution via the newsletter custom template directory feature. On a fresh install before the setup wizard is completed, all management endpoints are completely...

9.3CVSS0.00434EPSS
Exploits0References2
EUVD
EUVDadded 2026/06/04 2:17 p.m.7 views

EUVD-2026-34273

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 are vulnerable to remote code execution via the newsletter custom template directory feature. On a fresh install before the setup wizard is completed, all management endpoints are completely...

9.3CVSS6.5AI score0.00434EPSS
Exploits0References2
Rows per page
Query Builder