Lucene search
K

23321 matches found

Malwarebytes
Malwarebytes
added 2026/02/11 12:32 p.m.13 views

February 2026 Patch Tuesday includes six actively exploited zero-days

Microsoft releases important security updates on the second Tuesday of every month, known as “Patch Tuesday.” This month’s update patches fix 59 Microsoft CVE’s including six zero-days. Let’s have a quick look at these six actively exploited zero-days. Windows Shell Security Feature Bypass...

9.8CVSS6.5AI score0.25835EPSS
Exploits8
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.23 views

PT-2026-7658

Name of the Vulnerable Software and Affected Versions XWEB Pro versions prior to 1.12.1 MSHTML affected versions not specified Description An OS command injection issue exists in XWEB Pro, allowing a user with network access to execute code remotely by injecting malicious input into the request...

8.8CVSS6AI score0.01489EPSS
Exploits0References10
Microsoft KB
Microsoft KB
added 2026/02/10 12:0 a.m.19 views

KB5075944: Cumulative security update for Internet Explorer: February 10, 2026

KB5075944: Cumulative security update for Internet Explorer: February 10, 2026 Important Certain versions of Microsoft Internet Explorer have reached the end of support. Note that some versions of Internet Explorer may be supported past the latest OS end date when Extended Security Updates ESUs a...

5.5AI score
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2026/02/10 12:0 a.m.17 views

Microsoft MSHTML Framework Protection Mechanism Failure Vulnerability

Microsoft MSHTML Framework contains a protection mechanism failure vulnerability that could allow an unauthorized attacker to bypass a security feature over a network...

8.8CVSS5.4AI score0.15384EPSS
In wildExploits0
GithubExploit
GithubExploit
added 2026/02/04 2:13 p.m.184 views

Exploit for Reliance on Untrusted Inputs in a Security Decision in Microsoft

Detections for the CVE-2026-21509 vulnerability in MS Office...

8.8CVSS5.5AI score0.96843EPSS
Exploits49
RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.5 views

CVE-2023-40290

An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker could exploit an XSS issue that affects Internet Explorer 11 on Windows...

8.3CVSS6.3AI score0.00659EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:54 a.m.8 views

CVE-2009-4804

Cross-site scripting XSS vulnerability in the Calendar Base cal extension before 1.1.1 for TYPO3, when Internet Explorer 6 is used, allows remote attackers to inject arbitrary web script or HTML via "search parameters."...

4.3CVSS6AI score0.01033EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:53 a.m.6 views

CVE-2009-4040

Cross-site scripting XSS vulnerability in phpMyFAQ before 2.0.17 and 2.5.x before 2.5.2, when used with Internet Explorer 6 or 7, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters to the search page...

4.3CVSS5.9AI score0.01022EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:38 a.m.5 views

CVE-2003-1305

Microsoft Internet Explorer allows remote attackers to cause a denial of service resource consumption via a Javascript src attribute that recursively loads the current web page...

5CVSS6.9AI score0.01243EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:27 a.m.13 views

CVE-2008-7295

Microsoft Internet Explorer cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict Transport Security HSTS...

5.8CVSS6.8AI score0.05105EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.9 views

CVE-2019-11700

A hyperlink using the res: protocol can be used to open local files at a known location in Internet Explorer if a user approves execution when prompted. Note: this issue only occurs on Windows. Other operating systems are unaffected.. This vulnerability affects Firefox 67...

6.5CVSS6AI score0.01378EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:8 a.m.9 views

CVE-2019-20825

An issue was discovered in Foxit PhantomPDF before 8.3.11. It has an out-of-bounds write when Internet Explorer is used...

9.8CVSS7.1AI score0.01149EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:7 a.m.8 views

CVE-2019-20830

An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has an out-of-bounds write when Internet Explorer is used...

9.8CVSS7.1AI score0.01717EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:1 a.m.14 views

CVE-2011-0248

Stack-based buffer overflow in the QuickTime ActiveX control in Apple QuickTime before 7.7 on Windows, when Internet Explorer is used, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted QTL file...

9.3CVSS8.2AI score0.0302EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:36 a.m.10 views

CVE-2020-7863

A vulnerability in File Transfer Solution of Raonwiz could allow arbitrary command execution as the result of viewing a specially-crafted web page. This vulnerability is due to insufficient validation of the parameter of the specific method. An attacker could exploit this vulnerability by setting...

9.3CVSS7.7AI score0.01477EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:43 a.m.9 views

CVE-1999-0331

Buffer overflow in Internet Explorer 4.01...

7.5CVSS7.3AI score0.04895EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:43 a.m.11 views

CVE-1999-0869

Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing...

2.6CVSS7AI score0.17326EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:42 a.m.6 views

CVE-1999-0917

The Preloader ActiveX control used by Internet Explorer allows remote attackers to read arbitrary files...

5.1CVSS7.1AI score0.06197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:42 a.m.19 views

CVE-1999-0702

Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability...

10CVSS7.1AI score0.24429EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:41 a.m.6 views

CVE-1999-0490

MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag...

7.5CVSS6.5AI score0.0993EPSS
Exploits0References1
Rows per page
Query Builder