Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

12244 matches found

ATTACKERKB
ATTACKERKBadded 5 days ago5 views

CVE-2026-48861

Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in elixir-mint Mint allows HTTP Request Splitting and HTTP Request Smuggling. In lib/mint/http1/request.ex, the encoderequestline/2 function splices the caller-supplied method and target arguments directly into the HTTP/1...

2.1CVSS6AI score0.00021EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 5 days ago6 views

EUVD-2026-33938

Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in elixir-mint Mint allows HTTP Request Splitting and HTTP Request Smuggling. In lib/mint/http1/request.ex, the encoderequestline/2 function splices the caller-supplied method and target arguments directly into the HTTP/1...

2.1CVSS6AI score0.00021EPSS
Exploits0References4
OSV
OSVadded 5 days ago6 views

EEF-CVE-2026-48861 CRLF injection in HTTP/1 request line via unvalidated method in Mint

Summary Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in elixir-mint Mint allows HTTP Request Splitting and HTTP Request Smuggling. In lib/mint/http1/request.ex, the encoderequestline/2 function splices the caller-supplied method and target arguments directly into the...

2.1CVSS6AI score0.00021EPSS
Exploits0References4
Wolfi
Wolfiadded 5 days ago6 views

GHSA-WRH2-89VG-4J9G vulnerabilities

Vulnerabilities for packages: opentelemetry-collector, prometheus-operator, snyk-cli, glab, kine, loki, grafana-pyroscope, telegraf, traefik, kubernetes, cilium, step, zot, hydra, terraform-provider-acme, istio, vale, fq, gptscript, kubernetes-dashboard, k3s, step-issuer, flux, helm,...

5.4AI score
Exploits0
EUVD
EUVDadded 5 days ago9 views

EUVD-2026-33843

Memory Corruption when processing display command line information due to improper initialization of a variable...

7.2CVSS5.8AI score0.00013EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 5 days ago6 views

Cisco Application Policy Infrastructure Controller DoS (cisco-sa-apic-dos-rNus8EFw)

According to its self-reported version, Cisco Application Policy Infrastructure Controller is affected by a vulnerability. - A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Controller APIC could allow an authenticated, local attacker to cause an affect...

5.5CVSS5.6AI score0.00024EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 5 days ago9 views

PT-2026-45839

Improper Neutralization of CRLF Sequences in HTTP Headers 'HTTP Request/Response Splitting' vulnerability in elixir-tesla tesla allows HTTP header injection via Tesla.Multipart.add content type param/2. Tesla.Multipart.add content type param/2 appends caller-supplied strings to the multipart...

2.1CVSS5.9AI score0.00021EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 5 days ago8 views

PT-2026-45784

Summary Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in elixir-mint Mint allows HTTP Request Splitting and HTTP Request Smuggling. In lib/mint/http1/request.ex, the encode request line/2 function splices the caller-supplied method and target arguments directly into the...

2.1CVSS6AI score0.00021EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 5 days ago6 views

PT-2026-45841

Improper Encoding or Escaping of Output vulnerability in elixir-tesla tesla allows multipart part header injection via unescaped Content-Disposition parameter values. Tesla.Multipart.part headers for disposition/1 interpolates each disposition parameter as k="v" with no validation of CR r, LF , o...

2.1CVSS5.8AI score0.00014EPSS
Exploits0References5
NVD
NVDadded 6 days ago11 views

CVE-2026-24085

Memory Corruption when processing display command line information due to improper initialization of a variable...

7.2CVSS0.00013EPSS
Exploits0References1
CVE
CVEadded 6 days ago20 views

CVE-2026-24085

Technical details about CVE-2026-24085 are not publicly available in the provided documents; the memory corruption description is noted but no affected products, affected versions, root cause specifics, or fixes are disclosed. Monitor for updates.

7.2CVSS5.8AI score0.00013EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKBadded 6 days ago8 views

CVE-2026-24085

Memory Corruption when processing display command line information due to improper initialization of a variable...

7.2CVSS5.8AI score0.00013EPSS
Exploits0References2
Cvelist
Cvelistadded 6 days ago27 views

CVE-2026-24085 Stack-based Buffer Overflow in Display

Memory Corruption when processing display command line information due to improper initialization of a variable...

7.2CVSS0.00013EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 6 days ago6 views

CVE-2026-24085 Stack-based Buffer Overflow in Display

Memory Corruption when processing display command line information due to improper initialization of a variable...

7.2CVSS5.8AI score0.00013EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 6 days ago10 views

CVE-2026-49134 CodexBar < 0.32.0 Privilege Escalation via CLI Installer Temp File

CodexBar prior to 0.32.0 contains a privilege escalation vulnerability in the CLI installer that allows local attackers to execute arbitrary commands as root by exploiting a race condition in temporary file handling. The installer creates a temporary file with mktemp, writes a privileged shell...

7.5CVSS6.1AI score0.00058EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 6 days ago8 views

CVE-2026-49134

CodexBar prior to 0.32.0 contains a privilege escalation vulnerability in the CLI installer that allows local attackers to execute arbitrary commands as root by exploiting a race condition in temporary file handling. The installer creates a temporary file with mktemp, writes a privileged shell...

7.5CVSS6.1AI score0.00058EPSS
Exploits0References5
Cvelist
Cvelistadded 6 days ago22 views

CVE-2026-49134 CodexBar < 0.32.0 Privilege Escalation via CLI Installer Temp File

CodexBar prior to 0.32.0 contains a privilege escalation vulnerability in the CLI installer that allows local attackers to execute arbitrary commands as root by exploiting a race condition in temporary file handling. The installer creates a temporary file with mktemp, writes a privileged shell...

7.5CVSS0.00058EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 6 days ago9 views

OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username

A flaw was found in OpenSSH. This vulnerability allows a remote attacker to achieve arbitrary command execution by injecting shell metacharacters into a username provided on the command line. Exploitation requires an untrusted username and a non-default configuration of the '%' character in...

8.1CVSS6AI score0.00034EPSS
Exploits0References7
CNNVD
CNNVDadded 6 days ago6 views

CodexBar security vulnerabilities

CodexBar is an AI programming service usage monitoring tool developed by Peter Steinberger. Versions of CodexBar prior to 0.32.0 contained a security vulnerability. This vulnerability stemmed from a race condition in the handling of temporary files during CLI installation, which could allow local...

7.5CVSS6.1AI score0.00058EPSS
Exploits0References4
Packet Storm
Packet Stormadded 6 days ago35 views

📄 Notepad++ 8.9.6 Arbitrary Code Execution

Notepad++ versions 8.9.6 and below proof of concept arbitrary code execution exploit. Exploit Title: Notepad++ 8.9.6 - Arbitrary Code Execution Date: 2026-05-30 Exploit Author: Kavin Jindal Avyukt Security https://www.linkedin.com/in/kavin-jindal/ Vendor Homepage: https://notepad-plus-plus.org...

6.3AI score
Exploits4
Rows per page
Query Builder