Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

54489 matches found

Cvelist
Cvelistadded 2026/03/24 2:13 p.m.19 views

CVE-2026-27784 NGINX ngx_http_mp4_module vulnerability

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngxhttpmp4module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its termination, using a specially crafted MP4 file. The issue only affects 32-bit NGINX Open Source if it i...

8.5CVSS0.00017EPSS
Exploits0References1
CVE
CVEadded 2026/03/24 2:13 p.m.29 views

CVE-2026-27784

The CVE-2026-27784 issue affects 32-bit builds of NGINX Open Source that are compiled with the ngx_http_mp4_module and configured to use the mp4 directive. The vulnerability arises in the 32-bit implementation of NGINX Open Source when processing a specially crafted MP4 file via the ngx_http_mp4_...

8.5CVSS5.8AI score0.00017EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/24 2:13 p.m.6 views

CVE-2026-32647

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially crafted MP4 file. This issue affect...

8.5CVSS6.1AI score0.00026EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/03/24 2:13 p.m.16 views

CVE-2026-32647 NGINX ngx_http_mp4_module vulnerability

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially crafted MP4 file. This issue affect...

8.5CVSS0.00026EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2026/03/24 2:13 p.m.1 views

CVE-2026-32647

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially crafted MP4 file. This issue affect...

8.5CVSS9.2AI score0.00026EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2026/03/24 2:13 p.m.1 views

CVE-2026-32647

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially crafted MP4 file. This issue affect...

8.5CVSS6.1AI score0.00026EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/03/24 2:13 p.m.3 views

CVE-2026-32647 NGINX ngx_http_mp4_module vulnerability

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially crafted MP4 file. This issue affect...

8.5CVSS6.1AI score0.00026EPSS
Exploits0References1
Nginx
Nginxadded 2026/03/24 2:13 p.m.140 views

Buffer overflow in the ngx_http_mp4_module

Buffer overflow in the ngxhttpmp4module Severity: medium CVE-2026-27784 Not vulnerable: 1.29.7+, 1.28.3+ Vulnerable: 1.1.19-1.29.6...

8.5CVSS5.8AI score0.00017EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/24 2:13 p.m.5 views

CVE-2026-27784

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngxhttpmp4module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its termination, using a specially crafted MP4 file. The issue only affects 32-bit NGINX Open Source if it i...

8.5CVSS5.8AI score0.00017EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/24 2:13 p.m.2 views

CVE-2026-27784 NGINX ngx_http_mp4_module vulnerability

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngxhttpmp4module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its termination, using a specially crafted MP4 file. The issue only affects 32-bit NGINX Open Source if it i...

8.5CVSS5.8AI score0.00017EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2026/03/24 2:13 p.m.1 views

CVE-2026-27784

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngxhttpmp4module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its termination, using a specially crafted MP4 file. The issue only affects 32-bit NGINX Open Source if it i...

8.5CVSS5.8AI score0.00017EPSS
Exploits0
Nginx
Nginxadded 2026/03/24 2:13 p.m.172 views

Buffer overflow in the ngx_http_mp4_module

Buffer overflow in the ngxhttpmp4module Severity: medium CVE-2026-32647 Not vulnerable: 1.29.7+, 1.28.3+ Vulnerable: 1.1.19-1.29.6...

8.5CVSS5.8AI score0.00026EPSS
Exploits0References1Affected Software1
F5 Networks
F5 Networksadded 2026/03/24 1:46 p.m.10 views

K000160336: Out-of-band Security Notification (March 24, 2026)

Security Advisory Description On March 24, 2026, F5 announced the following security issues. This document is intended to serve as an overview of these vulnerabilities to help determine the impact to your F5 devices. You can find the details of each issue in the associated articles. High CVEs...

8.8CVSS5.8AI score0.00064EPSS
Exploits0
F5 Networks
F5 Networksadded 2026/03/24 1:32 p.m.6 views

K000160368: NGINX ngx_stream_ssl_module vulnerability CVE-2026-28755

Security Advisory Description NGINX Plus and NGINX Open Source have a vulnerability in the ngxstreamsslmodule module due to the improper handling of revoked certificates when configured with the sslverifyclient on and sslocsp on directives, allowing the TLS handshake to succeed even after an OCSP...

5.4CVSS5.8AI score0.00012EPSS
Exploits0Affected Software2
F5 Networks
F5 Networksadded 2026/03/24 1:25 p.m.5 views

K000160382: NGINX ngx_http_dav_module vulnerability CVE-2026-27654

Security Advisory Description NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpdavmodule module that might allow an attacker to trigger a buffer overflow to the NGINX worker process; this vulnerability may result in termination of the NGINX worker process or modification of...

8.8CVSS6.1AI score0.00021EPSS
Exploits0Affected Software2
F5 Networks
F5 Networksadded 2026/03/24 1:15 p.m.6 views

K000160367: NGINX ngx_mail_smtp_module vulnerability CVE-2026-28753

Security Advisory Description NGINX Plus and NGINX Open Source have a vulnerability in the ngxmailsmtpmodule module due to the improper handling of CRLF sequences in DNS responses. This allows an attacker-controlled DNS server to inject arbitrary headers into SMTP upstream requests, leading to...

6.3CVSS5.8AI score0.00031EPSS
Exploits0Affected Software2
F5 Networks
F5 Networksadded 2026/03/24 1:10 p.m.10 views

K000160366: NGINX ngx_http_mp4_module vulnerability CVE-2026-32647

Security Advisory Description NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially craft...

8.5CVSS6.1AI score0.00026EPSS
Exploits0Affected Software2
EUVD
EUVDadded 2026/03/24 12:30 p.m.1 views

EUVD-2019-20022

Netartmedia Vlog System contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the email parameter. Attackers can send POST requests to index.php with malicious email values in the forgottenpassword module to...

8.8CVSS6AI score0.00129EPSS
Exploits0References4
CVE
CVEadded 2026/03/24 11:27 a.m.7 views

CVE-2019-25642

Bootstrapy CMS is affected by multiple SQL injection vulnerabilities that enable unauthenticated attackers to execute arbitrary SQL via POST parameters. Specifically, the thread_id parameter in forum-thread.php, the subject parameter in contact-submit.php, the post-id parameter in post-new-submit...

8.8CVSS6.3AI score0.00121EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/03/24 11:27 a.m.1 views

CVE-2019-25642 Bootstrapy CMS Lastest Multiple SQL Injection via Forum and Contact Modules

Bootstrapy CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through POST parameters. Attackers can inject SQL payloads into the threadid parameter of forum-thread.php, the subject parameter of...

8.8CVSS6.3AI score0.00121EPSS
Exploits0References3
Rows per page
Query Builder