Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4189 matches found

Positive Technologies
Positive Technologiesadded 2026/05/19 12:0 a.m.17 views

PT-2026-41962

Name of the Vulnerable Software and Affected Versions Nuxt versions 3.4.3 through 3.21.5 Nuxt versions 4.0.0-alpha.1 through 4.4.5 Description When using the navigateTo function with the external: true option, the software generates a server-side HTML redirect body containing a tag. The destinati...

5.4CVSS5.1AI score0.00164EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2026/05/18 12:0 a.m.17 views

PT-2026-41723

Name of the Vulnerable Software and Affected Versions Summarize versions prior to 0.15.1 Description A missing authorization issue allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. By using malicious page or...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References7
Veracode
Veracodeadded 2026/05/16 5:49 a.m.14 views

Cross-site Scripting (XSS)

ci4-cms-erp/ci4ms is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper sanitization and output encoding of user-controlled post data in the Menu Management functionality, which allows an attacker to inject malicious scripts that execute in administrative dashboards and...

9.1CVSS5.9AI score0.00269EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVEadded 2026/05/16 1:14 a.m.8 views

SUSE CVE-2026-8562

Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00187EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2026/05/16 1:14 a.m.7 views

SUSE CVE-2026-8563

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00182EPSS
Exploits0References3
Microsoft CVE
Microsoft CVEadded 2026/05/16 12:21 a.m.15 views

Chromium: CVE-2026-8562 Side-channel information leakage in Navigation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00187EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/05/15 8:1 a.m.7 views

CVE-2026-8562

A side-channel information leakage flaw was found in the Navigation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=40057534...

7.4CVSS5.7AI score0.00187EPSS
Exploits0References5
Redos
Redosadded 2026/05/15 12:0 a.m.10 views

ROS-20260515-73-0053

A vulnerability in the Google Chrome browser is related to access control flaws. Exploitation of the vulnerability could allow an attacker acting remotely to bypass navigation restrictions using a specially crafted HTML page...

6.5CVSS5.8AI score0.00147EPSS
Exploits0
Redos
Redosadded 2026/05/15 12:0 a.m.7 views

ROS-20260515-73-0046

A vulnerability in the Navigation feature of Google Chrome browser is related to improper authorization. Exploitation of the vulnerability could allow an attacker acting remotely to bypass navigation restrictions using a specially crafted HTML page...

6.5CVSS5.8AI score0.0016EPSS
Exploits0
Redos
Redosadded 2026/05/15 12:0 a.m.10 views

ROS-20260515-73-0047

A vulnerability in the Google Chrome browser is related to access control flaws. Exploitation of the vulnerability could allow an attacker acting remotely to bypass navigation restrictions using a specially crafted HTML page...

7.5CVSS5.8AI score0.00183EPSS
Exploits0
NVD
NVDadded 2026/05/14 8:17 p.m.13 views

CVE-2026-8562

Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS0.00187EPSS
Exploits0References2
NVD
NVDadded 2026/05/14 8:17 p.m.10 views

CVE-2026-8563

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS0.00182EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/05/14 8:17 p.m.8 views

CVE-2026-8562

Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00187EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2026/05/14 8:17 p.m.11 views

CVE-2026-8563

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00182EPSS
Exploits0References3
CVE
CVEadded 2026/05/14 7:52 p.m.23 views

CVE-2026-8562

CVE-2026-8562 describes a side-channel information leakage flaw in the Navigation component of Google Chrome (upstream Chromium) prior to 148.0.7778.168. A crafted HTML page could leak cross-origin data, as indicated by multiple sources (NVD/Red Hat/ Debian trackers) and upstream Chromium bug 400...

4.3CVSS5.8AI score0.00187EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/14 7:52 p.m.8 views

CVE-2026-8563

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00182EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/14 7:52 p.m.8 views

CVE-2026-8563

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00182EPSS
Exploits0References2
CVE
CVEadded 2026/05/14 7:52 p.m.23 views

CVE-2026-8563

CVE-2026-8563 affects Google Chrome on Windows, with an insufficient policy enforcement flaw in the IFrame Sandbox of Chromium that could allow a remote attacker to bypass navigation restrictions via a crafted HTML page. Affected component: IFrame Sandbox; root cause: policy enforcement insuffici...

4.3CVSS5.8AI score0.00182EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/14 7:52 p.m.6 views

CVE-2026-8562

Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00187EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/14 7:52 p.m.13 views

EUVD-2026-30379

Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00187EPSS
Exploits0References2
Rows per page
Query Builder