Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4186 matches found

RedHat Linux
RedHat Linuxadded 2026/04/29 4:17 p.m.5 views

webkitgtk: Processing maliciously crafted web content may bypass Same Origin Policy

A flaw was found in WebKitGTK. Processing malicious web content can cause a cross-origin issue in the Navigation API due to improper input validation and result in a bypass of the same origin policy...

5.4CVSS5.8AI score0.00354EPSS
Exploits2References5
RedhatCVE
RedhatCVEadded 2026/04/29 1:23 a.m.9 views

CVE-2026-7356

An use after free flaw was found in the Navigation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497769116...

9.6CVSS5.2AI score0.00309EPSS
Exploits0References5
OSV
OSVadded 2026/04/28 11:16 p.m.4 views

DEBIAN-CVE-2026-7356

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00309EPSS
Exploits0References1
NVD
NVDadded 2026/04/28 11:16 p.m.5 views

CVE-2026-7356

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00309EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/04/28 11:16 p.m.3 views

CVE-2026-7356

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00309EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/28 10:35 p.m.47 views

CVE-2026-7356

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

0.00309EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/04/28 10:35 p.m.5 views

CVE-2026-7356

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

6AI score0.00309EPSS
Exploits0References2
EUVD
EUVDadded 2026/04/28 10:35 p.m.3 views

EUVD-2026-26182

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

5.9AI score0.00309EPSS
Exploits0References2
CVE
CVEadded 2026/04/28 10:35 p.m.21 views

CVE-2026-7356

CVE-2026-7356 involves a use-after-free in the Navigation component of Google Chrome, upstream in Chrome’s Chromium code. Affected product: Google Chrome; vulnerable under pre-147.0.7727.138 builds. Root cause: use-after-free in Navigation allegedly allows remote attackers to execute arbitrary co...

8.8CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinuxadded 2026/04/28 10:35 p.m.2 views

CVE-2026-7356

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00309EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/04/28 10:35 p.m.2 views

CVE-2026-7356

Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00309EPSS
Exploits0
EUVD
EUVDadded 2026/04/28 6:10 p.m.4 views

EUVD-2026-26118

OpenClaw before 2026.4.8 contains a server-side request forgery policy bypass vulnerability allowing attackers to trigger navigations bypassing normal SSRF checks. Attackers can exploit browser interactions to bypass SSRF protections and access restricted resources...

7.6CVSS5.2AI score0.0021EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/28 6:10 p.m.27 views

CVE-2026-41912 OpenClaw < 2026.4.8 - Server-Side Request Forgery Policy Bypass via Interaction-Triggered Navigation

OpenClaw before 2026.4.8 contains a server-side request forgery policy bypass vulnerability allowing attackers to trigger navigations bypassing normal SSRF checks. Attackers can exploit browser interactions to bypass SSRF protections and access restricted resources...

7.6CVSS0.0021EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/28 6:10 p.m.3 views

CVE-2026-41912

OpenClaw before 2026.4.8 contains a server-side request forgery policy bypass vulnerability allowing attackers to trigger navigations bypassing normal SSRF checks. Attackers can exploit browser interactions to bypass SSRF protections and access restricted resources...

7.6CVSS5.2AI score0.0021EPSS
Exploits0References4
CVE
CVEadded 2026/04/28 6:10 p.m.11 views

CVE-2026-41912

OpenClaw (npm package) before 2026.4.8 is affected by a Server-Side Request Forgery (SSRF) policy bypass via Interaction-Triggered Navigation. The issue allows browser interactions to trigger navigations that bypass normal SSRF checks, potentially enabling access to restricted resources. Affected...

7.6CVSS5.3AI score0.0021EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linuxadded 2026/04/28 7:40 a.m.4 views

webkitgtk: Processing maliciously crafted web content may bypass Same Origin Policy

A flaw was found in WebKitGTK. Processing malicious web content can cause a cross-origin issue in the Navigation API due to improper input validation and result in a bypass of the same origin policy...

5.4CVSS5.8AI score0.00354EPSS
Exploits2References5
CNNVD
CNNVDadded 2026/04/28 12:0 a.m.6 views

OpenClaw 代码问题漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.4.8 had code vulnerabilities. These vulnerabilities stemmed from a server-side request forgery strategy that bypassed security measures. This could allow attackers to trigger...

7.6CVSS5.9AI score0.0021EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/28 12:0 a.m.7 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. In versions prior to 147.0.7727.138, there was a resource management vulnerability that stemmed from the Navigation component reusing resources after it was released. This vulnerability could allow remote attackers to execute arbitrary code...

8.8CVSS6.2AI score0.00309EPSS
Exploits0References2
Kaspersky
Kasperskyadded 2026/04/28 12:0 a.m.10 views

KLA91010 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Canvas can be exploited remotely to execute arbitrar...

9.6CVSS6.8AI score0.00433EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2026/04/27 2:0 a.m.6 views

webkitgtk: Processing maliciously crafted web content may bypass Same Origin Policy

A flaw was found in WebKitGTK. Processing malicious web content can cause a cross-origin issue in the Navigation API due to improper input validation and result in a bypass of the same origin policy...

5.4CVSS5.8AI score0.00354EPSS
Exploits2References5
Rows per page
Query Builder