Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18785 matches found

Positive Technologies
Positive Technologiesadded 2026/02/16 12:0 a.m.7 views

PT-2026-8348

A flaw has been found in GeekAI up to 4.2.4. The affected element is the function Download of the file api/handler/net handler.go. This manipulation of the argument url causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been published and may be use...

6.5CVSS5.2AI score0.00054EPSS
Exploits0References6
Snyk
Snykadded 2026/02/13 6:58 p.m.1 views

Off-by-one Error

Overview bacnet-stack is a None Affected versions of this package are vulnerable to Off-by-one Error. via the tokenizerstring function. An attacker can cause a crash by providing a string literal longer than the buffer limit, which leads to a stack overflow when the function incorrectly writes a...

6.8CVSS5.8AI score0.00007EPSS
Exploits1References2
Fedora
Fedoraadded 2026/02/11 1:0 a.m.4 views

[SECURITY] Fedora 42 Update: rust-ingredients-0.2.2-2.fc42

Check ingredients of published Rust crates...

7.5CVSS5.4AI score0.00042EPSS
Exploits1
ATTACKERKB
ATTACKERKBadded 2026/02/10 11:32 p.m.6 views

CVE-2026-25251

This has been moved to the REJECTED state because the information source is under review. If circumstances change, it is possible that this will be moved to the PUBLISHED state at a later date...

5.4AI score
Exploits0References1
NCSC
NCSCadded 2026/02/10 12:27 p.m.8 views

Vulnerabilities fixed in Siemens products

Siemens has fixed vulnerabilities in various products such as Desigo, NX, Polarion, SENTRON, Simcenter, SINEC, SIPORT, Siveillance, Solid Edge, The vulnerabilities potentially enable a malicious person to carry out attacks that can lead to the following categories of damage: - Denial-of-Service D...

9.8CVSS8.4AI score0.26747EPSS
Exploits6References8
Fedora
Fedoraadded 2026/02/10 1:34 a.m.5 views

[SECURITY] Fedora 43 Update: rust-ingredients-0.2.2-2.fc43

Check ingredients of published Rust crates...

7.5CVSS5.4AI score0.00042EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2026/02/10 1:23 a.m.4 views

CVE-2026-2194

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

8.8CVSS5.4AI score0.00033EPSS
Exploits1References1
OSV
OSVadded 2026/02/09 9:16 a.m.3 views

CVE-2026-2225

A flaw has been found in itsourcecode News Portal Project 1.0. This vulnerability affects unknown code of the file /admin/index.php of the component Administrator Login. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS5.7AI score0.00022EPSS
Exploits1References6
NVD
NVDadded 2026/02/09 12:15 a.m.4 views

CVE-2026-2194

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

8.8CVSS0.00033EPSS
Exploits1References5
OSV
OSVadded 2026/02/09 12:15 a.m.2 views

CVE-2026-2194

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

8.8CVSS5.6AI score0.00033EPSS
Exploits1References5
ATTACKERKB
ATTACKERKBadded 2026/02/08 11:32 p.m.1 views

CVE-2026-2194

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS5.4AI score0.00033EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/08 11:32 p.m.2 views

CVE-2026-2194 D-Link DI-7100G C1 start_proxy_client_email command injection

A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function startproxyclientemail. Executing a manipulation can lead to command injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS5.4AI score0.00033EPSS
Exploits1References5
OSV
OSVadded 2026/02/08 9:15 p.m.0 views

CVE-2026-2185

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function setdevicename of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-based buffer overflow. The attack is possible to be...

8.7CVSS6.3AI score
Exploits0References5
Circl
Circladded 2026/02/08 1:38 p.m.2 views

CVE-2026-25479

creationtimestamp| type| source ---|---|--- 2026-02-08 13:38:24+00:00| published-proof-of-concept| https://github.com/litestar-org/litestar/security/advisories/GHSA-93ph-p7v4-hwh4...

6.5CVSS5.8AI score0.00019EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/02/08 5:2 a.m.27 views

CVE-2026-2136 projectworlds Online Food Ordering System view-ticket.php sql injection

A flaw has been found in projectworlds Online Food Ordering System 1.0. This affects an unknown function of the file /view-ticket.php. Executing a manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be use...

7.5CVSS0.00045EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2026/02/08 12:0 a.m.4 views

PT-2026-6986

Name of the Vulnerable Software and Affected Versions Tenda AC8 version 16.03.33.05 Description A buffer overflow issue exists in the Embedded Httpd Service component of Tenda AC8. The flaw is located in the file '/goform/fast setting wifi set' and is triggered by manipulating the timeZone...

9CVSS5.5AI score0.00112EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2026/02/08 12:0 a.m.4 views

PT-2026-7019

Name of the Vulnerable Software and Affected Versions Tenda RX3 version 16.03.13.11 Description A flaw exists in Tenda RX3 version 16.03.13.11 related to buffer overflow. The issue is located in the set device name function within the /goform/setBlackRule file, part of the MAC Filtering...

9CVSS6.3AI score0.00035EPSS
Exploits1References7
NVD
NVDadded 2026/02/07 5:15 p.m.2 views

CVE-2026-2105

A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. The affected element is the function addDept/updateDept/deleteDept of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\DeptController.java of the component Department Management...

8.8CVSS0.00085EPSS
Exploits1References6
EUVD
EUVDadded 2026/02/07 5:2 p.m.2 views

EUVD-2026-5722

A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. The affected element is the function addDept/updateDept/deleteDept of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\DeptController.java of the component Department Management...

6.5CVSS5.1AI score0.00085EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/02/07 5:2 p.m.2 views

CVE-2026-2105

A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. The affected element is the function addDept/updateDept/deleteDept of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\DeptController.java of the component Department Management...

6.5CVSS6.2AI score0.00085EPSS
Exploits1References6
Rows per page
Query Builder