Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

107 matches found

EUVD
EUVDadded yesterday7 views

EUVD-2026-34057

A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...

5.3CVSS5.4AI score0.00045EPSS
Exploits0References9
ATTACKERKB
ATTACKERKBadded 2 days ago3 views

CVE-2026-10692

A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...

5.3CVSS5.4AI score0.00045EPSS
Exploits0References8Affected Software1
CNNVD
CNNVDadded 3 days ago3 views

Claw Orchestrator security vulnerabilities

Claw Orchestrator is a multi-agent coding agent runtime platform developed by Guian Fang personally. Versions of Claw Orchestrator 3.7.0 and earlier contained security vulnerabilities. These vulnerabilities stemmed from incorrect handling of the parameter body.pattern in the validateRegex functio...

5.3CVSS5.7AI score0.0006EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2026/04/14 7:22 a.m.2 views

CVE-2026-5986

A weakness has been identified in Zod jsVideoUrlParser up to 0.5.1. The impacted element is the function getTime in the library lib/util.js. This manipulation of the argument timestamp causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit ha...

6.9CVSS5.5AI score0.0006EPSS
Exploits0References1
EUVD
EUVDadded 2026/04/10 12:30 a.m.1 views

EUVD-2026-21236

A weakness has been identified in Zod jsVideoUrlParser up to 0.5.1. The impacted element is the function getTime in the library lib/util.js. This manipulation of the argument timestamp causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit ha...

6.9CVSS5.8AI score0.0006EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/04/09 10:30 p.m.2 views

CVE-2026-5986 Zod jsVideoUrlParser util.js getTime redos

A weakness has been identified in Zod jsVideoUrlParser up to 0.5.1. The impacted element is the function getTime in the library lib/util.js. This manipulation of the argument timestamp causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit ha...

6.9CVSS5.5AI score0.0006EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/04/09 12:0 a.m.2 views

PT-2026-31820

Name of the Vulnerable Software and Affected Versions Zod jsVideoUrlParser versions up to 0.5.1 Description A weakness exists in Zod jsVideoUrlParser up to version 0.5.1. The issue is related to inefficient regular expression complexity caused by manipulation of the timestamp argument within the...

6.9CVSS5.7AI score0.0006EPSS
Exploits0References10
OSV
OSVadded 2026/03/22 6:16 a.m.3 views

UBUNTU-CVE-2026-4539

A security flaw has been discovered in pygments up to 2.19.2. The impacted element is the function AdlLexer of the file pygments/lexers/archetype.py. The manipulation results in inefficient regular expression complexity. The attack is only possible with local access. The exploit has been released...

4.8CVSS5.4AI score0.00007EPSS
Exploits0References7
EUVD
EUVDadded 2026/03/09 9:31 p.m.2 views

EUVD-2025-208446

An issue pertaining to CWE-1333: Inefficient Regular Expression Complexity 4.19 was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4...

5.8AI score0.00058EPSS
Exploits0References4
CVE
CVEadded 2026/02/27 5:32 a.m.10 views

CVE-2026-3293

CVE-2026-3293 affects snowflake-bdb snowflake-jdbc up to 4.0.1, specifically the SdkProxyRoutePlanner (src/main/java/net/snowflake/client/internal/core/SdkProxyRoutePlanner.java) in the JDBC URL Handler. The vulnerability arises from manipulating the nonProxyHosts argument, which can cause ineffi...

5.5CVSS4.5AI score0.00013EPSS
Exploits1References8Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/26 5:7 p.m.1 views

CVE-2026-26936 Inefficient Regular Expression Complexity in Kibana Leading to Denial of Service

Inefficient Regular Expression Complexity CWE-1333 in the AI Inference Anonymization Engine in Kibana can lead Denial of Service via Regular Expression Exponential Blowup CAPEC-492...

4.9CVSS5.9AI score0.00082EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2026/02/24 10:29 p.m.4 views

Security Bulletin: MongoDB Enterprised Advanced affected by: Inefficient Regular Expression Complexity (CVE-2025-27789)

Summary There are vulnerabilities in helpers-7.21.5.tgz, helpers-7.22.6.tgz, helpers-7.25.0.tgz, runtime-7.21.0.tgz, runtime-7.22.10.tgz, runtime-7.23.2.tgz used in MongoDB Enterprised Advanced for IBM, involving CVE-2025-27789. The vulnerabilities have been addressed. Vulnerability Details...

6.2CVSS5.4AI score0.0006EPSS
Exploits0Affected Software1
CVE
CVEadded 2026/01/07 5:36 p.m.6 views

CVE-2026-0668

The vulnerability CVE-2026-0668 affects Wikimedia Foundation MediaWiki – VisualData Extension (v1.45). An inefficient Regular Expression can cause a Regular Expression Denial of Service (ReDoS) via crafted user input, enabling a remote attacker to trigger excessive processing time. Affected envir...

5.3CVSS6.6AI score0.00125EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2025/11/13 4:15 p.m.2 views

CVE-2025-62484

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access...

9.8CVSS0.0009EPSS
Exploits0References1
SUSE Linux
SUSE Linuxadded 2025/10/24 1:28 p.m.2 views

Security update for afterburn

This update for afterburn fixes the following issues: Update to version 5.9.0.git21.a73f509. Security issues fixed: CVE-2022-24713: regex: no proper complexity limitation when parsing untrusted regular expressions with large repetitions on empty sub-expressions can lead to excessive resource...

8.4CVSS6.8AI score0.10404EPSS
Exploits2References20
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-7695

Malicious code in bioql PyPI...

7.5CVSS4.2AI score0.00442EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-7549

Malicious code in bioql PyPI...

7.5CVSS5AI score0.00483EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2024-3389

Malicious code in bioql PyPI...

6.5CVSS4AI score0.00124EPSS
Exploits0References10
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-7658

Malicious code in bioql PyPI...

7.5CVSS4.8AI score0.00561EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-8271

Malicious code in bioql PyPI...

6.9CVSS5.6AI score0.00338EPSS
Exploits1References6
Rows per page
Query Builder