Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

402 matches found

CVE
CVEadded 2 days ago7 views

CVE-2026-52885

Notepad++ Notepad++ v8.9.6.4 fixes a TOCTOU vulnerability (CVE-2026-52885) where the on-disk HMAC of shortcuts.xml is checked at trigger time while the command payload is loaded into memory at startup and never synchronized. An attacker with write access to shortcuts.xml can plant a malicious fil...

7.5CVSS6AI score0.00164EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 4 days ago5 views

Linux Distros Unpatched Vulnerability : CVE-2026-50023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, a vulnerability exists in yt-dlp that allows a remote attacker to write arbitrary...

9.6CVSS6.1AI score0.00555EPSS
Exploits1References3
NVD
NVDadded 5 days ago5 views

CVE-2026-50023

yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, a vulnerability exists in yt-dlp that allows a remote attacker to write arbitrary OS-shortcut files such as .desktop, .url, .webloc to the user's filesystem, bypassing the remediation for CVE-2024-38519. The allowlist explicitl...

9.6CVSS0.00555EPSS
Exploits1References4
AstraLinux
AstraLinuxadded 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Firefox

Insufficient validation in the Drag and Drop API, combined with social engineering, may have allowed an attacker to trick end-users into creating shortcuts to local system files. This could have been exploited to execute arbitrary code. This vulnerability affects Firefox versions earlier than 115...

7.8CVSS8AI score0.00263EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/06/09 5:37 p.m.68 views

Exploit for CVE-2026-52885

TOCTOU: HMAC Checks Disk, Executes from Memory Notepad++ v8...

5.9AI score0.00164EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2026/06/07 5:22 a.m.12 views

CVE-2026-11283

A policy bypass flaw was found in the Shortcuts component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502069297...

6.5CVSS5.4AI score0.002EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2026/06/07 4:39 a.m.8 views

SUSE CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

6.5CVSS5.5AI score0.002EPSS
Exploits0References2
Microsoft CVE
Microsoft CVEadded 2026/06/05 2:0 p.m.8 views

Chromium: CVE-2026-11283 Policy bypass in Shortcuts

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.002EPSS
Exploits0
EUVD
EUVDadded 2026/06/05 12:31 a.m.9 views

EUVD-2026-34744

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

5.8AI score0.002EPSS
Exploits0References3
NVD
NVDadded 2026/06/05 12:17 a.m.10 views

CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

6.5CVSS0.002EPSS
Exploits0References2
OSV
OSVadded 2026/06/05 12:17 a.m.5 views

DEBIAN-CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

6.5CVSS5.5AI score0.002EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/06/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-11283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictio...

6.5CVSS5.5AI score0.002EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/04 11:6 p.m.40 views

CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

0.002EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:6 p.m.7 views

CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

5.5AI score0.002EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:6 p.m.6 views

CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

6.5CVSS5.5AI score0.002EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/06/04 11:6 p.m.22 views

CVE-2026-11283

The CVE-2026-11283 entry concerns Google Chrome on macOS where Shortcuts mishandles untrusted input due to insufficient validation, allowing a remote attacker to bypass navigation restrictions via a malicious file. Affected product/version: Chrome for macOS, before 149.0.7827.53. Root cause: inad...

6.5CVSS5.8AI score0.002EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2026/06/04 11:6 p.m.8 views

CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

6.5CVSS5.5AI score0.002EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/06/04 12:0 a.m.8 views

PT-2026-46810

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

5.8AI score0.002EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/06/04 12:0 a.m.65 views

Notepad++ < 8.9.6.1 Multiple Vulnerabilities

The version of Notepad++ installed on the remote host is prior to 8.9.6.1. It is, therefore, affected by multiple vulnerabilities: - A crash caused by any malformed structure that could allow an attacker to cause a denial of service condition. CVE-2026-48770 - An arbitrary code execution...

7.8CVSS6.6AI score0.01369EPSS
Exploits5References8
Tenable Nessus
Tenable Nessusadded 2026/06/04 12:0 a.m.33 views

Notepad++ < 8.9.6.2 Arbitrary Code Execution

The version of Notepad++ installed on the remote host is prior to 8.9.6.2. It is, therefore, affected by an arbitrary code execution vulnerability: - An arbitrary code execution vulnerability exists due to improper handling of shortcuts.xml files. A previous fix in version 8.9.6.1 was incomplete,...

7.8CVSS6.5AI score0.00375EPSS
Exploits2References4
Rows per page
Query Builder