Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

54 matches found

RedhatCVE
RedhatCVEadded yesterday3 views

CVE-2026-11436

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS4AI score0.00033EPSS
Exploits0References1
NVD
NVDadded 3 days ago9 views

CVE-2026-11436

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS0.00033EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 3 days ago2 views

CVE-2026-11436 Mage AI Sign-in Flow index.tsx useMutation cross site scripting

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS4.1AI score0.00033EPSS
Exploits0References5
CVE
CVEadded 3 days ago15 views

CVE-2026-11436

Mage AI up to version 0.9.79 is affected in the Sign-in Flow. The vulnerability is in the useMutation function within mage_ai/frontend/components/Sessions/SignForm/index.tsx, where manipulating the query.redirect_url argument triggers cross site scripting. Remote exploitation is possible, and the...

5.3CVSS4.1AI score0.00033EPSS
Exploits0References5
Cvelist
Cvelistadded 3 days ago32 views

CVE-2026-11436 Mage AI Sign-in Flow index.tsx useMutation cross site scripting

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mageai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirecturl results in cross site scripting. Remote...

5.3CVSS0.00033EPSS
Exploits0References5
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в chromium

Before version 105.0.5195.52, using “after free” in the Sign-In Flow in Google Chrome allowed a remote attacker who convinced a user to engage in certain UI interactions to potentially exploit heap corruption through crafted UI interactions...

8.8CVSS7.3AI score0.00872EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в chromium

In the Sign-In Flow in Google Chrome, using after free before version 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS7.3AI score0.00807EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-34861

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00807EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-42490

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00872EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2025/01/23 9:22 p.m.2 views

CVE-2025-0693 Issue with AWS Sign-in IAM User Login Flow - Possible Username Enumeration

Variable response times in the AWS Sign-in IAM user login flow allowed for the use of brute force enumeration techniques to identify valid IAM usernames in an arbitrary AWS account...

6.9CVSS6.6AI score0.00149EPSS
Exploits0References1
OpenVAS
OpenVASadded 2024/03/04 12:0 a.m.34 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10086-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.01286EPSS
Exploits3References2
SUSE CVE
SUSE CVEadded 2023/02/15 3:32 a.m.2 views

SUSE CVE-2022-2614

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.9AI score0.00807EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2023/02/15 3:32 a.m.2 views

SUSE CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS9.2AI score0.01136EPSS
Exploits0References6
SUSE CVE
SUSE CVEadded 2023/02/15 3:31 a.m.2 views

SUSE CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS9.2AI score0.00872EPSS
Exploits0References5
NVD
NVDadded 2022/09/26 4:15 p.m.22 views

CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS0.00872EPSS
Exploits0References4
OSV
OSVadded 2022/09/26 4:15 p.m.17 views

CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS9.4AI score
Exploits0References4
OSV
OSVadded 2022/09/26 4:15 p.m.1 views

DEBIAN-CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

8.8CVSS7.4AI score0.00872EPSS
Exploits0References1
OSV
OSVadded 2022/09/26 4:15 p.m.1 views

DEBIAN-CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS8.2AI score0.01136EPSS
Exploits0References1
NVD
NVDadded 2022/09/26 4:15 p.m.18 views

CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS0.01136EPSS
Exploits0References3
OSV
OSVadded 2022/09/26 4:15 p.m.20 views

CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

8.8CVSS9AI score
Exploits0References3
Rows per page
Query Builder