Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

167 matches found

Positive Technologies
Positive Technologiesadded 6 days ago13 views

PT-2026-50206

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.155 Description An inappropriate implementation in Extensions allows an attacker to bypass the Same Origin Policy SOP—a security mechanism that restricts how a document or script loaded from one origi...

9.6CVSS5.9AI score0.00522EPSS
Exploits0References40
NVD
NVDadded 2026/06/11 10:16 p.m.10 views

CVE-2026-12029

Use after free in Video in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00171EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/04 11:3 p.m.26 views

CVE-2026-10952

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

0.00316EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/06/02 12:0 a.m.8 views

PT-2026-46435

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue exists in WebAuthentication. A remote attacker can potentially exploit heap corruption—a condition where memory allocation on the heap is corrupted—via a crafted...

9.6CVSS5.9AI score0.00865EPSS
Exploits0References434
Rosalinux
Rosalinuxadded 2026/05/10 10:56 p.m.8 views

Advisory ROSA-SA-2026-3268

software: kernel-5.10 5.10.244 WASP: ROSA-CHROME unaffected versions = kernel-5.10-5.10.244-3 affected versions kernel-5.10-5.10.244-3 CVE-ID: CVE-2026-43284 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Linux kernel xfrm subsystem ESP allows data decryption over non-packet skb...

8.8CVSS6AI score0.92165EPSS
Exploits30
NVD
NVDadded 2026/05/06 7:16 p.m.4 views

CVE-2026-7909

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

3.1CVSS0.00187EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/02/20 3:24 p.m.157 views

Exploit for Use After Free in Google Chrome

CSS in Google Chrome prior to Remote Code Execution CVE-2026-...

8.8CVSS6.3AI score0.2202EPSS
Exploits12
Tenable Nessus
Tenable Nessusadded 2026/01/28 12:0 a.m.5 views

Mozilla Thunderbird < 140.7.1

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 140.7.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2026-08 advisory. - When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text...

4.3CVSS8.8AI score0.00159EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/01/20 9:56 p.m.5 views

CVE-2026-21963

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

6CVSS6.2AI score0.00234EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.6 views

MiracleLinux 7 : openssh-7.4p1-23.el7 (AXSA:2023-6280:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6280:07 advisory. openssh: Remote code execution in ssh-agent PKCS11 support CVE-2023-38408 Tenable has extracted the preceding description block directly from the MiracleLinu...

9.8CVSS9AI score0.76768EPSS
Exploits10References2
RedhatCVE
RedhatCVEadded 2026/01/09 10:16 a.m.6 views

CVE-2019-2867

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...

8.2CVSS6.8AI score0.00695EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 10:16 a.m.9 views

CVE-2019-2984

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

6CVSS6.1AI score0.00606EPSS
Exploits0References1
OpenVAS
OpenVASadded 2025/12/22 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-b08763f674)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.8AI score0.00851EPSS
Exploits1References5
Patchstack
Patchstackadded 2025/11/04 12:39 p.m.5 views

WordPress Master Blocks plugin <= 1.4.1.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Upload vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary plugin Upload vulnerability discovered by theviper17y in WordPress Plugin Master Blocks versions = 1.4.1.3...

8.8CVSS6.6AI score0.00534EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/10/26 12:0 a.m.2 views

Fedora 43 : chromium (2025-c75c2892d7)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-c75c2892d7 advisory. Update to 141.0.7390.122 High CVE-2025-12036 chromium: Inappropriate implementation in V8 Tenable has extracted the preceding description block directly from...

8.8CVSS5.5AI score0.03544EPSS
Exploits0References2
Patchstack
Patchstackadded 2025/10/16 12:44 a.m.8 views

WordPress Classified Pro theme <= 1.0.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary plugin Installation vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary plugin Installation vulnerability discovered by István Márton in WordPress Theme ClassifiedPro versions = 1.0.14...

8.8CVSS6.7AI score0.00584EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-7390

Malware in sbrugna...

5.3CVSS5.5AI score0.01045EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-12550

Malware in sbrugna...

4CVSS5.9AI score0.02201EPSS
Exploits0References15
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-22238

Malware in sbrugna...

5CVSS6.3AI score0.01601EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-30513

Malware in sbrugna...

7.5CVSS7.5AI score0.03751EPSS
Exploits0References2
Rows per page
Query Builder