CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

390 matches found

NocoBase - VM Sandbox Escape to Remote Code Execution

NocoBase Workflow Script Node executes user-supplied JavaScript inside a Node.js vm sandbox with a custom require allowlist controlled by WORKFLOWSCRIPTMODULES env var. The console object passed into the sandbox context exposes host-realm WritableWorkerStdio stream objects via console.stdout and...

9.9CVSS6.1AI score0.29502EPSS

Exploits7References3

OSV•added 4 days ago•3 views

BIT-KIBANA-2026-49093 Server-Side Request Forgery (SSRF) in Kibana Leading to Unauthorized Network Access

Server-Side Request Forgery CWE-918 in Kibana can allow an authenticated user with connector management privileges to bypass the operator-configured connector allowlist, causing the Kibana server to issue outbound requests to destinations the egress controls were intended to block...

7.7CVSS5.8AI score0.00033EPSS

Exploits0References2

OSV•added 4 days ago•4 views

BIT-ELK-2026-49093 Server-Side Request Forgery (SSRF) in Kibana Leading to Unauthorized Network Access

7.7CVSS5.8AI score0.00033EPSS

Exploits0References2

OSV•added 4 days ago•5 views

BIT-ELK-2026-42398 Server-Side Request Forgery (SSRF) in Kibana Leading to Unauthorized Network Access

Server-Side Request Forgery CWE-918 in Kibana allows authenticated users with connector management privileges to bypass the operator-configured connection allowlist. By configuring a Webhook connector with a crafted target, an attacker can cause Kibana to issue outbound requests to destinations...

7.7CVSS5.8AI score0.00033EPSS

Exploits0References2

Cloud Foundry•added 4 days ago•2 views

CVE-2026-41013 - Tenant-controlled comma smuggles arbitrary CIFS mount options | Cloud Foundry

HIGH CVSS 3.1 Score: 8.5 AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N Vendor CloudFoundry Foundation Versions Affected Severity is HIGH unless otherwise noted. smb-volume-release – All versions prior to v3.60.0 CF Deployment – All versions prior to v56.0.0 Description Input validation bypass in SMB volume...

8.1CVSS6AI score0.00032EPSS

Exploits0

RedhatCVE•added last week•7 views

CVE-2026-49093

7.7CVSS5.8AI score0.00033EPSS

Exploits0References1

CNNVD•added 2026/05/29 12:0 a.m.•6 views

SillyTavern 代码问题漏洞

SillyTavern is a frontend interface for the SillyTavern open-source language model. Versions of SillyTavern prior to 1.18.0 had code vulnerabilities. This vulnerability stemmed from the corsProxyMiddleware module, which directly forwarded req.params.url to fetchurl, .... This allowed loop request...

6.9CVSS5.9AI score0.00017EPSS

Exploits0References1

NVD•added 2026/05/28 9:16 p.m.•8 views

CVE-2026-49093

7.7CVSS0.00033EPSS

Exploits0References1

NVD•added 2026/05/28 9:16 p.m.•8 views

CVE-2026-42398

7.7CVSS0.00033EPSS

Exploits0References1

EUVD•added 2026/05/28 7:51 p.m.•5 views

EUVD-2026-33035

6.3CVSS5.8AI score0.00033EPSS

Exploits0References1

Cvelist•added 2026/05/28 7:51 p.m.•23 views

CVE-2026-49093 Server-Side Request Forgery (SSRF) in Kibana Leading to Unauthorized Network Access

6.3CVSS0.00033EPSS

Exploits0References1

CVE•added 2026/05/28 7:51 p.m.•13 views

CVE-2026-49093

CVE-2026-49093 describes a Server-Side Request Forgery (SSRF) in Kibana that can be exploited by an authenticated user with connector management privileges to bypass the operator-configured allowlist and make Kibana issue outbound requests to blocked destinations. The issue affects Kibana 9.x ver...

7.7CVSS5.8AI score0.00033EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/05/28 7:47 p.m.•4 views

CVE-2026-42398

7.7CVSS5.8AI score0.00033EPSS

Exploits0References2Affected Software1

EUVD•added 2026/05/28 7:47 p.m.•5 views

EUVD-2026-33032

7.7CVSS5.8AI score0.00033EPSS

Exploits0References1

CVE•added 2026/05/28 7:47 p.m.•11 views

CVE-2026-42398

Kibana is affected by SSRF (CWE-918) where authenticated users with connector-management privileges can bypass the operator-configured allowlist by configuring a Webhook connector to target destinations. The issue allows outbound requests to blocked destinations as per egress controls. Affected v...

7.7CVSS5.8AI score0.00033EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/05/28 7:47 p.m.•23 views

CVE-2026-42398 Server-Side Request Forgery (SSRF) in Kibana Leading to Unauthorized Network Access

7.7CVSS0.00033EPSS

Exploits0References1

Vulnrichment•added 2026/05/28 7:47 p.m.•5 views

CVE-2026-42398 Server-Side Request Forgery (SSRF) in Kibana Leading to Unauthorized Network Access

7.7CVSS5.8AI score0.00033EPSS

Exploits0References1

Elastic•added 2026/05/28 7:26 p.m.•8 views

Kibana 9.3.3 Security Update (ESA-2026-40)

Server-Side Request Forgery SSRF in Kibana Leading to Unauthorized Network Access Server-Side Request Forgery CWE-918 in Kibana can allow an authenticated user with connector management privileges to bypass the operator-configured connector allowlist, causing the Kibana server to issue outbound...

7.7CVSS5.8AI score0.00033EPSS

Exploits0

CVE•added 2026/05/28 4:16 p.m.•12 views

CVE-2026-44466

Zed code editor contains a local, high-severity flaw (CVE-2026-44466) in the terminal tool permission system that can bypass the allowlist via bash arithmetic expansion $((...)), enabling arbitrary commands nested inside an allowlisted command (e.g., echo). This affects Zed prior to version 0.229...

8.6CVSS6.1AI score0.00019EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/05/28 4:15 p.m.•23 views

CVE-2026-44463 Zed: Allowlist Bypass via Environment Variable Injection in Terminal Tool Permissions

Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed by prepending environment variable assignments to allowlisted commands, hijacking program behavior e.g., PAGER to execute arbitrary code. This vulnerability is fixed in 0.229.0...

8.6CVSS0.00025EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by