Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

120646 matches found

Vulnrichment
Vulnrichmentadded 2026/02/27 7:50 a.m.3 views

CVE-2026-27776

IM-LogicDesigner module of intra-mart Accel Platform contains insecure deserialization issue. This can be exploited only when IM-LogicDesigner is deployed on the system. Arbitrary code may be executed when some crafted file is imported by a user with the administrative privilege...

8.6CVSS5.8AI score0.00367EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2026/02/27 6:41 a.m.5 views

IM-LogicDesigner module of intra-mart Accel Platform vulnerable to untrusted data deserialization

Overview IM-LogicDesigner module of intra-mart Accel Platform provided by NTT DATA INTRAMART Corporation contains the following vulnerability. Untrusted data deserialization CWE-502 - CVE-2026-27776 This can be exploited only when IM-LogicDesigner is deployed Masataka Sagami reported this...

8.8CVSS7.1AI score0.00367EPSS
Exploits0References5
NVD
NVDadded 2026/02/27 6:17 a.m.7 views

CVE-2026-27653

The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permissions, which may allow arbitrary code to be executed with SYSTEM privileges...

6.7CVSS0.00088EPSS
Exploits0References2
CVE
CVEadded 2026/02/27 5:39 a.m.12 views

CVE-2026-27653

CVE-2026-27653 concerns installers for multiple Soliton Systems K.K. products that contain incorrect default permissions, enabling arbitrary code execution with SYSTEM privileges. The issue is documented in NVD/CVE references as affecting Soliton installers; root cause is permission misconfigurat...

6.7CVSS6.9AI score0.00088EPSS
Exploits0References2Affected Software3
ATTACKERKB
ATTACKERKBadded 2026/02/27 5:39 a.m.2 views

CVE-2026-27653

The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permissions, which may allow arbitrary code to be executed with SYSTEM privileges...

6.7CVSS6.9AI score0.00088EPSS
Exploits0References3Affected Software3
RedhatCVE
RedhatCVEadded 2026/02/27 4:13 a.m.4 views

CVE-2025-50857

ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php. This allows attackers to execute arbitrary code via a crafted file upload...

9.8CVSS5.9AI score0.02293EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2026/02/27 12:24 a.m.4 views

SUSE CVE-2026-28296

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed CRLF sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and...

7.3CVSS6.3AI score0.0036EPSS
Exploits2References7
CNNVD
CNNVDadded 2026/02/27 12:0 a.m.3 views

NTT DATA INTRAMART intra-mart Accel Platform 代码问题漏洞

NTT DATA INTRAMART intra-mart Accel Platform is a digital transformation system development platform owned by NTT DATA INTRAMART in Japan. There are code vulnerabilities within the NTT DATA INTRAMART intra-mart Accel Platform; these vulnerabilities stem from insecure deserialization issues, which...

8.8CVSS7.4AI score0.00367EPSS
Exploits0References3
NVD
NVDadded 2026/02/26 11:16 p.m.6 views

CVE-2026-28211

The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability exists in versions 2.0 through 8.0 in the Log Reader feature of this add-on. A maliciously crafted log file can lead to arbitrary code execution when a user reads it with log...

7.8CVSS0.002EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/02/26 10:29 p.m.2 views

CVE-2026-28211

The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability exists in versions 2.0 through 8.0 in the Log Reader feature of this add-on. A maliciously crafted log file can lead to arbitrary code execution when a user reads it with log...

7.8CVSS6.4AI score0.002EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/02/26 10:29 p.m.26 views

CVE-2026-28211 Arbitrary code execution in log reader via untrusted log file

The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability exists in versions 2.0 through 8.0 in the Log Reader feature of this add-on. A maliciously crafted log file can lead to arbitrary code execution when a user reads it with log...

7.8CVSS0.002EPSS
Exploits0References3
OSV
OSVadded 2026/02/26 10:29 p.m.6 views

CVE-2026-28211 Arbitrary code execution in log reader via untrusted log file

The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability exists in versions 2.0 through 8.0 in the Log Reader feature of this add-on. A maliciously crafted log file can lead to arbitrary code execution when a user reads it with log...

7.8CVSS6.5AI score0.002EPSS
Exploits0References5
EUVD
EUVDadded 2026/02/26 9:31 p.m.4 views

EUVD-2026-8882

Unitree Go2 firmware versions 1.1.7 through 1.1.11, when used with the Unitree Go2 Android application com.unitree.doggo2, are vulnerable to remote code execution due to missing integrity protection and validation of user-created programmes. The Android application stores programs in a local SQLi...

6.4CVSS6.6AI score0.00292EPSS
Exploits1References4
EUVD
EUVDadded 2026/02/26 6:31 p.m.4 views

EUVD-2026-8862

An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the PluginController.java component...

7.8CVSS6AI score0.00182EPSS
Exploits1References3
EUVD
EUVDadded 2026/02/26 6:31 p.m.6 views

EUVD-2025-208123

ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php. This allows attackers to execute arbitrary code via a crafted file upload...

9.8CVSS5.9AI score0.02293EPSS
Exploits0References3
OSV
OSVadded 2026/02/26 6:23 p.m.2 views

CVE-2026-26682

An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the PluginController.java component...

7.8CVSS6.1AI score0.00182EPSS
Exploits1References2
NVD
NVDadded 2026/02/26 6:23 p.m.5 views

CVE-2026-26682

An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the PluginController.java component...

7.8CVSS0.00182EPSS
Exploits1References2
NVD
NVDadded 2026/02/26 5:22 p.m.3 views

CVE-2025-50857

ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php. This allows attackers to execute arbitrary code via a crafted file upload...

9.8CVSS0.02293EPSS
Exploits0References2
OSV
OSVadded 2026/02/26 4:24 p.m.4 views

DEBIAN-CVE-2026-28296

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed CRLF sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and...

4.3CVSS8.9AI score0.0036EPSS
Exploits2References1
NVD
NVDadded 2026/02/26 4:24 p.m.5 views

CVE-2026-28296

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed CRLF sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and...

4.3CVSS0.0036EPSS
Exploits2References2
Rows per page
Query Builder