Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

192213 matches found

CVE
CVEadded 2026/04/08 9:21 p.m.17 views

CVE-2026-5914

CVE-2026-5914 is a Type Confusion in CSS in Chromium-based Chrome prior to 147.0.7727.55. The vulnerability could allow heap corruption when a user installs a crafted malicious Chrome extension, with exploitation requiring user interaction. Affected software is Google Chrome/Chromium engine; root...

8.8CVSS5.9AI score0.00164EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2026/04/08 9:21 p.m.8 views

CVE-2026-5914

Type Confusion in CSS in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Low...

8.8CVSS8.5AI score0.00164EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/04/08 9:21 p.m.3 views

CVE-2026-5914

Type Confusion in CSS in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Low...

5.9AI score0.00164EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/08 9:21 p.m.5 views

CVE-2026-5913

Out of bounds read in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Low...

5.9AI score0.00205EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/04/08 9:20 p.m.1 views

CVE-2026-5899

Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6.1CVSS8.6AI score0.00134EPSS
Exploits0
CVE
CVEadded 2026/04/08 9:20 p.m.9 views

CVE-2026-5898

The CVE-2026-5898 entry concerns a security UI issue in the Omnibox of Google Chrome on iOS (Chromium). The underlying problem is an incorrect security UI that could enable UI spoofing via a crafted HTML page, classified with a Chromium security severity of Low and a CVSS 3.1 base score of 4.3 (M...

4.3CVSS5.9AI score0.00154EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/04/08 9:20 p.m.16 views

CVE-2026-5894

Inappropriate implementation in PDF in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

0.00159EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2026/04/08 9:20 p.m.6 views

CVE-2026-5891

Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS7.4AI score0.00206EPSS
Exploits0
Cvelist
Cvelistadded 2026/04/08 9:20 p.m.19 views

CVE-2026-5889

Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. Chromium security severity: Medium...

0.00102EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/08 9:20 p.m.3 views

CVE-2026-5889

Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. Chromium security severity: Medium...

5.9AI score0.00102EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/04/08 9:20 p.m.13 views

CVE-2026-5888

CVE-2026-5888 concerns Google Chrome/WebCodecs. The issue is described as an uninitialized use in WebCodecs that could allow a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. The vulnerability is categorized with a Medium severity in Chromi...

6.5CVSS5.9AI score0.00258EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/08 9:20 p.m.2 views

CVE-2026-5889

Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. Chromium security severity: Medium...

5.8AI score0.00102EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2026/04/08 9:20 p.m.1 views

CVE-2026-5885

Insufficient validation of untrusted input in WebML in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00237EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/04/08 9:20 p.m.1 views

CVE-2026-5875

Policy bypass in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.00189EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/04/08 9:20 p.m.16 views

CVE-2026-5864

Heap buffer overflow in WebAudio in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00241EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/08 9:20 p.m.1 views

CVE-2026-5859

Integer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

6AI score0.00351EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2026/04/08 9:17 p.m.0 views

DEBIAN-CVE-2026-39860

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

8.4CVSS5.7AI score0.00193EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/08 8:58 p.m.16 views

CVE-2026-39860 Nix sandbox escape: file write via symlink at FOD `.tmp` copy destination

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

9CVSS0.00193EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/04/08 8:58 p.m.2 views

CVE-2026-39860 Nix sandbox escape: file write via symlink at FOD `.tmp` copy destination

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

9CVSS6.7AI score0.00193EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/04/08 8:30 p.m.0 views

CVE-2026-5805 code-projects Easy Blog Site contact_us.php sql injection

A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contactus.php. Executing a manipulation of the argument Name can lead to sql injection. The attack can be launched remotely. The exploit has been made available...

7.5CVSS6.8AI score0.00254EPSS
Exploits0References5
Rows per page
Query Builder