CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

675 matches found

CVE-2026-53807

OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in Telegram interactive callbacks that allows authenticated users to skip commands.allowFrom validation. Attackers can invoke affected callbacks to mark themselves as authorized senders before allowlist checks are applied,...

8.8CVSS0.00039EPSS

Exploits0References2

Vulnrichment•added 3 days ago•5 views

CVE-2026-53807 OpenClaw < 2026.5.6 - Authorization Bypass in Telegram Interactive Callbacks via commands.allowFrom

8.8CVSS5.2AI score0.00039EPSS

Exploits0References2

CVE•added 3 days ago•8 views

CVE-2026-53807

OpenClaw prior to 2026.5.6 is vulnerable to an authorization bypass in Telegram interactive callbacks via commands.allowFrom. An authenticated user can invoke affected callbacks to bypass allowlist validation and mark themselves as authorized senders, enabling command behavior outside Telegram se...

8.8CVSS5.5AI score0.00039EPSS

Exploits0References2Affected Software1

Cvelist•added 3 days ago•28 views

CVE-2026-53807 OpenClaw < 2026.5.6 - Authorization Bypass in Telegram Interactive Callbacks via commands.allowFrom

8.8CVSS0.00039EPSS

Exploits0References2

EUVD•added 3 days ago•6 views

EUVD-2026-36313

8.8CVSS5.5AI score0.00039EPSS

Exploits0References2

Positive Technologies•added 3 days ago•6 views

PT-2026-48737

8.8CVSS5.5AI score0.00039EPSS

Exploits0References3

Positive Technologies•added 3 days ago•6 views

PT-2026-48637

Cerebrate before version 1.37 allowed the id primary key field to be supplied through request input during CRUD edit operations and certain custom entity patching flows. In affected entities that did not explicitly mark id as inaccessible, an authenticated attacker could submit a crafted edit...

6.3CVSS5.5AI score0.00038EPSS

Exploits0References2

EUVD•added 6 days ago•6 views

EUVD-2026-35041

Summary The iOS implementation of cordova-plugin-inappbrowser passes the id field from a WKScriptMessage body to commandDelegate sendPluginResult:callbackId: with no format validation CDVWKInAppBrowser.m:560–574. Any web content loaded inside the InAppBrowser can fire any pending Cordova callback...

9.5CVSS5.4AI score0.00129EPSS

Exploits0References1

Cvelist•added 6 days ago•39 views

CVE-2026-47430 Cordova Plugin InAppBrowser: iOS: Arbitrary Cordova callback IDs can be dispatched without validation from InAppBrowser WebViews

9.5CVSS0.00129EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:44 p.m.•7 views

CVE-2026-39835

SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil...

5.3CVSS5.5AI score0.00029EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:21 p.m.•7 views

CVE-2026-3375

The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the /wp-json/litespeed/v1/notifyccss and /wp-json/litespeed/v1/notifyucss REST API endpoints in all versions up to, and including, 7.7. These endpoints accept CSS content from QUIC.cloud callback notificatio...

7.2CVSS5.5AI score0.00086EPSS

Exploits0References1

Tenable Nessus•added 2026/06/02 12:0 a.m.•6 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-39835)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-39835 advisory. - SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or...

5.3CVSS5.6AI score0.00029EPSS

Exploits0References1

Microsoft CVE•added 2026/05/29 8:9 a.m.•5 views

xfrm: ah: account for ESN high bits in async callbacks

...

7.1CVSS5.4AI score0.00013EPSS

Exploits0

SUSE CVE•added 2026/05/29 1:15 a.m.•9 views

SUSE CVE-2026-46193

In the Linux kernel, the following vulnerability has been resolved: xfrm: ah: account for ESN high bits in async callbacks AH allocates its temporary auth/ICV layout differently when ESN is enabled: the async ahash setup appends a 4-byte seqhi slot before the ICV or authdata area, but the async...

7CVSS5.8AI score0.00013EPSS

Exploits0References3

NVD•added 2026/05/28 10:16 a.m.•9 views

CVE-2026-46193

5.5CVSS0.00013EPSS

Exploits0References5

OSV•added 2026/05/28 10:16 a.m.•4 views

UBUNTU-CVE-2026-46193

5.5CVSS5.7AI score0.00013EPSS

Exploits0References8

EUVD•added 2026/05/28 9:36 a.m.•9 views

EUVD-2026-32820

5.8AI score0.00013EPSS

Exploits0References5

Cvelist•added 2026/05/28 9:36 a.m.•25 views

CVE-2026-46193 xfrm: ah: account for ESN high bits in async callbacks

0.00013EPSS

Exploits0References5

Debian CVE•added 2026/05/28 9:36 a.m.•9 views

CVE-2026-46193

5.5CVSS5.7AI score0.00013EPSS

Exploits0

CVE•added 2026/05/28 9:36 a.m.•14 views

CVE-2026-46193

CVE-2026-46193 concerns a Linux kernel xfrm AH (AH) implementation issue where ESN high bits are not accounted for in async callback paths, causing miscalculation of ICV/auth offsets on IPv4/IPv6 when ESN is enabled and async hmac is used. The vulnerability arises from reconstructing the temporar...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by