CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

883 matches found

Tenable Nessus•added yesterday•3 views

Fedora 44 : rust (2026-e251935c8f)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-e251935c8f advisory. Update to Rust 1.96.0: New Range types Assert matching patterns Changes to WebAssembly targets Stabilized APIs Cargo CVE-2026-5222 and CVE-2026-5223...

6.5CVSS5.6AI score0.0007EPSS

Exploits0References3

RedhatCVE•added 2 days ago•4 views

CVE-2026-5222

Cargo between 1.68 and 1.96 incorrectly normalized the URLs of third-party registries using the sparse index protocol. If a hosting provider allowed multiple registries to be hosted with arbitrary names within the same domain, an attacker able to publish crates in a registry could obtain the...

6.5CVSS5.5AI score0.00033EPSS

Exploits0References1

Wolfi•added 2 days ago•4 views

GHSA-PG4W-G64P-QWHJ vulnerabilities

Vulnerabilities for packages: cargo-audit...

Wolfi•added 2 days ago•3 views

GHSA-F26G-JM89-4G65 vulnerabilities

Vulnerabilities for packages: cargo-audit...

Wolfi•added 2 days ago•4 views

GHSA-X494-MJ8G-CJ27 vulnerabilities

Vulnerabilities for packages: cargo-audit...

Wolfi•added 2 days ago•3 views

GHSA-P3HW-MV63-RF9W vulnerabilities

Vulnerabilities for packages: cargo-audit...

Wolfi•added 2 days ago•4 views

GHSA-FR8X-3VFX-F45H vulnerabilities

Vulnerabilities for packages: cargo-audit...

RedhatCVE•added 2 days ago•4 views

CVE-2026-5223

Cargo incorrectly handled symlinks inside of crate tarballs downloaded from third-party registries, allowing a malicious crate to override the source code of another crate from the same registry. The severity of the vulnerability is medium for users of third-party registries. Users of crates.io a...

6.5CVSS5.5AI score0.0007EPSS

Exploits0References1

RedhatCVE•added 2 days ago•5 views

CVE-2026-39841

Improper neutralization of Script-Related HTML tags in a web page basic XSS vulnerability in Wikimedia Foundation Mediawiki - Cargo Extension allows Stored XSS.This issue affects Mediawiki - Cargo Extension: before 3.8.7...

6.3CVSS5.4AI score0.00033EPSS

Exploits1References1

RedhatCVE•added 2 days ago•5 views

CVE-2026-39839

Improper neutralization of Script-Related HTML tags in a web page basic XSS vulnerability in Wikimedia Foundation Mediawiki - Cargo Extension allows Stored XSS.This issue affects Mediawiki - Cargo Extension: before 3.8.7...

6.3CVSS5.4AI score0.00032EPSS

Exploits1References1

RedhatCVE•added 2 days ago•3 views

CVE-2026-39840

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Wikimedia Foundation Mediawiki - Cargo Extension allows XSS Targeting Non-Script Elements.This issue affects Mediawiki - Cargo Extension: before 3.8.7...

6.1CVSS5.4AI score0.00033EPSS

Exploits1References1

RedhatCVE•added 2 days ago•4 views

CVE-2026-39837

Improper neutralization of Script-Related HTML tags in a web page basic XSS vulnerability in WikiWorks Mediawiki - Cargo Extension allows Stored XSS.This issue affects Mediawiki - Cargo Extension: before 3.8.7...

6.3CVSS5.4AI score0.00033EPSS

Exploits1References1

Wolfi•added 5 days ago•9 views

GHSA-9857-6MW7-FQ2M vulnerabilities

Vulnerabilities for packages: cargo-c, cargo-audit...

Wolfi•added 5 days ago•5 views

GHSA-3PV8-6F4R-FFG2 vulnerabilities

Vulnerabilities for packages: wasmcloud, wasm-pack, sccache, zizmor, litmus, cargo-c, qdrant, rustup, buck2, rye, cleave, deno...

RedhatCVE•added 6 days ago•6 views

CVE-2026-45311

CodeWhale is a DeepSeek + MiMo coding agent in terminal. From 0.3.0 to 0.8.23, the runtests tool executes cargo test in the workspace with ApprovalRequirement::Auto, meaning it runs without any user approval prompt. cargo test compiles and executes arbitrary code: test binaries, build.rs build...

9.6CVSS6.2AI score0.00047EPSS

Exploits0References1

Chainguard•added 6 days ago•8 views

GHSA-3PV8-6F4R-FFG2 vulnerabilities

Vulnerabilities for packages: buck2, qdrant, bootc, litmus, typst, wasmcloud, wasm-pack, fnm, zizmor, rustup, rye, sccache, cargo-c, deno, cleave...

Chainguard•added 6 days ago•7 views

GHSA-9857-6MW7-FQ2M vulnerabilities

Vulnerabilities for packages: cargo-c, cargo-audit...

Snyk•added 2026/05/29 10:2 p.m.•6 views

Malicious Package

Overview @breezeai-frontend/cargo-ui is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.8AI score

Exploits0References2

EUVD•added 2026/05/28 5:32 p.m.•7 views

EUVD-2026-32965

CodeWhale is a DeepSeek + MiMo coding agent in terminal. From 0.3.0 to 0.8.23, the runtests tool executes cargo test in the workspace with ApprovalRequirement::Auto, meaning it runs without any user approval prompt. cargo test compiles and executes arbitrary code: test binaries, build.rs build...

9.6CVSS6.2AI score0.00047EPSS

Exploits0References1

Fedora•added 2026/05/28 12:48 a.m.•11 views

[SECURITY] Fedora 43 Update: uv-0.11.15-1.fc43

An extremely fast Python package and project manager, written in Rust. Highlights: =E2=80=A2 A single tool to replace pip, pip-tools, pipx, poetry, pyenv, twi ne, virtualenv, and more. =E2=80=A2 10-100x faster than pip. =E2=80=A2 Provides comprehensive project management, with a universal lockf...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by