CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

529 matches found

RedhatCVE•added 2026/05/26 9:0 a.m.•9 views

CVE-2026-2725

A flaw was found in Gerrit. An authenticated attacker with force push permissions on a secondary branch can exploit an incorrect authorization vulnerability within the "submitted together" feature. By crafting a submission that matches the "topic" tag of an unapproved change, the attacker can...

6.5CVSS5.8AI score0.00035EPSS

Exploits0References4

EUVD•added 2026/05/13 6:30 p.m.•3 views

EUVD-2026-29910

Incorrect authorization in the "submitted together" feature in Gerrit versions 2.12 and later allows an authenticated attacker with force push permissions on a secondary branch to bypass code review and forcefully submit code to restricted branches via a crafted submission matching the "topic" ta...

6CVSS5.9AI score0.00035EPSS

Exploits0References2

NVD•added 2026/05/13 6:16 a.m.•4 views

CVE-2026-2725

6CVSS0.00035EPSS

Exploits0References1

Cvelist•added 2026/05/13 5:32 a.m.•33 views

CVE-2026-2725 Improper Authorization in Gerrit allowing Code Review Bypass via "Submitted Together"

6CVSS0.00035EPSS

Exploits0References1

CVE•added 2026/05/13 5:32 a.m.•6 views

CVE-2026-2725

Gerrit CVE-2026-2725 affects Gerrit versions 2.12 and later due to an incorrect authorization in the "submitted together" feature. An authenticated attacker with force-push permissions on a secondary branch can bypass code review and forcefully submit code to restricted branches by submitting a c...

6CVSS5.9AI score0.00035EPSS

Exploits0References1

ATTACKERKB•added 2026/05/13 5:32 a.m.•2 views

CVE-2026-2725

6CVSS5.9AI score0.00035EPSS

Exploits0References2

Vulnrichment•added 2026/05/13 5:32 a.m.•2 views

CVE-2026-2725 Improper Authorization in Gerrit allowing Code Review Bypass via "Submitted Together"

6CVSS5.9AI score0.00035EPSS

Exploits0References1

GithubExploit•added 2026/05/13 2:35 a.m.•116 views

security-skills

Security Skills Security Skills is a Hermes Agent skill pack...

5.9AI score

Exploits0

Positive Technologies•added 2026/05/13 12:0 a.m.•2 views

PT-2026-40576

6CVSS5.9AI score0.00035EPSS

Exploits0References1

HackRead•added 2026/05/06 9:40 a.m.•2 views

Application Security Strategies Are Changing as AI-generated Code Floods the SDLC

AI-generated code is changing AppSec workflows, forcing teams to rethink SDLC security, dependency checks, code review, and risk prioritization...

5.9AI score

Exploits0

RedhatCVE•added 2026/05/04 8:21 p.m.•3 views

CVE-2026-7628

A vulnerability was detected in crazyrabbitLTC mcp-code-review-server up to 0.1.0. This issue affects the function executeRepomix of the file src/repomix.ts of the component RepoMix Command Handler. Performing a manipulation results in command injection. The attack may be initiated remotely. The...

6.5CVSS6.3AI score0.0123EPSS

Exploits0References1

RedhatCVE•added 2026/05/04 8:21 p.m.•1 views

CVE-2026-7629

A flaw has been found in kleneway awesome-cursor-mpc-server up to 2.0.1. Impacted is the function runCodeReviewTool of the file src/tools/codeReview.ts of the component Ccode-Review Tool. Executing a manipulation can lead to command injection. The attack may be launched remotely. The exploit has...

6.5CVSS6.3AI score0.0123EPSS

Exploits0References1

NVD•added 2026/05/02 2:16 p.m.•1 views

CVE-2026-7629

6.5CVSS0.0123EPSS

Exploits0References7

ATTACKERKB•added 2026/05/02 1:0 p.m.•1 views

CVE-2026-7629

6.5CVSS6.3AI score0.0123EPSS

Exploits0References7Affected Software1

Vulnrichment•added 2026/05/02 1:0 p.m.•1 views

CVE-2026-7629 kleneway awesome-cursor-mpc-server Ccode-Review Tool codeReview.ts runCodeReviewTool command injection