CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1085462 matches found

Cvelist•added 2026/06/18 4:31 a.m.•24 views

CVE-2026-9860 Offload, AI & Optimize with Cloudflare Images <= 1.10.2 - Authenticated (Author+) Remote Code Execution via 'api-key' / 'account-id' Parameters in cf_images_do_setup AJAX Action

The Offload, AI & Optimize with Cloudflare Images plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.10.2 via the 'account-id' parameter parameter. This is due to insufficient privilege enforcement on the cfimagesdosetup AJAX handler, which require...

8.8CVSS0.00577EPSS

Exploits0References6

EUVD•added 2026/06/18 4:31 a.m.•9 views

EUVD-2026-37840

8.8CVSS6AI score0.00577EPSS

Exploits0References6

CVE•added 2026/06/18 4:31 a.m.•35 views

CVE-2026-9860

The CVE-2026-9860 entry concerns the WordPress plugin “Offload, AI & Optimize with Cloudflare Images” (versions

8.8CVSS6AI score0.00577EPSS

Exploits0References6

OSV•added 2026/06/18 3:48 a.m.•2 views

MINI-GWQF-X3HP-FXCG

Bulletin has no description...

4.8AI score0.00052EPSS

Exploits0

OSV•added 2026/06/18 3:11 a.m.•4 views

MINI-3P9C-P7FR-8FM5

Bulletin has no description...

9.1CVSS4.9AI score0.00373EPSS

Exploits0

OSV•added 2026/06/18 3:9 a.m.•3 views

MINI-4C57-GVF4-W3VC

Bulletin has no description...

9.1CVSS4.9AI score0.00368EPSS

Exploits0

OSV•added 2026/06/18 2:47 a.m.•5 views

MINI-P2JR-C675-94H7

Bulletin has no description...

9.6CVSS4.9AI score0.00344EPSS

Exploits0

OSV•added 2026/06/18 2:5 a.m.•4 views

MINI-H7GC-2GGJ-F75C

Bulletin has no description...

9.2CVSS5AI score0.00623EPSS

Exploits1

SUSE CVE•added 2026/06/18 2:0 a.m.•7 views

SUSE CVE-2026-12327

Memory safety bugs present in Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

8.1CVSS5.8AI score0.00407EPSS

Exploits0References6

SUSE CVE•added 2026/06/18 2:0 a.m.•7 views

SUSE CVE-2026-12443

Use after free in Web Authentication in Google Chrome prior to 149.0.7827.155 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6AI score0.00601EPSS

Exploits0References3

SUSE CVE•added 2026/06/18 2:0 a.m.•8 views

SUSE CVE-2026-12447

Heap buffer overflow in WebRTC in Google Chrome prior to 149.0.7827.155 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.00417EPSS

Exploits0References3

SUSE CVE•added 2026/06/18 1:59 a.m.•8 views

SUSE CVE-2026-12466

Heap buffer overflow in WebRTC in Google Chrome on Windows prior to 149.0.7827.155 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.00426EPSS

Exploits0References3

OSV•added 2026/06/18 1:50 a.m.•3 views

MINI-JVF4-PX8J-QWXP

Bulletin has no description...

7.5CVSS4.9AI score0.00304EPSS

Exploits0

OSV•added 2026/06/18 1:49 a.m.•4 views

MINI-3PPR-QCC5-Q52R

Bulletin has no description...

9.1CVSS4.9AI score0.00373EPSS

Exploits0

NVD•added 2026/06/18 1:18 a.m.•11 views

CVE-2026-12569

A critical remote code execution RCE vulnerability has been reported in PTC Windchill PDMlink and PTC FlexPLM. The vulnerability may be exploited through the deserialization of untrusted data. This advisory also applies to all CPS versions The identified vulnerability also impacts Windchill and...

9.8CVSS0.01106EPSS

Exploits0References2

OSV•added 2026/06/18 12:53 a.m.•6 views

MINI-RP7G-5F9W-WGHM

Bulletin has no description...

9.1CVSS4.9AI score0.0036EPSS

Exploits0

OSV•added 2026/06/18 12:24 a.m.•3 views

ECHO-C714-D065-004B

Bulletin has no description...

4.2CVSS4.8AI score0.0018EPSS

Exploits0References1