CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 3 hours ago•3 views

CVE-2026-56115 dhcpcd Stack Out-of-Bounds Write in dhcp6_makemessage()

dhcpcd through 10.3.2, fixed in commit 2f00c7b, contains a one-byte stack out-of-bounds write vulnerability in dhcp6makemessage in src/dhcp6.c that allows unauthenticated same-link attackers to write beyond a fixed local buffer by serializing an oversized RFC6603 OPTIONPDEXCLUDE option body...

6CVSS

Cvelist•added 3 hours ago•2 views

CVE-2026-13007 Insecure Public Caching on REST API Endpoints in Tenable Identity Exposure

Tenable Identity Exposure contains multiple unauthenticated API endpoints under /w/api/ that expose sensitive application configuration data including cleartext LDAP credentials, SAML configuration, user accounts, and directory settings to unauthenticated remote attackers. Affected responses are...

8.7CVSS

EUVD•added 3 hours ago•2 views

EUVD-2026-38487

CVE•added 3 hours ago•6 views

CVE-2026-13007

Tenable Identity Exposure exposes multiple unauthenticated API endpoints under /w/api/* that return sensitive configuration data (cleartext LDAP credentials, SAML config, user accounts, directory settings). Responses are served with Cache-Control: public and without Vary: Cookie, enabling reverse...

Cvelist•added 7 hours ago•4 views

CVE-2026-56322 Capgo - Information Disclosure via Unauthenticated /updates defaultChannel Parameter

Capgo before 12.128.2 contains an information disclosure vulnerability in the unauthenticated /updates endpoint that resolves the defaultChannel parameter before enforcing privacy restrictions, allowing attackers to enumerate private channels and leak version/config state. Unauthenticated attacke...

8.7CVSS

ATTACKERKB•added 7 hours ago•2 views

CVE-2026-56322

EUVD•added 7 hours ago•6 views

Exploits0References3

EUVD-2026-38438

CVE•added 7 hours ago•5 views

CVE-2026-56322

Capgo before 12.128.2 contains an information disclosure vulnerability in the unauthenticated /updates endpoint that resolves the defaultChannel parameter before privacy restrictions, enabling enumeration of private channels and leakage of version/config state. Unauthenticated attackers can probe...

RedHat Linux•added 8 hours ago•6 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.6.12

Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.6.12 General Availability release, with updates to container images. Assisted Installer RHEL 9 integrates components for the general multicluster engine for Kubernetes 2.6.12 release that simplify the process of...

7.5CVSS5.9AI score0.00371EPSS

NVD•added 11 hours ago•4 views

CVE-2026-10521

An high privileged remote attacker can access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters. This can result in a total loss of confidentiality, integrity and availability...

8.6CVSS

CVE•added 11 hours ago•10 views

CVE-2026-10521

CVE-2026-10521 describes authenticated high-privilege remote access to a hidden configuration method that allows modification of critical program parameters, potentially leading to total loss of confidentiality, integrity, and availability. Reported metrics indicate high-severity impact (CVSS 3.1...

8.6CVSS6AI score

Cvelist•added 11 hours ago•6 views

CVE-2026-10521 Authenticated unintended access to critical program parameters

8.6CVSS

EUVD•added 11 hours ago•7 views

EUVD-2026-38422

8.6CVSS6AI score

Nuclei•added 14 hours ago•17 views

ComfyUI-Manager < 3.38 - Configuration Overwrite

ComfyUI-Manager 3.38 contains an insecure file storage vulnerability caused by storing files in an insufficiently protected location accessible via the web interface, letting remote attackers manipulate configuration and critical data, exploit requires web access. id: CVE-2025-67303 info: name:...

7.5CVSS7.6AI score0.01361EPSS

Exploits3References3

Nuclei•added 14 hours ago•12 views

XWiki Platform - Path Traversal

XWiki Platform 4.2-milestone-2 through 16.10.6 contains a path traversal caused by improper access control in jsx and sx endpoints, letting remote attackers read configuration files, exploit requires no special privileges. id: CVE-2025-55748 info: name: XWiki Platform - Path Traversal author:...

9.3CVSS5.9AI score0.01652EPSS

Exploits0References3

Nuclei•added 14 hours ago•14 views

Trinity Audio <= 5.21.0 - Information Exposure

The Trinity Audio Text to Speech AI audio player to convert content into audio plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.21.0 via the /admin/inc/phpinfo.php file that gets created on install. This makes it possible for...

5.3CVSS5.8AI score0.00951EPSS

Exploits1References2

Nuclei•added 14 hours ago•15 views

osCommerce 2.3.4.1 - Remote Code Execution

osCommerce Online Merchant 2.3.4.1 contains a remote code execution caused by insecure default configuration and missing authentication in the installer workflow, letting unauthenticated attackers execute arbitrary PHP code via install4.php, exploit requires accessible /install/ directory after...

9.3CVSS6.7AI score0.0351EPSS

Exploits0References4

Nuclei•added 14 hours ago•17 views

Emby Server - Authentication Bypass

Emby Server is a user-installable home media server which stores and organizes a user's media files of virtually any format and makes them available for viewing at home and abroad on a broad range of client devices. This vulnerability may allow administrative access to an Emby Server system,...

9.1CVSS7.1AI score0.01713EPSS