CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

RedhatCVE•added 2026/04/06 10:59 p.m.•1 views

CVE-2026-5470

A security vulnerability has been detected in mixelpixx Google-Research-MCP 1e062d7bd887bfe5f6e582b6cc288bb897b35cf2/ca613b736ab787bc926932f59cddc69457185a83. This issue affects the function extractContent of the file src/services/content-extractor.service.ts of the component Model Context Protoc...

6.5CVSS6.2AI score0.00043EPSS

Exploits0References1

EUVD•added 2026/04/03 6:31 p.m.•0 views

EUVD-2026-18798

6.5CVSS5.5AI score0.00043EPSS

Exploits0References5

Snyk•added 2026/04/03 5:21 p.m.•1 views

Server-side Request Forgery (SSRF)

Overview google-search-mcp is a Google Search MCP Server for Claude Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the extractContent function. An attacker can access internal resources or perform unauthorized requests by supplying crafted URLs to the...

6.5CVSS6.6AI score0.00043EPSS

Exploits0References2

NVD•added 2026/04/03 4:16 p.m.•0 views

CVE-2026-5470

6.5CVSS0.00043EPSS

Exploits0References4

Vulnrichment•added 2026/04/03 3:30 p.m.•1 views

CVE-2026-5470 mixelpixx Google-Research-MCP Model Context Protocol content-extractor.service.ts extractContent server-side request forgery

6.5CVSS6.2AI score0.00043EPSS

Exploits0References4

ATTACKERKB•added 2026/04/03 3:30 p.m.•2 views

CVE-2026-5470

6.5CVSS5.5AI score0.00043EPSS

Exploits0References4

CVE•added 2026/04/03 3:30 p.m.•8 views

CVE-2026-5470

Consolidated details from connected sources confirm CVE-2026-5470 affects mixelpixx Google-Research-MCP; specifically the function extractContent in src/services/content-extractor.service.ts of the Model Context Protocol Handler. The vulnerability is a server-side request forgery (SSRF) caused by...

6.5CVSS6.2AI score0.00043EPSS

Exploits0References4

Cvelist•added 2026/04/03 3:30 p.m.•17 views

CVE-2026-5470 mixelpixx Google-Research-MCP Model Context Protocol content-extractor.service.ts extractContent server-side request forgery

6.5CVSS0.00043EPSS

Exploits0References4

RedhatCVE•added 2025/11/20 12:21 a.m.•3 views

CVE-2025-63208

An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint...

7.5CVSS6.9AI score0.00032EPSS

Exploits1References1

NVD•added 2025/11/19 6:15 p.m.•0 views

CVE-2025-63208

7.5CVSS0.00032EPSS

Exploits1References2

Cvelist•added 2025/11/19 12:0 a.m.•5 views

CVE-2025-63208

0.00032EPSS

Exploits1References2

Positive Technologies•added 2025/11/19 12:0 a.m.•2 views

PT-2025-47498

Name of the Vulnerable Software and Affected Versions bridgetech VB288 Objective QoE Content Extractor version 5.6.0-8 Description A flaw exists in bridgetech VB288 Objective QoE Content Extractor firmware version 5.6.0-8 that allows attackers to obtain sensitive information, including...

7.5CVSS6.5AI score0.00032EPSS

Exploits1References4

Vulnrichment•added 2025/11/19 12:0 a.m.•1 views

CVE-2025-63208

6.5AI score0.00032EPSS

Exploits1References2

CVE•added 2025/11/19 12:0 a.m.•7 views

CVE-2025-63208

Summary: CVE-2025-63208 affects Bridgetech VB288 Objective QoE Content Extractor (firmware 5.6.0-8). A flaw in the /probe/core/setup/passwd endpoint allows an attacker to disclose admin passwords, exposing highly sensitive data (confidentiality impact H; CVSS 3.1: HIGH, Network attack vector, no ...

7.5CVSS6.5AI score0.00032EPSS

Exploits1References2Affected Software1

vulnersOsv•added 2025/03/26 2:8 p.m.•2 views

@0xdwong/html-to-markdown (>=1.0.0 <=1.0.1), @9wick/shodo-site (>=0.1.0 <=1.0.0) +327 more potentially affected by CVE-2025-2792 via @mozilla/readability (>=0.3.0 <=0.5.0)

@mozilla/readability NPM version =0.3.0, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.5-alpha.0, =0.1.0, =1.7.0, =0.1.6, =6.0.1, =6.0.48 and more Source cves: CVE-2025-2792 Source advisory: OSV:GHSA-3P6V-HRG8-8QJ7...

5.8AI score

Exploits0