CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3095 matches found

CVE-2026-7764

creationtimestamp| type| source ---|---|--- 2026-06-04 06:37:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mngz5xiqip26...

6.8CVSS5.8AI score

Exploits0References1

OSV•added 2 days ago•3 views

ROOT-OS-DEBIAN-13-CVE-2025-68339 CVE-2025-68339 in rootio-linux - Patched by Root

Root has patched CVE-2025-68339 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.4AI score0.00052EPSS

Exploits0

SUSE CVE•added 2 days ago•8 views

SUSE CVE-2026-44422

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's RDPEAR NDR parser accepts one non-null NDR pointer ref-id for multiple logical pointer fields without tracking the pointed object's expected NDR type or ownership. When the same ref-id is reused across two...

8.8CVSS5.8AI score0.00046EPSS

Exploits1References3

Cvelist•added 3 days ago•24 views

CVE-2026-25258 Out-of-bounds Read in DSP Service

Memory corruption while processing IOCTL calls for escape operations...

7.8CVSS0.00011EPSS

Exploits0References1

OSV•added 4 days ago•3 views

ROOT-OS-DEBIAN-11-CVE-2026-43241 CVE-2026-43241 in rootio-linux - Patched by Root

Root has patched CVE-2026-43241 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

7.1CVSS5.8AI score0.00013EPSS

Exploits0

Circl•added 2026/05/28 6:0 p.m.•5 views

CVE-2026-9899

creationtimestamp| type| source ---|---|--- 2026-05-28 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260529 2026-05-28 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260529 2026-05-29...

8.3CVSS5.7AI score0.00118EPSS

Exploits0References3

NVD•added 2026/05/25 4:16 p.m.•15 views

CVE-2026-42797

Exposure of Sensitive Information Through Data Queries vulnerability in Apache Syncope. An administrator with adequate entitlements for Derived Schemas can create a malicious JEXL expression which allows any administrator with sufficient entitlements for User read to access User-related...

4.9CVSS0.00061EPSS

Exploits0References2

Cvelist•added 2026/05/24 1:15 p.m.•10 views

CVE-2026-9383 itsourcecode Electronic Judging System login.php sql injection

A vulnerability has been found in itsourcecode Electronic Judging System 1.0. This affects an unknown part of the file /intrams/admin/login.php. The manipulation of the argument Username leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the...

7.5CVSS0.00039EPSS

Exploits0References5

Circl•added 2026/05/19 10:1 p.m.•3 views

CVE-2026-6732

creationtimestamp| type| source ---|---|--- 2026-05-19 22:01:19+00:00| seen| https://bsky.app/profile/msw.bsky.social/post/3mmafccldts2j...

7.5CVSS5.7AI score0.00086EPSS

Exploits1References1

OSV•added 2026/05/14 8:17 p.m.•5 views

DEBIAN-CVE-2026-8531

Heap buffer overflow in WebML in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00062EPSS

Exploits0References1

Circl•added 2026/05/12 3:52 p.m.•5 views

CVE-2026-34337

creationtimestamp| type| source ---|---|--- 2026-05-12 15:52:42+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0141 2026-05-12 16:38:43+00:00| seen| https://www.thezdi.com/blog/2026/5/12/the-may-2026-security-update-review 2026-05-13 01:08:48+00:00| seen|...

7.8CVSS5.7AI score0.00041EPSS

Exploits0References3

Circl•added 2026/05/05 8:0 p.m.•3 views

CVE-2026-31480

creationtimestamp| type| source ---|---|--- 2026-05-05 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260506...

5.5CVSS5.7AI score0.00014EPSS

Exploits0References1

Vulnrichment•added 2026/05/04 4:45 a.m.•1 views

CVE-2026-7733 funadmin Frontend Chunked Upload Endpoint UploadService.php chunkUpload unrestricted upload

A flaw has been found in funadmin up to 7.1.0-rc6. This affects the function UploadService::chunkUpload of the file app/common/service/UploadService.php of the component Frontend Chunked Upload Endpoint. This manipulation of the argument File causes unrestricted upload. The attack is possible to ...

7.5CVSS6.7AI score0.00059EPSS

Exploits0References6

Circl•added 2026/04/30 8:49 a.m.•2 views

CVE-2026-37525

creationtimestamp| type| source ---|---|--- 2026-04-30 08:49:16+00:00| seen| https://gist.github.com/sgInnora/8526eedcfd826d05ef1fc45d8f405643...

7.8CVSS4.8AI score0.00006EPSS

Exploits0References1

Vulnrichment•added 2026/04/22 12:0 a.m.•1 views

CVE-2026-31192

Insufficient validation of Chrome extension identifiers in Raindrop.io Bookmark Manager Web App 5.6.76.0 allows attackers to obtain sensitive user data via a crafted request...

5.8AI score0.00044EPSS

Exploits0References4

Vulnrichment•added 2026/04/21 8:35 p.m.•1 views

CVE-2026-34310

...

7.5CVSS7.3AI score0.00054EPSS

Exploits0References1

OSV•added 2026/04/04 6:9 a.m.•2 views

BELL-CVE-2026-23419

Bulletin has no description...

5.5CVSS5.9AI score0.00034EPSS

Exploits0References1

Circl•added 2026/04/01 10:40 p.m.•1 views

CVE-2026-4364

creationtimestamp| type| source ---|---|--- 2026-04-01 22:40:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihr4eta2w22...

5.4CVSS5.8AI score0.00018EPSS

Exploits0References1

vulnersOsv•added 2026/03/29 3:11 p.m.•4 views

@0xsquid/mpp (>=0.1.1-beta.1 <=0.2.0), @okxweb3/mpp (=0.1.0) +2 more potentially affected by CVE-2026-34210 via mppx (>=0.1.1 <=0.3.16)

mppx NPM version =0.1.1, =0.1.1-beta.1, =0.0.0-pr-153-20260307193247, =0.1.0, =0.1.4 Source cves: CVE-2026-34210 Source advisory: SNYK:JS-MPPX-15857146...

8.1CVSS5.8AI score0.00017EPSS

Exploits0