CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1250061 matches found

AlpineLinux•added yesterday•5 views

CVE-2026-39893

Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request variable was concatenated into a RLIKE SQL clause without sanitization. The endpoint does not require authentication graph viewing supports guest access via the configured guest...

9.8CVSS5.9AI score

CVE•added yesterday•6 views

CVE-2026-9774

ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS6.4AI score

Exploits0References2

CVE•added yesterday•6 views

CVE-2026-10043

MosaicML Composer Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MosaicML Composer. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.6AI score

Exploits0References2

Wolfi•added yesterday•4 views

CVE-2026-42271 vulnerabilities

Vulnerabilities for packages: airflow...

8.8CVSS5.8AI score0.74993EPSS

Wolfi•added yesterday•4 views

CVE-2026-53539 vulnerabilities

Vulnerabilities for packages: airflow...

7.5CVSS5.8AI score0.00263EPSS

Wolfi•added yesterday•5 views

CVE-2026-53540 vulnerabilities

Vulnerabilities for packages: airflow...

3.7CVSS5.8AI score0.00217EPSS

Wolfi•added yesterday•4 views

CVE-2026-40217 vulnerabilities

Vulnerabilities for packages: airflow...

8.8CVSS5.8AI score0.00724EPSS

Wolfi•added yesterday•4 views

CVE-2026-42203 vulnerabilities

Vulnerabilities for packages: airflow...

8.8CVSS5.8AI score0.00324EPSS

Wolfi•added yesterday•4 views

CVE-2026-47101 vulnerabilities

Vulnerabilities for packages: airflow...

8.8CVSS5.8AI score0.00476EPSS

Wolfi•added yesterday•4 views

CVE-2026-47102 vulnerabilities

Vulnerabilities for packages: airflow...

8.8CVSS5.8AI score0.00378EPSS

Wolfi•added yesterday•5 views

CVE-2026-50203 vulnerabilities

Vulnerabilities for packages: airflow...

9.1CVSS5.8AI score0.00626EPSS

CVE•added yesterday•5 views

CVE-2026-52795

CVE-2026-52795 affects Gogs (open source self-hosted Git service). In 0.14.3 and earlier, an authorization logic error in the Watch API lets any authenticated user watch a private repository they have no access to, due to an inverted access check. This exposes private repository activity in the a...

4.3CVSS5.9AI score

Exploits0References2

ATTACKERKB•added yesterday•2 views

CVE-2026-50128

Mastodon is a free, open-source social network server based on ActivityPub. From 4.3.0 until 4.5.11 and 4.4.18, Mastodon has a feature to let websites credit authors of their articles. To prevent false attribution claims, Mastodon uses the attributionDomains JSON-LD term, however, an error in how...

5.3CVSS5.9AI score0.00038EPSS

Exploits0References2Affected Software1

NVD•added yesterday•5 views

CVE-2026-13029

Use after free in Web Authentication in Google Chrome prior to 149.0.7827.197 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: High...

Exploits0References2

NVD•added yesterday•6 views

CVE-2026-13033

Out of bounds read and write in BlinkInterestGroups in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

Exploits0References2

NVD•added yesterday•4 views

CVE-2026-13025

Race in DevTools in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

Exploits0References2

Circl•added yesterday•4 views

CVE-2026-12095

creationtimestamp| type| source ---|---|--- 2026-06-24 19:16:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mp2mul5zjx2i...

7.2CVSS5.8AI score0.0029EPSS

Exploits0References1

Cvelist•added yesterday•9 views

CVE-2026-13037

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

Exploits0References2

Cvelist•added yesterday•7 views

CVE-2026-13036

Use after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

Exploits0References2

CVE•added yesterday•8 views

CVE-2026-13034

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.7CVSS5.8AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by