Lucene search
K

3009869 matches found

Circl
Circl
added 45 minutes ago2 views

CVE-2026-12249

creationtimestamp| type| source ---|---|--- 2026-06-22 19:32:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3movmu4ylmw2q...

9.5CVSS5.8AI score
Exploits0References1
Circl
Circl
added 48 minutes ago2 views

CVE-2026-41049

creationtimestamp| type| source ---|---|--- 2026-06-22 19:28:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3movmnfwkqp2h...

8.4CVSS5.8AI score
Exploits0References1
Circl
Circl
added 52 minutes ago2 views

CVE-2026-12628

creationtimestamp| type| source ---|---|--- 2026-06-22 19:25:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3movmhgpqdw2r...

8.1CVSS5.8AI score
Exploits0References1
Circl
Circl
added 59 minutes ago3 views

CVE-2026-48867

creationtimestamp| type| source ---|---|--- 2026-06-22 19:18:08+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3movm2czvz423...

7.1CVSS5.8AI score0.00175EPSS
Exploits1References1
NVD
NVD
added 1 hour ago4 views

CVE-2026-54299

Astro is a web framework. Prior to 6.4.6, Astro SSR apps with prerendered error pages /404 or /500 using export const prerender = true fetch those pages over HTTP at runtime when an error occurs. The URL for this fetch is derived from request.url, which in turn gets its origin from the incoming...

7.5CVSS0.00044EPSS
Exploits0References1
NVD
NVD
added 1 hour ago3 views

CVE-2026-54293

NLTK Natural Language Toolkit is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. Prior to 3.10.0-rc1, nltk.data.load in NLTK is vulnerable to path traversal via URL-encoded path separators and traversal segments...

7.5CVSS0.00043EPSS
Exploits0References2
NVD
NVD
added 1 hour ago2 views

CVE-2026-54288

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, the Body Limit Middleware trusts the request's Content-Length header to decide whether a body is within the limit. On AWS Lambda API Gateway v1/v2, ALB, VPC Lattice, and Lambda@Edge the body is...

6.5CVSS0.00014EPSS
Exploits0References1
NVD
NVD
added 1 hour ago2 views

CVE-2026-53779

WebP Server Go through 0.14.4 contains a path traversal vulnerability on Windows that allows unauthenticated attackers to read files outside the configured IMGPATH directory by sending requests with percent-encoded backslashes %5C that bypass the path.Clean sanitization in handler/router.go...

8.7CVSS
Exploits0References3
NVD
NVD
added 1 hour ago5 views

CVE-2026-50146

Astro is a web framework. Prior to 6.3.3, when a component uses a client: directive, Astro inserts named slot content into a data-astro-template attribute without HTML escaping the slot name allowing an attacker to break out of the attribute context and inject arbitrary HTML, resulting in reflect...

7.1CVSS0.00029EPSS
Exploits0References1
NVD
NVD
added 1 hour ago4 views

CVE-2026-11834

A command injection vulnerability has been identified in the DHCP option processing logic in multiple TP-Link router models, due to insufficient validation of externally supplied DHCP option data. An adjacent attacker may exploit this vulnerability by supplying crafted DHCP responses, potentially...

8.7CVSS
Exploits0References7
Cvelist
Cvelist
added 1 hour ago3 views

CVE-2026-44271

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

8.1CVSS
Exploits0References1
CVE
CVE
added 1 hour ago4 views

CVE-2026-44271

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

8.1CVSS
Exploits0References1
CVE
CVE
added 1 hour ago3 views

CVE-2026-44272

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

8.8CVSS
Exploits0References1
Cvelist
Cvelist
added 1 hour ago2 views

CVE-2026-44272

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

8.8CVSS
Exploits0References1
Cvelist
Cvelist
added 1 hour ago3 views

CVE-2026-44273

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain a Use of Default Credentials vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information Disclosure...

6CVSS
Exploits0References1
CVE
CVE
added 1 hour ago4 views

CVE-2026-44273

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain a Use of Default Credentials vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information Disclosure...

6CVSS
Exploits0References1
CVE
CVE
added 1 hour ago4 views

CVE-2026-44274

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS
Exploits0References1
Cvelist
Cvelist
added 1 hour ago3 views

CVE-2026-44274

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS
Exploits0References1
Circl
Circl
added 1 hour ago3 views

CVE-2024-45115

creationtimestamp| type| source ---|---|--- 2026-06-22 18:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3movjqylb4m2j...

9.8CVSS5.8AI score0.0108EPSS
Exploits0References1
EUVD
EUVD
added 1 hour ago3 views

EUVD-2026-38301

The Advanced Linux Sound Architecture ALSA library before 1.2.16.1 contains a double-free vulnerability in parsedef in src/conf.c that allows attackers to corrupt memory by supplying maliciously crafted ALSA configuration text. When parsing nested compound or array configuration blocks, parsedef...

7CVSS5.9AI score
Exploits0References5
Rows per page
Query Builder