Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
πŸ”₯ Daily Hot!
πŸ’ͺ🏽 CPE Enhanced Advisories
πŸ•Ά Shadow Exploits
πŸ•΅πŸΌ Vulners CPE
πŸ” Security news
πŸ’» Exploit updates
πŸ“‘ Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
πŸ€– AI High Score
πŸ“° CVE Feed
show all

82002 matches found

AstraLinux
AstraLinuxβ€’added 2026/05/20 5:53 a.m.β€’3 views

Astra Linux - ΡƒΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ Π² gpac

A vulnerability has been discovered in GPAC 2.5-DEV-rev228-g11067ea92-master. This vulnerability affects the xmtnodeend function in the src/scenemanager/loaderxmt.c file of the MP4Box component. The vulnerability allows for data to be accessed after it has been freed from memory, requiring local...

5.5CVSS5.5AI score0.00036EPSS
Exploits1References1
AstraLinux
AstraLinuxβ€’added 2026/05/20 5:53 a.m.β€’1 views

Astra Linux - ΡƒΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ Π² linux

The Linux kernel up to version 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database also known as dbx protection mechanism. This issue affects the certs/blacklist.c and certs/systemkeyring.c files...

6.9CVSS6.7AI score0.00113EPSS
Exploits1References2
AstraLinux
AstraLinuxβ€’added 2026/05/20 5:53 a.m.β€’2 views

Astra Linux – Vulnerability in rpm

A flaw was discovered in RPM’s signature check functionality when reading a package file. This flaw allows an attacker who can persuade a victim to install a seemingly verifiable package, whose signature header was modified, to cause corruption of the RPM database and execute malicious code. The...

7CVSS7.3AI score0.00228EPSS
Exploits0References2
CVE
CVEβ€’added 2026/05/20 5:45 a.m.β€’21 views

CVE-2026-47784

The CVE concerns memcached prior to 1.6.42, where SASL password data used for authentication is exposed to a timing side-channel via memcmp in sasl_server_userdb_checkpass. Affected versions are before 1.6.42; upgrading to 1.6.42 or later is the supported remediation per the release notes. The vu...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentβ€’added 2026/05/20 5:45 a.m.β€’4 views

CVE-2026-47784

In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBβ€’added 2026/05/20 5:45 a.m.β€’5 views

CVE-2026-47784

In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References4
Debian CVE
Debian CVEβ€’added 2026/05/20 5:45 a.m.β€’7 views

CVE-2026-47784

In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0
Cvelist
Cvelistβ€’added 2026/05/20 5:45 a.m.β€’39 views

CVE-2026-47784

In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by saslserveruserdbcheckpass...

8.1CVSS0.00085EPSS
Exploits0References3
Vulnrichment
Vulnrichmentβ€’added 2026/05/20 5:43 a.m.β€’3 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3
EUVD
EUVDβ€’added 2026/05/20 5:43 a.m.β€’8 views

EUVD-2026-31065

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3
CVE
CVEβ€’added 2026/05/20 5:43 a.m.β€’21 views

CVE-2026-47783

Memcached prior to version 1.6.42 is affected by a timing side-channel in SASL password database authentication: the loop in sasl_server_userdb_checkpass exits as soon as a valid username is found, leaking information. The issue is documented in the 1.6.42 release notes/commit references. This vu...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEβ€’added 2026/05/20 5:43 a.m.β€’6 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0
Cvelist
Cvelistβ€’added 2026/05/20 5:43 a.m.β€’36 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS0.00085EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBβ€’added 2026/05/20 5:43 a.m.β€’4 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References4
AlpineLinux
AlpineLinuxβ€’added 2026/05/20 5:43 a.m.β€’6 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3
NVD
NVDβ€’added 2026/05/20 5:16 a.m.β€’7 views

CVE-2026-7522

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS0.00109EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBβ€’added 2026/05/20 4:27 a.m.β€’8 views

CVE-2026-7522

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS6.4AI score0.00109EPSS
Exploits0References4
CVE
CVEβ€’added 2026/05/20 4:27 a.m.β€’22 views

CVE-2026-7522

The CVE-2026-7522 issue affects the WordPress plugin The Advanced Database Cleaner – Premium, vulnerable in versions up to 4.1.0. The root cause is Local File Inclusion via the template parameter, allowing authenticated users with Subscriber-level access and above to include and execute arbitrary...

8.8CVSS6.4AI score0.00109EPSS
Exploits0References3
Vulnrichment
Vulnrichmentβ€’added 2026/05/20 4:27 a.m.β€’7 views

CVE-2026-7522 Advanced Database Cleaner – Premium <= 4.1.0 - Authenticated (Subscriber+) Local File Inclusion via 'template'

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS6.4AI score0.00109EPSS
Exploits0References3
Cvelist
Cvelistβ€’added 2026/05/20 4:27 a.m.β€’40 views

CVE-2026-7522 Advanced Database Cleaner – Premium <= 4.1.0 - Authenticated (Subscriber+) Local File Inclusion via 'template'

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS0.00109EPSS
Exploits0References3
Rows per page
Query Builder