Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

81985 matches found

CVE
CVEadded 2026/05/20 5:43 a.m.21 views

CVE-2026-47783

Memcached prior to version 1.6.42 is affected by a timing side-channel in SASL password database authentication: the loop in sasl_server_userdb_checkpass exits as soon as a valid username is found, leaking information. The issue is documented in the 1.6.42 release notes/commit references. This vu...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/05/20 5:43 a.m.6 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/20 5:43 a.m.36 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS0.00085EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/20 5:43 a.m.4 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References4
AlpineLinux
AlpineLinuxadded 2026/05/20 5:43 a.m.6 views

CVE-2026-47783

In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by saslserveruserdbcheckpass...

8.1CVSS5.8AI score0.00085EPSS
Exploits0References3
NVD
NVDadded 2026/05/20 5:16 a.m.7 views

CVE-2026-7522

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS0.00109EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/05/20 4:27 a.m.7 views

CVE-2026-7522 Advanced Database Cleaner – Premium <= 4.1.0 - Authenticated (Subscriber+) Local File Inclusion via 'template'

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS6.4AI score0.00109EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/20 4:27 a.m.8 views

CVE-2026-7522

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS6.4AI score0.00109EPSS
Exploits0References4
CVE
CVEadded 2026/05/20 4:27 a.m.22 views

CVE-2026-7522

The CVE-2026-7522 issue affects the WordPress plugin The Advanced Database Cleaner – Premium, vulnerable in versions up to 4.1.0. The root cause is Local File Inclusion via the template parameter, allowing authenticated users with Subscriber-level access and above to include and execute arbitrary...

8.8CVSS6.4AI score0.00109EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/05/20 4:27 a.m.40 views

CVE-2026-7522 Advanced Database Cleaner – Premium <= 4.1.0 - Authenticated (Subscriber+) Local File Inclusion via 'template'

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .ph...

8.8CVSS0.00109EPSS
Exploits0References3
NVD
NVDadded 2026/05/20 4:16 a.m.13 views

CVE-2026-9003

E-LAN Hybrid Recording System developed by TONNET has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS0.00064EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/05/20 4:15 a.m.53 views

SOC-Alert-Investigation-Portfolio

SOC Alert Investigation Portfolio This repository contains pr...

5.9AI score
Exploits0
Circl
Circladded 2026/05/20 2:56 a.m.6 views

CVE-2026-43620

creationtimestamp| type| source ---|---|--- 2026-05-20 02:56:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmavryzuxl2q 2026-05-20 04:18:43+00:00| seen| https://vulnerability.circl.lu/bundle/98dfc241-f74a-4ad3-9b5d-a312ab6e6c87 2026-05-20 09:58:24+00:00| seen|...

6.9CVSS5.3AI score0.00017EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/20 2:39 a.m.5 views

CVE-2026-9003

E-LAN Hybrid Recording System developed by TONNET has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS6AI score0.00064EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/05/20 2:39 a.m.35 views

CVE-2026-9003 TONNET|E-LAN Hybrid Recording System - SQL Injection

E-LAN Hybrid Recording System developed by TONNET has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS0.00064EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/20 2:39 a.m.10 views

EUVD-2026-31046

E-LAN Hybrid Recording System developed by TONNET has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS6AI score0.00064EPSS
Exploits0References2
CVE
CVEadded 2026/05/20 2:39 a.m.13 views

CVE-2026-9003

CVE-2026-9003 concerns TONNET’s E-LAN Hybrid Recording System, which is reported to have an unauthenticated SQL Injection vulnerability that lets an attacker inject arbitrary SQL commands to read database contents. The connected documents do not specify affected product versions, exact vulnerable...

8.7CVSS6AI score0.00064EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/20 2:39 a.m.7 views

CVE-2026-9003 TONNET|E-LAN Hybrid Recording System - SQL Injection

E-LAN Hybrid Recording System developed by TONNET has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents...

8.7CVSS6AI score0.00064EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/20 2:27 a.m.5 views

CVE-2026-9010 Boost <= 2.0.3 - Unauthenticated Blind SQL Injection via Multiple Parameters

The Boost plugin for WordPress is vulnerable to time-based SQL Injection via the 'currenturl' and 'username' parameters in versions up to, and including, 2.0.3 due to insufficient escaping on the user supplied parameters and lack of sufficient preparation on the existing SQL queries. This makes i...

7.5CVSS5.9AI score0.00084EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2026/05/20 2:11 a.m.13 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.8CVSS6AI score0.0007EPSS
Exploits1References26
Rows per page
Query Builder