CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

274251 matches found

GithubExploit•added 2026/04/14 10:41 a.m.•78 views

sql-xss

No d...

GithubExploit•added 2026/04/14 10:18 a.m.•82 views

starknet-staking_audit1

Markdown https://dev.to/rdin777/starknet-btc-staking-how-to-ext...

GithubExploit•added 2026/04/14 9:31 a.m.•110 views

Exploit for CVE-2025-69993

Leaflet XSS POC Proof of Concept for CVE-2025-69993 — XSS vul...

5.8AI score0.00191EPSS

GithubExploit•added 2026/04/14 9:24 a.m.•103 views

Exploit for Improper Input Validation in Microsoft

CVE-2024-21413 | Microsoft Outlook Remote Code Execution Vulne...

9.8CVSS6.2AI score0.9466EPSS

GithubExploit•added 2026/04/14 9:17 a.m.•88 views

ai-pentest-agent

🔐 AI Pentest Agent v4 Automated web application penetration...

GithubExploit•added 2026/04/14 6:50 a.m.•129 views

Exploit for Missing Authentication for Critical Function in Flowiseai Flowise

CVE-2025-58434CVE-2025-59528 CVE-2025-58434 Flowise = 3...

10CVSS5.9AI score0.90183EPSS

GithubExploit•added 2026/04/14 6:44 a.m.•187 views

jwt-attack-suite

JWT Attack Suite Offensive JWT testing toolkit for penetrat...

9.8CVSS5.9AI score0.42651EPSS

GithubExploit•added 2026/04/14 6:26 a.m.•120 views

Exploit for CVE-2026-35517

CVE-2026-35517 - Pi-hole FTLDNS Remote Code Execution via Newl...

8.8CVSS6.5AI score0.00859EPSS

GithubExploit•added 2026/04/14 5:54 a.m.•124 views

Exploit for CVE-2026-22692

CVE-2026-22692: Critical Twig Sandbox Bypass via collect-ma...

6.3AI score0.00395EPSS

GithubExploit•added 2026/04/14 5:51 a.m.•137 views

Exploit for CVE-2026-40175

audit-axios Scan local repos for vulnerable axios versions an...

10CVSS5.9AI score0.00597EPSS

GithubExploit•added 2026/04/14 5:19 a.m.•83 views

CORScanner

CORS Exploiter Automated CORS misconfiguration scanner with...

GithubExploit•added 2026/04/14 5:17 a.m.•81 views

avsig

⚡ AVSIG JWT Inspector & Security Auditor - decode, anal...

GithubExploit•added 2026/04/14 4:45 a.m.•72 views

Vulnerable-Web-App-Scanner

Vulnerable-Web-App-Scanner Pent...

GithubExploit•added 2026/04/14 2:59 a.m.•76 views

OpenClaw-Security-Tools

No d...

GithubExploit•added 2026/04/14 1:25 a.m.•108 views

coruna-exploit-kit-analysis

Coruna iOS Exploit Kit — Reverse Engineering Analysis Def...

GithubExploit•added 2026/04/14 12:53 a.m.•117 views

vulnswarm

VulnSwarm AI-powered vulnerability discovery using multi-agen...

8.8CVSS6AI score0.01436EPSS

Packet Storm•added 2026/04/14 12:0 a.m.•62 views

📄 CMS Sense 2.0 Cross Site Scripting

CMS Sense version 2.0 suffers from a cross site scripting vulnerability. ================================================================================================================================== | Title : CMS sense v 2.0 HTML Injection Leading to XSS via Attribute Breakout | | Author :...

Packet Storm•added 2026/04/14 12:0 a.m.•210 views

📄 Twig Sandbox Bypass / XXE / Remote Code Execution / LFI

Research describing a critical vulnerability that exists in the October CMS Twig sandbox Safe Mode that allows authenticated users with template editing privileges to bypass security restrictions and execute arbitrary PHP code or read arbitrary files via XML injection or local file inclusion from...

4.9CVSS6.1AI score0.00395EPSS

Packet Storm•added 2026/04/14 12:0 a.m.•90 views

📄 Selenium Grid/Selenoid Unauthenticated Remote Code Execution

Selenium Grid and Selenoid expose a WebDriver API that allows creating browser sessions with arbitrary capabilities. When deployed without authentication the default for both, an attacker can achieve remote code execution through two browser-specific techniques: For Chrome, the goog:chromeOptions...

Packet Storm•added 2026/04/14 12:0 a.m.•60 views

📄 WebRemoteControl Unauthenticated Remote Filesystem Access

WebRemoteControl suffers from an unauthenticated remote filesystem access vulnerability. This proof of concept exploit lets you browse directory contents and access files. Exploit Title: WebRemoteControl - Unauthenticated Remote Filesystem Access Date: 2026-04-14 Exploit Author: Chokri Hammedi...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by