Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

220572 matches found

Cvelist
Cvelistadded 2026/06/04 11:4 p.m.30 views

CVE-2026-11091

Inappropriate implementation in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

0.00247EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:4 p.m.5 views

CVE-2026-11080

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

5.6AI score0.00234EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.8 views

CVE-2026-11050

Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.0028EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/06/04 11:4 p.m.7 views

CVE-2026-11042

Use after free in Views in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00301EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:4 p.m.8 views

CVE-2026-10995

Heap buffer overflow in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.00352EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:4 p.m.7 views

CVE-2026-10991

Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.2AI score0.00361EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:3 p.m.8 views

CVE-2026-10900

Use after free in Passwords in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

5.8AI score0.00286EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:3 p.m.6 views

CVE-2026-10891

Use after free in GFX in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.6AI score0.00325EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/06/04 11:3 p.m.6 views

CVE-2026-10886

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.5AI score0.00345EPSS
Exploits0
CVE
CVEadded 2026/06/04 11:0 p.m.16 views

CVE-2026-10875

The CVE-2026-10875 entry affects projectworlds Online Art Gallery Shop Project 1.0. The vulnerability is in an unknown function of the file /admin/adminHome.ph; manipulating the social_twitter argument causes SQL injection. A remote attack is possible, and the exploit has been released publicly. ...

6.5CVSS6.4AI score0.00303EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/06/04 10:45 p.m.28 views

CVE-2026-10874 projectworlds Online Art Gallery Shop Project adminHome.php sql injection

A vulnerability was identified in projectworlds Online Art Gallery Shop Project 1.0. The affected element is an unknown function of the file /admin/adminHome.php. The manipulation of the argument socialinsta leads to sql injection. The attack may be initiated remotely. The exploit is publicly...

6.5CVSS0.00303EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/06/04 10:30 p.m.32 views

CVE-2026-10873 Shibby Tomato Web UI rstats rstats_path os command injection

A vulnerability was determined in Shibby Tomato 1.28.0000. Impacted is the function rstatspath of the file /bin/rstats of the component Web UI. Executing a manipulation can lead to os command injection. The attack can be launched remotely. The exploit has been publicly disclosed and may be...

8.6CVSS0.02695EPSS
Exploits0References7
CVE
CVEadded 2026/06/04 10:30 p.m.12 views

CVE-2026-10873

The CVE-2026-10873 entry pertains to Shibby Tomato 1.28.0000, where the rstats_path function in /bin/rstats of the Web UI is vulnerable. The underlying issue enables an os command injection, with remote attack potential. Public exploit details exist per the connected CVE listing, and the project ...

8.6CVSS6.8AI score0.02695EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/06/04 10:15 p.m.30 views

CVE-2026-10872 Shibby Tomato Web UI rc start_vpnserver os command injection

A vulnerability was found in Shibby Tomato 1.28.0000. This issue affects the function startvpnserver of the file /sbin/rc of the component Web UI. Performing a manipulation results in os command injection. The attack can be initiated remotely. The exploit has been made public and could be used...

8.6CVSS0.02635EPSS
Exploits0References6
GithubExploit
GithubExploitadded 2026/06/04 9:27 p.m.64 views

Exploit for CVE-2026-3180

No d...

7.5CVSS5.8AI score0.00739EPSS
Exploits4
NVD
NVDadded 2026/06/04 9:16 p.m.15 views

CVE-2026-10870

A flaw has been found in Shibby Tomato 1.28.0000. This affects the function startdhcpc of the file /sbin/rc of the component Web UI. This manipulation causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. This project is...

8.6CVSS0.02199EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/04 8:30 p.m.9 views

EUVD-2026-34323

A flaw has been found in Shibby Tomato 1.28.0000. This affects the function startdhcpc of the file /sbin/rc of the component Web UI. This manipulation causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. This project is...

8.6CVSS6.8AI score0.02199EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/04 8:30 p.m.7 views

CVE-2026-10870

A flaw has been found in Shibby Tomato 1.28.0000. This affects the function startdhcpc of the file /sbin/rc of the component Web UI. This manipulation causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. This project is...

8.6CVSS6.8AI score0.02199EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2026/06/04 8:30 p.m.18 views

CVE-2026-10870

CVE-2026-10870 affects Shibby Tomato 1.28.0000 Web UI, specifically the start_dhcpc function in /sbin/rc. The stored description indicates an os command injection vulnerability that can be triggered remotely, with an exploit published. The project is superseded by FreshTomato. No remediation deta...

8.6CVSS6.8AI score0.02199EPSS
Exploits0References6
GithubExploit
GithubExploitadded 2026/06/04 7:32 p.m.68 views

binary-exploitation-labs-Application-security-ctf-writeups

binary-exploitation-labs-Application-security-ctf-writeups...

5.9AI score
Exploits0
Rows per page
Query Builder