Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10255 matches found

RedhatCVE
RedhatCVEadded 2026/03/26 3:0 p.m.7 views

CVE-2026-33163

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.35 and 8.6.50, when a Parse.Cloud.afterLiveQueryEvent trigger is registered for a class, the LiveQuery server leaks protected fields and authData to all subscribers of that...

8.2CVSS5.8AI score0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/03/26 2:59 p.m.1 views

CVE-2026-31872

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.6 and 8.6.32, the protectedFields class-level permission CLP can be bypassed using dot-notation in query WHERE clauses and sort parameters. An attacker can use dot-notation...

8.7CVSS5.8AI score0.00367EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/03/26 2:59 p.m.4 views

CVE-2026-31856

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. A SQL injection vulnerability exists in the PostgreSQL storage adapter when processing Increment operations on nested object fields using dot notation e.g., stats.counter. The amount value is...

9.8CVSS6AI score0.00418EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/03/26 2:59 p.m.3 views

CVE-2026-31871

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.5 and 8.6.31, a SQL injection vulnerability exists in the PostgreSQL storage adapter when processing Increment operations on nested object fields using dot notation e.g.,...

9.8CVSS6AI score0.00418EPSS
Exploits0References1
NVD
NVDadded 2026/03/26 2:16 p.m.4 views

CVE-2018-25219

PassFab Excel Password Recovery 8.3.1 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload in the registration code field. Attackers can craft a buffer overflow payload with a pop-pop-ret gadg...

8.6CVSS0.00247EPSS
Exploits1References4
NVD
NVDadded 2026/03/26 2:16 p.m.5 views

CVE-2018-25217

PDF Explorer 1.5.66.2 contains a structured exception handler SEH overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH records with malicious data. Attackers can craft a payload with buffer overflow, NSEH jump, and ROP gadget chains that execute when the...

8.6CVSS0.0022EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/03/26 1:24 p.m.20 views

CVE-2018-25219 PassFab Excel Password Recovery 8.3.1 SEH Buffer Overflow

PassFab Excel Password Recovery 8.3.1 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload in the registration code field. Attackers can craft a buffer overflow payload with a pop-pop-ret gadg...

8.6CVSS0.00247EPSS
Exploits1References4
CVE
CVEadded 2026/03/26 1:24 p.m.8 views

CVE-2018-25219

PassFab Excel Password Recovery 8.3.1 contains a structured exception handling (SEH) buffer overflow vulnerability in the registration flow. A crafted payload entered into the Licensed E-mail and Registration Code field can trigger a buffer overflow (including a pop-pop-ret gadget) that enables l...

8.6CVSS6.8AI score0.00247EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/26 1:24 p.m.4 views

CVE-2018-25217 PDF Explorer 1.5.66.2 Structured Exception Handler Local Code Execution

PDF Explorer 1.5.66.2 contains a structured exception handler SEH overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH records with malicious data. Attackers can craft a payload with buffer overflow, NSEH jump, and ROP gadget chains that execute when the...

8.6CVSS6.4AI score0.0022EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/03/26 1:24 p.m.3 views

CVE-2018-25217

PDF Explorer 1.5.66.2 contains a structured exception handler SEH overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH records with malicious data. Attackers can craft a payload with buffer overflow, NSEH jump, and ROP gadget chains that execute when the...

8.6CVSS6.4AI score0.0022EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2026/03/26 12:0 a.m.6 views

Drupal Calculation Fields 安全漏洞

Drupal Calculation Fields is an extension module developed by Drupal Corporation for field calculations and dynamic data processing. Versions of Drupal Calculation Fields prior to 1.0.4 contained a security vulnerability, which was caused by improper input handling and could lead to cross-site...

6.1CVSS5.6AI score0.00243EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/03/25 4:55 p.m.4 views

SUSE CVE-2026-23363

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: Fix possible oob access in mt7925macwritetxwi80211 Check frame length before accessing the mgmt fields in mt7925macwritetxwi80211 in order to avoid a possible oob access...

5.5CVSS5.7AI score0.00125EPSS
Exploits0References16
SUSE CVE
SUSE CVEadded 2026/03/25 4:55 p.m.7 views

SUSE CVE-2026-23367

In the Linux kernel, the following vulnerability has been resolved: wifi: radiotap: reject radiotap with unknown bits The radiotap parser is currently only used with the radiotap namespace not with vendor namespaces, but if the undefined field 18 is used, the alignment/size is unknown as well. In...

6.3CVSS5.7AI score0.00123EPSS
Exploits0References17
SUSE Linux
SUSE Linuxadded 2026/03/25 12:43 p.m.4 views

Security update for systemd

This update for systemd fixes the following issues: CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. CVE-2026-29111: local unprivileged user can trigger an assert in systemd bsc1259418. udev: check for invalid chars in various fields...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References10
OSV
OSVadded 2026/03/25 12:43 p.m.3 views

SUSE-SU-2026:1040-1 Security update for systemd

This update for systemd fixes the following issues: - CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. - CVE-2026-29111: local unprivileged user can trigger an assert in systemd bsc1259418. - udev: check for invalid chars in various...

6.7CVSS5.9AI score0.00142EPSS
Exploits0References6
EUVD
EUVDadded 2026/03/25 12:30 p.m.3 views

EUVD-2026-15350

In the Linux kernel, the following vulnerability has been resolved: wifi: radiotap: reject radiotap with unknown bits The radiotap parser is currently only used with the radiotap namespace not with vendor namespaces, but if the undefined field 18 is used, the alignment/size is unknown as well. In...

5.7AI score0.00123EPSS
Exploits0References7
NVD
NVDadded 2026/03/25 11:16 a.m.3 views

CVE-2026-23367

In the Linux kernel, the following vulnerability has been resolved: wifi: radiotap: reject radiotap with unknown bits The radiotap parser is currently only used with the radiotap namespace not with vendor namespaces, but if the undefined field 18 is used, the alignment/size is unknown as well. In...

5.5CVSS0.00123EPSS
Exploits0References8
UbuntuCve
UbuntuCveadded 2026/03/25 11:16 a.m.5 views

CVE-2026-23363

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: Fix possible oob access in mt7925macwritetxwi80211 Check frame length before accessing the mgmt fields in mt7925macwritetxwi80211 in order to avoid a possible oob access...

7.1CVSS5.7AI score0.00125EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2026/03/25 11:16 a.m.5 views

CVE-2026-23325

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Fix possible oob access in mt7996macwritetxwi80211 Check frame length before accessing the mgmt fields in mt7996macwritetxwi80211 in order to avoid a possible oob access...

7.1CVSS5.7AI score0.00125EPSS
Exploits0References7
UbuntuCve
UbuntuCveadded 2026/03/25 11:16 a.m.7 views

CVE-2026-23367

In the Linux kernel, the following vulnerability has been resolved: wifi: radiotap: reject radiotap with unknown bits The radiotap parser is currently only used with the radiotap namespace not with vendor namespaces, but if the undefined field 18 is used, the alignment/size is unknown as well. In...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8
Rows per page
Query Builder