CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 3 days ago•4 views

CVE-2026-8874 CVE-2026-8874

CVE•added 3 days ago•5 views

CVE-2026-8874

CVE-2026-8874 affects Securly Chrome Extension v3.0.7. It fetches crisis alert keywords and filtering rules over HTTP, while other endpoints use HTTPS, showing TLS inconsistency. This could allow network interception/modification of downloaded configuration data. Reported impact: confidentiality/...

7.1CVSS5.8AI score0.00009EPSS

Exploits0References1Affected Software1

EUVD•added 3 days ago•7 views

EUVD-2026-34161

ATTACKERKB•added 3 days ago•4 views

CVE-2026-8874

Cvelist•added 3 days ago•26 views

Exploits0References2

CVE-2026-8874 CVE-2026-8874

0.00009EPSS

Positive Technologies•added 3 days ago•6 views

PT-2026-46048

Name of the Vulnerable Software and Affected Versions Securly Chrome Extension version 3.0.7 Description The extension downloads JSON files containing crisis alert keywords and filtering rules over unencrypted HTTP using the Fetch API. This represents an inconsistent implementation of Transport...

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-43075

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.02888EPSS

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-7136

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.0011EPSS

Exploits1References7

RedhatCVE•added 2025/02/13 12:38 a.m.•6 views

CVE-2025-25524

Buffer overflow vulnerability in TOTOLink X6000R routers V9.4.0cu.652B20230116 due to the lack of length verification, which is related to the addition of Wi-Fi filtering rules. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary...

5.1CVSS7.7AI score0.00137EPSS

OSV•added 2025/02/11 7:15 p.m.•0 views

CVE-2025-25524

5.1CVSS6AI score

Vulnrichment•added 2025/02/11 12:0 a.m.•7 views

CVE-2025-25524

8AI score0.00137EPSS

CNVD•added 2025/01/23 12:0 a.m.•8 views

D-Link DIR-816A2 websURLFilterAddDel Component Access Control Error Vulnerability

The D-Link DIR-816A2 is a router from China's AUO D-Link. The D-Link DIR-816A2 suffers from an Access Control Error vulnerability that stems from improper access control of the websURLFilterAddDel component, which can be exploited by an unauthenticated attacker to set up filtering rules via a...

4.3CVSS6.9AI score0.00165EPSS

0day.today•added 2024/04/24 12:0 a.m.•4760 views

Nginx 1.25.5 Host Header Validation Vulnerability

Nginx versions 1.25.5 and below appear to have a host header filtering validation bug that could possibly be used for malice. Nginx = 1.25.5 $host variable validation bug Intro: In the "Host" header sent to Nginx web server you can't just insert a dot or something like that, because a filtering...

7.3AI score

Exploits0

NVD•added 2023/08/04 9:15 p.m.•23 views

CVE-2023-39346

LinuxASMCallGraph is software for drawing the call graph of the programming code. Linux ASMCallGraph before commit 20dba06bd1a3cf260612d4f21547c25002121cd5 allows attackers to cause a remote code execution on the server side via uploading a crafted ZIP file due to incorrect filtering rules of...

9.8CVSS9.2AI score0.02888EPSS

Vulnrichment•added 2023/08/04 8:33 p.m.•9 views

CVE-2023-39346 bjrjk/LinuxASMCallGraph before commit 20dba06 allows attackers to cause a RCE on the server side via uploading a crafted ZIP file due to incorrect filtering rules of uploaded file

8.8CVSS7.6AI score0.02888EPSS

Cvelist•added 2023/08/04 8:33 p.m.•10 views

CVE-2023-39346 bjrjk/LinuxASMCallGraph before commit 20dba06 allows attackers to cause a RCE on the server side via uploading a crafted ZIP file due to incorrect filtering rules of uploaded file

8.8CVSS9.8AI score0.02888EPSS