CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

HackRead•added 2026/06/14 5:46 p.m.•8 views

Hackers Hide New Argamal Malware Inside Working Hentai Games

Kaspersky found Argamal malware hidden in hentai game installers, giving hackers remote access through working games shared on adult sites and torrents...

5.4AI score

OSV•added 2026/06/10 6:22 p.m.•11 views

MAL-2026-5522 Malicious code in @orion-design-system/components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector edd5d007da2de0a07fc1a0d999cccbf71a748627c82c9b2000d161eb248a5a0f package.json declares a preinstall hook that runs an inline node -e script reading os.hostname and os.userInfo.username and transmitting them via HTT...

5.4AI score

Exploits0References4

Malwarebytes•added 2026/06/08 10:53 a.m.•20 views

Pirated PC games are delivering password-stealing malware

A new Windows malware campaign hides inside pirated PC games and modified installers for franchises like Far Cry, Need for Speed, FIFA, and Assassin’s Creed. Researchers estimate that more than 400,000 devices worldwide have been infected, with around 30,000 users in the US. The infection method ...

5.7AI score

RedhatCVE•added 2026/06/05 7:24 p.m.•7 views

CVE-2026-8418

The Games Catalog plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.0. This is due to missing or incorrect nonce validation on the gccrud function which handles the delete action action=delete via a GET request without any wpverifynonce /...

4.3CVSS5.5AI score0.00163EPSS

Exploits0References1

Securelist•added 2026/06/03 9:0 a.m.•17 views

Argamal: Malware hidden in hentai games

In April 2026, we discovered a new malware campaign targeting players of "hentai" games. Once launched, the infected games install a previously unknown malicious implant on the user's machine. After a few days, the implant downloads and executes a Trojan, resulting in full system compromise and...

5.9AI score

Packet Storm News•added 2026/06/02 12:0 a.m.•9 views

Detecting Aimbot Cheaters in MOGs

Multiplayer Online Games have become a multibillion dollar industry in the entertainment sector. However, the presence of cheaters undermines the experience of honest players and devalues the effort of game developers, as it directly affects player retention, competitive integrity, the legitimacy...

5.3AI score

NVD•added 2026/05/20 2:16 a.m.•10 views

CVE-2026-8418

4.3CVSS0.00163EPSS

Vulnrichment•added 2026/05/20 1:25 a.m.•6 views

CVE-2026-8418 Games Catalog <= 1.2.0 - Cross-Site Request Forgery to Arbitrary Game/Post Deletion

ATTACKERKB•added 2026/05/20 1:25 a.m.•4 views

CVE-2026-8418

EUVD•added 2026/05/20 1:25 a.m.•10 views

Exploits0References8

EUVD-2026-31014

CVE•added 2026/05/20 1:25 a.m.•15 views

CVE-2026-8418

The CVE-2026-8418 entry concerns the WordPress Games Catalog plugin (versions

Cvelist•added 2026/05/20 1:25 a.m.•39 views

CVE-2026-8418 Games Catalog <= 1.2.0 - Cross-Site Request Forgery to Arbitrary Game/Post Deletion

4.3CVSS0.00163EPSS

Positive Technologies•added 2026/05/20 12:0 a.m.•13 views

PT-2026-42076

Name of the Vulnerable Software and Affected Versions Games Catalog versions prior to 1.2.1 Description The Games Catalog plugin for WordPress is susceptible to Cross-Site Request Forgery, a flaw where an attacker tricks a victim into performing actions they did not intend to. This occurs because...

4.3CVSS5.8AI score0.00163EPSS

Exploits0References10

CNNVD•added 2026/05/20 12:0 a.m.•7 views

WordPress plugin Games Catalog 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

4.3CVSS5.8AI score0.00163EPSS

Exploits0References1

Patchstack•added 2026/05/19 12:6 p.m.•8 views

WordPress Games Catalog plugin <= 1.2.0 - Cross-Site Request Forgery to Arbitrary Game/Post Deletion vulnerability

Cross-Site Request Forgery to Arbitrary Game/Post Deletion vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Games Catalog versions = 1.2.0...

4.3CVSS5.8AI score0.00163EPSS

Exploits0References1Affected Software1

HackRead•added 2026/04/15 11:55 a.m.•5 views

ShinyHunters Leak Rockstar Games Data, No Player Records Impacted

ShinyHunters hackers leak 7.54 GB of Rockstar Games data from Snowflake analytics systems, confirming no player records or personal information were exposed...

5.8AI score

HackRead•added 2026/04/11 1:34 a.m.•2 views

ShinyHunters Claims Rockstar Games Snowflake Breach via Anodot

ShinyHunters claims access to Rockstar Games Snowflake data via Anodot breach, threatening a data leak on April 14 if ransom demands are not met...

5.8AI score

vulnersOsv•added 2026/04/10 12:31 p.m.•11 views

be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-39304 via org.apache.activemq:activemq-all (>=4.1.2 <=5.19.3)

org.apache.activemq:activemq-all MAVEN version =4.1.2, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-39304 Source advisory: OSV:GHSA-5568-6QCG-G7FX...

7.5CVSS5.8AI score0.00683EPSS