Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

89754 matches found

SUSE CVE
SUSE CVEadded 2026/06/06 2:53 a.m.7 views

SUSE CVE-2026-11282

Insufficient policy enforcement in Sandbox in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS5.5AI score0.00243EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/06/06 2:28 a.m.32 views

CVE-2026-9197 Smart Slider 3 <= 3.5.1.36 - Authenticated (Administrator+) Path Traversal to Arbitrary File Read via 'src'/'srcset' Attribute in HTML Export

The Smart Slider 3 plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.5.1.36 via the replaceHTMLImage function. This makes it possible for authenticated attackers, with administrator-level access and above, to read the contents of arbitrary files on...

4.9CVSS0.00575EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/06/06 2:28 a.m.6 views

CVE-2026-9197

The Smart Slider 3 plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.5.1.36 via the replaceHTMLImage function. This makes it possible for authenticated attackers, with administrator-level access and above, to read the contents of arbitrary files on...

4.9CVSS5.6AI score0.00575EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.13 views

CVE-2026-10952

An use after free flaw was found in the Chrome for iOS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=505231370...

8.8CVSS5.4AI score0.00316EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.9 views

CVE-2026-10950

An insufficient policy enforcement flaw was found in the Autofill component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=505123022...

8.8CVSS5.4AI score0.00299EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.10 views

CVE-2026-10944

An insufficient policy enforcement flaw was found in the Autofill component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504215814...

8.8CVSS5.4AI score0.00299EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.9 views

CVE-2026-10951

An use after free flaw was found in the Autofill component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=505191883...

8.8CVSS5.4AI score0.00316EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.9 views

CVE-2026-10915

An use after free flaw was found in the Core component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497612174...

8.8CVSS5.4AI score0.00278EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.15 views

CVE-2026-11285

An insufficient policy enforcement flaw was found in the Chrome for iOS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502090914...

4.3CVSS5.4AI score0.00183EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.11 views

CVE-2026-11298

An insufficient policy enforcement flaw was found in the Chrome for iOS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502503860...

4.3CVSS5.4AI score0.00159EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.19 views

CVE-2026-11302

An insufficient policy enforcement flaw was found in the Chrome for iOS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504196549...

4.3CVSS5.4AI score0.00179EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.9 views

CVE-2026-10896

An use after free flaw was found in the Chrome for iOS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=513514692...

9.6CVSS5.4AI score0.00379EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.11 views

CVE-2026-11202

An insufficient validation of untrusted input flaw was found in the Chrome for iOS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=505144022...

8.8CVSS5.4AI score0.00234EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.16 views

CVE-2026-11204

An inappropriate implementation flaw was found in the Signin component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=505200733...

6.5CVSS5.4AI score0.00201EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:44 a.m.12 views

CVE-2026-11165

An use after free flaw was found in the WebMIDI component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502099949...

9.6CVSS5.4AI score0.00234EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/06 12:43 a.m.11 views

CVE-2026-44896

Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and earlier, in src/mistune/directives/image.py, the renderfigure function concatenates figclass and figwidth options directly into HTML attributes without escaping. This allows attribute injection and XSS even when...

6.1CVSS5.4AI score0.00198EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/06 12:43 a.m.8 views

CVE-2026-44898

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, rendertocul builds a table-of-contents tree from a list of level, id, text tuples. Both the id value used as href="" and the text value used as the visible link label are inserted into tags via a plain Python format...

6.1CVSS5.6AI score0.00198EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/06/06 12:43 a.m.10 views

CVE-2026-44897

A flaw was found in Mistune, a Python Markdown parser. A remote attacker could exploit this vulnerability by providing specially crafted input to the HTMLRenderer.heading function. This input, containing a double-quote character in the HTML heading's ID attribute, is not properly sanitized,...

6.1CVSS5.1AI score0.00194EPSS
Exploits1References5
OSV
OSVadded 2026/06/05 9:46 p.m.3 views

GHSA-2G2G-8P8H-FGWM Twig: XSS in profiler HtmlDumper via unescaped template and profile names

Description Twig\Profiler\Dumper\HtmlDumper writes Profile::getTemplate and Profile::getName straight into its HTML output without escaping: php protected function formatTemplateProfile $profile, $prefix: string return \sprintf'%s└ %s', $prefix, self::$colors'template', $profile-getTemplate; The...

5.6AI score0.00037EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2026/06/05 9:46 p.m.10 views

Twig: XSS in profiler HtmlDumper via unescaped template and profile names

Description Twig\Profiler\Dumper\HtmlDumper writes Profile::getTemplate and Profile::getName straight into its HTML output without escaping: php protected function formatTemplateProfile $profile, $prefix: string return \sprintf'%s└ %s', $prefix, self::$colors'template', $profile-getTemplate; The...

5.6AI score0.00037EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder