Lucene search
K

56023 matches found

ATTACKERKB
ATTACKERKB
added 4 days ago5 views

CVE-2026-55604

DeepSeek MCP Server is an MCP server for DeepSeek V4. Starting in version 1.4.2 and prior to version 1.7.0, the process-global SessionStore accepts caller-supplied sessionid values without binding them to any authenticated principal or transport session. An attacker can enumerate active session I...

8.6CVSS6AI score0.00225EPSS
Exploits0References3Affected Software1
Chainguard
Chainguard
added 4 days ago7 views

GHSA-V4HW-Q98X-8JMM vulnerabilities

Vulnerabilities for packages: linux-azure, linux-gcp, linux-qemu-melange...

6.1AI score
Exploits0
Chainguard
Chainguard
added 4 days ago4 views

GHSA-J4R2-33QC-JRRJ vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 4 days ago3 views

GHSA-8QP8-73PF-8G22 vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 4 days ago5 views

GHSA-P24M-96HG-M8M8 vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 4 days ago6 views

GHSA-F2VR-9QRM-HV28 vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 4 days ago4 views

GHSA-C53H-XMGP-J2HJ vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 4 days ago5 views

GHSA-3X3P-QX4R-HMGH vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 4 days ago6 views

GHSA-499R-FH8Q-QCFC vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Chainguard
Chainguard
added 4 days ago3 views

CVE-2026-14146 vulnerabilities

Vulnerabilities for packages: chromium...

6.5CVSS5.9AI score0.00264EPSS
Exploits0
Wolfi
Wolfi
added 4 days ago7 views

GHSA-XM69-PMF3-JR84 vulnerabilities

Vulnerabilities for packages: chromium...

5.9AI score
Exploits0
Wolfi
Wolfi
added 4 days ago5 views

CVE-2026-14146 vulnerabilities

Vulnerabilities for packages: chromium...

6.5CVSS5.9AI score0.00264EPSS
Exploits0
NVD
NVD
added 4 days ago6 views

CVE-2026-0275

A local privilege escalation vulnerability in Palo Alto Networks Prisma® Browser allows a locally authenticated administrator with access to the macOS local filesystem to perform actions on the device with root privileges. This issue only affects Prisma® Browser on macOS...

5.4CVSS0.0011EPSS
Exploits0References1
NVD
NVD
added 4 days ago7 views

CVE-2026-0279

Multiple cross site scripting vulnerabilities in the User-ID™ Authentication Portal aka Captive Portal service, GlobalProtect™ gateway/portal features and Clientless VPN of Palo Alto Networks PAN-OS® software enables a malicious unauthenticated user to store or execute malicious JavaScript payloa...

5.3CVSS0.01172EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 4 days ago6 views

CVE-2026-0279

Multiple cross site scripting vulnerabilities in the User-ID™ Authentication Portal aka Captive Portal service, GlobalProtect™ gateway/portal features and Clientless VPN of Palo Alto Networks PAN-OS® software enables a malicious unauthenticated user to store or execute malicious JavaScript payloa...

5.3CVSS5.4AI score0.01172EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 4 days ago36 views

CVE-2026-0279 PAN-OS: Multiple Cross-Site Scripting (XSS) Vulnerabilities

Multiple cross site scripting vulnerabilities in the User-ID™ Authentication Portal aka Captive Portal service, GlobalProtect™ gateway/portal features and Clientless VPN of Palo Alto Networks PAN-OS® software enables a malicious unauthenticated user to store or execute malicious JavaScript payloa...

5.3CVSS0.01172EPSS
Exploits0References1
Circl
Circl
added 4 days ago6 views

CVE-2026-59734

creationtimestamp| type| source ---|---|--- 2026-07-09 18:47:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqacbssmiz2z...

8.8CVSS5.9AI score0.00417EPSS
Exploits1References1
Circl
Circl
added 4 days ago8 views

CVE-2026-59826

creationtimestamp| type| source ---|---|--- 2026-07-09 18:28:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqab6hpfet2r 2026-07-09 18:43:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqabz6y7ax27...

9.1CVSS5.9AI score0.00391EPSS
Exploits0References2
NVD
NVD
added 4 days ago7 views

CVE-2026-59224

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, backend/openwebui/routers/terminals.py built the wsterminal upstream URL from an unencoded sessionid and appended userid as a query parameter, allowing query injection to make the terminal backe...

8CVSS0.00286EPSS
Exploits0References4
NVD
NVD
added 4 days ago8 views

CVE-2026-59216

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, geteventcall delivered execute:python and execute:tool Socket.IO events to a client-supplied sessionid after checking only that the session was connected, allowing authenticated users who learne...

7.7CVSS0.00276EPSS
Exploits0References4
Rows per page
Query Builder