Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

277 matches found

OSV
OSVadded yesterday2 views

ROOT-OS-UBUNTU-2404-CVE-2026-45941 CVE-2026-45941 in rootio-linux - Patched by Root

Root has patched CVE-2026-45941 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS5.3AI score0.00176EPSS
Exploits0
Circl
Circladded 2026/06/12 6:22 p.m.6 views

GHSA-45QJ-4XQ3-3C45

creationtimestamp| type| source ---|---|--- 2026-06-12 18:22:18+00:00| seen| https://gist.github.com/sandh0t/45fdee24a7907e0cd836aed26f2d5a7a...

5AI score
Exploits0References1
Circl
Circladded 2026/06/11 9:22 a.m.7 views

CVE-2026-40999

creationtimestamp| type| source ---|---|--- 2026-06-11 09:22:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnyvmtyfww2y 2026-06-11 10:00:59+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnyxrwqa5y2s 2026-06-11 12:40:07+00:00| seen|...

8.6CVSS5.8AI score0.00428EPSS
Exploits0References4
Circl
Circladded 2026/06/05 11:35 a.m.5 views

CVE-2026-8914

creationtimestamp| type| source ---|---|--- 2026-06-05 11:35:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnk2akmdy32f 2026-06-05 11:35:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnk2akmdy32f...

8.4CVSS5.3AI score0.00541EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/06/04 12:0 a.m.11 views

PT-2026-46879

Impact So far, kas checks out and processes repositories regarding configuration includes prior to validating signatures of those repositories. This may allow to replace on original repository with one under the control of an attacker under very specific conditions. First of all, the attacker mus...

2.1CVSS5.8AI score0.00021EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2026/05/28 12:0 a.m.16 views

Langflow < 1.7.0 CORS Misconfiguration Account Takeover and RCE (CVE-2025-34291)

The version of Langflow installed on the remote host is prior to 1.7.0. It is, therefore, affected by a remote code execution vulnerability: - An overly permissive CORS configuration combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origi...

9.4CVSS8AI score0.25153EPSS
Exploits3References2
Circl
Circladded 2026/05/27 5:17 a.m.10 views

CVE-2026-8450

creationtimestamp| type| source ---|---|--- 2026-05-27 05:17:43+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmsqxmuwt222 2026-05-27 06:00:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116645011565190190 2026-05-27 06:00:29+00:00| seen|...

9.1CVSS5.8AI score0.0106EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/05/27 12:0 a.m.6 views

Fedora 42 : rust-rpm-sequoia / rust-sequoia-chameleon-gnupg / rust-sequoia-git / etc (2026-8df732be8a)

The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-8df732be8a advisory. Update sequoia-openpgp to version 2.3.0. This includes three security relevant fixes assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-...

5.5CVSS5.8AI score0.00085EPSS
Exploits0References4
Snyk
Snykadded 2026/05/26 11:38 p.m.10 views

Incorrect Behavior Order: Validate Before Canonicalize

Overview @fedify/fedify is an An ActivityPub server framework Affected versions of this package are vulnerable to Incorrect Behavior Order: Validate Before Canonicalize through manipulation of JSON-LD document structure using keywords such as @graph, @included, and @reverse. An attacker can alter...

8.3CVSS5.9AI score0.00249EPSS
Exploits0References2
OSV
OSVadded 2026/05/26 11:38 p.m.7 views

GHSA-9RFG-V8G9-9367 Fedify has an LD-Signature Bypass via JSON-LD Named-Graph Restructuring

As told on Discord earlier, multiple projects are affected, and we would like to coordinate. For now, we are aiming at a May 6th release date, but this is not set in stone yet. Summary An attacker can make use of JSON-LD features to restructure a JSON-LD document that would change how Fedify...

7CVSS5.4AI score0.00249EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2026/05/26 11:38 p.m.17 views

Fedify has an LD-Signature Bypass via JSON-LD Named-Graph Restructuring

As told on Discord earlier, multiple projects are affected, and we would like to coordinate. For now, we are aiming at a May 6th release date, but this is not set in stone yet. Summary An attacker can make use of JSON-LD features to restructure a JSON-LD document that would change how Fedify...

7CVSS5.4AI score0.00249EPSS
Exploits0References4Affected Software1
Circl
Circladded 2026/05/21 10:1 p.m.7 views

CVE-2026-47101

creationtimestamp| type| source ---|---|--- 2026-05-21 22:01:09+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmfgadref72q 2026-05-21 22:16:39+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mmfh44f5ca27 2026-05-25 10:00:04+00:00| seen|...

8.8CVSS6AI score0.00459EPSS
Exploits3References4
CISA KEV Catalog
CISA KEV Catalogadded 2026/05/21 12:0 a.m.6 views

Langflow Origin Validation Error Vulnerability

Langflow contains an origin validation error vulnerability in which an overly permissive CORS configuration combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origin requests that include credentials and successfully call the refresh...

9.4CVSS7.8AI score0.25153EPSS
In wildExploits3
Circl
Circladded 2026/05/20 7:11 p.m.5 views

CVE-2026-8488

creationtimestamp| type| source ---|---|--- 2026-05-20 19:11:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmcmcqwycn2i 2026-05-21 12:25:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmeg2efjkj27...

7.5CVSS5.8AI score0.00364EPSS
Exploits0References2
Circl
Circladded 2026/05/20 2:58 p.m.4 views

GHSA-J4J8-GPVJ-7FQR

creationtimestamp| type| source ---|---|--- 2026-05-20 14:58:37+00:00| seen| https://gist.github.com/Atomics-hub/546bf5d8d27b37858eec964a75f37206...

5.8AI score
Exploits0References1
GithubExploit
GithubExploitadded 2026/05/19 11:42 p.m.79 views

eip-mcp

Exploit Intel Platform MCP Server Package/command: eip-mcp...

6.1AI score
Exploits0
Circl
Circladded 2026/05/19 7:40 a.m.7 views

CVE-2026-31071

creationtimestamp| type| source ---|---|--- 2026-05-19 07:40:12+00:00| seen| https://gist.github.com/nedlir/bc8ad4693c53256819280e8f5de49286 2026-05-19 20:25:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mma7wrvkst2i...

9.1CVSS5.8AI score0.00545EPSS
Exploits0References2
OSV
OSVadded 2026/05/18 8:26 p.m.11 views

MAL-2026-3835 Malicious code in solana-web3-alt (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b3846bb2c80cb984e05f37cddc24548b73067be9aaca692e401a06f7c323e7b9 In specific environments, the package triggers silent code execution during installation. The code to execute is not included in the package. --- Category:...

6.3AI score
Exploits0References1
MariaDBUnix
MariaDBUnixadded 2026/05/18 12:0 a.m.8 views

CVE-2026-44172

Disclaimer: This data contains information about vulnerable...

5.7AI score0.00502EPSS
Exploits0
OSV
OSVadded 2026/05/15 1:48 p.m.1 views

ECHO-66C8-1782-DDA6

Bulletin has no description...

8.3CVSS5.7AI score0.00207EPSS
Exploits0References1
Rows per page
Query Builder