CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

108 matches found

Microsoft CVE•added 2026/06/05 2:0 p.m.•11 views

Chromium: CVE-2026-11228 Incorrect security UI in File Input

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.4AI score0.00154EPSS

Exploits0

Vulnrichment•added 2026/06/04 11:5 p.m.•6 views

CVE-2026-11216

Incorrect security UI in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.0015EPSS

Exploits1References2

CNNVD•added 2026/06/02 12:0 a.m.•3 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from incorrect file input security UI controls, which could allow remote attackers to exploit the UI through specially crafted HT...

4.3CVSS5.3AI score0.0015EPSS

Exploits1References3

SUSE CVE•added 2026/05/07 2:19 a.m.•5 views

SUSE CVE-2026-43047

In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match the request It is possible for a malicious or clumsy device to respond to a specific report's feature request using a completely different report ID. This can cause confusio...

7.8CVSS5.8AI score0.0012EPSS

Exploits0References3

ATTACKERKB•added 2026/04/08 8:30 a.m.•2 views

CVE-2026-39703

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpbits WPBITS Addons For Elementor Page Builder wpbits-addons-for-elementor allows Stored XSS.This issue affects WPBITS Addons For Elementor Page Builder: from n/a through = 1.8.1...

5.9AI score0.00133EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 10:18 a.m.•7 views

CVE-2019-18926

Systematic IRIS Standards Management ISM v2.1 SP1 89 is vulnerable to unauthenticated reflected Cross Site Scripting XSS. A user input related to dialog information is reflected directly in the web page, allowing a malicious user to conduct a Cross Site Scripting attack against users of the...

6.1CVSS6.5AI score0.00649EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:36 a.m.•7 views

CVE-2019-7899

Names of disabled downloadable products could be disclosed due to inadequate validation of user input in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2...

5.3CVSS6.7AI score0.00928EPSS

Exploits0References1