Lucene search
K

2550 matches found

Nuclei
Nuclei
added 9 hours ago37 views

Analytics Insights for Google Analytics 4 < 6.3 - Open Redirect

The plugin is vulnerable to Open Redirect due to insufficient validation on the redirect oauth2callback.php file. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action. id: CVE-2024-0250...

6.1CVSS6AI score0.01254EPSS
Exploits2References3
Nuclei
Nuclei
added 9 hours ago30 views

Mlflow < 2.11.0 - Path Traversal

A path traversal vulnerability exists in mlflow/mlflow version 2.11.0, identified as a bypass for the previously addressed CVE-2023-6909. The vulnerability arises from the application's handling of artifact URLs, where a '' character can be used to insert a path into the fragment, effectively...

7.5CVSS7.2AI score0.43284EPSS
Exploits1References2
Nuclei
Nuclei
added 9 hours ago80 views

Travelpayouts <= 1.1.16 - Open Redirect

The plugin is vulnerable to Open Redirect due to insufficient validation on the travelpayoutsredirect variable. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action. id: CVE-2024-0337...

6.1CVSS6AI score0.00891EPSS
Exploits2References2
EUVD
EUVD
added 2 days ago3 views

EUVD-2026-40710

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00299EPSS
Exploits0References3
OSV
OSV
added 3 days ago2 views

DEBIAN-CVE-2026-13872

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to potentially perform a sandbox escape via a malicious file. Chromium security severity: Medium...

9.1CVSS5.8AI score0.00241EPSS
Exploits0References1
CVE
CVE
added 3 days ago7 views

CVE-2026-14100

CVE-2026-14100 affects Google Chrome’s NetworkCache. Affected component: NetworkCache in Chrome (before version 150.0.7871.47). Root cause: insufficient data validation that enables a remote attacker to leak cross-origin data via a crafted HTML page. Impact: cross-origin data leakage with network...

6.5CVSS5.8AI score0.00229EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 3 days ago22 views

CVE-2026-13851

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: High...

0.00273EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 4 days ago5 views

CVE-2026-13024

An insufficient validation of untrusted input flaw was found in the Navigation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=517148260...

5.8CVSS5.7AI score0.00146EPSS
Exploits0References5
CVE
CVE
added 2026/06/25 2:7 p.m.14 views

CVE-2026-13222

The CVE-2026-13222 entry concerns the pretix-oppwa payment integration, where insufficient validation of payment status responses allows reusing a valid payment status across different payments. This could enable an attacker to gain access to multiple valid tickets tied to a single payment. Affec...

6.3CVSS5.9AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/22 4:50 a.m.8 views

CVE-2026-12034

The following flaw was identified in the Chromium browser: Insufficient validation of untrusted input Linux Toolkit Theming. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=519258799...

8.3CVSS5.8AI score0.0018EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/22 4:36 a.m.7 views

CVE-2026-12025

The following flaw was identified in the Chromium browser: Insufficient validation of untrusted input Network. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=517153191...

5.8CVSS5.8AI score0.00227EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/06/19 2:0 p.m.58 views

Chromium: CVE-2026-12456 Insufficient validation of untrusted input in Extensions

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.2CVSS5.8AI score0.00137EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/19 9:50 a.m.9 views

CVE-2026-12016

The following flaw was identified in the Chromium browser: Insufficient validation of untrusted input DevTools. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=516482138...

8.3CVSS5.8AI score0.00229EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/19 9:1 a.m.8 views

CVE-2026-12465

An insufficient validation of untrusted input flaw was found in the Metrics component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=520189702...

8.3CVSS5.8AI score0.00242EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/06/16 2:14 a.m.20 views

Chromium: CVE-2026-11689 Insufficient validation of untrusted input in Passwords

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.1CVSS5.2AI score0.00218EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/16 2:14 a.m.14 views

Chromium: CVE-2026-11660 Insufficient validation of untrusted input in New Tab Page

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.3CVSS5.2AI score0.00258EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/15 2:0 p.m.10 views

Chromium: CVE-2026-12009 Insufficient validation of untrusted input  Accessibility

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.3CVSS5.2AI score0.00246EPSS
Exploits0
NVD
NVD
added 2026/06/11 9:16 p.m.12 views

CVE-2026-53815

OpenClaw before 2026.5.19 contains an authorization bypass vulnerability in message read actions that skips channel allowlist checks. Lower-trust callers can request messages from channels not intended for them by exploiting insufficient validation in the affected feature, potentially exposing...

7.1CVSS0.00215EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.18 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.5.19 contained security vulnerabilities. These vulnerabilities stemmed from authorization bypass issues during message reading operations, resulting in bypassing channel permissio...

7.1CVSS5.3AI score0.00215EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:0 p.m.9 views

CVE-2026-0412

Insufficient input validation vulnerability in NETGEAR JR6150 AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014 allows administrators connected to the local network to make unauthorized modification of router software and functionality. NETGEAR JR6150 reached End-of-Support status in...

6.8CVSS5.4AI score0.00153EPSS
Exploits0References1
Rows per page
Query Builder