CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2026/05/26 8:9 a.m.•15 views

Malicious code in @autofleet/rabbit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a766d89a5ed19491bd107e5d31c79fbbe7a9be9bce2a957b290408fb9f54140c The package's compiled entry dist/index.js:48 defines let host = process.env.RABBITMQSERVICEHOST || '35.240.13.28' and then connects via...

5.9AI score

RedHat Linux•added 2026/05/26 3:45 a.m.•13 views

net/url: Incorrect parsing of IPv6 host literals in net/url

The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid...

7.5CVSS7.3AI score0.00044EPSS

Exploits0References8

CNNVD•added 2026/05/26 12:0 a.m.•8 views

MaxKB 代码问题漏洞

MaxKB is an open-source question-answering system based on large language models and RAG, developed by 1Panel-dev. Versions of MaxKB prior to 2.9.1 contained code vulnerabilities. These vulnerabilities stemmed from the work-flowtemplate import feature, where authenticated users could provide...

6.3CVSS6AI score0.00043EPSS

Positive Technologies•added 2026/05/26 12:0 a.m.•8 views

PT-2026-43354

Name of the Vulnerable Software and Affected Versions FastNetMon Community Edition versions prior to 1.3.0 Description A configuration injection issue exists in the Juniper router integration plugin. In the file src/juniper plugin/fastnetmon juniper.php, the variable IP ATTACK received from argv1...

8.1CVSS6AI score0.00036EPSS

Amazon•added 2026/05/26 12:0 a.m.•12 views

Important: nginx

Issue Overview: When NGINX Plus or NGINX Open Source are configured to use the HTTP/3 QUIC module, an attacker may be able to spoof their source IP address allowing for bypass of authorization or bypass of rate limiting. Note: Software versions which have reached End of Technical Support EoTS are...

9.2CVSS6.5AI score0.00288EPSS

Exploits36

Tenable Nessus•added 2026/05/26 12:0 a.m.•9 views

Amazon Linux 2023 : perl-Net-CIDR-Lite (ALAS2023-2026-1732)

"It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1732 advisory. Net::CIDR::Lite versions before 0.24 for Perl does not properly validate IP address and CIDR mask inputs, which may allow IP ACL bypass. Inputs containing a trailing newline or non-ASCII digi...

6.5CVSS5.8AI score0.0007EPSS

Exploits0References6

ATTACKERKB•added 2026/05/26 12:0 a.m.•6 views

CVE-2026-48692

FastNetMon Community Edition through 1.2.9 exposes a gRPC API server on port 50052 with no authentication mechanism. The server is initialized with grpc::InsecureServerCredentials src/fastnetmon.cpp line 477 and a source code comment explicitly acknowledges 'Listen on the given address without an...

6.2AI score0.00046EPSS

Exploits0References5

OSV•added 2026/05/25 8:18 p.m.•5 views

MAL-2026-4396 Malicious code in @izumiswap/sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63bd0a7aaa4ac18d8ae0c57c07bec05cb4f69e8650e77c117d11c048e5cec004 On npm install, scripts/postinstall.js runs as the preinstall/postinstall lifecycle hook and performs an unambiguous install-time RCE. It first...

OSV•added 2026/05/25 5:38 p.m.•9 views

Exploits0References5

MAL-2026-4348 Malicious code in api-rs-node (npm)

A campaign of npm packages sharing a common dropper clob.js that downloads and persistently installs a Windows executable from IPFS on postinstall. The dropper fetches the binary from IPFS CID bafybeif3zkapj364ofnrvbty7oj5h5ufpxlp4s62usk3ulxrru35e3gssa via multiple public gateways Pinata,...

5.5AI score

Exploits0References3

OSV•added 2026/05/25 12:3 p.m.•7 views

MAL-2026-4350 Malicious code in clobprice.api (npm)

OSV•added 2026/05/25 12:2 p.m.•8 views

Exploits0References3

MAL-2026-4349 Malicious code in clob.api (npm)

OSV•added 2026/05/25 12:0 p.m.•9 views

MAL-2026-4347 Malicious code in @devcarron/clob (npm)

RedhatCVE•added 2026/05/25 7:43 a.m.•8 views

CVE-2026-40460

A flaw was found in NGINX Plus and NGINX Open Source when configured to use the HTTP/3 QUIC module. A remote attacker could exploit this by spoofing their source IP address. This vulnerability allows for the bypass of authorization controls or rate limiting mechanisms, potentially leading to...

6.9CVSS5.8AI score0.00017EPSS

OSV•added 2026/05/25 4:23 a.m.•4 views

MAL-2026-4423 Malicious code in @refactco/refact-os (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 072881a1fd9241acfcd601ad5387b0338a26ff4828763658c3840b43a3cedb1c Running this package's refact-os init CLI scaffolds AI-editor hook configurations .claude/settings.json, .cursor/hooks.json and copies two Python hoo...

CNNVD•added 2026/05/25 12:0 a.m.•5 views

TOTOLINK A8000RU 操作系统命令注入漏洞

The TOTOLINK A8000RU is a wireless router from China's Gion Electronics TOTOLINK. An OS command injection vulnerability exists in TOTOLINK A8000RU version 7.1cu.643b20200521, which originates from the operation of the function setIpQosRules on the parameter Comment in the Web Management Interface...

10CVSS7.3AI score0.01254EPSS

Exploits0References6

NVD•added 2026/05/24 11:16 p.m.•10 views

CVE-2026-9401

A vulnerability has been found in Edimax BR-6675nD 1.12. Impacted is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. The manipulation of the argument pppUserName leads to buffer overflow. The attack can be initiated remotely. The exploit...

9CVSS0.00046EPSS

Cvelist•added 2026/05/24 10:15 p.m.•15 views

CVE-2026-9401 Edimax BR-6675nD POST Request formWanTcpipSetup buffer overflow

9CVSS0.00046EPSS