Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

54611 matches found

OSV
OSVadded 2026/05/15 11:18 a.m.7 views

CLSA-2026-1778843906 nginx: Fix of CVE-2026-42945

CVE-2026-42945: fix heap buffer overflow in ngxhttprewritemodule when an unnamed PCRE capture group with '?' in the replacement is followed by another rewrite, if, or set directive; clear stale isargs flag in regex end code to prevent buffer overrun and possible worker crash or code execution...

9.2CVSS6.5AI score0.23018EPSS
Exploits38References1
CVE
CVEadded 2026/05/15 11:6 a.m.11 views

CVE-2026-8503

CVE-2026-8503 affects Apache::Session::Generate::SHA256 in Perl (versions before 1.3.19). The default ID generator creates a SHA-256 hash of sources with low entropy (rand(), epoch, PID) and hashes that result again, making session IDs predictable. This predictable randomness can enable an attack...

6.5CVSS5.8AI score0.00253EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2026/05/15 11:6 a.m.34 views

CVE-2026-8503 Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids

Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator returns a SHA-256 hash of the built-in rand function, the epoch time, and the PID, that is hashed...

0.00253EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/15 11:6 a.m.10 views

CVE-2026-8503 Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids

Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator returns a SHA-256 hash of the built-in rand function, the epoch time, and the PID, that is hashed...

5.8AI score0.00253EPSS
Exploits0References5
EUVD
EUVDadded 2026/05/15 11:6 a.m.11 views

EUVD-2026-30536

Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator returns a SHA-256 hash of the built-in rand function, the epoch time, and the PID, that is hashed...

9.1CVSS5.8AI score0.00583EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/05/15 10:58 a.m.6 views

CVE-2026-43490

A flaw was found in ksmbd, a Linux kernel module that provides an in-kernel Server Message Block SMB server. A remote attacker could exploit this vulnerability by providing a malformed inheritable Access Control Entry ACE within a security descriptor. This could lead to an out-of-bounds read or...

8.8CVSS5.8AI score0.00408EPSS
Exploits0References4
CVE
CVEadded 2026/05/15 10:57 a.m.13 views

CVE-2026-8454

CVE-2026-8454 affects Imager::File::GIF (Perl) up to version 1.002. The root cause is a single per-row GifRow buffer sized to the GIF’s global SWidth being reused across multiple images, with a missing bounds check in the parallel skip-image path (DGifGetLine with Width) that can lead to a heap o...

5.3CVSS5.9AI score0.00196EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/15 10:57 a.m.5 views

CVE-2026-8454

Imager::File::GIF versions through 1.002 for Perl allow a heap out of bounds OOB write on crafted multi-frame GIF files. Imager::File::GIF's ireadgifmultilow allocates a single per-row buffer GifRow sized for the GIF's global screen width 'SWidth' and reuses it across every image in the file. The...

5.3CVSS5.9AI score0.00196EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2026/05/15 10:41 a.m.10 views

nginx: NGINX: Arbitrary Code Execution Vulnerability

A flaw was found in NGINX, specifically within the ngxhttprewritemodule. An unauthenticated attacker can exploit this vulnerability by sending crafted HTTP requests under specific rewrite configurations. This can lead to a heap buffer overflow in the NGINX worker process, which may result in...

9.2CVSS6.6AI score0.23018EPSS
Exploits38References6
RedHat Linux
RedHat Linuxadded 2026/05/15 10:38 a.m.8 views

nginx: NGINX: Arbitrary Code Execution Vulnerability

A flaw was found in NGINX, specifically within the ngxhttprewritemodule. An unauthenticated attacker can exploit this vulnerability by sending crafted HTTP requests under specific rewrite configurations. This can lead to a heap buffer overflow in the NGINX worker process, which may result in...

9.2CVSS6.6AI score0.23018EPSS
Exploits38References6
NVD
NVDadded 2026/05/15 10:16 a.m.11 views

CVE-2026-41969

Permission control vulnerability in the projection module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

6.2CVSS0.00096EPSS
Exploits0References1
NVD
NVDadded 2026/05/15 10:16 a.m.9 views

CVE-2026-41971

Permission control vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

5.5CVSS0.00082EPSS
Exploits0References2
NVD
NVDadded 2026/05/15 10:16 a.m.22 views

CVE-2026-41968

Permission control vulnerability in the manufacturability design module. Impact: Successful exploitation of this vulnerability may affect availability...

5.9CVSS0.0008EPSS
Exploits0References1
NVD
NVDadded 2026/05/15 10:16 a.m.10 views

CVE-2026-41962

Permission control vulnerability in the app management and control module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

3.6CVSS0.00077EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2026/05/15 10:15 a.m.13 views

nginx: NGINX: Arbitrary Code Execution Vulnerability

A flaw was found in NGINX, specifically within the ngxhttprewritemodule. An unauthenticated attacker can exploit this vulnerability by sending crafted HTTP requests under specific rewrite configurations. This can lead to a heap buffer overflow in the NGINX worker process, which may result in...

9.2CVSS6.6AI score0.23018EPSS
Exploits38References6
GithubExploit
GithubExploitadded 2026/05/15 9:57 a.m.105 views

Exploit for CVE-2026-42945

NGINX Rift RCE Proof of concept for CVE-2026-42945, a cri...

9.2CVSS6.7AI score0.23018EPSS
Exploits38
CVE
CVEadded 2026/05/15 9:31 a.m.15 views

CVE-2026-41969

Technical details about CVE-2026-41969 are not publicly available in the provided documents. Monitor for updates from official sources.

6.2CVSS5.8AI score0.00096EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/15 9:31 a.m.11 views

EUVD-2026-30531

Permission control vulnerability in the projection module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

6.2CVSS5.8AI score0.00096EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/15 9:31 a.m.6 views

CVE-2026-41969

Permission control vulnerability in the projection module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

6.2CVSS5.8AI score0.00096EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/15 9:31 a.m.4 views

CVE-2026-41969

Permission control vulnerability in the projection module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

6.2CVSS5.8AI score0.00096EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder