CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2 hours ago•7 views

CVE-2026-50708 Frappe Framework 17.0.0-dev - Stored XSS in Multi Select Dialog result rendering

A Stored Cross-Site Scripting XSS vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in the MultiSelectDialog component...

4.8CVSS

CVE•added 2 hours ago•7 views

CVE-2026-50708

CVE-2026-50708 affects Frappe Framework 17.0.0-dev, with a Stored XSS in the MultiSelectDialog component caused by improper neutralization of user-controlled input. The CVSS v4.0 base score is 4.8 (Medium), with network attack vector, low privileges required, and user interaction required. The im...

4.8CVSS5.8AI score

RedhatCVE•added 15 hours ago•5 views

CVE-2026-0864

A flaw was found in the Python configparser module. When writing configuration files, an attacker who controls the input value can inject unexpected keys and values. This occurs if the input contains multi-line text with carriage return characters, leading to potential configuration manipulation...

5.5CVSS5.7AI score

NVD•added yesterday•3 views

CVE-2026-54328

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi versions with temporary npm or git extension package installs used predictable paths under the operating system temporary directory. On Linux-based multi-user systems, a local attacker who can write to the shared temporary...

7.3CVSS0.00012EPSS

Exploits0References5

Cvelist•added yesterday•21 views

CVE-2026-12892 Gstreamer1-plugins-bad: gstreamer1-plugins-bad: 1-byte heap out-of-bounds read in h.264 nal extension slice parser

A flaw was found in GStreamer's gst-plugins-bad package. When processing a specially crafted H.264 video file containing malformed MVC or SVC extension slice NAL units, a 1-byte heap out-of-bounds read can occur during parsing. This happens when the parser attempts to check slice boundary...

4.4CVSS

Exploits0References3

ATTACKERKB•added yesterday•4 views

CVE-2026-54328

7.3CVSS5.9AI score0.00012EPSS

Exploits0References6Affected Software1

Cvelist•added yesterday•26 views

CVE-2026-54328 Pi: Predictable temporary extension install paths allow local privilege escalation on shared Linux hosts

7.3CVSS0.00012EPSS

Exploits0References5

NVD•added yesterday•4 views

CVE-2026-0864

When using the "configparser" module to write configuration files containing multi-line text values with carriage return characters \r the resulting file could be injected with unexpected keys and values if the attacker controls the written value...

4.1CVSS

EUVD•added yesterday•3 views

EUVD-2026-38554

4.1CVSS5.8AI score

Exploits0References4

Vulnrichment•added yesterday•4 views

CVE-2026-0864 Configuration Injection via Carriage Return (\r) in write() method

4.1CVSS5.8AI score

CVE•added yesterday•11 views

CVE-2026-0864

The CVE-2026-0864 entry concerns Python’s configparser.write() and how it handles multi-line text values containing carriage return characters. The vulnerability arises when attacker-controlled values are written, potentially allowing injection of unexpected keys and values into the resulting con...

4.1CVSS5.8AI score

NVD•added yesterday•7 views

CVE-2026-54311

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could pollute the sandbox used by the Merge node's SQL Query mode. Because the sandbox context was cached and reused across all workflow executions o...

6CVSS0.00057EPSS

EUVD•added yesterday•4 views

EUVD-2026-38471

6CVSS6AI score0.00057EPSS

Cvelist•added yesterday•26 views

CVE-2026-54311 n8n: Merge Node SQL Mode Prototype Pollution

6CVSS0.00057EPSS

NVD•added yesterday•8 views

CVE-2026-56784

OpenRemote before 1.25.0 contains an insecure direct object reference IDOR vulnerability in the bulk alarm deletion endpoint that allows authenticated users to permanently delete alarms belonging to other tenants by supplying arbitrary alarm IDs. The removeAlarms method in AlarmResourceImpl.java...

8.6CVSS

Positive Technologies•added yesterday•8 views

PT-2026-51642

Name of the Vulnerable Software and Affected Versions Snipe-IT affected versions not specified Description An authorization bypass exists in the BulkAssetsController::update function. The system accepts the company id variable directly from user input without utilizing the standard company-scopin...

6.3CVSS5.9AI score

Exploits0References5

NVD•added 2 days ago•6 views

CVE-2026-53923

vLLM is an inference and serving engine for large language models LLMs. From 0.5.5 until 0.23.1rc0, integer truncation of tensor dimensions in vLLM's GGUF dequantize kernels csrc/quantization/gguf/ggufkernel.cu causes partial tensor processing. The output tensor is allocated at full size via...

7.5CVSS0.00321EPSS

Exploits0References3

Cvelist•added 2 days ago•19 views

CVE-2026-53923 vLLM GGUF Kernels: int64_t to int truncation of tensor dimensions causes GPU buffer overflow

5.3CVSS0.00321EPSS

Exploits0References3

EUVD•added 2 days ago•6 views

EUVD-2026-38392

Filament is a collection of full-stack components for accelerated Laravel development. From 4.0.0 until 4.11.5 and 5.6.5, a flaw in the handling of recovery codes for app-based multi-factor authentication allows the same recovery code to be reused via concurrent submission. This issue does not...

7.4CVSS5.9AI score0.00193EPSS