CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/19 12:30 p.m.•11 views

EUVD-2026-30921

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

8.1CVSS5.8AI score0.0029EPSS

Vulnrichment•added 2026/05/19 12:30 p.m.•6 views

CVE-2026-8969 Mitigation bypass in the DOM: Security component

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

5.8AI score0.0029EPSS

CVE•added 2026/05/19 12:30 p.m.•14 views

CVE-2026-8965

CVE-2026-8965 is an information-disclosure vulnerability in the DOM: Security component, affecting Mozilla Firefox and Mozilla Thunderbird up to version 151. The issue is fixed in Firefox 151 and Thunderbird 151. Affected products include Mozilla Firefox earlier than 151.0 and Mozilla Thunderbird...

7.5CVSS5.8AI score0.00324EPSS

Exploits0References3Affected Software2

EUVD•added 2026/05/19 12:30 p.m.•10 views

EUVD-2026-30913

Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

5.8AI score0.00324EPSS

ATTACKERKB•added 2026/05/19 12:30 p.m.•5 views

CVE-2026-8965

Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

5.8AI score0.00324EPSS

Debian CVE•added 2026/05/19 12:30 p.m.•8 views

CVE-2026-8965

Information disclosure in the DOM: Security component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

7.5CVSS5.8AI score0.00324EPSS

Exploits0

ATTACKERKB•added 2026/05/19 12:29 p.m.•8 views

CVE-2026-8962

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

5.8AI score0.00372EPSS

Exploits0References6

EUVD•added 2026/05/19 12:29 p.m.•11 views

EUVD-2026-30911

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

5.8AI score0.00372EPSS

Exploits0References5

Debian CVE•added 2026/05/19 12:29 p.m.•6 views

CVE-2026-8962

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

8.1CVSS5.8AI score0.00372EPSS

Exploits0

Cvelist•added 2026/05/19 12:29 p.m.•36 views

CVE-2026-8948 Same-origin policy bypass in the DOM: Networking component

Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

0.00393EPSS

ATTACKERKB•added 2026/05/19 12:29 p.m.•7 views

CVE-2026-8948

Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

9.1CVSS5.8AI score0.00393EPSS

Debian CVE•added 2026/05/19 12:29 p.m.•7 views

CVE-2026-8948

Same-origin policy bypass in the DOM: Networking component. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

9.1CVSS5.8AI score0.00393EPSS

Exploits0

NVD•added 2026/05/19 12:16 p.m.•18 views

CVE-2026-4630

A flaw was found in Keycloak. An authenticated client could exploit an Insecure Direct Object Reference IDOR vulnerability in the Authorization Services Protection API endpoint. By knowing or obtaining a resource's unique identifier UUID belonging to another Resource Server within the same realm,...

6.8CVSS0.00303EPSS

RedhatCVE•added 2026/05/19 10:28 a.m.•11 views

CVE-2026-4630

6.8CVSS5.6AI score0.00303EPSS

ATTACKERKB•added 2026/05/19 10:28 a.m.•4 views

CVE-2026-4630

EUVD•added 2026/05/19 10:28 a.m.•11 views

Exploits0References5

EUVD-2026-30879

Vulnrichment•added 2026/05/19 10:28 a.m.•10 views

Exploits0References2

CVE-2026-4630 Keycloak: keycloak: unauthorized resource access and data modification via insecure direct object reference

Cvelist•added 2026/05/19 10:28 a.m.•39 views

CVE-2026-4630 Keycloak: keycloak: unauthorized resource access and data modification via insecure direct object reference

6.8CVSS0.00303EPSS

CVE•added 2026/05/19 10:28 a.m.•21 views

CVE-2026-4630

CVE-2026-4630 (Keycloak) describes an Insecure Direct Object Reference (IDOR) in the Authorization Services Protection API endpoint. An authenticated client can use a resource UUID from another Resource Server in the same realm to bypass authorization checks, enabling unauthorized GET, PUT, and D...