Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6150 matches found

Circl
Circladded 2026/06/04 3:20 a.m.7 views

CVE-2026-41860

creationtimestamp| type| source ---|---|--- 2026-06-04 03:20:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mngo5dkpkj2f 2026-06-04 04:00:33+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mngqeycd7q2k 2026-06-04 09:07:08+00:00| seen|...

8.8CVSS5.8AI score0.00005EPSS
Exploits0References3
Circl
Circladded 2026/06/04 3:0 a.m.7 views

CVE-2026-10737

creationtimestamp| type| source ---|---|--- 2026-06-04 03:00:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mngmztd3wh22 2026-06-04 06:49:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mngzsdlxk324 2026-06-04 23:22:30+00:00| seen|...

7.5CVSS5.3AI score0.00095EPSS
Exploits0References9
Circl
Circladded 2026/06/04 3:0 a.m.4 views

CVE-2026-41011

creationtimestamp| type| source ---|---|--- 2026-06-04 03:00:27+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mngmzjmk3y2q 2026-06-04 03:00:36+00:00| seen| https://infosec.exchange/users/offseq/statuses/116689602129166209 2026-06-04 03:19:28+00:00| seen|...

8.7CVSS5.8AI score0.00024EPSS
Exploits0References5
Circl
Circladded 2026/06/04 1:11 a.m.3 views

CVE-2026-10777

creationtimestamp| type| source ---|---|--- 2026-06-04 01:11:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnggx2rp4b2g 2026-06-04 02:57:38+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mngmuf4q332f...

7.5CVSS7.1AI score0.00116EPSS
Exploits0References2
Circl
Circladded 2026/06/04 1:6 a.m.6 views

CVE-2026-8722

creationtimestamp| type| source ---|---|--- 2026-06-04 01:06:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnggo4dgrl23 2026-06-04 01:20:24+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnghgns3a62j...

6.5CVSS5.8AI score0.00038EPSS
Exploits0References2
Circl
Circladded 2026/06/04 12:43 a.m.6 views

CVE-2026-22055

creationtimestamp| type| source ---|---|--- 2026-06-04 00:43:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mngfeufi7727 2026-06-04 13:20:25+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mnhpo4vr3n2o...

5.3CVSS5.8AI score0.00043EPSS
Exploits0References2
Circl
Circladded 2026/06/03 6:1 a.m.5 views

CVE-2025-14771

creationtimestamp| type| source ---|---|--- 2026-06-03 06:01:01+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/control-systems-abb-security-advisory-av26-545 2026-06-03 11:29:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mneyz2dgnr2o 2026-06-03 14:01:41+00:00| seen|...

9.9CVSS5.8AI score0.00053EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2026/06/03 5:10 a.m.5 views

WordPress Plugin "Zoho Mail for WordPress" vulnerable to cross-site request forgery

Overview WordPress Plugin "Zoho Mail for WordPress" provided by Zoho Corporation contains the following vulnerability. Cross-site request forgery CWE-352 - CVE-2026-8174 Norio Abe reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

5.7CVSS5.4AI score0.00011EPSS
Exploits0References4
Circl
Circladded 2026/06/02 11:0 p.m.7 views

CVE-2026-42849

creationtimestamp| type| source ---|---|--- 2026-06-02 23:00:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mndp5kqcsp2u 2026-06-02 23:24:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndqhq2vdf2r 2026-06-04 22:07:07+00:00| seen|...

9.3CVSS5.8AI score0.00015EPSS
Exploits0References3
Circl
Circladded 2026/06/02 8:57 p.m.9 views

CVE-2026-5076

creationtimestamp| type| source ---|---|--- 2026-06-02 20:57:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndibeexqb2m 2026-06-02 21:00:39+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mndih7w5ct25 2026-06-03 02:06:19+00:00| seen|...

9.8CVSS5.3AI score0.00057EPSS
Exploits3References4
NVD
NVDadded 2026/06/02 5:16 p.m.10 views

CVE-2026-40571

NamelessMC is website software for Minecraft servers. In version 2.2.4, core/classes/Misc/ProfilePostReactionContext.php only verifies that the wall post exists and does not enforce blocked/private-profile visibility. This means that authenticated low-privileged users can add reactions to private...

5.3CVSS0.00043EPSS
Exploits0References1
NVD
NVDadded 2026/06/02 5:16 p.m.9 views

CVE-2026-35447

NamelessMC is website software for Minecraft servers. In version 2.2.4, the profile page modules/Core/pages/profile.php processes wall post submissions and replies before verifying whether the viewer is authorized to access the profile. This allows any user with the profile.post permission to wri...

5.3CVSS0.00047EPSS
Exploits0References1
NVD
NVDadded 2026/06/02 5:16 p.m.8 views

CVE-2026-40314

NamelessMC is website software for Minecraft servers. In version 2.2.4,core/classes/Misc/ProfilePostReactionContext.php only verifies that the wall post exists and does not enforce blocked/private-profile visibility. modules/Core/queries/reactions.php allows unauthenticated GET requests for...

6.9CVSS0.00054EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 4:44 p.m.37 views

CVE-2026-40571 NamelessMC: Reactions on private or blocking profile posts can be modified without proper authorization

NamelessMC is website software for Minecraft servers. In version 2.2.4, core/classes/Misc/ProfilePostReactionContext.php only verifies that the wall post exists and does not enforce blocked/private-profile visibility. This means that authenticated low-privileged users can add reactions to private...

5.3CVSS0.00043EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/02 4:44 p.m.8 views

EUVD-2026-33983

NamelessMC is website software for Minecraft servers. In version 2.2.4, core/classes/Misc/ProfilePostReactionContext.php only verifies that the wall post exists and does not enforce blocked/private-profile visibility. This means that authenticated low-privileged users can add reactions to private...

5.3CVSS5.8AI score0.00043EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 4:44 p.m.15 views

CVE-2026-40571

CVE-2026-40571 (NamelessMC) affects NamelessMC website software for Minecraft servers. In version 2.2.4, the file core/classes/Misc/ProfilePostReactionContext.php only verifies that the wall post exists and does not enforce blocked/private-profile visibility. As a result, authenticated low-privil...

5.3CVSS5.8AI score0.00043EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/02 4:44 p.m.10 views

CVE-2026-40571

NamelessMC is website software for Minecraft servers. In version 2.2.4, core/classes/Misc/ProfilePostReactionContext.php only verifies that the wall post exists and does not enforce blocked/private-profile visibility. This means that authenticated low-privileged users can add reactions to private...

5.3CVSS5.8AI score0.00043EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/02 4:41 p.m.29 views

CVE-2026-35447 NamelessMC: Private or blocking profile pages can be bypassed with direct POST requests, and reply handling allows cross-profile writes

NamelessMC is website software for Minecraft servers. In version 2.2.4, the profile page modules/Core/pages/profile.php processes wall post submissions and replies before verifying whether the viewer is authorized to access the profile. This allows any user with the profile.post permission to wri...

5.3CVSS0.00047EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 4:41 p.m.10 views

CVE-2026-35447

NamelessMC web software (Minecraft servers) is affected by CVE-2026-35447 in version 2.2.4. The flaw resides in the profile page (modules/Core/pages/profile.php), where wall post submissions and replies are processed before verifying the viewer’s authorization. This allows any user with the profi...

5.3CVSS5.9AI score0.00047EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 4:41 p.m.6 views

CVE-2026-35447 NamelessMC: Private or blocking profile pages can be bypassed with direct POST requests, and reply handling allows cross-profile writes

NamelessMC is website software for Minecraft servers. In version 2.2.4, the profile page modules/Core/pages/profile.php processes wall post submissions and replies before verifying whether the viewer is authorized to access the profile. This allows any user with the profile.post permission to wri...

5.3CVSS5.9AI score0.00047EPSS
Exploits0References1
Rows per page
Query Builder