Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6151 matches found

Patchstack
Patchstackadded 2026/04/28 7:52 p.m.4 views

WordPress Complianz – GDPR/CCPA Cookie Consent plugin <= 7.4.5 - Missing Authorization to Unauthenticated Private Post Content Disclosure vulnerability

Missing Authorization to Unauthenticated Private Post Content Disclosure vulnerability discovered by Wesley van de Kamp - Conda Security in WordPress Plugin Complianz versions = 7.4.5...

5.3CVSS5.2AI score0.00049EPSS
Exploits0References1Affected Software1
Circl
Circladded 2026/04/28 5:9 p.m.1 views

CVE-2026-41873

creationtimestamp| type| source ---|---|--- 2026-04-28 17:09:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkl3a4a57i2q 2026-04-28 17:18:28+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mkl3ppnk6p2b 2026-05-26 15:13:18+00:00| seen|...

9.8CVSS5.3AI score0.00174EPSS
Exploits0References3
Circl
Circladded 2026/04/28 9:30 a.m.1 views

CVE-2026-7248

creationtimestamp| type| source ---|---|--- 2026-04-28 09:30:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mkkbkxvuui2o 2026-04-28 09:30:35+00:00| seen| https://infosec.exchange/users/offseq/statuses/116481630491966753 2026-04-28 11:14:03+00:00| seen|...

10CVSS8.7AI score0.00108EPSS
Exploits1References4
Circl
Circladded 2026/04/28 1:43 a.m.3 views

CVE-2026-7202

creationtimestamp| type| source ---|---|--- 2026-04-28 01:43:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkjhicp2472z 2026-04-28 02:02:15+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkjijf2sb72s 2026-04-28 05:00:31+00:00| seen|...

10CVSS8.7AI score0.01221EPSS
Exploits0References4
Circl
Circladded 2026/04/28 1:30 a.m.1 views

CVE-2026-7204

creationtimestamp| type| source ---|---|--- 2026-04-28 01:30:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116479743048315445 2026-04-28 01:44:02+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkjhishfjn2r 2026-04-28 02:00:31+00:00| seen|...

10CVSS8.8AI score0.01221EPSS
Exploits0References4
Circl
Circladded 2026/04/27 9:0 p.m.2 views

CVE-2026-6741

creationtimestamp| type| source ---|---|--- 2026-04-27 21:00:23+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkixnm7i5g2t 2026-04-27 21:01:25+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkixpgj3wt2n 2026-04-28 19:33:06+00:00| seen|...

8.8CVSS5.7AI score0.00064EPSS
Exploits1References3
Circl
Circladded 2026/04/27 9:0 p.m.2 views

CVE-2026-7153

creationtimestamp| type| source ---|---|--- 2026-04-27 21:00:15+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkixneplf62t 2026-04-27 21:01:16+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkixp74yld2f...

10CVSS8.7AI score0.01221EPSS
Exploits0References2
Circl
Circladded 2026/04/27 12:15 p.m.6 views

CVE-2026-42613

creationtimestamp| type| source ---|---|--- 2026-04-27 12:15:23+00:00| published-proof-of-concept| https://github.com/getgrav/grav/security/advisories/GHSA-pxm6-mhxr-q4mj 2026-05-11 17:03:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mllqvvrpcy26 2026-05-11...

9.4CVSS5.8AI score0.00033EPSS
Exploits0References5
Circl
Circladded 2026/04/27 8:9 a.m.6 views

CVE-2026-42315

creationtimestamp| type| source ---|---|--- 2026-04-27 08:09:32+00:00| published-proof-of-concept| https://github.com/pyload/pyload/security/advisories/GHSA-838g-gr43-qqg9 2026-05-11 18:24:32+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mllvhstyvk2c 2026-05-11...

8.1CVSS5.7AI score0.00069EPSS
Exploits1References3
NVD
NVDadded 2026/04/26 10:17 p.m.1 views

CVE-2026-7059

A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function getsimulationposts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing a manipulation of the argument Platform results in path traversal. The attack can be initiated...

6.9CVSS0.00062EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/26 8:0 p.m.1 views

CVE-2026-7059 666ghj MiroFish Query Parameter simulation.py get_simulation_posts path traversal

A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function getsimulationposts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing a manipulation of the argument Platform results in path traversal. The attack can be initiated...

6.9CVSS5.5AI score0.00062EPSS
Exploits0References5
CVE
CVEadded 2026/04/26 8:0 p.m.15 views

CVE-2026-7059

The CVE-2026-7059 entry concerns 666ghj MiroFish (affected up to version 0.1.2). The vulnerability lies in the get_simulation_posts function of backend/app/api/simulation.py within the Query Parameter Handler. An attacker can achieve path traversal by manipulating the Platform argument. The issue...

6.9CVSS5.4AI score0.00062EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/26 8:0 p.m.3 views

CVE-2026-7059

A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function getsimulationposts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing a manipulation of the argument Platform results in path traversal. The attack can be initiated...

6.9CVSS5.1AI score0.00062EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/04/26 8:0 p.m.3 views

EUVD-2026-25729

A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function getsimulationposts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing a manipulation of the argument Platform results in path traversal. The attack can be initiated...

6.9CVSS5.1AI score0.00062EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/26 8:0 p.m.36 views

CVE-2026-7059 666ghj MiroFish Query Parameter simulation.py get_simulation_posts path traversal

A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function getsimulationposts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing a manipulation of the argument Platform results in path traversal. The attack can be initiated...

6.9CVSS0.00062EPSS
Exploits0References5
Circl
Circladded 2026/04/26 3:13 p.m.5 views

CVE-2026-9135

creationtimestamp| type| source ---|---|--- 2026-04-26 15:13:52+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mkftsxttik2h 2026-04-26 15:13:52+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mkftsw4gzs2h...

4.8AI score
Exploits0References2
CNNVD
CNNVDadded 2026/04/26 12:0 a.m.5 views

MiroFish 路径遍历漏洞

MiroFish is a crowd intelligence prediction engine developed by BaiFu personally. It is used to simulate and predict the future. Versions of MiroFish prior to 0.1.2 have a path traversal vulnerability. This vulnerability stems from improper handling of the Platform parameter in the...

6.9CVSS6.1AI score0.00062EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/04/26 12:0 a.m.3 views

PT-2026-35238

A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function get simulation posts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing a manipulation of the argument Platform results in path traversal. The attack can be initiated...

6.9CVSS5.1AI score0.00062EPSS
Exploits0References5
Circl
Circladded 2026/04/24 3:56 a.m.2 views

CVE-2026-33317

creationtimestamp| type| source ---|---|--- 2026-04-24 03:56:42+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk7n2d676i2w 2026-04-24 03:56:43+00:00| seen| https://bsky.app/profile/potato.software/post/3mk7n2e3ejh25 2026-04-24 03:57:24+00:00| seen|...

8.7CVSS5.7AI score0.00015EPSS
Exploits2References4
Positive Technologies
Positive Technologiesadded 2026/04/24 12:0 a.m.5 views

PT-2026-37169

Name of the Vulnerable Software and Affected Versions Lemmy versions prior to 0.19.18 Description An authenticated low-privileged user can trigger server-side HTTP requests toward internal services. This occurs when a user creates a link post in a public community via the "POST /api/v3/post"...

6.3CVSS5.8AI score0.00044EPSS
Exploits0References10
Rows per page
Query Builder