CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 1 hour ago•3 views

CVE-2026-48907 Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5

A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution...

10CVSS

NVD•added 1 hour ago•3 views

CVE-2026-10732

All versions of the package decompress are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip when extracting a ZIP archive containing two entries with the same path - the first being a symlink to an arbitrary target and the second being a regular file - the file content is writte...

6.4CVSS

Cvelist•added 3 hours ago•3 views

CVE-2026-10732

6.4CVSS

CVE•added 3 hours ago•3 views

CVE-2026-10732

The CVE-2026-10732 entry affects the npm package decompress . It describes Arbitrary File Write via Archive Extraction (Zip Slip) when extracting a ZIP with two entries sharing a path, where the first is a symlink to an arbitrary target and the second is a regular file. The file content can be wr...

6.4CVSS6.5AI score

NVD•added 6 hours ago•5 views

CVE-2026-7763

A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio range to cause a Denial of Service kernel panic or potentially achieve Remote Code Execution via a...

NVD•added 6 hours ago•5 views

CVE-2026-7762

A heap-based buffer overflow vulnerability in the dot11ah.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio range to cause a Denial of Service kernel panic or potentially achieve Remote Code Execution via a...

CVE•added 7 hours ago•11 views

CVE-2026-7763

The CVE describes a heap-based buffer overflow in the morse.ko HaLow Wi‑Fi kernel driver (Morse Micro HaLowLink 2) before version 2.11.13. The root cause is in morse_page_slicing_process_tim_element() in page_slicing.c, which derives the TIM bitmap length directly from a received TIM Information ...

Cvelist•added 7 hours ago•9 views

CVE-2026-7763 Heap buffer overflow in morse.ko TIM IE processing

EUVD•added 7 hours ago•6 views

EUVD-2026-34781

CVE•added 7 hours ago•11 views

CVE-2026-7762

CVE-2026-7762 : A heap-based overflow in Morse Micro HaLowLink 2 dot11ah.ko HaLow Wi‑Fi kernel driver (versions

EUVD•added 7 hours ago•6 views

EUVD-2026-34780

Cvelist•added 7 hours ago•6 views

CVE-2026-7762 Heap buffer overflow in dot11ah.ko S1G Capabilities IE processing

EUVD-2026-34766

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

EUVD-2026-34768

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

EUVD-2026-34764

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

EUVD-2026-34767

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

EUVD-2026-34740

Out of bounds read in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Low...

EUVD-2026-34723

Use after free in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...