Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

81981 matches found

Circl
Circladded 2026/04/16 2:3 a.m.3 views

CVE-2026-40947

creationtimestamp| type| source ---|---|--- 2026-04-16 02:03:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjlcy6tbfd2w...

2.9CVSS5.7AI score0.00006EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2026/04/16 12:11 a.m.78 views

VulnForge

VulnForge AI-Powered Vulnerability Scanner & Auto-Exploit E...

5.9AI score
Exploits0
CNNVD
CNNVDadded 2026/04/16 12:0 a.m.6 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.1 contained security vulnerabilities. These vulnerabilities stemmed from the PUT request handler in the UDR service, which failed to properly return values after request parsing or...

6.9CVSS5.9AI score0.00033EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/04/16 12:0 a.m.3 views

PT-2026-33319

Name of the Vulnerable Software and Affected Versions ManageEngine PAM360 versions prior to 8531 ManageEngine Password Manager Pro versions 8600 through 13230 Description An authenticated SQL injection exists in the query report module. SQL injection is a type of flaw that allows an attacker to...

8.1CVSS5.8AI score0.00028EPSS
Exploits0References6
Circl
Circladded 2026/04/15 11:25 p.m.0 views

CVE-2026-32236

creationtimestamp| type| source ---|---|--- 2026-04-15 23:25:26+00:00| published-proof-of-concept| Telegram/mxRBklpz2ezflHBxeq5ePFUKdKDDSnK62KfKWabwlXIo...

7.5CVSS4.8AI score0.00047EPSS
Exploits0
OSV
OSVadded 2026/04/15 7:50 p.m.2 views

MAL-2026-2698 Malicious code in kyleip (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6a05611ec8862117c6403a4a06759ca56bf2922c2b142a4661b77fd214ef26be Package exploits dependency confusion. A beacon request is used to report usage back, but no additional information are exfiltrated. --- Category:...

5.8AI score
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/15 7:24 p.m.1 views

CVE-2026-6129

A vulnerability was detected in zhayujie chatgpt-on-wechat CowAgent up to 2.0.4. This affects an unknown function of the component Agent Mode Service. Performing a manipulation results in missing authentication. The attack can be initiated remotely. The exploit is now public and may be used. The...

7.5CVSS5.5AI score0.00113EPSS
Exploits0References1
Circl
Circladded 2026/04/15 12:30 p.m.0 views

CVE-2026-27769

creationtimestamp| type| source ---|---|--- 2026-04-15 12:30:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjjvk3msii2m 2026-04-16 11:35:10+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mjmcwqgahd2b...

2.7CVSS5.7AI score0.00037EPSS
Exploits0References2
Snyk
Snykadded 2026/04/15 10:16 a.m.6 views

Use of a Broken or Risky Cryptographic Algorithm

Overview org.bouncycastle:bcprov-jdk14 is a Java implementation of cryptographic algorithms. Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to the generateCTR process in G3413CTRBlockCipher. An attacker can recover relationships between...

9.3CVSS5.7AI score0.00004EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/04/15 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-6358

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in XR in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML...

8.8CVSS5.8AI score0.00044EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/04/14 7:24 p.m.4 views

CVE-2026-6118

A vulnerability was determined in AstrBotDevs AstrBot up to 4.22.1. Impacted is the function addmcpserver of the file astrbot/dashboard/routes/tools.py of the component MCP Endpoint. This manipulation of the argument command causes command injection. The attack is possible to be carried out...

6.5CVSS6.3AI score0.03277EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2026/04/14 2:0 p.m.2 views

HackerOne: CVE-2026-21637 TLS PSK/ALPN Callback Exceptions Bypass Error Handlers

CVE-2026-21637 is regarding a vulnerability in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS server when pskCallback or ALPNCallback are in use. Synchronous exceptions thrown during these callbacks bypass standard TLS error handling paths tlsClientError...

7.5CVSS7.1AI score0.00056EPSS
Exploits0
GithubExploit
GithubExploitadded 2026/04/14 5:19 a.m.67 views

CORScanner

CORS Exploiter Automated CORS misconfiguration scanner with...

5.8AI score
Exploits0
NVD
NVDadded 2026/04/14 1:16 a.m.1 views

CVE-2026-34256

Due to a missing authorization check in SAP ERP and SAP S/4HANA Private Cloud and On-Premise, an authenticated attacker could execute a particular ABAP report to overwrite any existing eight?character executable ABAP report without authorization. If the overwritten report is subsequently executed...

7.1CVSS0.00047EPSS
Exploits0References2
Circl
Circladded 2026/04/14 1:10 a.m.1 views

CVE-2026-39979

creationtimestamp| type| source ---|---|--- 2026-04-14 01:10:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjg73rsmom2m...

6.9CVSS5.7AI score0.00072EPSS
Exploits1References1
GithubExploit
GithubExploitadded 2026/04/14 12:53 a.m.96 views

vulnswarm

VulnSwarm AI-powered vulnerability discovery using multi-agen...

8.8CVSS6AI score0.0023EPSS
Exploits3
NVD
NVDadded 2026/04/14 12:16 a.m.0 views

CVE-2026-27672

The Material Master application does not enforce authorization checks for authenticated users when executing reports, resulting in the disclosure of sensitive information. This vulnerability has a low impact on confidentiality and does not affect integrity and availability of the system...

4.3CVSS0.00032EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/14 12:8 a.m.1 views

CVE-2026-34256

Due to a missing authorization check in SAP ERP and SAP S/4HANA Private Cloud and On-Premise, an authenticated attacker could execute a particular ABAP report to overwrite any existing eight?character executable ABAP report without authorization. If the overwritten report is subsequently executed...

7.1CVSS5.8AI score0.00047EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2026/04/14 12:8 a.m.3 views

EUVD-2026-22166

Due to a missing authorization check in SAP ERP and SAP S/4HANA Private Cloud and On-Premise, an authenticated attacker could execute a particular ABAP report to overwrite any existing eight?character executable ABAP report without authorization. If the overwritten report is subsequently executed...

7.1CVSS5.8AI score0.00047EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/04/14 12:8 a.m.1 views

CVE-2026-34256 Missing Authorization check in SAP ERP and SAP S/4 HANA (Private Cloud and On-Premise)

Due to a missing authorization check in SAP ERP and SAP S/4HANA Private Cloud and On-Premise, an authenticated attacker could execute a particular ABAP report to overwrite any existing eight?character executable ABAP report without authorization. If the overwritten report is subsequently executed...

7.1CVSS5.8AI score0.00047EPSS
Exploits0References2
Rows per page
Query Builder