CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Cvelist•added 2026/05/12 10:35 p.m.•34 views

CVE-2026-41901 Thymeleaf: Improper recognition of unauthorized syntax patterns in sandboxed Thymeleaf expressions

Thymeleaf is a server-side Java template engine for web and standalone environments. Prior to 3.1.5.RELEASE, a security bypass vulnerability exists in the expression execution mechanisms of Thymeleaf. Although the library provides mechanisms to avoid the execution of potentially dangerous...

9CVSS0.00104EPSS

Exploits0References1

ATTACKERKB•added 2026/05/12 10:35 p.m.•4 views

CVE-2026-41901

9CVSS5.9AI score0.00104EPSS

Exploits0References2Affected Software1

Mageia•added 2023/03/18 10:16 p.m.•30 views

Updated epiphany packages fix security vulnerability

In Epiphany aka GNOME Web through 43.0, untrusted web content can trick users into exfiltrating passwords, because autofill occurs in sandboxed contexts. CVE-2023-26081...

7.5CVSS7.4AI score0.00176EPSS

Exploits1References2

OSV•added 2023/03/04 11:4 a.m.•3 views

OESA-2023-1139 epiphany security update

Epiphany is the web browser for the GNOME desktop. Its goal is to be simple and easy to use. Epiphany ties together many GNOME components in order to let you focus on the Web content, instead of the browser application. Security Fixes: In Epiphany aka GNOME Web through 43.0, untrusted web content...

7.5CVSS6.9AI score0.00176EPSS

Exploits1References2

Veracode•added 2023/02/27 7:3 p.m.•21 views

Privilege Escalation

epiphany-browser is vulnerable to Privilege Escalation. The vulnerability exists because the untrusted web content can trick users into exfiltrating passwords because autofill occurs in sandboxed contexts...

7.5CVSS7.2AI score0.00176EPSS

Exploits1References8Affected Software1