Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

106037 matches found

NVD
NVDadded 2026/05/06 7:16 p.m.1 views

CVE-2026-8021

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

4.2CVSS0.0001EPSS
Exploits0References2
NVD
NVDadded 2026/05/06 7:16 p.m.2 views

CVE-2026-7958

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML UXSS via a crafted Chrome Extension. Chromium security severity: Medium...

5.4CVSS0.00017EPSS
Exploits0References2
NVD
NVDadded 2026/05/06 7:16 p.m.1 views

CVE-2026-7953

Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

6.1CVSS0.00045EPSS
Exploits0References2
NVD
NVDadded 2026/05/06 7:16 p.m.2 views

CVE-2026-7939

Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS0.00026EPSS
Exploits0References2
NVD
NVDadded 2026/05/06 7:16 p.m.3 views

CVE-2026-7941

Insufficient validation of untrusted input in Mobile in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to inject arbitrary scripts or HTML UXSS via a crafted Chrome Extension. Chromium security severity: Medium...

4.4CVSS0.00009EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/05/06 7:16 p.m.3 views

CVE-2026-8021

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.9AI score0.0001EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/06 6:13 p.m.28 views

CVE-2026-8021

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

0.0001EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/06 6:13 p.m.4 views

CVE-2026-8021

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6AI score0.0001EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/05/06 6:13 p.m.2 views

CVE-2026-8021

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

4.2CVSS6AI score0.0001EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/06 6:13 p.m.4 views

CVE-2026-8021

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

4.2CVSS6AI score0.0001EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/05/06 6:13 p.m.14 views

CVE-2026-8021

CVE-2026-8021 is a UI-based script injection (UXSS) in Google Chrome. Multiple connected sources (OSV/DEBIAN-CVE-2026-8021, PT-2026-38214, PTSecurity) confirm: affecting Google Chrome versions prior to 148.0.7778.96, caused by a vulnerability in the browser UI that could execute arbitrary scripts...

4.2CVSS6AI score0.0001EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/05/06 6:12 p.m.25 views

CVE-2026-7958

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML UXSS via a crafted Chrome Extension. Chromium security severity: Medium...

0.00017EPSS
Exploits0References2
CVE
CVEadded 2026/05/06 6:12 p.m.6 views

CVE-2026-7958

Summary: CVE-2026-7958 describes an UXSS vulnerability in Google Chrome caused by an inappropriate implementation in the ServiceWorker, reported for Chrome versions before 148.0.7778.96. An attacker could persuade a user to install a malicious extension, enabling injection of arbitrary scripts or...

5.4CVSS5.9AI score0.00017EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/06 6:12 p.m.3 views

CVE-2026-7953

Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

6AI score0.00045EPSS
Exploits0References2
CVE
CVEadded 2026/05/06 6:12 p.m.5 views

CVE-2026-7953

CVE-2026-7953 describes UXSS in Google Chrome due to insufficient validation of untrusted input in the Omnibox. Affects Chrome versions prior to 148.0.7778.96; exploitation would require malicious network traffic to inject scripts/HTML. The linked PT-2026-38146 and OSV/NVD entries confirm the sam...

6.1CVSS6AI score0.00045EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/05/06 6:12 p.m.24 views

CVE-2026-7941

Insufficient validation of untrusted input in Mobile in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to inject arbitrary scripts or HTML UXSS via a crafted Chrome Extension. Chromium security severity: Medium...

0.00009EPSS
Exploits0References2
CVE
CVEadded 2026/05/06 6:12 p.m.24 views

CVE-2026-7941

CVE-2026-7941 affects Google Chrome on Android (mobile) prior to 148.0.7778.96. The root cause is insufficient validation of untrusted input in the mobile Chrome, enabling UXSS: a local attacker could inject arbitrary scripts or HTML via a crafted Chrome Extension. Remediation is to update to ver...

4.4CVSS5.9AI score0.00009EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/05/06 6:12 p.m.24 views

CVE-2026-7939

Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

0.00026EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/05/06 5:44 p.m.67 views

Exploit for Incorrect Implementation of Authentication Algorithm in Google Android

CVE-2026-0073 PoC Wireless ADB TLS Auth Bypass This directo...

8.8CVSS6AI score0.00012EPSS
Exploits10
NVD
NVDadded 2026/05/06 5:16 p.m.6 views

CVE-2026-20172

A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email ECE could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Agent. This...

4.3CVSS0.00022EPSS
Exploits0References1
Rows per page
Query Builder