CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12312 matches found

Ruby on Rails - Open Redirect via Host Header Injection

Ruby on Rails action pack before 6.1.2.1, 6.0.3.5 contains an open redirect caused by special crafted Host headers in combination with allowed host formats, letting attackers redirect users to malicious websites, exploit requires attacker to control Host headers. id: CVE-2021-22881 info: name: Ru...

6.1CVSS6.5AI score0.15453EPSS

Exploits1References2

Circl•added yesterday•6 views

CVE-2026-8885

creationtimestamp| type| source ---|---|--- 2026-06-03 05:15:50+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mnee4piqoh2c...

6.4CVSS5.8AI score0.00029EPSS

Exploits0References1

Circl•added yesterday•2 views

CVE-2026-9722

creationtimestamp| type| source ---|---|--- 2026-06-03 02:59:51+00:00| seen| https://bsky.app/profile/donwebmedia.bsky.social/post/3mne4jjtzad2t 2026-06-03 08:15:25+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mneo5tab5z27...

4.3CVSS5.8AI score0.00012EPSS

Exploits0References2

Circl•added 2 days ago•4 views

CVE-2026-7195

creationtimestamp| type| source ---|---|--- 2026-06-02 16:00:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mncxos2hkz2j 2026-06-03 01:00:29+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mndvu3euez2q...

8.8CVSS5.7AI score0.00053EPSS

Exploits0References2

Circl•added 2 days ago•3 views

CVE-2026-39551

creationtimestamp| type| source ---|---|--- 2026-06-02 13:45:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mncq57sabd27 2026-06-03 06:00:38+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnegmrltjg2h...

8.1CVSS5.8AI score0.00041EPSS

Exploits0References2

Circl•added 3 days ago•7 views

CVE-2026-10293

creationtimestamp| type| source ---|---|--- 2026-06-01 23:55:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnbbrihf4g2f...

9CVSS7.3AI score0.00043EPSS

Exploits0References1

Circl•added 3 days ago•6 views

CVE-2026-0826

creationtimestamp| type| source ---|---|--- 2026-06-01 15:53:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnagtc27vi26 2026-06-02 02:10:54+00:00| seen| https://bsky.app/profile/vritrasecnews.bsky.social/post/3mnbjd3riw42f 2026-06-02 14:45:24+00:00| seen|...

9.2CVSS5.7AI score0.00212EPSS

Exploits0References10

Circl•added 3 days ago•5 views

CVE-2026-39828

creationtimestamp| type| source ---|---|--- 2026-06-01 15:36:36+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mnafjazque2y...

6.3CVSS5.7AI score0.00034EPSS

Exploits0References1

Circl•added 3 days ago•7 views

CVE-2026-40548

creationtimestamp| type| source ---|---|--- 2026-06-01 01:55:00+00:00| seen| https://cert.pl/en/posts/2026/06/CVE-2026-40543...

6.4CVSS5.8AI score0.00039EPSS

Exploits0References1

OSSF Malicious Packages•added 3 days ago•7 views

Malicious code in @redhat-cloud-services/frontend-components-config (npm)

Part of the "Mini Shai-Hulud" supply chain worm campaign that compromised the GitHub Actions OIDC trusted publisher shared by Red Hat Cloud Services npm packages. The attacker injected a preinstall hook into this and 31 other packages in the @redhat-cloud-services scope. The hook delivers a...

6AI score

Exploits0References2

Circl•added 4 days ago•7 views

CVE-2026-49267

creationtimestamp| type| source ---|---|--- 2026-05-31 12:43:41+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mn5lqqqiav2d...

5.9CVSS5.8AI score0.00043EPSS

Exploits0References1

Circl•added 4 days ago•7 views

CVE-2026-10161

creationtimestamp| type| source ---|---|--- 2026-05-31 04:00:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mn4ojejwhd2p 2026-05-31 05:07:05+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn4sa7hfif2p 2026-05-31 06:55:37+00:00| seen|...

9CVSS7.3AI score0.00041EPSS

Exploits0References5

Circl•added 4 days ago•6 views

CVE-2026-9809

creationtimestamp| type| source ---|---|--- 2026-05-31 00:01:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mn4b4rdrz42r...

7.6CVSS5.8AI score0.00024EPSS

Exploits0References1

Circl•added last week•7 views

CVE-2026-44543

creationtimestamp| type| source ---|---|--- 2026-05-28 18:02:19+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwm5qtmgk2e 2026-05-28 19:57:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwskzrhml2t...

8.7CVSS5.8AI score0.00034EPSS

Exploits0References2

Circl•added last week•8 views

CVE-2026-9997

creationtimestamp| type| source ---|---|--- 2026-05-28 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260529 2026-05-28 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260529 2026-05-29...

8.3CVSS5.8AI score0.00118EPSS

Exploits0References5

Circl•added last week•6 views

CVE-2026-9992

8.8CVSS5.7AI score0.00086EPSS

Exploits0References5

Circl•added last week•5 views

CVE-2026-48155

creationtimestamp| type| source ---|---|--- 2026-05-28 17:26:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwk6k2inb2p...

5.5CVSS5.8AI score0.00012EPSS

Exploits0References1

Circl•added 2026/05/28 11:36 a.m.•4 views