Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded yesterday3 views

CVE-2026-48545

Gradio before version 6.15.0 contains a cookie injection vulnerability that allows remote attackers to perform cross-Space session fixation by exploiting a shared module-level HTTP client used across all users in the reverse proxy endpoint. Attackers controlling any HF Space can return a...

7.6CVSS5.6AI score0.00042EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/13 6:4 p.m.14 views

CVE-2026-21226 Azure Core shared client library for Python Remote Code Execution Vulnerability

...

7.5CVSS0.02696EPSS
Exploits0References1
CVE
CVEadded 2026/01/13 6:4 p.m.17 views

CVE-2026-21226

CVE-2026-21226 affects the Azure Core shared client library for Python via deserialization of untrusted data, enabling remote code execution by an authorized attacker over the network. Affected product in the connected docs is the Azure Core Python package; remediation guidance across sources rec...

7.5CVSS7AI score0.02696EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2026/01/07 11:15 p.m.1 views

CVE-2026-21697

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS0.00086EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/01/07 10:29 p.m.19 views

CVE-2026-21697 axios4go's Race Condition in Shared HTTP Client Allows Proxy Configuration Leak

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS0.00086EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/01/07 10:29 p.m.1 views

CVE-2026-21697 axios4go's Race Condition in Shared HTTP Client Allows Proxy Configuration Leak

axios4go is a Go HTTP client library. Prior to version 0.6.4, a race condition vulnerability exists in the shared HTTP client configuration. The global defaultClient is mutated during request execution without synchronization, directly modifying the shared http.Client's Transport, Timeout, and...

8.2CVSS6.5AI score0.00086EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/01/07 12:0 a.m.1 views

axios4go 竞争条件问题漏洞

axios4go is an HTTP client library by the individual developers at Rez Moss. A competitive condition issue vulnerability exists in axios4go versions prior to 0.6.4, which stems from the presence of a competitive condition in shared HTTP client configurations, which could lead to modification of...

8.2CVSS6.4AI score0.00086EPSS
Exploits0References3
Rows per page
Query Builder