Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

407 matches found

Circl
Circladded 5 days ago7 views

CVE-2026-10183

creationtimestamp| type| source ---|---|--- 2026-05-30 16:37:24+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116664502304851453 2026-05-31 16:02:18+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mn5wtvtac62j 2026-05-31 16:49:38+00:00| seen|...

9CVSS7.3AI score0.00043EPSS
Exploits0References4
Circl
Circladded 2026/05/27 8:11 a.m.4 views

CVE-2026-40840

creationtimestamp| type| source ---|---|--- 2026-05-27 08:11:17+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645525736344350 2026-05-27 08:12:08+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645529147227087...

7.1CVSS5.8AI score0.00039EPSS
Exploits0References2
Circl
Circladded 2026/05/20 8:30 p.m.3 views

CVE-2026-9118

creationtimestamp| type| source ---|---|--- 2026-05-20 20:30:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116608796896901473 2026-05-25 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260526 2026-05-26 18:00:00+00:00| seen|...

8.8CVSS5.7AI score0.0003EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/05/04 8:21 p.m.3 views

CVE-2026-7535

A vulnerability was found in Open5GS up to 2.7.7. This affects the function amfnamfcommhandleregistrationstatusupdaterequest in the library /lib/app/ogs-init.c of the file /namf-comm/v1/ue-contexts/ueContextId/transfer-update. Performing a manipulation of the argument ueContextId results in denia...

5.3CVSS5.5AI score0.00074EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/01 1:0 a.m.3 views

EUVD-2026-26468

A vulnerability was found in Open5GS up to 2.7.7. This affects the function amfnamfcommhandleregistrationstatusupdaterequest in the library /lib/app/ogs-init.c of the file /namf-comm/v1/ue-contexts/ueContextId/transfer-update. Performing a manipulation of the argument ueContextId results in denia...

5.3CVSS5.2AI score0.00074EPSS
Exploits0References6
CNNVD
CNNVDadded 2026/05/01 12:0 a.m.5 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the operation of the parameter ueContextId in the function...

5.3CVSS5.8AI score0.00074EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/01 12:0 a.m.3 views

PT-2026-36262

Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.8 Description A remote denial of service can be triggered by manipulating the ueContextId argument in the '/namf-comm/v1/ue-contexts/ueContextId/transfer-update' endpoint. This issue resides within the amf namf co...

5.3CVSS5.8AI score0.00074EPSS
Exploits0References14
Cvelist
Cvelistadded 2026/04/17 1:24 a.m.24 views

CVE-2026-3488 WP Statistics <= 14.16.4 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure and Privacy Audit Manipulation

The WP Statistics plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 14.16.4. This is due to missing capability checks on multiple AJAX handlers including wpstatisticsgetfilters, wpstatisticsgetPrivacyStatus, wpstatisticsupdatePrivacyStatus, and...

6.5CVSS0.00023EPSS
Exploits0References9
Circl
Circladded 2026/04/14 3:49 p.m.1 views

CVE-2026-20930

creationtimestamp| type| source ---|---|--- 2026-04-14 15:49:19+00:00| seen| https://www.thezdi.com/blog/2026/4/14/the-april-2026-security-update-review 2026-04-14 17:28:34+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116404238027819761 2026-04-14 20:03:36+00:00|...

7.8CVSS4.8AI score0.00047EPSS
Exploits0References3
Circl
Circladded 2026/04/02 5:18 p.m.2 views

CVE-2026-35385

creationtimestamp| type| source ---|---|--- 2026-04-02 17:18:07+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116336249196256275 2026-04-02 18:09:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mijsgdr42e2t 2026-04-02 18:24:22+00:00| seen|...

8.1CVSS4.7AI score0.00058EPSS
Exploits0References6
Circl
Circladded 2026/03/30 7:2 a.m.1 views

CVE-2026-31853

creationtimestamp| type| source ---|---|--- 2026-03-30 07:02:33+00:00| seen| https://infosec.exchange/users/certvde/statuses/116316841599408182...

5.7CVSS5.8AI score0.00018EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/03/26 3:18 p.m.1 views

CVE-2026-29173

Craft Commerce is an ecommerce platform for Craft CMS. Prior to 4.10.2 and 5.5.3, a stored XSS vulnerability exists when a user tries to update the Order Status from the Commerce Orders Table. The Order Status Name is rendered without proper escaping, allowing script execution to occur. This...

4.8CVSS6AI score0.00018EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/03/20 8:5 p.m.0 views

CVE-2026-33143

OneUptime is a solution for monitoring and managing online services. Prior to version 10.0.34, the WhatsApp POST webhook handler /notification/whatsapp/webhook processes incoming status update events without verifying the Meta/WhatsApp X-Hub-Signature-256 HMAC signature, allowing any...

8.7CVSS5.8AI score0.00015EPSS
Exploits1References2Affected Software1
Circl
Circladded 2026/03/18 7:16 a.m.0 views

CVE-2026-22322

creationtimestamp| type| source ---|---|--- 2026-03-18 07:16:30+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-22322 2026-03-18 07:36:35+00:00| seen| https://infosec.exchange/users/certvde/statuses/116249027843473696...

7.1CVSS5.7AI score0.00034EPSS
Exploits0References2
Circl
Circladded 2026/03/16 12:1 p.m.0 views

CVE-2026-4227

creationtimestamp| type| source ---|---|--- 2026-03-16 12:01:05+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116238743317716735 2026-03-21 03:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhk4bi22lq2a...

9CVSS7.3AI score0.0016EPSS
Exploits1References2
Cvelist
Cvelistadded 2026/03/12 6:0 a.m.22 views

CVE-2025-15473 Timetics < 1.0.52 - Unauthenticated Payment/Booking Status Update

The Timetics WordPress plugin before 1.0.52 does not have authorization in a REST endpoint, allowing unauthenticated users to arbitrarily change a booking's payment status and post status for the "timetics-booking" custom post type...

0.00068EPSS
Exploits0References1
NVD
NVDadded 2026/03/10 8:16 p.m.1 views

CVE-2026-29173

Craft Commerce is an ecommerce platform for Craft CMS. Prior to 4.10.2 and 5.5.3, a stored XSS vulnerability exists when a user tries to update the Order Status from the Commerce Orders Table. The Order Status Name is rendered without proper escaping, allowing script execution to occur. This...

4.8CVSS0.00018EPSS
Exploits1References3
Cvelist
Cvelistadded 2026/03/10 7:54 p.m.24 views

CVE-2026-29173 Craft Commerce has Stored XSS while updating Order Status from Orders Table

Craft Commerce is an ecommerce platform for Craft CMS. Prior to 4.10.2 and 5.5.3, a stored XSS vulnerability exists when a user tries to update the Order Status from the Commerce Orders Table. The Order Status Name is rendered without proper escaping, allowing script execution to occur. This...

4.8CVSS0.00018EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2026/03/10 7:54 p.m.2 views

CVE-2026-29173 Craft Commerce has Stored XSS while updating Order Status from Orders Table

Craft Commerce is an ecommerce platform for Craft CMS. Prior to 4.10.2 and 5.5.3, a stored XSS vulnerability exists when a user tries to update the Order Status from the Commerce Orders Table. The Order Status Name is rendered without proper escaping, allowing script execution to occur. This...

4.8CVSS5.9AI score0.00018EPSS
Exploits1References3
Circl
Circladded 2026/03/10 4:57 p.m.0 views

CVE-2026-26111

creationtimestamp| type| source ---|---|--- 2026-03-10 16:57:37+00:00| seen| https://www.thezdi.com/blog/2026/3/10/the-march-2026-security-update-review 2026-03-10 19:02:37+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116206426958203363 2026-03-10 19:07:55+00:00| seen|...

8CVSS4.7AI score0.0009EPSS
Exploits3References7
Rows per page
Query Builder