CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 5 days ago•4 views

UBUNTU-CVE-2026-54651

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.1, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires merging a file with threads/articles into a writer. This vulnerability is fixed in 6.13.1...

6.9CVSS5.8AI score0.00111EPSS

Exploits0References5

Cvelist•added 5 days ago•24 views

CVE-2026-54651 pypdf: Possible infinite loop when processing threads/articles in writer

6.9CVSS0.00111EPSS

CVE•added 2026/06/02 5:31 p.m.•83 views

CVE-2026-34077

React Router upstream vulnerability CVE-2026-34077 affects versions 7.7.0–7.13.1 where, when using unstable React Server Components APIs, the RSC redirect handling can lead to a client-side XSS if redirects come from untrusted sources. The issue does not impact non-RSC applications. A fix is avai...

7.5CVSS5.8AI score0.00294EPSS

Exploits0References1Affected Software2

ATTACKERKB•added 2026/06/02 4:59 p.m.•12 views

CVE-2026-33244

React Router is a router for React. In versions 7.5.1 through 7.13.1, when using Framework Mode with pre-rendering enabled, improper neutralization of the HTTP Location header value can permit Cross-Site Scripting XSS in the statically generated HTML files if the redirect location comes from an...

5.4CVSS5.8AI score0.00144EPSS

Exploits0References2Affected Software1

Snyk•added 2026/05/22 1:14 p.m.•9 views

Information Exposure

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

6.9CVSS5.8AI score0.00109EPSS

Snyk•added 2026/05/22 1:10 p.m.•10 views

Heap-based Buffer Overflow

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.3CVSS5.9AI score0.00092EPSS

Snyk•added 2026/05/21 9:49 p.m.•13 views

Insecure Randomness

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

Snyk•added 2026/05/21 9:49 p.m.•11 views

Insecure Randomness

Snyk•added 2026/05/21 9:49 p.m.•11 views

Insecure Randomness

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

Snyk•added 2026/05/21 9:49 p.m.•11 views

Insecure Randomness

Snyk•added 2026/05/21 9:42 p.m.•12 views

Off-by-one Error

6.9CVSS5.9AI score

OSV•added 2026/05/21 8:7 a.m.•4 views

CLEANSTART-2026-PX23055 Security fixes for CVE-2026-33811, CVE-2026-33814, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499 applied in versions: 4.13.1-r0

Multiple security vulnerabilities affect the metacontroller package. These issues are resolved in later releases. See references for individual vulnerability details...

7.5CVSS5.8AI score0.00588EPSS

Exploits0References17

Snyk•added 2026/05/18 8:37 p.m.•8 views

Uncontrolled Recursion

Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

6.9CVSS5.8AI score0.0012EPSS

Snyk•added 2026/05/18 8:37 p.m.•9 views

Uncontrolled Recursion

6.9CVSS5.8AI score0.0012EPSS

Snyk•added 2026/05/18 5:53 p.m.•11 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.5CVSS5.8AI score0.00338EPSS

Snyk•added 2026/05/18 5:48 p.m.•8 views

Off-by-one Error

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.9CVSS5.8AI score0.0024EPSS

Snyk•added 2026/05/18 3:31 p.m.•13 views

Integer Underflow (Wrap or Wraparound)

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

5.1CVSS5.8AI score0.0012EPSS