CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1531 matches found

CVE-2026-8901

creationtimestamp| type| source ---|---|--- 2026-06-06 05:05:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnluwuthku24...

7.2CVSS5.3AI score

Exploits0References1

OSV•added 9 hours ago•4 views

ROOT-OS-DEBIAN-13-CVE-2026-23069 CVE-2026-23069 in rootio-linux - Patched by Root

Root has patched CVE-2026-23069 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.5CVSS5.4AI score0.00018EPSS

Exploits0

NVD•added yesterday•5 views

CVE-2026-46398

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Starting in version 25.0.0 and prior to version 26.0.0, the haxcmsrefreshtoken cookie is set without the Secure flag. This allows it to be transmitted over unencrypted HTTP, making it vulnerable to theft via packet sniffing on t...

8.8CVSS

Exploits0References1

RedhatCVE•added yesterday•2 views

CVE-2025-46311

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access sensitive user data...

7.5CVSS5.4AI score0.00044EPSS

Exploits0References1

RedhatCVE•added yesterday•3 views

CVE-2026-8124

A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...

5.5CVSS4.5AI score0.00022EPSS

Exploits1References1

RedhatCVE•added yesterday•3 views

CVE-2025-9661

OS command injection vulneravility in the management gui maintenance utility of Hitachi Virtual Storage Platform One Block 23, 24, 26 and 28. This issue affects Hitachi Virtual Storage Platform One Block 23/24/26/28: before DKCMAIN A3-04-21-40/00, ESM A3-04-21/00...

9.8CVSS5.5AI score0.00047EPSS

Exploits0References1

RedhatCVE•added yesterday•3 views

CVE-2026-34640

Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00027EPSS

Exploits0References1

EUVD•added yesterday•4 views

EUVD-2026-34896

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions prior to 26.0.1 use uniqid for generating salts, which is unsuitable. Version 26.0.1 fixes the issue...

7.5CVSS5.4AI score

Exploits0References3

Vulnrichment•added yesterday•2 views

CVE-2026-46493 haxtheweb/haxcms-php uses insecure method for generating salt

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions prior to 26.0.1 use uniqid for generating salts, which is unsuitable. Version 26.0.1 fixes the issue...

7.5CVSS5.5AI score

Exploits0References3

Cvelist•added yesterday•13 views

CVE-2026-46493 haxtheweb/haxcms-php uses insecure method for generating salt

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions prior to 26.0.1 use uniqid for generating salts, which is unsuitable. Version 26.0.1 fixes the issue...

7.5CVSS

Exploits0References3