Lucene search
K

20853 matches found

CVE
CVE
added 2 hours ago5 views

CVE-2026-12330

Incorrect boundary conditions in the Internationalization component. This vulnerability was fixed in Firefox ESR 140.12 and Firefox ESR 115.37...

5.3AI score
Exploits0References3
CVE
CVE
added 2 hours ago7 views

CVE-2026-12321

JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152...

5.3AI score
Exploits0References2
CVE
CVE
added 2 hours ago4 views

CVE-2026-12317

Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152...

5.3AI score
Exploits0References2
CVE
CVE
added 2 hours ago7 views

CVE-2026-12306

Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and Firefox ESR 140.12...

5.3AI score
Exploits0References3
Nuclei
Nuclei
added 6 hours ago19 views

WordPress User Registration & Membership <= 5.1.2 - Unauthenticated Privilege Escalation

User Registration & Membership WordPress plugin = 5.1.2 contains an improper privilege management vulnerability caused by accepting user-supplied roles without server-side allowlist enforcement, letting unauthenticated attackers create administrator accounts id: CVE-2026-1492 info: name: WordPres...

9.8CVSS8.8AI score0.25532EPSS
Exploits2References3
Nuclei
Nuclei
added 6 hours ago13 views

Webnus Inc. Modern Events Calendar - Broken Access Control

Webnus Inc. Modern Events Calendar = 7.29.0 contains a broken access control vulnerability caused by incorrectly configured access control security levels, letting attackers bypass authorization, exploit requires no special privileges. id: CVE-2026-32583 info: name: Webnus Inc. Modern Events...

5.3CVSS5.2AI score0.007EPSS
Exploits0References1
Nuclei
Nuclei
added 6 hours ago12 views

Flowise - NVIDIA NIM Endpoints Missing Authentication

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, the NVIDIA NIM router /api/v1/nvidia-nim/ is whitelisted in the global authentication middleware, allowing unauthenticated access to privileged container management and token generati...

9.8CVSS5.3AI score0.3625EPSS
Exploits2References3
Nuclei
Nuclei
added 6 hours ago8 views

HT Mega < 3.0.7 - Sensitive Information Disclosure

The HT Mega plugin for WordPress is vulnerable to Sensitive Information Exposure via AJAX actions. This template dynamically extracts the security nonce before exploitation. id: CVE-2026-4106 info: name: HT Mega 3.0.7 - Sensitive Information Disclosure author: EFETR severity: high description: |...

5.3CVSS5.2AI score0.00742EPSS
Exploits1References2
Nuclei
Nuclei
added 6 hours ago8 views

Mailcow < 2026-03b - Href Link Injection

mailcow 2026-03b reflects raw REQUESTURI into JavaScript and href links on the login page, allowing attackers to inject parameters that break JS logic and enable phishing. id: CVE-2026-40878 info: name: Mailcow 2026-03b - Href Link Injection author: ritikchaddha severity: low description: | mailc...

2.1CVSS5.2AI score0.00805EPSS
Exploits0References3
Nuclei
Nuclei
added 6 hours ago7 views

CKAN DataStore SQL Search - SQL Injection

CKAN, an open-source data management system used for powering open data portals, contains an unauthenticated SQL injection vulnerability in the datastoresearchsql API endpoint. id: CVE-2026-42031 info: name: CKAN DataStore SQL Search - SQL Injection author: theamanrawat severity: high description...

9.8CVSS5.5AI score0.01815EPSS
Exploits0References2
Circl
Circl
added 9 hours ago11 views

CVE-2026-1767

creationtimestamp| type| source ---|---|--- 2026-06-16 04:15:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moewsbzgsh2n...

5.6CVSS4.9AI score
Exploits0References1
Circl
Circl
added 9 hours ago8 views

CVE-2026-42014

creationtimestamp| type| source ---|---|--- 2026-06-16 04:07:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moewdvftpp2p...

6.6CVSS4.9AI score
Exploits0References1
Circl
Circl
added 10 hours ago9 views

CVE-2026-2470

creationtimestamp| type| source ---|---|--- 2026-06-16 03:59:14+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116757781000613357...

4.3CVSS4.9AI score0.00215EPSS
Exploits0References1
Circl
Circl
added 10 hours ago8 views

CVE-2026-7273

creationtimestamp| type| source ---|---|--- 2026-06-16 03:57:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116757774658704043 2026-06-16 04:02:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moew44qmwy2n 2026-06-16 05:00:09+00:00| seen|...

8.8CVSS4.9AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 11 hours ago5 views

SUSE CVE-2026-47729

unknown...

5.2AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 11 hours ago8 views

SUSE CVE-2026-48006

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, the RedisArrayAggregator handler permanently leaks pooled direct-memory buffers when a Redis pipeline connection closes before a RESP array aggregate...

7.5CVSS5.3AI score0.00609EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 11 hours ago5 views

SUSE CVE-2026-48487

unknown...

5.3AI score
Exploits0References3
Microsoft CVE
Microsoft CVE
added 11 hours ago6 views

Chromium: CVE-2026-11698 Use after free in Bluetooth

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.2AI score0.00195EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 11 hours ago5 views

Chromium: CVE-2026-11693 Inappropriate implementation in Plugins

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.1CVSS5.2AI score0.00206EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 11 hours ago4 views

Chromium: CVE-2026-11661 Use after free in Views

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.2AI score0.00346EPSS
Exploits0
Rows per page
Query Builder