CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

47 matches found

Schneier on Security•added 2026/02/06 12:0 p.m.•5 views

iPhone Lockdown Mode Protects Washington Post Reporter

404Media is reporting that the FBI could not access a reporter's iPhone because it had Lockdown Mode enabled: The court record shows what devices and data the FBI was able to ultimately access, and which devices it could not, after raiding the home of the reporter, Hannah Natanson, in January as...

5.5AI score

Exploits0

HackRead•added 2025/11/11 7:47 p.m.•6 views

Cl0p Ransomware Lists NHS UK as Victim, Days After Washington Post Breach

Cl0p ransomware lists NHS UK as a victim days after The Washington Post confirms a major Oracle E-Business breach linked to CVE-2025-61882...

9.8CVSS7.8AI score0.90862EPSS

Exploits13

Krebs on Security•added 2023/12/29 10:16 p.m.•15 views

Happy 14th Birthday, KrebsOnSecurity!

KrebsOnSecurity celebrates its 14th year of existence today! I promised myself this post wouldnt devolve into yet another Cybersecurity Year in Review. Nor do I wish to hold forth about whatever cyber horrors may await us in 2024. But I do want to thank you all for your continued readership,...

7.2AI score

Exploits0

Openbugbounty•added 2023/10/01 11:47 a.m.•15 views

stats.washingtonpost.com Cross Site Scripting vulnerability OBB-3717254

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score

Exploits0

Openbugbounty•added 2023/09/11 12:39 a.m.•17 views

stats.washingtonpost.com Cross Site Scripting vulnerability OBB-3666464

6.1AI score

Exploits0

Schneier on Security•added 2023/08/14 11:2 a.m.•15 views

China Hacked Japan’s Military Networks

The NSA discovered the intrusion in 2020--we dont know how--and alerted the Japanese. The Washington Post has the story: The hackers had deep, persistent access and appeared to be after anything they could get their hands on--plans, capabilities, assessments of military shortcomings, according to...

6.9AI score

Exploits0

Schneier on Security•added 2023/08/01 11:11 a.m.•12 views

Hacking AI Resume Screening with Text in a White Font

The Washington Post is reporting on a hack to fool automatic resume sorting programs: putting text in a white font. The idea is that the programs rely primarily on simple pattern matching, and the trick is to copy a list of relevant keywords--or the published job description--into the resume in a...

6.9AI score

Exploits0

Openbugbounty•added 2023/07/18 12:9 p.m.•6 views

stats.washingtonpost.com Cross Site Scripting vulnerability OBB-3527783

6.1AI score

Exploits0

Openbugbounty•added 2023/07/14 12:51 a.m.•12 views

stats.washingtonpost.com Cross Site Scripting vulnerability OBB-3514554

6.1AI score

Exploits0

Openbugbounty•added 2022/12/13 4:59 p.m.•11 views

stats.washingtonpost.com Cross Site Scripting vulnerability OBB-3099667

6.2AI score

Exploits0

Schneier on Security•added 2022/08/24 11:40 a.m.•14 views

Mudge Files Whistleblower Complaint against Twitter

Peiter Zatko, aka Mudge, has filed a whistleblower complaint with the SEC against Twitter, claiming that they violated an eleven-year-old FTC settlement by having lousy security. And he should know; he was Twitters chief security officer until he was fired in January. The Washington Post has the...

1.3AI score

Exploits0

Openbugbounty•added 2022/06/04 10:6 p.m.•22 views

stats.washingtonpost.com Cross Site Scripting vulnerability OBB-2636232

6.2AI score

Exploits0

The Hacker News•added 2022/02/04 11:52 a.m.•103 views

Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware

A now-patched security vulnerability in Apple iOS that was previously found to be exploited by Israeli company NSO Group was also separately weaponized by a different surveillance vendor named QuaDream to hack into the company's devices. The development was reported by Reuters, citing unnamed...

7.8CVSS6.6AI score0.71973EPSS

Exploits2

Schneier on Security•added 2021/10/25 6:46 p.m.•18 views

New York Times Journalist Hacked with NSO Spyware

Citizen Lab is reporting that a New York Times journalist was hacked with the NSO Groups spyware Pegasus, probably by the Saudis. The world needs to do something about these cyberweapons arms manufacturers. This kind of thing isnt enough; NSO Group is an Israeli company...

0.8AI score

Exploits0

The Hacker News•added 2021/10/18 6:49 a.m.•13 views

REvil Ransomware Gang Goes Underground After Tor Sites Were Compromised

REvil, the notorious ransomware gang behind a string of cyberattacks in recent years, appears to have gone off the radar once again, a little over a month after the cybercrime group staged a surprise return following a two-month-long hiatus. The development, first spotted by Recorded Future's...

6.6AI score

Exploits0

Malwarebytes•added 2021/04/07 10:8 a.m.•45 views

Fake Trezor app steals more than $1 million worth of crypto coins

Several users of Trezor, a small hardware device that acts as a cryptocurrency wallet, have been duped by a fake app with the same name. The app was available on Google Play and Apple’s App Store and also claimed to be from SatoshiLabs, the creators of Trezor. According to the Washington Post, th...

7.1AI score

Exploits0

Schneier on Security•added 2020/03/06 1:48 p.m.•30 views

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by