CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

673 matches found

SUSE CVE-2026-9907

Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00031EPSS

Exploits0References3

ATTACKERKB•added last week•4 views

CVE-2026-9991

Inappropriate implementation in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00027EPSS

Exploits0References3Affected Software1

GithubExploit•added 2026/02/07 9:36 p.m.•457 views

Exploit for CVE-2025-49132

CVE-2025-49132 Proof of Concept PoC This repository contain...

10CVSS5.4AI score0.12525EPSS

Exploits25

NVD•added 2025/12/16 4:15 p.m.•2 views

CVE-2025-65318

When using the attachment interaction functionality, Canary Mail 5.1.40 and below saves documents to a file system without a Mark-of-the-Web tag, which allows attackers to bypass the built-in file protection mechanisms of both Windows OS and third-party software...

9.1CVSS0.00104EPSS

Exploits2References5

RedhatCVE•added 2025/11/04 12:53 a.m.•4 views

CVE-2025-60892

An issue in Raspberry Pi Imager version 1.9.6 for Windows, affecting its OS customization feature. The imager's 'public-key authentication' setting unintentionally re-adds a user's idrsa.pub key from their local Windows machine to the authorizedkeys file on the Raspberry Pi, even after the user...

6.8CVSS6.6AI score0.00019EPSS

Exploits0References1