Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 206,393 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-34762 | ## Summary The `PUT /api/v1/subscriber/{imsi}` API accepts an IMSI identifier from both the URL path and the JSON request body but never verifies the... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-34761 | ## Summary Ella Core panics when processing a NGAP handover failure message. ## Impact If an attacker can force a gNodeB to send NGAP handover fail... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34752 | ### Summary Sending an email with `__proto__:` as a header name crashes the Haraka worker process. ### Details The header parser at `node_modules/... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34742 | The Model Context Protocol (MCP) Go SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-based MCP server is r... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34730 | ### Summary Copier's `_external_data` feature allows a template to load YAML files using template-controlled paths. The documentation describes these... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34729 | ### Summary The sanitization pipeline for FAQ content is: 1. `Filter::filterVar($input, FILTER_SANITIZE_SPECIAL_CHARS)` — encodes `<`, `>`, `"`, `'`, ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34728 | ### Summary The `MediaBrowserController::index()` method handles file deletion for the media browser. When the `fileRemove` action is triggered, the u... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34726 | ### Summary Copier's `_subdirectory` setting is documented as the subdirectory to use as the template root. However, the current implementation accep... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34725 | ### Summary A stored XSS vulnerability exists in DbGate because attacker-controlled SVG icon strings are rendered as raw HTML without sanitization. In... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34715 | ### Summary The `encode_headers` function in `src/ewe/internal/encoder.gleam` directly interpolates response header keys and values into raw HTTP byt... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34605 | ### Summary The `SanitizeSVG` function introduced in v3.6.0 to fix XSS in the unauthenticated `/api/icon/getDynamicIcon` endpoint can be bypassed by ... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2026-34601 | ## Summary `@xmldom/xmldom` allows attacker-controlled strings containing the CDATA terminator `]]>` to be inserted into a `CDATASection` node. Durin... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34598 | ### Summary A stored and blind XSS vulnerability exists in the form title field. A malicious attacker can inject JavaScript without any authentication... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34595 | ### Impact An authenticated user with `find` class-level permission can bypass the `protectedFields` class-level permission setting on LiveQuery subs... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34593 | ## Summary `Ash.Type.Module.cast_input/2` unconditionally creates a new Erlang atom via `Module.concat([value])` for any user-supplied binary string ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34591 | ### Summary A crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privil... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34581 | ### Summary When using the `Share Token` it is possible to bypass the limited selected file download with all the gosh functionalities, including code... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34574 | ### Impact An authenticated user can bypass the immutability guard on session fields (`expiresAt`, `createdWith`) by sending a null value in a PUT re... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34573 | ### Impact The GraphQL query complexity validator can be exploited to cause a denial-of-service by sending a crafted query with binary fan-out fragme... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34570 | ## Summary ### Vulnerability: Improper Session Invalidation on Account Deletion (Broken Access Control / Logic Flaw) - This vulnerability is caused by... | 0.0 | 0 | Neutral | No | No |