Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 199,713 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-3479 | pkgutil.get_data() did not validate the resource argument as documented, allowing path traversals. | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-34744 | MantisBT permits a user to list and download their own attachments from an Issue created by another user, even after that Issue becomes private and di... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34735 | The Hytale Modding Wiki is a free service for Hytale mods to host their documentation & wikis. In version 1.2.0 and prior, the quickUpload() endpoint ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3462 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-34579 | Using a crafted POST request to bug_monitor_add.php, a user with project-level access can add themselves as a monitor for a private issue they do not ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3457 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thales Sentinel LDK Runtime on Windows al... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34509 | OpenClaw before 2026.3.8 contains a sender allowlist bypass vulnerability in its Microsoft Teams plugin that allows unauthorized senders to bypass int... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34508 | ### Duplicate Advisory This advisory has been withdrawn because CVE-2026-34508 has been rejected as a duplicate of CVE-2026-34505. This link is mainta... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34488 | IP Setting Software contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary co... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34463 | When cloning an issue originating from a Project other than the current one, the clone form (bug_report_page.php) prepends the source Project name bef... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3446 | When calling base64.b64decode() or related functions the decoding process would stop after encountering the first padded quad regardless of whether th... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34402 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-39330. Reason: This candidate is a duplicate of CVE-2026-39330. N... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34390 | Insufficient access control checks in _ProjectUsersAddCommand_ (used in *manage_proj_user_add.php* and REST API endpoint `PUT /project/{id}/users`) al... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3438 | A reflected cross-site scripting vulnerability exists in Sonatype Nexus Repository versions 3.0.0 through 3.90.2 that allows unauthenticated remote at... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3428 | A Download of Code Without Integrity Check vulnerability in the update modules in ASUS Member Center(华硕大厅) allows a local user to achieve privilege es... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34183 | Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATH_CHALLENGE frames. Impact ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34182 | Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fields of Aut... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34181 | Issue Summary: The PKCS#12 file processing fails to perform sufficient input validation for files that use Password-Based Message Authentication Code ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34123 | On Tapo C520WS v2, restricted accounts (for example, hub users) are intended to execute only a limited set of low‑sensitivity operations. Due to a log... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34089 | Vulnerability in Wikimedia Foundation Scribunto. This issue affects Scribunto: from 1.45.0 before 1.45.2. | 0.0 | 0 | Neutral | No | Yes |