Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 206,328 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-3548 | Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a heap-based buffer overflow could occur when improper... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-3503 | Protection mechanism failure in wolfCrypt post-quantum implementations (ML-KEM and ML-DSA) in wolfSSL on ARM Cortex-M microcontrollers allows a physic... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3497 | Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. This vulnerability affects the GSSAPI patches added by various Linu... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34873 | An issue was discovered in Mbed TLS 3.5.0 through 4.0.0. Client impersonation can occur while resuming a TLS 1.3 session. | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34828 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-3479 | pkgutil.get_data() did not validate the resource argument as documented, allowing path traversals. | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34605 | SiYuan is a personal knowledge management system. From version 3.6.0 to before version 3.6.2, the SanitizeSVG function introduced in version 3.6.0 to ... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-34601 | ## Summary `@xmldom/xmldom` allows attacker-controlled strings containing the CDATA terminator `]]>` to be inserted into a `CDATASection` node. Durin... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34598 | ### Summary A stored and blind XSS vulnerability exists in the form title field. A malicious attacker can inject JavaScript without any authentication... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34595 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.70 and 9.7.0-alpha.18, a... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34593 | ## Summary `Ash.Type.Module.cast_input/2` unconditionally creates a new Erlang atom via `Module.concat([value])` for any user-supplied binary string ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-34574 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.69 and 9.7.0-alpha.14, a... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34573 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.68 and 9.7.0-alpha.12, t... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34570 | CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3457 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thales Sentinel LDK Runtime on Windows al... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34545 | OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34544 | OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34543 | OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34532 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.67 and 9.7.0-alpha.11, a... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-34525 | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, multiple Host headers were allowed in aiohttp... | 0.0 | 0 | Neutral | No | No |