Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 199,782 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-39352 | Frappe is a full-stack web application framework. Versions prior to 15.105.0 and 16.15.0 contain a possible Arbitrary File Read vulnerability via Path... | 0.0 | 0 | Neutral | Yes |
| No |
| CVE-2026-39344 | ChurchCRM is an open-source church management system. Prior to 7.1.0, there is a Reflected Cross-Site Scripting (XSS) vulnerability on the login page,... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-39323 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-39326. Reason: This candidate is a duplicate of CVE-2026-39326. N... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-39317 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-39334. Reason: This candidate is a duplicate of CVE-2026-39334. N... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-39313 | ### Summary The `readRequestBody()` function in `src/transports/http/server.ts` concatenates HTTP request body chunks into a string with no size limi... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3912 | Injection vulnerabilities due to validation/sanitisation of user-supplied input in ActiveMatrix BusinessWorks and Enterprise Administrator allows info... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3882 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-38766 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-38765 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-38764 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-38763 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-38739 | NB: All tags and branches in this repository are past their end of life, so the vulnerability will not be fixed. The advisory is posted on the request... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-38698 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-3868 | An improper handling of the length parameter inconsistency vulnerability has been identified in Moxa’s Secure Router. Because of improper validation o... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3867 | An improper ownership management vulnerability has been identified in Moxa’s Secure Router. Because of improper ownership management, a low-privileged... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-38579 | Multiple reflected Cross-Site Scripting (XSS) vulnerabilities in damasac thaipalliative_lte through version 3.0 allow remote attackers to inject arbit... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-38500 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed tha... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-38444 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-3839 | Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3838 | Unraid Update Request Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affe... | 0.0 | 0 | Neutral | No | No |