Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 206,131 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-32129 | ## Impact Poseidon V1 (`PoseidonSponge`) accepts variable-length inputs without injective padding. When a caller provides fewer inputs than the spong... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-32113 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32066 | ### Summary Unauthenticated requests to a reachable Zalo webhook endpoint could trigger unbounded in-memory key growth by varying query strings on the... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3206 | Improper Resource Shutdown or Release vulnerability in KrakenD, SLU KrakenD-CE (CircuitBreaker modules), KrakenD, SLU KrakenD-EE (CircuitBreaker modul... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32047 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32012 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3197 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31851 | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement rate limiting or account lockout on the authentication interface. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31850 | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores sensitive information, including administrative credentials and WiFi pre-share... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31849 | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 does not implement CSRF protections on state-changing administrative endpoints. A rem... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31848 | Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores administrative authentication material in the ecos_pw cookie using a reversibl... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31847 | Hidden functionality in the /goform/setSysTools endpoint in Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 allows remote enablement ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31827 | Alienbin is an anonymous code and text sharing web service. In 1.0.0 and earlier, the /save endpoint in server.js drops and recreates the MongoDB TTL ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31812 | ### Summary A remote, unauthenticated attacker can trigger a denial of service in applications using vulnerable `quinn` versions by sending a crafted ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3181 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-31386 | OpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command injection vulnerability. An arbitrary OS command may be exe... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3126 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3111 | Insecure Direct Object Reference (IDOR) vulnerability in Campus Educativa specifically at the endpoint '/archivos/usuarios/[ID]/[username]/thumb_AAxAA... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3110 | Insecure Direct Object Reference (IDOR) vulnerability in Campus Educativa specifically at the endpoint '/administracion/admin_usuarios.cgi?filtro_esta... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3107 | Stored Cross-Site Scripting (XSS) in Teampass versions prior to 3.1.5.16, affecting the password manager's password import functionality at the endpoi... | 0.0 | 0 | Neutral | No | No |