Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 206,287 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-32680 | The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder. If the installation folder is customized to so... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-32678 | Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without auth... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32635 | A Cross-Site Scripting (XSS) vulnerability has been identified in the Angular runtime and compiler. It occurs when the application uses a security-sen... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32629 | ### Summary An unauthenticated attacker can submit a guest FAQ with an email address that is syntactically valid per RFC 5321 (quoted local part) yet ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32620 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32619 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32615 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32607 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32602 | No description available | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32587 | Missing Authorization vulnerability in Saad Iqbal WP EasyPay allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affect... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32586 | Missing Authorization vulnerability in Pluggabl Booster for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This i... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32565 | Missing Authorization vulnerability in WebberZone Contextual Related Posts allows Exploiting Incorrectly Configured Access Control Security Levels.Thi... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32493 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in eyecix JobSearch wp-jobsearch allows Reflected X... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3237 | In affected versions of Octopus Server it was possible for a low privileged user to manipulate an API request to change the signing key expiration and... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3233 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32326 | SHARP routers do not perform authentication for some web APIs. The device information may be retrieved without authentication. If the administrative p... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3227 | A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL-WR840N v6 due to improper neutralization of special el... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32268 | Unauthenticated users can view a list of buckets the plugin has access to. The `DefaultController->actionLoadContainerData()` endpoint allows unauthe... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32266 | Unauthenticated users can view a list of buckets the plugin has access to. The `DefaultController->actionLoadBucketData()` endpoint allows unauthenti... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32265 | Unauthenticated users can view a list of buckets the plugin has access to. The `BucketsController->actionLoadBucketData()` endpoint allows unauthenti... | 0.0 | 0 | Neutral | No | Yes |