Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 206,313 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-33167 | ### Impact The debug exceptions page does not properly escape exception messages. A carefully crafted exception message could inject arbitrary HTML an... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-33155 | ### Summary The pickle unpickler `_RestrictedUnpickler` validates which classes can be loaded but does not limit their constructor arguments. A few o... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-33151 | ### Impact A specially crafted Socket.IO packet can make the server wait for a large number of binary attachments and buffer them, which can be explo... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3315 | Incorrect Default Permissions, : Execution with Unnecessary Privileges, : Incorrect Permission Assignment for Critical Resource vulnerability in ASSA ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33074 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33073 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32953 | ## Impact Some specific (1 out of 256) User Supplied Secrets (USS) were not used, making the resulting Compound Device Identifier (CDI) the same as i... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-32912 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32911 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32910 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32909 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32908 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32907 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32904 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32903 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32902 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32901 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32900 | Rejected reason: This CVE ID has been rejected. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-32885 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-32871 | ## Technical Description The `OpenAPIProvider` in FastMCP exposes internal APIs to MCP clients by parsing OpenAPI specifications. The `RequestDirecto... | 0.0 | 0 | Neutral | No | Yes |