Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 206,285 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-33433 | ## Summary There is a potential vulnerability in Traefik's Basic and Digest authentication middlewares when `headerField` is configured with a non-ca... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-33419 | ### Impact _What kind of vulnerability is it? Who is impacted?_ MinIO AIStor's STS (Security Token Service) `AssumeRoleWithLDAPIdentity` endpoint is ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33415 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33397 | An Open Redirect vulnerability exists in `@angular/ssr` due to an incomplete fix for CVE-2026-27738. While the original fix successfully blocked multi... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-33366 | Missing authentication for critical function vulnerability in BUFFALO Wi-Fi router products may allow an attacker to forcibly reboot the product witho... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-33347 | ### Impact The `DomainFilteringAdapter` in the Embed extension is vulnerable to an allowlist bypass due to a missing hostname boundary assertion in t... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-33322 | ### Impact _What kind of vulnerability is it? Who is impacted?_ A JWT algorithm confusion vulnerability in MinIO's OpenID Connect authentication allo... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33300 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33284 | GlobaLeaks is free and open-source whistleblowing software. Prior to version 5.0.89, the /api/support endpoint of GlobaLeaks performs minimal validati... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33276 | Stored cross-site scripting (XSS) in Checkmk 2.5.0 (beta) before 2.5.0b2 allows authenticated users with permission to create hosts or services to exe... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3327 | Authenticated Iframe Injection in Dato CMS Web Previews plugin. This vulnerability permits a malicious authenticated user to circumvent the restrictio... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-33253 | SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root di... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33221 | ## Summary The storage service's file upload handler trusts the client-provided `Content-Type` header without performing server-side MIME type detect... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3321 | A vulnerability of authorization bypass through user-controlled key in the 'console-survey/api/v1/answer/{EVENTID}/{TIMESTAMP}/' endpoint. Exploiting ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33201 | Digital Photo Frame GH-WDF10A provided by GREEN HOUSE CO., LTD. contains an active debug code vulnerability. If this vulnerability is exploited, files... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33189 | Rejected reason: Further research determined the issue originates from a different product. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33188 | Rejected reason: Further research determined the issue originates from a different product. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33187 | Rejected reason: Further research determined the issue originates from a different product. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33185 | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-la... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-33168 | ### Impact When a blank string is used as an HTML attribute name in Action View tag helpers, the attribute escaping is bypassed, producing malformed H... | 0.0 | 0 | Neutral | No | Yes |