Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 206,507 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-5059 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to ex... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-5058 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to ex... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-5055 | This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-5054 | This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-5053 | This vulnerability allows local attackers to delete arbitrary files on affected installations of NoMachine. An attacker must first obtain the ability ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-5026 | The '/api/v1/files/images/{flow_id}/{file_name}' endpoint serves SVG files with the 'image/svg+xml' content type without sanitizing their content. Si... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-5022 | The '/api/v1/files/images/{flow_id}/{file_name}' endpoint does not enforce any authentication or authorization checks, allowing any unauthenticated us... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-5010 | A reflected Cross-Site Scripting (XSS) vulnerability has been discovered in Clickedu. This vulnerability allows an attacker to execute JavaScript code... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4982 | A user with permission "update world" in any Venueless world is able to exfiltrate chat messages from direct messages or channels in other worlds on t... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4896 | No description available | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4821 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-4760 | From Panorama Web HMI, an attacker can gain read access to certain Web HMI server files, if he knows their paths and if these files are accessible to ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4759 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4746 | Out-of-bounds Write vulnerability in timeplus-io proton (base/poco/Foundation/src modules). This vulnerability is associated with program files infla... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4745 | Improper Control of Generation of Code ('Code Injection') vulnerability in dendibakh perf-ninja (labs/misc/pgo/lua modules). This vulnerability is ass... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4744 | Out-of-bounds Read vulnerability in rizonesoft Notepad3 (scintilla/oniguruma/src modules). This vulnerability is associated with program files regcom... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4743 | NULL Pointer Dereference vulnerability in taurusxin ncmdump (src/utils modules). This vulnerability is associated with program files cJSON.Cpp. Th... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4742 | Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in visualfc liteide (liteidex/src/3rdparty/qjsonrpc/src... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4741 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in TeamJCD JoyConDroid (app/src/main/java/com/rdapps/game... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-4739 | Integer Overflow or Wraparound vulnerability in InsightSoftwareConsortium ITK (Modules/ThirdParty/Expat/src/expat modules).This issue affects ITK: be... | 0.0 | 0 | Neutral | No | No |