Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 321,451 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-8295 | An integer overflow vulnerability in the simdjson document-builder API allows incorrect buffer size calculations in "string_builder::escape_and_append... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-8278 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error and is not a valid vulnerability. Notes: Al... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8209 | Gibbon versions before v30.0.01 are affected by a path traversal vulnerability resulting in DOS by attempting extraction of web application PHP files,... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-8208 | Gibbon versions before v30.0.01 are affected by a local file inclusion vulnerability resulting in RCE by changing the report archive directory and for... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-8207 | Gibbon versions before v30.0.01 are affected by an authenticated SQL Injection vulnerability by abusing the Tracking/graphing https://github.com/Gibb... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-8149 | A vulnerability in Legion of the Bouncy Castle Inc. BC-FJA BC-FIPS on Linux, X86_64, AVX, AVX-512f. This vulnerability is associated with program fil... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8100 | Impact A security issue has been identified in Chef 360 that could allow unauthorized access to protected API endpoints under specific conditions. Th... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8077 | Lack of proper authorization implementation in the CashDro 3 web administration panel, version 24.01.00.26. The backend lacks authorization controls, ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8076 | Weak credentials in the CashDro 3 web administration panel, version 24.01.00.26, where the platform allows the use of numeric PINs for user authentica... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8072 | Insecure generation of credentials in the local SAT (Technical Support) access functionality of the Ingecon Sun EMS Board. The vulnerability arose bec... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8070 | Incorrect permission assignment for a critical resource in Armoury Crate allows a local user to bypass the driver’s validation mechanism, resulting in... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8069 | PredatorSense version 3.00.3136 to 3.00.3196 contain Local Privilege Escalation (LPE) vulnerability.The program exposes a Windows Named Pipe that uses... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-8054 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in the Publish Audit API endpoints (/api/auditPublishing/get and ... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-7936 | Object lifecycle issue in V8 in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform an out of bounds memory read via a crafted H... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-7930 | Insufficient validation of untrusted input in Cookies in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform privilege escalatio... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-7891 | The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta allows unintended data exposure due to authorization misconfiguration. The VerySecu... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-7888 | Concrete CMS below 9.5.2 is vulnerable to PHP Object Injection via unserialize() calls in the Workflow, Form block, and File/Set components that lack ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-7865 | A hidden console command is vulnerable to command injection flaw when control characters are passed to its second argument. A third party researcher... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-7864 | SEPPmail Secure Email Gateway before version 15.0.4 exposes server environment variables through an unauthenticated endpoint in the new GINA UI, allow... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-7860 | A possible information disclosure vulnerability exists in the Vaadin Maven plugin and Vaadin Gradle plugin that exposes the full set of environment va... | 0.0 | 0 | Neutral | No | Yes |