CVE Find - Vulnerabilities Database

CVE Find is a real-time vulnerability database indexing 367 127 security flaws (CVE) from MITRE, NVD, CISA KEV, CWE and CAPEC. 2306 new CVEs were published in the last 7 days.

Data aggregated from: MITRE Corporation (CVE, CWE, CAPEC), National Vulnerability Database – NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).

CVE Find
With CVE Find, explore the world's largest database of vulnerabilities.

367 127 vulnerabilities

Last update : 2026-07-18 19h43 +00:00
Common Vulnerabilities and Exposures (CVE), is a list of publicly disclosed computer security flaws.
View CVE 2025
0
Created 7 days ago
0
Updated 7 days ago
0
Created 30 days ago
0
Updated 30 days ago

Free CVE Email Notifications

Get free real-time alerts on new vulnerabilities with CVE Find.
Stay protected and informed instantly !

The last 10 High CVE

Total 367 127 CVE in Datadase
CVE ID Published Description Score Severity

CVE-2026-16117

2026-07-18
14h17 +00:00
Impact: @fastify/http-proxy versions up to and including 11.5.0 fail to rewrite the request prefix w...
10
Critical

CVE-2026-11826

2026-07-18
14h17 +00:00
OpenPLC_v3 contains a heap-based buffer overflow in the getData() function in webserver/core/modbus_...
8.8
High

CVE-2024-58366

2026-07-18
14h17 +00:00
SurrealDB before 1.1.1 contains a format string vulnerability in the rquickjs Exception::throw_type ...
8.5
High

CVE-2024-58362

2026-07-18
14h17 +00:00
SurrealDB before 1.5.5 (and 2.0.0-beta before 2.0.0-beta.3) accepts an arbitrary object in the signi...
8.8
High

CVE-2023-54366

2026-07-18
14h17 +00:00
SurrealDB before 1.0.1 sets default table permissions to FULL instead of NONE, allowing SELECT, CREA...
8.8
High

CVE-2026-9323

2026-07-18
13h51 +00:00
The urwid web display backend (urwid/display/web.py) generates web session identifiers (urwid_id) in...
9.2
Critical

CVE-2026-15631

2026-07-18
13h17 +00:00
Impact: @fastify/http-proxy versions from 9.4.0 up to and including 11.5.0 fail to validate the reso...
Directory Traversal
8.7
High

CVE-2026-9147

2026-07-18
12h46 +00:00
uproot dynamically generates Python class source code from ROOT TStreamerInfo records in a file and ...
Code Injection
8.5
High

CVE-2026-16158

2026-07-18
12h28 +00:00
Impact: @fastify/reply-from versions from 8.3.1 up to but not including 12.6.4 build the internal UR...
8.7
High

CVE-2026-16097

2026-07-18
12h00 +00:00
A vulnerability was found in Shibby Tomato 1.28. This vulnerability affects the function sub_42537C ...
Overflow
8.7
High

Distribution by CVSS scores


CVE created per quarter since 1999

Frequently asked questions about CVE Find

CVE Find is a cybersecurity vulnerability search engine that aggregates and indexes CVE (Common Vulnerabilities and Exposures), CWE, CAPEC and CPE data from MITRE, NVD and CISA. It allows you to search, filter and monitor security flaws via configurable real-time alerts.

A CVE (Common Vulnerability and Exposure) is a unique identifier assigned to a publicly disclosed computer security flaw. Each CVE is managed by MITRE Corporation and referenced in the NIST National Vulnerability Database (NVD) with a CVSS score evaluating its severity from 0 to 10.

CVSS (Common Vulnerability Scoring System) is an international standard that evaluates the severity of a vulnerability on a scale of 0 to 10. A score of 9 to 10 is rated Critical, 7 to 8.9 High, 4 to 6.9 Medium, and 0.1 to 3.9 Low.

CISA KEV (Known Exploited Vulnerabilities) is a catalog maintained by the US Cybersecurity Agency (CISA) listing CVE vulnerabilities actively exploited in real cyberattacks. US federal organizations are required to remediate them within a mandated deadline.

CVE Find offers a free alert system: create an account, then configure alerts by keyword, by vendor/product (CPE), by CWE category, by CVSS score or based on the CISA KEV list. Notifications are sent by email as soon as a new CVE matches your criteria.