Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
6.5 MEDIUM
CVE-2026-3961 — zyddnys manga-image-translator Translate Endpoints request_extraction.py to_pil_image ser…

A vulnerability was determined in zyddnys manga-image-translator up to beta-0.3. The affected element is the function to_pil_image of the file manga-image-translator-main/server/request_extraction.py…

Remote | Server-Side Request Forgery
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
5.3 MEDIUM
CVE-2026-3959 — 0xKoda WireMCP Tshark CLI index.js server.tool os command injection

A vulnerability was found in 0xKoda WireMCP up to 7f45f8b2b4adeb76be8c6227eefb38533fdd6b1e. Impacted is the function server.tool of the file index.js of the component Tshark CLI Command Handler. The …

| Injection
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
6.5 MEDIUM
CVE-2026-3958 — Woahai321 ListSync JSON api_server.py requests.post server-side request forgery

A vulnerability has been found in Woahai321 ListSync up to 0.6.6. This issue affects the function requests.post of the file list-sync-main/api_server.py of the component JSON Handler. The manipulatio…

Remote | Server-Side Request Forgery
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
4.3 MEDIUM
CVE-2026-3942 — Google Chrome PictureInPicture UI Spoofing Vulnerability

Incorrect security UI in PictureInPicture in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

Remote | Misconfiguration
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
4.3 MEDIUM
CVE-2026-3941 — Google Chrome DevTools Policy Enforcement Bypass Vulnerability

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: L…

Remote | Misconfiguration
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3940 — Google Chrome DevTools Policy Bypass Vulnerability

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: L…

| Authorization
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3939 — Google Chrome PDF Bypass Navigation Vulnerability

Insufficient policy enforcement in PDF in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted PDF file. (Chromium security severity: Low)

| Authorization
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3938 — Google Chrome Clipboard Cross-Origin Data Leaking Vulnerability

Insufficient policy enforcement in Clipboard in Google Chrome prior to 146.0.7680.71 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML pa…

| Information Disclosure
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3937 — Google Chrome Android UI Spoofing Vulnerability

Incorrect security UI in Downloads in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

| Misconfiguration
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
8.8 HIGH
CVE-2026-3936 — Google Chrome Android WebView Use-After-Free Vulnerability

Use after free in WebView in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Med…

Remote | Memory Corruption
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3935 — Google Chrome UI Spoofing Vulnerability

Incorrect security UI in WebAppInstalls in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

| Cross-Site Scripting
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3934 — Google Chrome Same Origin Policy Bypass Vulnerability

Insufficient policy enforcement in ChromeDriver in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Me…

| Authorization
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3932 — Google Chrome Android PDF Policy Bypass Vulnerability

Insufficient policy enforcement in PDF in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security sever…

| Misconfiguration
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
8.8 HIGH
CVE-2026-3931 — Google Chrome Skia Heap Buffer Overflow Vulnerability

Heap buffer overflow in Skia in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)

Remote | Memory Corruption
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3930 — Google Chrome iOS Navigation Bypass

Unsafe navigation in Navigation in Google Chrome on iOS prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)

| Misconfiguration
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
3.1 LOW
CVE-2026-3929 — Google Chrome ResourceTiming Cross-Origin Data Leakage

Side-channel information leakage in ResourceTiming in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Me…

Remote | Information Disclosure
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3928 — Google Chrome Extension UI Spoofing Vulnerability

Insufficient policy enforcement in Extensions in Google Chrome prior to 146.0.7680.71 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Ch…

| Authorization
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
0.0 NA
CVE-2026-3927 — Google Chrome PictureInPicture UI Spoofing

Incorrect security UI in PictureInPicture in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

| Misconfiguration
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
8.8 HIGH
CVE-2026-3926 — Google Chrome V8 Out-of-Bounds Read Vulnerability

Out of bounds read in V8 in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)

Remote | Memory Corruption
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
4.3 MEDIUM
CVE-2026-3925 — Google Chrome Android LookalikeChecks UI Spoofing

Incorrect security UI in LookalikeChecks in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medi…

Remote | Misconfiguration
Mar 11, 2026 Mar 12, 2026
Mar 11, 2026
Mar 12, 2026
Showing 20 of 5431 Results