Latest CVE Feed
CVE Intelligence
Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.
Score
Vulnerability
Published
6.1
MEDIUM
CVE-2017-20239
— MDwiki Cross-Site Scripting via Location Hash Parameter
MDwiki contains a cross-site scripting vulnerability that allows remote attackers to execute arbitrary JavaScript by injecting malicious code through the location hash parameter. Attackers can craft …
Apr 12, 2026
Apr 17, 2026
Apr 12, 2026
Apr 17, 2026
7.5
HIGH
CVE-2026-6126
— zhayujie chatgpt-on-wechat CowAgent Administrative HTTP Endpoint missing authentication
A weakness has been identified in zhayujie chatgpt-on-wechat CowAgent 2.0.4. The affected element is an unknown function of the component Administrative HTTP Endpoint. This manipulation causes missin…
Remote
|
Authentication
Apr 12, 2026
Apr 29, 2026
Apr 12, 2026
Apr 29, 2026