Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how nginx compares to other vendors in security performance

View Risk Score →

oss-secAnthropic's coordinated vulnerability disclosudashboard

First published (updated )
https://seclists.org/oss-sec/2026/q2/677

oss-secNGINX ngx_http_write_module buffer overflow (CVE-2026-9256)

First published (updated )
https://seclists.org/oss-sec/2026/q2/671

CVE-2026-9256 - "nginx-poolslip", another new vulnerability in the rewrite module

First published (updated )
Social
reddit

Nginx NGINX Open SourceNGINX ngx_http_rewrite_module vulnerability

Risk 56
Severity
8.1
EPSS
0.15%
First published (updated )
CVE-2026-9256

oss-secHost ambiguous quests through NGINX $host and Debian's proxy_params

First published (updated )
https://seclists.org/oss-sec/2026/q2/657
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

oss-secHost ambiguous quests through NGINX **$http_host** and Debian's proxy_params

First published (updated )
https://seclists.org/oss-sec/2026/q2/656

oss-secHost ambiguous quests through NGINX $host and Debian's proxy_params

First published (updated )
https://seclists.org/oss-sec/2026/q2/645

Nginx NGINX JavaScript (njs)NGINX JavaScript vulnerability

Risk 55
Severity
9.2
EPSS
0.10%
First published (updated )
CVE-2026-8711

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

First published (updated )
Social
reddit

CVE-2026-42945 : NGINX Heap Buffer Overflow in rewrite module - Writeup and PoC

First published (updated )
Social
reddit
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

oss-secNGINX ngx_http_write_module vulnerability CVE-2026-42945

First published (updated )
https://seclists.org/oss-sec/2026/q2/519

Nginx NGINX PlusBuffer Overflow

Risk 65
First published (updated )
REDHAT-BUG-2477116

Nginx NGINX PlusNGINX ngx_quic_module vulnerability

Risk 43
Severity
6.9
First published (updated )
CVE-2026-40460

Nginx NGINX Open SourceNGINX ngx_http_proxy_v2_module vulnerability

Risk 31
Severity
6.3
First published (updated )
CVE-2026-42926

Nginx NGINX Open SourceNGINX ngx_http_charset_module vulnerability

Risk 39
Severity
6.3
First published (updated )
CVE-2026-42934
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Nginx NGINX ngx_http_scgi_moduleNGINX ngx_http_scgi_module and ngx_http_uwsgi_module vulnerability

Risk 55
Severity
8.3
First published (updated )
CVE-2026-42946

Nginx NGINX Open SourceNGINX ngx_http_rewrite_module vulnerability

Risk 87
Severity
9.2
Trending
3 Months
First published (updated )
CVE-2026-42945

F5 NGINX PlusNGINX ngx_http_ssl_module vulnerability

Risk 39
Severity
6.3
First published (updated )
CVE-2026-40701

Nginx Nginx UINginx-UI: Disabled users retain full API access through previously issued bearer tokens

Risk 62
Severity
8.6
First published (updated )
CVE-2026-33031

BleepingComputerNIST to stop rating non-priority flaws due to volume increase

Exploited
Zeroday
First published (updated )
News
BleepingComputer
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

BleepingComputerCritical Nginx UI auth bypass flaw now actively exploited in the wild

Exploited
First published (updated )
News
BleepingComputer

Claude + Humans vs nginx: CVE-2026-27654

First published (updated )
Social
reddit

oss-sec7 CVEs fixed in nginx

First published (updated )
https://seclists.org/oss-sec/2026/q1/389

Nginx NGINX Open SourceThe 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2450785

Nginx NGINX PlusWhen the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2450791
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Nginx NGINX Open SourceBuffer Overflow

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2450776

F5 NGINX PlusNGINX ngx_stream_ssl_module vulnerability

Risk 37
Severity
5.3
First published (updated )
CVE-2026-28755

F5 NGINX PlusNGINX ngx_mail_auth_http_module vulnerability

Risk 51
Severity
8.7
First published (updated )
CVE-2026-27651

F5 NGINX PlusNGINX ngx_http_dav_module vulnerability

Risk 61
Severity
8.8
First published (updated )
CVE-2026-27654

F5 NGINX PlusNGINX ngx_mail_proxy_module vulnerability

Risk 29
Severity
6.3
First published (updated )
CVE-2026-28753
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203