CVEs from 2026
Total
14,769
critical
critical 1,335
high
high 5,011
medium
medium 4,834
low
low 504
% Critical
9.0%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 723
- firepower_threat_defense_software 310
- gcp 299
- firepower_threat_defense 298
- openclaw 172
- commerce 104
- netweaver_application_server_abap 102
- commerce_b2b 89
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-4285 | low | 2.7 | 2.7 | 3mo ago | A vulnerability was identified in taoofagi easegen-admin up to 8f87936ac774065b92fb20aab55b274a6ea76433. Impacted is the function recognizeMarkdown of the file yudao-module-digitalcourse/yudao-module… | |||
| CVE-2026-3911 | low | 2.7 | 2.7 | 3mo ago | Keycloak: Information disclosure of disabled user attributes via administrative endpoint | |||
| CVE-2026-1588 | low | 2.7 | 2.7 | 4mo ago | A vulnerability was found in jishenghua jshERP up to 3.6. The impacted element is the function install of the file /jshERP-boot/plugin/installByPath of the component com.gitee.starblues.integration.o… | |||
| CVE-2026-22597 | low | 2.7 | 2.7 | 5mo ago | Ghost has SSRF via External Media Inliner | |||
| CVE-2026-45155 | low | 2.6 | 2.6 | 6d ago | Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.7 and 33.0.0 to before 33.0.1, a missing access check on API level allowed to add u… | |||
| CVE-2026-45154 | low | 2.6 | 2.6 | 6d ago | Nextcloud is an open source content collaboration platform. From version 2.6.0 to before version 4.3.0, when a previous collective pages was deleted and the collective was shared view-only, guests wi… | |||
| CVE-2026-9248 | low | 2.6 | 2.6 | 16d ago | Authorization bypass in the entry duplication feature in Devolutions Server allows an authenticated user with write access to any vault to copy documentation and attachments from an entry in a vault … | |||
| CVE-2026-7847 | low | 2.6 | 2.6 | 1mo ago | Langchain-Chatchat Uses Insufficiently Random Values | |||
| CVE-2026-7846 | low | 2.6 | 2.6 | 1mo ago | Langchain-Chatchat has a Race Condition in its OpenAI-Compatible File Upload API | |||
| CVE-2026-7845 | low | 2.6 | 2.6 | 1mo ago | Langchain-Chatchat Uses a Broken or Risky Cryptographic Algorithm | |||
| CVE-2026-10783 | low | 2.5 | 2.5 | 4d ago | A security flaw has been discovered in gradio-app gradio 6.14.0. This affects the function save_audio_to_cache of the component Audio Cache Key Handler. Performing a manipulation results in use of we… | |||
| CVE-2026-45403 | low | 2.5 | 2.5 | 10d ago | AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the AnythingLLM agent filesystem copy tool validates only … | |||
| CVE-2026-35202 | low | — | 2.5 | 12d ago | Pterodactyl is a free, open-source game server management panel. Prior to version 1.12.3, the Pterodactyl Client API has a logic flaw that lets users bypass their assigned limits for database allocat… | |||
| CVE-2026-46554 | low | — | 2.5 | 17d ago | NocoDB: Stale Auth Cache After API Token Deletion | |||
| CVE-2026-46553 | low | — | 2.5 | 17d ago | NocoDB: Attachment Size Limit Bypass via Upload-by-URL | |||
| CVE-2026-46549 | low | — | 2.5 | 17d ago | NocoDB: OAuth Token Scope Not Enforced at ACL Layer Allows Scope Escalation | |||
| CVE-2026-46668 | low | — | 2.5 | 17d ago | SpiceDB: Caveat structures with nested lists can result in improper cache reuse | |||
| CVE-2026-46497 | low | — | 2.5 | 17d ago | Crawlee for Python: SSRF via sitemap-derived URLs | |||
| CVE-2026-46628 | low | — | 2.5 | 18d ago | Twig: The `spaceless` filter implicitly marks its output as safe | |||
| CVE-2026-46629 | low | — | 2.5 | 18d ago | twig/intl-extra: Unbounded formatter memoisation in keyed on template-controlled arguments | |||
| CVE-2026-45305 | low | — | 2.5 | 18d ago | Symfony's YAML Parser has a ReDoS via Catastrophic Backtracking in Parser::cleanup() Regex | |||
| CVE-2026-45304 | low | — | 2.5 | 18d ago | Symfony's YAML Parser Vulnerable to Exponential Memory Allocation via Recursive Collection-Alias Expansion ("Billion Laughs") | |||
| CVE-2026-45133 | low | — | 2.5 | 18d ago | Symfony hardened the parser when handling untrusted input | |||
| CVE-2026-45071 | low | — | 2.5 | 18d ago | Symfony has XXE (Local File Disclosure) in DomCrawler::addXmlContent() via validateOnParse = true | |||
| CVE-2026-45072 | low | — | 2.5 | 18d ago | Symfony Vulnerable to stored XSS in WebProfiler CodeExtension::fileExcerpt() — Unescaped Non-PHP File Rendering | |||
| CVE-2026-46637 | low | — | 2.5 | 18d ago | Twig: HTML-output filters in twig/* extras incorrectly declared `is_safe => ['all']` | |||
| CVE-2026-46635 | low | — | 2.5 | 18d ago | Twig: Sandbox property allowlist bypass via the `column` filter (array_column on objects) | |||
| CVE-2026-46342 | low | — | 2.5 | 19d ago | Nuxt: `__nuxt_island` endpoint does not bind responses to request props, enabling shared-cache poisoning | |||
| CVE-2026-39373 | low | — | 2.5 | 20d ago | JWCrypto: JWE ZIP decompression bomb | |||
| CVE-2026-2728 | low | — | 2.5 | 20d ago | LibreNMS: Cross-Site Scripting in ShowConfigController | |||
| CVE-2026-44638 | low | 2.5 | 2.5 | 24d ago | libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixel_decode_raw and sixel_decode causes a NULL pointe… | |||
| CVE-2026-44970 | low | — | 2.5 | 24d ago | dbt MCP Server Transmits All MCP Tool Arguments Including Raw SQL and --vars Credentials to dbt Labs Telemetry by Default Without Redaction | |||
| CVE-2026-44969 | low | — | 2.5 | 24d ago | dbt MCP Server Logs Tool Arguments Including SQL Queries and Credentials in Plaintext Without Redaction When File Logging Is Enabled | |||
| CVE-2026-44348 | low | 2.5 | 2.5 | 24d ago | PoDoFo is a C++17 PDF manipulation library. From 1.0.0 to before 1.0.4, a double-free vulnerability exists in compute_hash_to_sign() in src/podofo/private/OpenSSLInternal_Ripped.cpp. If EVP_DigestFin… | |||
| CVE-2026-43529 | low | 2.5 | 2.5 | 1mo ago | OpenClaw: TOCTOU read in exec script preflight | |||
| CVE-2026-43864 | low | 2.5 | 2.5 | 1mo ago | mutt before 2.3.2 has a show_sig_summary NULL pointer dereference. | |||
| CVE-2026-29051 | low | — | 2.5 | 2mo ago | melange has Path Traversal via .PKGINFO in --persist-lint-results | |||
| CVE-2026-35381 | low | — | 2.5 | 2mo ago | A logic error in the cut utility of uutils coreutils causes the utility to ignore the -s (only-delimited) flag when using the -z (null-terminated) and -d '' (empty delimiter) options together. The im… | |||
| CVE-2026-35377 | low | — | 2.5 | 2mo ago | A logic error in the env utility of uutils coreutils causes a failure to correctly parse command-line arguments when utilizing the -S (split-string) option. In GNU env, backslashes within single quot… | |||
| CVE-2026-35362 | low | — | 2.5 | 2mo ago | The safe_traversal module in uutils coreutils, which provides protection against Time-of-Check to Time-of-Use (TOCTOU) symlink races using file-descriptor-relative syscalls, is incorrectly limited to… | |||
| CVE-2026-35346 | low | — | 2.5 | 2mo ago | The comm utility in uutils coreutils silently corrupts data by performing lossy UTF-8 conversion on all output lines. The implementation uses String::from_utf8_lossy(), which replaces invalid UTF-8 b… | |||
| CVE-2026-35367 | low | — | 2.5 | 2mo ago | The nohup utility in uutils coreutils creates its default output file, nohup.out, without specifying explicit restricted permissions. This causes the file to inherit umask-based permissions, typicall… | |||
| CVE-2026-35361 | low | — | 2.5 | 2mo ago | The mknod utility in uutils coreutils fails to handle security labels atomically by creating device nodes before setting the SELinux context. If labeling fails, the utility attempts cleanup using std… | |||
| CVE-2026-35353 | low | — | 2.5 | 2mo ago | The mkdir utility in uutils coreutils incorrectly applies permissions when using the -m flag by creating a directory with umask-derived permissions (typically 0755) before subsequently changing them … | |||
| CVE-2026-22746 | low | — | 2.5 | 2mo ago | Spring Security Vulnerable to User Attribute Enumeration when Using DaoAuthenticationProvider | |||
| CVE-2026-27769 | low | — | 2.5 | 2mo ago | Mattermost doesn't validate whether users were correctly owned by the correct Connected Workspace | |||
| CVE-2026-21388 | low | — | 2.5 | 2mo ago | Mattermost MS Teams plugin doesn't limit the request body size on the /lifecycle webhook endpoint | |||
| CVE-2026-1340 | unknown | — | 2.5 | 2mo ago | Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution. | |||
| CVE-2026-34197 | unknown | — | 2.5 | 2mo ago | Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection. | |||
| CVE-2026-5420 | low | 2.5 | 2.5 | 2mo ago | A security flaw has been discovered in Shinrays Games Goods Triple App up to 1.200. The affected element is an unknown function of the file jRwTX.java of the component cats.goods.sort.sorting.games. … | |||
| CVE-2026-5310 | low | 2.5 | 2.5 | 2mo ago | A vulnerability was identified in Enter Software Iperius Backup up to 8.7.2. This impacts an unknown function of the file IperiusAccounts.ini. Such manipulation leads to use of hard-coded cryptograph… | |||
| CVE-2026-3055 | unknown | — | 2.5 | 2mo ago | Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP lea… | |||
| CVE-2026-4823 | low | 2.5 | 2.5 | 2mo ago | A flaw has been found in Enter Software Iperius Backup up to 8.7.3. Affected by this vulnerability is an unknown functionality of the component NTLM2 Handler. Executing a manipulation can lead to inf… | |||
| CVE-2026-33167 | low | — | 2.5 | 3mo ago | Rails has a possible XSS vulnerability in its Action Pack debug exceptions | |||
| CVE-2026-33168 | low | — | 2.5 | 3mo ago | Action View provides conventions and helpers for building web pages with the Rails framework. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, when a blank string is used as an HTML attribute name in… | |||
| CVE-2026-4541 | low | 2.5 | 2.5 | 3mo ago | A flaw has been found in janmojzis tinyssh up to 20250501. Impacted is an unknown function of the file tinyssh/crypto_sign_ed25519_tinyssh.c of the component Ed25519 Signature Handler. This manipulat… | |||
| CVE-2026-4251 | low | 2.5 | 2.5 | 3mo ago | A vulnerability was determined in CityData CityChat up to 0.12.6 on Android. Affected by this vulnerability is an unknown functionality of the file resources/assets/flutter_assets/assets/credentials.… | |||
| CVE-2026-4250 | low | 2.5 | 2.5 | 3mo ago | A vulnerability was found in Albert Sağlık Hizmetleri ve Ticaret Albert Health up to 1.7.3 on Android. Affected is an unknown function of the file resources/assets/service-account.json of the compone… | |||
| CVE-2026-4243 | low | 2.5 | 2.5 | 3mo ago | A weakness has been identified in La Nacion App 10.2.25 on Android. This impacts an unknown function of the file source/app/lanacion/clublanacion/BuildConfig.java of the component app.lanacion.activi… | |||
| CVE-2026-4242 | low | 2.5 | 2.5 | 3mo ago | A security flaw has been discovered in BabyChakra Pregnancy & Parenting App up to 5.4.3.0 on Android. This affects an unknown function of the file file app/babychakra/babychakra/Configuration.java of… | |||
| CVE-2026-4218 | low | 2.5 | 2.5 | 3mo ago | A vulnerability was detected in myAEDES App up to 1.18.4 on Android. Affected is an unknown function of the file aedes/me/beta/utils/EngageBayUtils.java of the component aedes.me.beta. Performing a m… | |||
| CVE-2026-4217 | low | 2.5 | 2.5 | 3mo ago | A security vulnerability has been detected in XREAL Nebula App up to 3.2.1 on Android. This impacts an unknown function of the file in ai/nreal/nebula/flutterPlugin/CloudStoragePlugin.java of the com… | |||
| CVE-2026-20127 | unknown | — | 2.5 | 3mo ago | Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, contain an authentication bypass vulnerability could allow an unauthenticated, re… | |||
| CVE-2026-2974 | low | 2.5 | 2.5 | 3mo ago | A vulnerability was identified in AliasVault App up to 0.25.3 on Android/iOS. This vulnerability affects unknown code of the file shared_prefs/aliasvault.xml of the component Backup Handler. The mani… | |||
| CVE-2026-2656 | low | 2.5 | 2.5 | 4mo ago | A flaw has been found in ChaiScript up to 6.1.0. This affects the function chaiscript::Type_Info::bare_equal of the file include/chaiscript/dispatchkit/type_info.hpp. This manipulation causes use aft… | |||
| CVE-2026-2655 | low | 2.5 | 2.5 | 4mo ago | A vulnerability was detected in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::str_less::operator of the file include/chaiscript/chaiscript_defines.hpp. The manipulation res… | |||
| CVE-2026-2441 | unknown | — | 2.5 | 4mo ago | Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-1731 | unknown | — | 2.5 | 4mo ago | BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA)contain an OS command injection vulnerability. Successful exploitation could allow an unauthenticated remote attacker to execute oper… | |||
| CVE-2026-1281 | unknown | — | 2.5 | 4mo ago | Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution. | |||
| CVE-2026-24061 | unknown | — | 2.5 | 4mo ago | GNU InetUtils contains an argument injection vulnerability in telnetd that could allow for remote authentication bypass via a "-f root" value for the USER environment variable. | |||
| CVE-2026-11434 | low | 2.4 | 2.4 | 1d ago | A weakness has been identified in FluentCMS 0.0.5. The impacted element is an unknown function of the file /admin/blocks of the component Blocks Plugin. This manipulation causes cross site scripting.… | |||
| CVE-2026-11338 | low | 2.4 | 2.4 | 2d ago | A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System 1.0. Impacted is an unknown function of the file /admin/?page=user/manage_user. The manipulation of t… | |||
| CVE-2026-10529 | low | 2.4 | 2.4 | 6d ago | A weakness has been identified in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is an unknown function of the file src/main/java/com/zhiliao/module/web/system/ScheduleJo… | |||
| CVE-2026-10514 | low | 2.4 | 2.4 | 6d ago | A vulnerability has been found in 1Panel-dev CordysCRM up to 1.6.2. This affects an unknown function of the file backend/framework/src/main/java/cn/cordys/config/RequestParamTrimConfig.java. The mani… | |||
| CVE-2026-10112 | low | 2.4 | 2.4 | 8d ago | A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. Affected is an unknown function of the component Dashboard Page. The manipulation of the argument Name leads to cross site s… | |||
| CVE-2026-49318 | low | 2.4 | 2.4 | 9d ago | Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. T… | |||
| CVE-2026-49317 | low | 2.4 | 2.4 | 9d ago | Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. T… | |||
| CVE-2026-9608 | low | 2.4 | 2.4 | 12d ago | A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can le… | |||
| CVE-2026-9564 | low | 2.4 | 2.4 | 12d ago | A vulnerability was found in SourceCodester/oretnom23 Hospitals Patient Records Management System 1.0. The impacted element is an unknown function of the file /admin/?page=patients/view_patient. Perf… | |||
| CVE-2026-9377 | low | 2.4 | 2.4 | 14d ago | A vulnerability was identified in SourceCodester SUP Online Shopping 1.0. The impacted element is an unknown function of the file /admin/productedit.php. The manipulation of the argument productName … | |||
| CVE-2026-9247 | low | 2.4 | 2.4 | 16d ago | Insufficient logging in the entry export feature in Devolutions Server allows an authenticated user with export permissions to export a sealed entry without triggering the unseal notification to admi… | |||
| CVE-2026-42188 | low | 2.4 | 2.4 | 27d ago | Geyser Vulnerable to Server-Side Request Forgery (SSRF) via Player Head Texture URL in Geyser | |||
| CVE-2026-44658 | low | 2.4 | 2.4 | 27d ago | Zen is a firefox-based browser. Prior to 1.19.12b, RSS feed URLs entered by the user are validated to http: or https: in promptForFeedUrl, but item links inside the feed are not subject to the same r… | |||
| CVE-2026-8262 | low | 2.4 | 2.4 | 28d ago | A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /accounts/chart-save. Such manipulation leads to cross site scripting. The attack ma… | |||
| CVE-2026-8256 | low | 2.4 | 2.4 | 28d ago | A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. This vulnerability affects unknown code of the file /accounts/mr-save. Such manipulation leads to cross site scriptin… | |||
| CVE-2026-8255 | low | 2.4 | 2.4 | 28d ago | A weakness has been identified in Devs Palace ERP Online up to 4.0.0. This affects an unknown part of the file /inventory/add_new_customer. This manipulation causes cross site scripting. The attack c… | |||
| CVE-2026-8254 | low | 2.4 | 2.4 | 28d ago | A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. Affected by this issue is some unknown functionality of the file /inventory/sales_save. The manipulation results in cross si… | |||
| CVE-2026-8253 | low | 2.4 | 2.4 | 28d ago | A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchase_save. The manipulation leads to cross … | |||
| CVE-2026-8221 | low | 2.4 | 2.4 | 29d ago | A flaw has been found in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /inventory/item-save. This manipulation causes cross site scripting. The attack is possible t… | |||
| CVE-2026-8220 | low | 2.4 | 2.4 | 29d ago | A vulnerability was detected in Devs Palace ERP Online up to 4.0.0. This affects an unknown function of the file /inventory/customer-save. The manipulation results in cross site scripting. The attack… | |||
| CVE-2026-8219 | low | 2.4 | 2.4 | 29d ago | A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. The impacted element is an unknown function of the file /inventory/supplier-save. The manipulation leads to cross sit… | |||
| CVE-2026-8218 | low | 2.4 | 2.4 | 29d ago | A weakness has been identified in Devs Palace ERP Online up to 4.0.0. The affected element is an unknown function of the file /inventory/purchase_return_save. Executing a manipulation can lead to cro… | |||
| CVE-2026-8136 | low | 2.4 | 2.4 | 1mo ago | A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /index.php?page=users. Executing a manipulation of the argument Name can lead… | |||
| CVE-2026-7297 | low | 2.4 | 2.4 | 1mo ago | A vulnerability was determined in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects the function save_user of the file /admin/ajax.php?action=save_user. Executing a manipulation… | |||
| CVE-2026-7296 | low | 2.4 | 2.4 | 1mo ago | A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function save_order of the file /admin/ajax.php?action=save_order. Performing a manipulation of the argument… | |||
| CVE-2026-7295 | low | 2.4 | 2.4 | 1mo ago | A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this issue is the function save_menu of the file /admin/ajax.php?action=save_menu. Such manipulation of the … | |||
| CVE-2026-7294 | low | 2.4 | 2.4 | 1mo ago | A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function save_settings of the file /admin/index.php?page=save_settings. This manipulation o… | |||
| CVE-2026-7281 | low | 2.4 | 2.4 | 1mo ago | A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function supplier of the file /index.php?page=supplier. Executing a manipulation … | |||
| CVE-2026-7269 | low | 2.4 | 2.4 | 1mo ago | A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /index.php?page=product. Performing a manipulation of the argument ID … | |||
| CVE-2026-7090 | low | 2.4 | 2.4 | 1mo ago | A vulnerability was detected in code-projects Chat System 1.0. This affects an unknown function of the file /admin/send_message.php of the component Chat Interface. The manipulation of the argument m… |