CVEs from 2026
Total
14,785
critical
critical 1,335
high
high 5,005
medium
medium 4,828
low
low 503
% Critical
9.0%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 723
- firepower_threat_defense_software 310
- gcp 299
- firepower_threat_defense 298
- openclaw 172
- commerce 104
- netweaver_application_server_abap 102
- commerce_b2b 89
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44586 | high | 8.3 | 8.3 | 23d ago | SiYuan is an open-source personal knowledge management system. From 2.1.12 to before 3.7.0. SiYuan's Bazaar marketplace renders package author metadata from the public bazaar stage feed into HTML wit… | |||
| CVE-2026-32993 | high | 8.3 | 8.3 | 24d ago | Improper sanitization of the `status` query parameter of the `/unprotected/nova_error` endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response. | |||
| CVE-2026-21821 | high | 8.3 | 8.3 | 24d ago | The HCL BigFix SCM Reporting site contains an outdated and unsupported version of the jQuery 1.x library. Since jQuery 1.x has reached end-of-life and no longer receives security updates, it may expo… | |||
| CVE-2026-35438 | high | 8.3 | 8.3 | 25d ago | Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network. | |||
| CVE-2026-42313 | high | 8.3 | 8.3 | 26d ago | pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the set_config_value() API method (@permission(Perms.SETTINGS)) in src/pyload/core/api/__init__.py gates … | |||
| CVE-2026-42562 | high | 8.3 | 8.3 | 28d ago | Plainpad is a self hosted note taking app. Prior to version 1.1.1, Plainpad allows a low-privilege authenticated user to self-escalate to administrator by submitting admin=true in PUT /api.php/v1/use… | |||
| CVE-2026-42297 | high | 8.3 | 8.3 | 29d ago | Argo has Missing Authorization in its Sync ConfigMap Provider | |||
| CVE-2026-43291 | high | 8.3 | 8.3 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b ("net: nfc: nci: Add parameter validation for p… | |||
| CVE-2026-41422 | high | 8.3 | 8.3 | 1mo ago | Daptin: SQL injection via unvalidated goqu.L() calls in aggregate API | |||
| CVE-2026-41490 | high | 8.3 | 8.3 | 1mo ago | Dagster Vulnerable to SQL Injection via Dynamic Partition Keys in Database I/O Manager Integrations | |||
| CVE-2026-8001 | high | 8.3 | 8.3 | 1mo ago | Use After Free in Printing in Google Chrome on Linux, Mac, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape v… | |||
| CVE-2026-7985 | high | 8.3 | 8.3 | 1mo ago | Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chro… | |||
| CVE-2026-7975 | high | 8.3 | 8.3 | 1mo ago | Use after free in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. … | |||
| CVE-2026-7970 | high | 8.3 | 8.3 | 1mo ago | Use after free in TopChrome in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… | |||
| CVE-2026-7967 | high | 8.3 | 8.3 | 1mo ago | Insufficient validation of untrusted input in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox es… | |||
| CVE-2026-7963 | high | 8.3 | 8.3 | 1mo ago | Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a … | |||
| CVE-2026-7956 | high | 8.3 | 8.3 | 1mo ago | Use after free in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page… | |||
| CVE-2026-7923 | high | 8.3 | 8.3 | 1mo ago | Out of bounds write in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… | |||
| CVE-2026-7922 | high | 8.3 | 8.3 | 1mo ago | Use after free in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-7920 | high | 8.3 | 8.3 | 1mo ago | Use after free in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr… | |||
| CVE-2026-7919 | high | 8.3 | 8.3 | 1mo ago | Use after free in Aura in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr… | |||
| CVE-2026-7918 | high | 8.3 | 8.3 | 1mo ago | Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chro… | |||
| CVE-2026-7917 | high | 8.3 | 8.3 | 1mo ago | Use after free in Fullscreen in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafte… | |||
| CVE-2026-7916 | high | 8.3 | 8.3 | 1mo ago | Insufficient data validation in InterestGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a… | |||
| CVE-2026-7914 | high | 8.3 | 8.3 | 1mo ago | Type Confusion in Accessibility in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a cra… | |||
| CVE-2026-7911 | high | 8.3 | 8.3 | 1mo ago | Use after free in Aura in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML… | |||
| CVE-2026-7905 | high | 8.3 | 8.3 | 1mo ago | Insufficient validation of untrusted input in Media in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sand… | |||
| CVE-2026-7900 | high | 8.3 | 8.3 | 1mo ago | Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML pag… | |||
| CVE-2026-6266 | high | 8.3 | 8.3 | 1mo ago | A flaw was found in the AAP gateway. The user auto-link strategy, introduced in AAP 2.6, automatically links an external Identity Provider (IDP) identity to an existing AAP user account based on emai… | |||
| CVE-2026-31712 | high | 8.3 | 8.3 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: ksmbd: require minimum ACE size in smb_check_perm_dacl() Both ACE-walk loops in smb_check_perm_dacl() only guard against an under… | |||
| CVE-2026-7353 | high | 8.3 | 8.3 | 1mo ago | Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML pag… | |||
| CVE-2026-7352 | high | 8.3 | 8.3 | 1mo ago | Use after free in Media in Google Chrome on Android prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HT… | |||
| CVE-2026-7350 | high | 8.3 | 8.3 | 1mo ago | Use after free in WebMIDI in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. … | |||
| CVE-2026-7345 | high | 8.3 | 8.3 | 1mo ago | Insufficient validation of untrusted input in Feedback in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox esc… | |||
| CVE-2026-6921 | high | 8.3 | 8.3 | 1mo ago | Race in GPU in Google Chrome on Windows prior to 147.0.7727.117 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: Medium) | |||
| CVE-2026-6361 | high | 8.3 | 8.3 | 2mo ago | Heap buffer overflow in PDFium in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a … | |||
| CVE-2026-6314 | high | 8.3 | 8.3 | 2mo ago | Out of bounds write in GPU in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via a crafted HTML page. (Chr… | |||
| CVE-2026-6309 | high | 8.3 | 8.3 | 2mo ago | Use after free in Viz in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr… | |||
| CVE-2026-6304 | high | 8.3 | 8.3 | 2mo ago | Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… | |||
| CVE-2026-6311 | high | 8.3 | 8.3 | 2mo ago | Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a… | |||
| CVE-2026-6310 | high | 8.3 | 8.3 | 2mo ago | Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Ch… | |||
| CVE-2026-6297 | high | 8.3 | 8.3 | 2mo ago | Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium securi… | |||
| CVE-2026-25083 | high | 8.3 | 8.3 | 3mo ago | GROWI OpenAI thread/message API endpoints do not perform authorization. Affected are v7.4.5 and earlier versions. A logged-in user who knows a shared AI assistant's identifier may view and/or tamper … | |||
| CVE-2026-1619 | high | 8.3 | 8.3 | 4mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers. This issue affects FlexCity/Kiosk: from 1.0 befor… | |||
| CVE-2026-50205 | high | 8.2 | 8.2 | 3d ago | System log files output unencrypted SMTP server authentication passwords alongside sensitive employee corporate identification data. | |||
| CVE-2026-41010 | high | 8.2 | 8.2 | 3d ago | ReleaseJob#unpack builds job_dir = File.join(@release_dir, 'jobs', name) and job_tgz = File.join(@release_dir, 'jobs', "#{name}.tgz") where name returns @job_meta['name'], a value taken verbatim from… | |||
| CVE-2026-41011 | high | 8.2 | 8.2 | 3d ago | PackagePersister.validate_tgz builds "tar -tf #{tgz} 2>&1" where tgz = File.join(release_dir, 'packages', "#{name}.tgz") and name = package_meta['name'] comes directly from release.MF inside the uplo… | |||
| CVE-2026-10622 | high | 8.2 | 8.2 | 4d ago | Improper Authentication in REST API in Collibra Agent, allows a remote unauthenticated attacker to access privileged functionality via exposed '/rest/* endpoints. | |||
| CVE-2026-24752 | high | 8.2 | 8.2 | 5d ago | Kiteworks is a private data network (PDN). Prior to version 9.3.0, a reflected XSS vulnerability in Kiteworks Secure Data Forms could allow an external attacker to trick a user into executing arbitra… | |||
| CVE-2026-24088 | high | 8.2 | 8.2 | 5d ago | Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader. | |||
| CVE-2026-49491 | high | 8.2 | 8.2 | 5d ago | Pixa Bank 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to extract sensitive data by injecting SQL code into the 'rib' parameter. Attackers can send POST requests … | |||
| CVE-2026-45545 | high | 8.2 | 8.2 | 5d ago | Nextcloud is an open source content collaboration platform. From versions 0.7.0 to before 0.7.7, 0.8.0 to before 0.8.10, 0.9.0 to before 0.9.8, and 1.0.0 to before 1.0.4, an authenticated attacker wi… | |||
| CVE-2026-43624 | high | 8.2 | 8.2 | 5d ago | F5-TTS through version 1.1.20 contains a path traversal vulnerability in the finetune Gradio handlers that allows unauthenticated attackers to write arbitrary files by passing unsanitized user-suppli… | |||
| CVE-2026-24751 | high | 8.2 | 8.2 | 5d ago | Kiteworks is a private data network (PDN). Prior to version 9.3.0, a reflected XSS vulnerability in Kiteworks Secure Data Forms could allow an external attacker to trick a user into executing arbitra… | |||
| CVE-2026-37234 | high | 8.2 | 8.2 | 6d ago | FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xapp_ids by sending multiple E42_SETUP_REQUESTs. On disconnect, only the first registered xapp_id's resources are cleaned up; subsequen… | |||
| CVE-2026-49371 | high | 8.2 | 8.2 | 8d ago | In JetBrains TeamCity before 2026.1.1 reflected XSS in the keyword filter was possible | |||
| CVE-2026-45615 | high | 8.2 | 8.2 | 8d ago | mouse07410/asn1c is an ASN.1 compiler. In 1.4 and earlier, a memory safety vulnerability was identified in the OER decoding skeleton files generated by asn1c (specifically INTEGER_oer.c). When parsin… | |||
| CVE-2026-44358 | high | 8.2 | 8.2 | 9d ago | Espressif Shared GitHub DangerJS is a reusable GitHub Action CI DangerJS workflow for Espressif GitHub projects. Prior to 1.0.1, the action's entrypoint.sh invoked DangerJS from the caller's workspac… | |||
| CVE-2026-35676 | high | 8.2 | 8.2 | 9d ago | phpMyFAQ before 4.1.3 contains an unauthenticated password reset vulnerability in the user password update API endpoint that allows attackers to change account passwords without token validation. Att… | |||
| CVE-2026-35675 | high | 8.2 | 8.2 | 9d ago | phpMyFAQ before 4.1.3 contains an authentication bypass vulnerability in the password reset endpoint that allows unauthenticated attackers to reset any user account password without token verificatio… | |||
| CVE-2026-44712 | high | 8.2 | 8.2 | 10d ago | pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, a crafted UUID such as $(id>/tmp/rce) in the config causes root RCE when pamusb-conf --reset-pads is… | |||
| CVE-2026-4868 | high | 8.2 | 8.2 | 10d ago | GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that, under certain conditions, could have allowed an authent… | |||
| CVE-2026-45089 | high | 8.2 | 8.2 | 10d ago | Dalfox Server Mode has an Unauthenticated Arbitrary File Create/Append via `output` Option | |||
| CVE-2026-42083 | high | 8.2 | 8.2 | 10d ago | free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, PCF Npcf_SMPolicyControl missing authentication middleware allows unauthenticated access to SM policy handlers and dis… | |||
| CVE-2026-44328 | high | 8.2 | 8.2 | 10d ago | free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without inbound OAuth2 middleware. On top of that, the DELETE /upi… | |||
| CVE-2026-44483 | high | 8.2 | 8.2 | 10d ago | RVF (formerly Remix Validated Form) provides easy form validation and state management for React. From 6.0.0 to before 6.0.4 and 7.0.2, setPath in @rvf/set-get (used by @rvf/core to flatten incoming … | |||
| CVE-2026-44971 | high | 8.2 | 8.2 | 10d ago | GuardDog is a CLI tool to identify malicious PyPI packages. From 1.0.0 to 2.9.0, the programmatic remote project scanning path rewrites attacker-controlled repository URLs using a blind string replac… | |||
| CVE-2026-46037 | high | 8.2 | 8.2 | 10d ago | In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmp_pointers Extended echo replies use ICMP_EXT_ECHOREPLY as the outbound reply typ… | |||
| CVE-2026-42735 | high | 8.2 | 8.2 | 11d ago | Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Password Recovery Exploitation.This issue affects KiviCare: f… | |||
| CVE-2026-45843 | high | 8.2 | 8.2 | 11d ago | In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length slhc_uncompress() parses a VJ-compressed TCP header by advancing … | |||
| CVE-2026-9312 | high | 8.2 | 8.2 | 11d ago | A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insu… | |||
| CVE-2026-42013 | high | 8.2 | 8.2 | 11d ago | RHSA-2026:20612: gnutls security update (Important) | |||
| CVE-2026-5260 | high | 8.2 | 8.2 | 11d ago | RHSA-2026:20612: gnutls security update (Important) | |||
| CVE-2026-44843 | high | 8.2 | 8.2 | 11d ago | LangChain vulnerable to unsafe deserialization of attacker-controlled objects through overly broad `load()` allowlists | |||
| CVE-2026-8890 | high | 8.2 | 8.2 | 11d ago | code100x contains an authentication bypass vulnerability in the Mobile API that allows unauthenticated attackers to impersonate arbitrary users by supplying a crafted JSON payload in the 'g' HTTP hea… | |||
| CVE-2026-44728 | high | 8.2 | 8.2 | 11d ago | Babel is a compiler for writing next generation JavaScript. From 7.12.0 to before 7.29.4 and 8.0.0-alpha.13, using Babel to compile code that was specifically crafted by an attacker can cause Babel t… | |||
| CVE-2026-48126 | high | 8.2 | 8.2 | 11d ago | Algernon is a small self-contained pure-Go web server. Prior to 1.17.8, when algernon is started with --domain (or --letsencrypt, which silently turns on --domain at engine/flags.go:372), the request… | |||
| CVE-2026-9284 | high | 8.2 | 8.2 | 15d ago | The WooCommerce PayPal Payments plugin for WordPress is vulnerable to unauthorized order manipulation and information disclosure due to missing authorization checks on the `ppc-create-order` and `ppc… | |||
| CVE-2026-48235 | high | 8.2 | 8.2 | 16d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in incs/remotes.inc.php where latitude, longitude, callsign, mph, altitude, and timestamp values parsed from external GPS tracki… | |||
| CVE-2026-34926 | medium | 6.7 | 8.2 | 16d ago | Trend Micro Apex One (on-premise) contains a directory traversal vulnerability that could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to depl… | |||
| CVE-2026-9057 | high | 8.2 | 8.2 | 18d ago | A broken access control issue has been identified in the Talend Administration Center, that allows a user with “View” permission to modify the Talend Studio update URL. This issue was resolved in a p… | |||
| CVE-2026-0966 | high | 8.2 | 8.2 | 19d ago | Moderate: libssh security update | |||
| CVE-2026-45327 | high | 8.2 | 8.2 | 19d ago | TinyIce is a streaming server for audio and video. In versions 0.8.95 through 2.4.1, missing authentication on WebRTC ingest endpoint allows unauthenticated stream injection. Version 2.5.0 fixes the … | |||
| CVE-2026-45302 | high | 8.2 | 8.2 | 19d ago | parse-nested-form-data is a tiny node module for parsing FormData by name into objects and arrays. Prior to version 1.0.1, parseFormData() walks bracket and dot-notation FormData field names into nes… | |||
| CVE-2026-45627 | high | 8.2 | 8.2 | 19d ago | Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1.19.0, the unauthenticated GET /api/app-images/logo endpoint reflects a user-supplied color query param… | |||
| CVE-2026-46510 | high | 8.2 | 8.2 | 19d ago | form-data-objectizer converts FormData to object. Prior to 1.0.1, form-data-objectizer walks bracket-notation form keys (e.g. name[sub]) into nested objects without filtering __proto__, constructor, … | |||
| CVE-2026-46720 | high | 8.2 | 8.2 | 20d ago | Net::Statsd::Tiny versions before 0.3.8 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources c… | |||
| CVE-2026-46728 | high | 8.2 | 8.2 | 21d ago | Das U-Boot before 2026.04 allows FIT (Flat Image Tree) signature verification bypass because hashed-nodes is omitted from a hash. | |||
| CVE-2026-8657 | high | 8.2 | 8.2 | 22d ago | Versions of the package jsondiffpatch before 0.7.6 are vulnerable to Prototype Pollution via the jsondiffpatch.patch() and jsondiffpatch/formatters/jsonpatch.patch() APIs. An attacker can perform pro… | |||
| CVE-2026-34253 | high | 8.2 | 8.2 | 22d ago | A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. This vulnerability occurs in the remote control fu… | |||
| CVE-2026-46509 | high | 8.2 | 8.2 | 23d ago | deepobj provides get, set, delete deep objects in javascript. Prior to 1.0.3, prototype pollution is possible when property paths contain __proto__/constructor/prototype. The property path must not b… | |||
| CVE-2026-42591 | high | 8.2 | 8.2 | 23d ago | Gotenberg has a Server-Side Request Forgery (SSRF) Issue | |||
| CVE-2026-42590 | high | 8.2 | 8.2 | 23d ago | Gotenberg's ExifTool group-prefix syntax bypasses dangerous-tag blocklist | |||
| CVE-2026-40893 | high | 8.2 | 8.2 | 23d ago | Gotenberg has an ExifTool Dangerous Tag Blocklist Bypass via Group-Prefixed Tag Names that Allows Arbitrary File Rename and Move | |||
| CVE-2026-41249 | high | 8.2 | 8.2 | 23d ago | CoreShop is a Pimcore enhanced eCommerce solution. In versions 5.0.1 through 5.1.0-beta.1,, the GitHub Actions workflow (`.github/workflows/static.yml`) uses the `pull_request_target` trigger but dan… | |||
| CVE-2026-5395 | high | 8.2 | 8.2 | 24d ago | The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including,… | |||
| CVE-2026-5396 | high | 8.2 | 8.2 | 24d ago | The Fluent Forms plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to, and including, 6.1.21. This is due to the SubmissionPolicy class authori… | |||
| CVE-2026-32992 | high | 8.2 | 8.2 | 24d ago | SSL verification is disabled in the DNS Cluster system. This could allow for a malicious server to man-in-the-middle the request and capture credentials. | |||
| CVE-2026-26289 | high | 8.2 | 8.2 | 25d ago | PowerSYSTEM Center REST API endpoint for device account export allows an authenticated user with limited permissions to expose sensitive information normally restricted to administrative permissions … | |||
| CVE-2026-44403 | high | 7.2 | 8.2 | 25d ago | Wing FTP Server before 8.1.3 contains an authenticated remote code execution vulnerability in the session serialization mechanism that allows authenticated administrators to inject arbitrary Lua code… |