CVEs from 2026
Total
14,785
critical
critical 1,335
high
high 5,005
medium
medium 4,828
low
low 503
% Critical
9.0%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 723
- firepower_threat_defense_software 310
- gcp 299
- firepower_threat_defense 298
- openclaw 172
- commerce 104
- netweaver_application_server_abap 102
- commerce_b2b 89
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-43929 | high | 8.2 | 8.2 | 25d ago | ssrfcheck Vulnerable to Server-Side Request Forgery (SSRF) and Incomplete List of Disallowed Inputs | |||
| CVE-2026-33833 | high | 8.2 | 8.2 | 25d ago | Improper neutralization of special elements in output used by a downstream component ('injection') in Azure Machine Learning allows an unauthorized attacker to perform spoofing over a network. | |||
| CVE-2026-43993 | high | 8.2 | 8.2 | 25d ago | JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify called fetch() on agent-supplied URLs without validating scheme, port, or reso… | |||
| CVE-2026-42260 | high | 8.2 | 8.2 | 25d ago | open-websearch has SSRF in `fetchWebContent` MCP tool: bracketed IPv6 literals and non-resolving hostname check bypass `isPrivateOrLocalHostname` | |||
| CVE-2026-35071 | high | 8.2 | 8.2 | 25d ago | Dell PowerScale InsightIQ, versions 6.0.0 through 6.2.0, contains an improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability. A high privileged attack… | |||
| CVE-2026-41713 | high | 8.2 | 8.2 | 26d ago | Spring AI: Prompt Injection via Memory Poisoning in PromptChatMemoryAdvisor | |||
| CVE-2026-39432 | high | 8.2 | 8.2 | 26d ago | Missing Authorization vulnerability in Arraytics Timetics allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Timetics: from n/a through 1.0.53. | |||
| CVE-2026-34259 | high | 8.2 | 8.2 | 26d ago | Due to an OS Command Execution vulnerability in SAP Forecasting & Replenishment, an authenticated attacker with administrative authorizations could abuse a non-remote-enabled function to execute arbi… | |||
| CVE-2026-43893 | high | 8.2 | 8.2 | 26d ago | exiftool-vendored vulnerable to argument injection via newline characters in tag names | |||
| CVE-2026-43886 | high | 8.2 | 8.2 | 26d ago | Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.6.1, a logic error in OAuthInterface.validateScope() uses Array.some() to validate requested OAuth scopes, causing t… | |||
| CVE-2026-42564 | high | 8.2 | 8.2 | 26d ago | jotty·page is a self-hosted app for your checklists and notes. Prior to 1.22.0, an unauthenticated path traversal vulnerability exists in /api/app-icons/[filename]. The filename route parameter is jo… | |||
| CVE-2026-41432 | high | 8.2 | 8.2 | 29d ago | New API: Stripe Webhook Signature Bypass via Empty Secret Enables Unlimited Quota Fraud | |||
| CVE-2026-42353 | high | 8.2 | 8.2 | 29d ago | i18next-http-middleware has path traversal / SSRF via user-controlled language and namespace parameters | |||
| CVE-2026-41693 | high | 8.2 | 8.2 | 29d ago | i18next-fs-backend: Path traversal via unsanitised lng/ns allows arbitrary file read/overwrite | |||
| CVE-2026-29972 | high | 8.2 | 8.2 | 29d ago | nanoMODBUS through v1.22.0 has a stack-based buffer overflow in recv_read_registers_res() in nanomodbus.c. When a client calls nmbs_read_holding_registers() or nmbs_read_input_registers(), the librar… | |||
| CVE-2026-43466 | high | 8.2 | 8.2 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix DMA FIFO desync on error CQE SQ recovery In case of a TX error CQE, a recovery flow is triggered, mlx5e_reset_txqs… | |||
| CVE-2026-43452 | high | 8.2 | 8.2 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: guard option walkers against 1-byte tail reads When the last byte of options is a non-single-byte option kin… | |||
| CVE-2026-43365 | high | 8.2 | 8.2 | 29d ago | In the Linux kernel, the following vulnerability has been resolved: xfs: fix undersized l_iclog_roundoff values If the superblock doesn't list a log stripe unit, we set the incore log roundoff valu… | |||
| CVE-2026-34327 | high | 8.2 | 8.2 | 1mo ago | Externally controlled reference to a resource in another sphere in Microsoft Partner Center allows an unauthorized attacker to perform spoofing over a network. | |||
| CVE-2026-45137 | high | 8.2 | 8.2 | 1mo ago | Anchor is a framework providing several convenient developer tools for writing Solana programs. From 1.0.0 to before 1.0.2, an logic error causes anchor programs to accept any program id when requiri… | |||
| CVE-2026-43233 | high | 8.2 | 8.2 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read in decode_choice() In decode_choice(), the boundary check before get_len() uses the va… | |||
| CVE-2026-43190 | high | 8.2 | 8.2 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_tcpmss: check remaining length before reading optlen Quoting reporter: In net/netfilter/xt_tcpmss.c (lines 53-68)… | |||
| CVE-2026-39852 | high | 8.2 | 8.2 | 1mo ago | Quarkus has Authentication/Authorization bypasses | |||
| CVE-2026-35091 | high | 8.2 | 8.2 | 1mo ago | A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User… | |||
| CVE-2026-40912 | high | 8.2 | 8.2 | 1mo ago | Traefik has an StripPrefixRegex Middleware Authorization Bypass via Path/RawPath Desync | |||
| CVE-2026-41670 | high | 8.2 | 8.2 | 1mo ago | Admidio Sends SAML Response to Unvalidated Assertion Consumer Service URL from AuthnRequest | |||
| CVE-2026-41669 | high | 8.2 | 8.2 | 1mo ago | Admidio Ignores SAML Signature Validation Result, Processes Forged AuthnRequests and LogoutRequests | |||
| CVE-2026-28221 | high | 8.2 | 8.2 | 1mo ago | Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.8.0 to before version 4.14.4, a stack-based buffer overflow exists in print_hex_string() i… | |||
| CVE-2026-41394 | high | 8.2 | 8.2 | 1mo ago | OpenClaw: Unauthenticated plugin-auth HTTP routes receive operator runtime scopes | |||
| CVE-2026-38651 | high | 8.2 | 8.2 | 1mo ago | Netmaker does not verify JWT signatures for host tokens | |||
| CVE-2026-5944 | high | 8.2 | 8.2 | 1mo ago | An improper access control vulnerability exists in the Cisco Intersight Device Connector for Nutanix Prism Central. The service exposes an API passthrough endpoint on TCP port 7373 that is accessible… | |||
| CVE-2026-41604 | high | 8.2 | 8.2 | 1mo ago | Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue. | |||
| CVE-2026-40022 | high | 8.2 | 8.2 | 1mo ago | Apache Camel Vulnerable to Authentication Bypass Using an Alternate Path or Channel | |||
| CVE-2026-41326 | high | 8.2 | 8.2 | 1mo ago | Kata Container has CopyFile Policy Subversion via Symlinks | |||
| CVE-2026-31631 | high | 8.2 | 8.2 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix buffer overread in rxgk_do_verify_authenticator() Fix rxgk_do_verify_authenticator() to check the buffer size before c… | |||
| CVE-2026-41309 | high | 8.2 | 8.2 | 1mo ago | Open Source Social Network (OSSN) is open-source social networking software developed in PHP. Versions prior to 9.0 are vulnerable to resource exhaustion. An attacker can upload a specially crafted i… | |||
| CVE-2026-31476 | high | 8.2 | 8.2 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: ksmbd: do not expire session on binding failure When a multichannel session binding request fails (e.g. wrong password), the erro… | |||
| CVE-2026-41145 | high | 8.2 | 8.2 | 2mo ago | MinIO has an Unauthenticated Object Write via Query-String Credential Signature Bypass in Unsigned-Trailer Uploads | |||
| CVE-2026-40344 | high | 8.2 | 8.2 | 2mo ago | MinIO has an Unauthenticated Object Write via Missing Signature Verification in Unsigned-Trailer Uploads | |||
| CVE-2026-41059 | high | 8.2 | 8.2 | 2mo ago | OAuth2 Proxy has an Authentication Bypass via Fragment Confusion in skip_auth_routes and skip_auth_regex | |||
| CVE-2026-6823 | high | 8.2 | 8.2 | 2mo ago | HKUDS OpenHarness prior to PR #147 remediation contains an insecure default configuration vulnerability where remote channels inherit allow_from = ["*"] permitting arbitrary remote senders to pass ad… | |||
| CVE-2026-4740 | high | 8.2 | 8.2 | 2mo ago | A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Management (ACM). Improper validation of Kubernetes client certificate renewal allows a managed c… | |||
| CVE-2026-23459 | high | 8.2 | 8.2 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: ip_tunnel: adapt iptunnel_xmit_stats() to NETDEV_PCPU_STAT_DSTATS Blamed commits forgot that vxlan/geneve use udp_tunnel[6]_xmit_… | |||
| CVE-2026-23456 | high | 8.2 | 8.2 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case In decode_int(), the CONS case calls get_bits(bs, 2) to read… | |||
| CVE-2026-4984 | high | 8.2 | 8.2 | 2mo ago | The Twilio integration webhook handler accepts any POST request without validating Twilio's 'X-Twilio-Signature'. When processing media messages, it fetches user-controlled URLs ('MediaUrlN' paramet… | |||
| CVE-2026-24031 | high | 8.2 | 8.2 | 2mo ago | Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin. This vulnerability allows bypassing authentication for any user and user enumeration. Do not clear auth_… | |||
| CVE-2026-31921 | high | 8.2 | 8.2 | 2mo ago | Missing Authorization vulnerability in Devteam HaywoodTech Product Rearrange for WooCommerce products-rearrange-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.Thi… | |||
| CVE-2026-24063 | high | 8.2 | 8.2 | 3mo ago | When a plugin is installed using the Arturia Software Center (MacOS), it also installs an uninstall.sh bash script in a root owned path. This script is written to disk with the file permissions 777, … | |||
| CVE-2026-28135 | high | 8.2 | 8.2 | 3mo ago | Inclusion of Functionality from Untrusted Control Sphere vulnerability in WP Royal Royal Elementor Addons royal-elementor-addons allows Accessing Functionality Not Properly Constrained by ACLs.This i… | |||
| CVE-2026-11416 | high | 8.1 | 8.1 | 1d ago | MoviePilot contains a path traversal vulnerability in the AliPan, U115, and Rclone cloud storage download handlers where the local destination path is constructed by concatenating the configured down… | |||
| CVE-2026-45749 | high | 8.1 | 8.1 | 1d ago | Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The `POST /users/totp/disable` and `POST /users/totp/backup-codes` endpoints in Termix pr… | |||
| CVE-2026-45743 | high | 8.1 | 8.1 | 1d ago | Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. 16 file-manager endpoints in Termix prior to version 2.3.2 do not verify that the request… | |||
| CVE-2026-11231 | high | 8.1 | 8.1 | 2d ago | Inappropriate implementation in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a malicious file. (Chromium security severity: Low) | |||
| CVE-2026-11224 | high | 8.1 | 8.1 | 2d ago | Use after free in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Low) | |||
| CVE-2026-11185 | high | 8.1 | 8.1 | 2d ago | Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome … | |||
| CVE-2026-11170 | high | 8.1 | 8.1 | 2d ago | Inappropriate implementation in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to perform OS-level privilege escalation via malicious network traffic. (Chromium… | |||
| CVE-2026-11169 | high | 8.1 | 8.1 | 2d ago | Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted XML file. (Chromium security severity: M… | |||
| CVE-2026-11111 | high | 8.1 | 8.1 | 2d ago | Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium) | |||
| CVE-2026-10930 | high | 8.1 | 8.1 | 2d ago | Out of bounds read in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-10887 | high | 8.1 | 8.1 | 2d ago | Use after free in Chromoting in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical) | |||
| CVE-2026-48681 | high | 8.1 | 8.1 | 3d ago | OpenStack Ironic through before 35.0.2 allows file overwrite via directory traversal during deployment with a crafted ISO image. | |||
| CVE-2026-35081 | high | 8.1 | 8.1 | 4d ago | The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-supplied input. | |||
| CVE-2026-35080 | high | 8.1 | 8.1 | 4d ago | The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input. | |||
| CVE-2026-35079 | high | 8.1 | 8.1 | 4d ago | The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input. | |||
| CVE-2026-35078 | high | 8.1 | 8.1 | 4d ago | The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input. | |||
| CVE-2026-35077 | high | 8.1 | 8.1 | 4d ago | The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input. | |||
| CVE-2026-35076 | high | 8.1 | 8.1 | 4d ago | The bac-scanresult method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input. | |||
| CVE-2026-36603 | high | 8.1 | 8.1 | 4d ago | Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 exposes 15 of 18 UPnP IGD actions without authentication on port 1900, including AddPortMapping and GetExternalIPAddress. UPnP is enabl… | |||
| CVE-2026-44654 | high | 8.1 | 8.1 | 4d ago | LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, a shared-agent editor can delete file records through `DELETE /api/files` that the o… | |||
| CVE-2026-42211 | high | 8.1 | 8.1 | 4d ago | React Router is a router for React. In versions 7.0.0 through 7.14.1, when using Framework Mode, a combination of steps could potentially allow unauthorized remote code execution (RCE) through extern… | |||
| CVE-2026-7195 | high | 8.1 | 8.1 | 4d ago | CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x through 14.3.x, 14.4.x before 14.4.8152, 15.0.x before 15.0.8234, 15.1.x before 15.1.8335, 15.2.x before 15.2.8441, 15.… | |||
| CVE-2026-39555 | high | 8.1 | 8.1 | 4d ago | Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. This issue affects Askka: from n/a through 1.3.1. | |||
| CVE-2026-39553 | high | 8.1 | 8.1 | 4d ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Select-Themes WaveRide allows PHP Local File Inclusion. This issue affects Wa… | |||
| CVE-2026-39552 | high | 8.1 | 8.1 | 4d ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Code Supply Co. Blueprint allows PHP Local File Inclusion. This issue affects… | |||
| CVE-2026-39551 | high | 8.1 | 8.1 | 5d ago | Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1. | |||
| CVE-2026-39550 | high | 8.1 | 8.1 | 5d ago | Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6. | |||
| CVE-2026-5422 | high | 8.1 | 8.1 | 5d ago | A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.… | |||
| CVE-2026-49121 | high | 8.1 | 8.1 | 5d ago | AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerability in the MessageQueue.recv() function within shm_broadcast.py that allows unauthenticate… | |||
| CVE-2026-45281 | high | 8.1 | 8.1 | 5d ago | Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, with the knowledge of other users’ principal URL an… | |||
| CVE-2026-41013 | high | 8.1 | 8.1 | 5d ago | Input validation bypass in SMB volume mount handling in CloudFoundry Foundation diego-release allows low-privileged CF space developer to inject arbitrary kernel CIFS mount options via bypassing the … | |||
| CVE-2026-45156 | high | 8.1 | 8.1 | 5d ago | Nextcloud is an open source content collaboration platform. From versions 0.3.0 to before 3.1.0, 5.0.0 to before 5.1.0, and 6.0.0 to before 6.4.0, a missing signature verification in User OIDC allowe… | |||
| CVE-2026-44825 | high | 8.1 | 8.1 | 6d ago | Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enable) in Apache Solr versions 9.4.0 through 9.10.1 and 10.0.0 allows a remote attacker to gain full administrative access… | |||
| CVE-2026-42588 | high | 8.1 | 8.1 | 6d ago | Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic exposes th… | |||
| CVE-2026-8796 | high | 8.1 | 8.1 | 6d ago | Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input. In Perl/Decoder/srl_decoder.c, srl_read_object() and srl_read_hash() process a COPY tag, a back-refere… | |||
| CVE-2026-49490 | high | 8.1 | 8.1 | 7d ago | OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid filter handling that allows authenticated attackers to inject SQL through crafted filters targeting the non-filterable… | |||
| CVE-2026-47740 | high | 8.1 | 8.1 | 8d ago | Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, Multiple Filament actions on the admin Order detail and Order shipments table were callable by an authenticated low-privilege user withou… | |||
| CVE-2026-44237 | high | 8.1 | 8.1 | 8d ago | FreePBX is an open source IP PBX. Prior to 17.0.8, the FreePBX api module's OAuth2 implementation does not sufficiently validate client credentials during token issuance. Knowledge of a valid client_… | |||
| CVE-2026-6075 | high | 8.1 | 8.1 | 9d ago | The Media Library Assistant plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.35 This is due to missing nonce verification on the bulk action handle… | |||
| CVE-2026-9964 | high | 8.1 | 8.1 | 9d ago | Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Ex… | |||
| CVE-2026-45344 | high | 8.1 | 8.1 | 9d ago | LinkAce is a self-hosted archive to collect website links. Prior to 2.5.6, the setup database configuration flow on uninitialized LinkAce instances accepts attacker-controlled database credential fie… | |||
| CVE-2026-46828 | high | 8.1 | 8.1 | 9d ago | Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability all… | |||
| CVE-2026-35277 | high | 8.1 | 8.1 | 9d ago | Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network acc… | |||
| CVE-2026-44394 | high | 8.1 | 8.1 | 9d ago | An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone federated token rescoping mechanism does not propagate the original token's expiry to the newly issued token. When a federate… | |||
| CVE-2026-9095 | high | 8.1 | 8.1 | 9d ago | Casdoor versions 2.362.0 and earlier map SAML assertions to user sessions without replay protection. The ParseSamlResponse() function in object/saml_sp.go calls sp.RetrieveAssertionInfo() and immedia… | |||
| CVE-2026-46232 | high | 8.1 | 8.1 | 10d ago | In the Linux kernel, the following vulnerability has been resolved: HID: playstation: Clamp num_touch_reports A device would never lie about the number of touch reports would it? If it does the lo… | |||
| CVE-2026-46138 | high | 8.1 | 8.1 | 10d ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt hci_le_create_big_complete_evt() iterates … | |||
| CVE-2026-6455 | high | 8.1 | 8.1 | 10d ago | The WP Contact Form 7 DB Handler plugin for WordPress is vulnerable to Cross-Site Request Forgery leading to Arbitrary File Deletion via SQL Injection and PHP Object Injection in versions up to and i… | |||
| CVE-2026-46402 | high | 8.1 | 8.1 | 10d ago | Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO uses the user-controlled task_name value directly when constructing se… | |||
| CVE-2026-48064 | high | 8.1 | 8.1 | 10d ago | pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.1, when a PAM service is configured with deny_remote=false in pam_usb (commonly done for display manage… | |||
| CVE-2026-48149 | high | 8.1 | 8.1 | 10d ago | Budibase is an open-source low-code platform. Prior to 3.39.0, the Budibase Text component renders markdown by assigning marked.parse(markdown) straight to innerHTML with no sanitizer (packages/bbui/… |