CVEs from 2026
Total
14,122
critical
critical 1,246
high
high 4,695
medium
medium 4,473
low
low 488
% Critical
8.8%
% with KEV
0.4%
% with exploit
0.8%
Top vendors
Top products
- chrome 522
- firepower_threat_defense_software 300
- firepower_threat_defense 298
- gcp 247
- openclaw 172
- commerce 104
- netweaver_application_server_abap 102
- commerce_b2b 89
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44069 | low | 3.9 | 3.9 | 14d ago | An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information, modify limited data, or cause a minor service disruption vi… | |||
| CVE-2026-27964 | low | 3.9 | 3.9 | 27d ago | FacturaScripts vulnerable to Reflected Cross-Site Scripting (XSS) via Cookie Manipulation | |||
| CVE-2026-10299 | low | 3.8 | 3.8 | 2d ago | A weakness has been identified in code-projects Online Hospital Management System 1.0. This issue affects some unknown processing of the file viewdoctortimings.php. This manipulation of the argument … | |||
| CVE-2026-6816 | low | 3.8 | 3.8 | 6d ago | An access bypass vulnerability in Drupal TFA Basic Plugins allows users with the administer users permission to view or generate recovery codes for other users. This issue affects TFA Basic Plugins… | |||
| CVE-2026-44410 | low | 3.8 | 3.8 | 9d ago | This vulnerability stems from a business logic flaw.Attackers can exploit legitimate application functions in unintended and abnormal ways, deviating from the designer's expectations, to carry out ma… | |||
| CVE-2026-45683 | low | 3.8 | 3.8 | 16d ago | OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Java TLS ioctl probe reads user-controlled ioctl pointers with bpf_pr… | |||
| CVE-2026-6334 | low | 3.8 | 3.8 | 17d ago | Mattermost doesn't enforce client identity binding during the OAuth authorization code redemption flow | |||
| CVE-2026-6923 | low | 3.8 | 3.8 | 21d ago | A side-channel attack, which requires a physical presence to the TPM, can lead to extraction of an Elliptic Curve Diffie-Hellman (ECDH) key. | |||
| CVE-2026-33585 | low | 3.8 | 3.8 | 21d ago | Improper management of the idle timeout parameter in the Keycloak interface of the Arqit SKA-Platform enables an attacker to impersonate an authenticated tenant user via an unexpired browser session.… | |||
| CVE-2026-44459 | low | 3.8 | 3.8 | 22d ago | Hono has improper validation of NumericDate claims (exp, nbf, iat) in JWT verify() | |||
| CVE-2026-34094 | low | 3.8 | 3.8 | 23d ago | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Page/Article.Php. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2. | |||
| CVE-2026-44987 | low | 3.8 | 3.8 | 26d ago | SysReptor is a fully customizable pentest reporting platform. Prior to version 2026.29, users with "User Admin" permissions can change the email addresses of users with "Superuser" permissions. If th… | |||
| CVE-2026-4222 | low | 3.8 | 3.8 | 3mo ago | A vulnerability was determined in SSCMS up to 7.4.0. This vulnerability affects the function PathUtils.RemoveParentPath of the file /api/admin/plugins/install/actions/download. This manipulation of t… | |||
| CVE-2026-4044 | low | 3.8 | 3.8 | 3mo ago | A vulnerability was detected in projectsend up to r1945. This affects the function realpath of the file /import-orphans.php of the component Delete Handler. Performing a manipulation of the argument … | |||
| CVE-2026-22411 | low | 3.8 | 3.8 | 4mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Dolcino dolcino allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dolcino: fro… | |||
| CVE-2026-22409 | low | 3.8 | 3.8 | 4mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Justicia justicia allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Justicia: … | |||
| CVE-2026-22407 | low | 3.8 | 3.8 | 4mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Roam roam allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Roam: from n/a thr… | |||
| CVE-2026-22406 | low | 3.8 | 3.8 | 4mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Overton overton allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Overton: fro… | |||
| CVE-2026-22404 | low | 3.8 | 3.8 | 4mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Innovio innovio allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Innovio: fro… | |||
| CVE-2026-44546 | low | 3.7 | 3.7 | 15h ago | daphne before 4.2.2 reconstructs a raw HTTP request from Twisted's parsed headers and feeds it to autobahn for WebSocket handshake processing. Twisted does not treat \x0b, \x0c, \x1c, \x1d, \x1e, or … | |||
| CVE-2026-10300 | low | 3.7 | 3.7 | 2d ago | A security vulnerability has been detected in SGLang 0.5.10.post1. Impacted is an unknown function of the file python/sglang/srt/lora/lora_manager.py of the component Inference HTTP Endpoint. Such ma… | |||
| CVE-2026-5419 | low | 3.7 | 3.7 | 2d ago | RHSA-2026:20612: gnutls security update (Important) | |||
| CVE-2026-10216 | low | 3.7 | 3.7 | 3d ago | A vulnerability was detected in unitedbyai droidclaw up to 0.5.3. The affected element is an unknown function of the file server/src/routes/pairing.ts of the component claim Endpoint. The manipulatio… | |||
| CVE-2026-10169 | low | 3.7 | 3.7 | 4d ago | A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected by this vulnerability is the function ajax_forgot_pa… | |||
| CVE-2026-48524 | low | 3.7 | 3.7 | 7d ago | PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, PyJWKClient.get_signing_key() forces a fresh HTTP request to the JWKS endpoint for every JWT with an unknown kid value, with no ra… | |||
| CVE-2026-44474 | low | 3.7 | 3.7 | 8d ago | Ella Core has handover failures during concurrent Security Mode Command | |||
| CVE-2026-42791 | low | 3.7 | 3.7 | 8d ago | Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid. OCSP re… | |||
| CVE-2026-33552 | low | 3.7 | 3.7 | 8d ago | Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control. | |||
| CVE-2026-48852 | low | 3.7 | 3.7 | 9d ago | PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification. | |||
| CVE-2026-48847 | low | 3.7 | 3.7 | 9d ago | Roundcube Webmail 1.6.x before 1.6.16, and 1.7.x before 1.7.1 allows pre-authentication arbitrary file deletion via redis/memcache session poisoning bypass. | |||
| CVE-2026-9396 | low | 3.7 | 3.7 | 10d ago | A security flaw has been discovered in Besen BS20 EV Charging Station up to 20260426. Affected by this vulnerability is an unknown functionality of the component Firmware Version Check. The manipulat… | |||
| CVE-2026-9373 | low | 3.7 | 3.7 | 11d ago | A vulnerability has been found in JeecgBoot 3.9.1. This issue affects some unknown processing of the file /openapi/call/ of the component OpenAPI Endpoint. Such manipulation leads to improper authent… | |||
| CVE-2026-9370 | low | 3.7 | 3.7 | 11d ago | A weakness has been identified in ulisesbocchio jasypt-spring-boot up to 3.0.5/4.0.4. Affected by this vulnerability is the function getSecretKeySaltGenerator of the file jasypt-spring-boot/src/main/… | |||
| CVE-2026-9306 | low | 3.7 | 3.7 | 12d ago | A security vulnerability has been detected in QuantumNous new-api up to 0.12.1. This affects the function RelayMidjourneyImage/GetByOnlyMJId of the file router/relay-router.go of the component Midjou… | |||
| CVE-2026-7837 | low | 3.7 | 3.7 | 14d ago | A time-of-check time-of-use (TOCTOU) condition in the ad_flush function in Netatalk 3.0.0 through 4.4.2 involves root-privileged file operations, which may allow a remote attacker to cause limited da… | |||
| CVE-2026-44075 | low | 3.7 | 3.7 | 14d ago | A missing break statement in DSI OpenSession processing in Netatalk 1.5.0 through 4.4.2 causes a DSIOPT_ATTNQUANT switch case to fall through into DSIOPT_SERVQUANT, resulting in unintended session op… | |||
| CVE-2026-44074 | low | 3.7 | 3.7 | 14d ago | Netatalk 2.1.0 through 4.4.2 combines multiple errno values using bitwise OR, resulting in incorrect error codes when multiple error conditions occur simultaneously, which may allow a remote attacker… | |||
| CVE-2026-44071 | low | 3.7 | 3.7 | 14d ago | Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY_SOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of servic… | |||
| CVE-2026-45232 | low | 3.7 | 3.7 | 15d ago | Rsync versions before 3.4.3 contain an off-by-one out-of-bounds stack write vulnerability in the establish_proxy_connection() function in socket.c that allows network attackers to corrupt stack memor… | |||
| CVE-2026-8491 | low | 3.7 | 3.7 | 15d ago | Node view permissions module enables permissions "View own content" and "View any content" for each content type on permissions page The module doesn't sufficiently handle the case where a user is … | |||
| CVE-2026-8803 | low | 3.7 | 3.7 | 17d ago | A flaw has been found in opensourcepos Open Source Point of Sale up to 3.4.2. Impacted is the function Login of the file app/Models/Employee.php of the component Employee Login. This manipulation cau… | |||
| CVE-2026-44589 | low | 3.7 | 3.7 | 20d ago | nuxt-og-image SSRF — bypass of GHSA-pqhr-mp3f-hrpp / v6.2.5 fix (IPv6 + redirect) | |||
| CVE-2026-44582 | low | 3.7 | 3.7 | 21d ago | Next.js vulnerable to cache poisoning via collisions in React Server Component cache-busting | |||
| CVE-2026-44242 | low | 3.7 | 3.7 | 22d ago | Micronaut has Unbounded `bundleCache` in `ResourceBundleMessageSource` that Allows Memory Exhaustion via `Accept-Language` Header | |||
| CVE-2026-44219 | low | 3.7 | 3.7 | 22d ago | ciguard: SCA HTTP client reads response body without size cap | |||
| CVE-2026-43514 | low | 3.7 | 3.7 | 23d ago | Observable Timing Discrepancy vulnerability when comparing AJP secret in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M… | |||
| CVE-2026-42874 | low | 3.7 | 3.7 | 23d ago | Microdot has HTTP response splitting in Response.set_cookie() | |||
| CVE-2026-44996 | low | 3.7 | 3.7 | 23d ago | OpenClaw before 2026.4.15 contains an arbitrary local file read vulnerability in the webchat audio embedding helper that fails to apply local media root containment checks. Attackers can influence ag… | |||
| CVE-2026-8276 | low | 3.7 | 3.7 | 24d ago | bettercap Has an Integer Coercion Error in modules/mysql_server/mysql_server.go | |||
| CVE-2026-8275 | low | 3.7 | 3.7 | 24d ago | bettercap Has an Integer Coercion Error in the ippReadChunkedBody Function | |||
| CVE-2026-8242 | low | 3.7 | 3.7 | 25d ago | A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results… | |||
| CVE-2026-8196 | low | 3.7 | 3.7 | 25d ago | A flaw has been found in JeecgBoot 3.9.1. The impacted element is an unknown function of the file jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/system/controller/LoginControlle… | |||
| CVE-2026-8028 | low | 3.7 | 3.7 | 29d ago | A vulnerability was detected in FlowiseAI Flowise up to 3.0.12. This affects the function verify of the file packages/server/src/enterprise/services/account.service.ts of the component Endpoint. Perf… | |||
| CVE-2026-43863 | low | 3.7 | 3.7 | 1mo ago | mutt before 2.3.2 has an infinite loop in data_object_to_stream in crypt-gpgme.c. | |||
| CVE-2026-43862 | low | 3.7 | 3.7 | 1mo ago | In mutt before 2.3.2, the imap_auth_gss security level is mishandled. | |||
| CVE-2026-43861 | low | 3.7 | 3.7 | 1mo ago | mutt before 2.3.2 does not check for '\0' in url_pct_decode. | |||
| CVE-2026-43860 | low | 3.7 | 3.7 | 1mo ago | mutt before 2.3.2 sometimes truncates the hash_passwd by one byte for IMAP auth_cram MD5 digest. | |||
| CVE-2026-43859 | low | 3.7 | 3.7 | 1mo ago | mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP auth_cram MD5 digest. | |||
| CVE-2026-7689 | low | 3.7 | 3.7 | 1mo ago | Dolibarr has Insufficient Verification of Data Authenticity | |||
| CVE-2026-7671 | low | 3.7 | 3.7 | 1mo ago | A vulnerability has been found in CodeWise Tornet Scooter Mobile App 4.75 on iOS/Android. The impacted element is an unknown function of the file /TwoFactor. Such manipulation leads to improper restr… | |||
| CVE-2026-41263 | low | 3.7 | 3.7 | 1mo ago | Traefik: A timing side-channel vulnerability allows for valid username enumeration via BasicAuth middleware | |||
| CVE-2026-3832 | low | 3.7 | 3.7 | 1mo ago | RHSA-2026:20612: gnutls security update (Important) | |||
| CVE-2026-7303 | low | 3.7 | 3.7 | 1mo ago | xxl-job has a Resource Injection issue | |||
| CVE-2026-41913 | low | 3.7 | 3.7 | 1mo ago | OpenClaw: Concurrent async auth attempts can bypass the intended shared-secret rate-limit budget on Tailscale-capable paths | |||
| CVE-2026-7103 | low | 3.7 | 3.7 | 1mo ago | A vulnerability was determined in code-projects Chat System 1.0. Affected is an unknown function of the file update_user.php of the component MD5 Hash Handler. This manipulation of the argument Passw… | |||
| CVE-2026-7041 | low | 3.7 | 3.7 | 1mo ago | A vulnerability was detected in 666ghj MiroFish up to 0.1.2. The impacted element is an unknown function of the file /console of the component Werkzeug Debugger PIN Handler. Performing a manipulation… | |||
| CVE-2026-7020 | low | 3.7 | 3.7 | 1mo ago | Ollama is Vulnerable to Path Traversal | |||
| CVE-2026-6986 | low | 3.7 | 3.7 | 1mo ago | A security vulnerability has been detected in Cesanta Mongoose up to 7.20. This issue affects the function mg_aes_gcm_decrypt of the file /src/tls_aes128.c of the component GCM Authentication Tag Han… | |||
| CVE-2026-42040 | low | 3.7 | 3.7 | 1mo ago | Axios: Null Byte Injection via Reverse-Encoding in AxiosURLSearchParams | |||
| CVE-2026-41333 | low | 3.7 | 3.7 | 1mo ago | OpenClaw: Fake DeviceToken Bypasses Shared Auth Rate Limiting | |||
| CVE-2026-40279 | low | 3.7 | 3.7 | 1mo ago | BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, decode_signed32() in src/bacnet/bacint.c reconstructs a 32-bit signed integer from four APDU bytes … | |||
| CVE-2026-6610 | low | 3.7 | 3.7 | 2mo ago | A vulnerability has been found in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an unknown function of the file djangoblog/settings.py of the component Setting Handler. Such manipula… | |||
| CVE-2026-40194 | low | 3.7 | 3.7 | 2mo ago | phpseclib has a variable-time HMAC comparison in SSH2::get_binary_packet() using != instead of hash_equals() | |||
| CVE-2026-5682 | low | 3.7 | 3.7 | 2mo ago | A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation lea… | |||
| CVE-2026-5622 | low | 3.7 | 3.7 | 2mo ago | A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component J… | |||
| CVE-2026-5413 | low | 3.7 | 3.7 | 2mo ago | A vulnerability was identified in Newgen OmniDocs up to 12.0.00. Affected by this vulnerability is an unknown functionality of the file /omnidocs/GetWebApiConfiguration. The manipulation of the argum… | |||
| CVE-2026-5360 | low | 3.7 | 3.7 | 2mo ago | A vulnerability has been found in Free5GC 4.2.0. The affected element is an unknown function of the component aper. Such manipulation leads to type confusion. The attack may be launched remotely. Thi… | |||
| CVE-2026-4831 | low | 3.7 | 3.7 | 2mo ago | A security flaw has been discovered in kalcaddle kodbox 1.64. Impacted is the function can of the file /workspace/source-code/app/controller/explorer/auth.class.php of the component Password-protecte… | |||
| CVE-2026-4588 | low | 3.7 | 3.7 | 2mo ago | A vulnerability was determined in kalcaddle kodbox 1.64. Impacted is the function shareSafeGroup of the file /workspace/source-code/app/controller/explorer/shareOut.class.php of the component Site-le… | |||
| CVE-2026-4115 | low | 3.7 | 3.7 | 2mo ago | A vulnerability was detected in PuTTY 0.83. Affected is the function eddsa_verify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verific… | |||
| CVE-2026-4045 | low | 3.7 | 3.7 | 3mo ago | A flaw has been found in projectsend up to r1945. This impacts an unknown function of the file includes/Classes/Auth.php. Executing a manipulation of the argument ldap_email can lead to observable re… | |||
| CVE-2026-3963 | low | 3.7 | 3.7 | 3mo ago | A security flaw has been discovered in perfree go-fastdfs-web up to 1.3.7. This affects the function rememberMeManager of the file src/main/java/com/perfree/config/ShiroConfig.java of the component A… | |||
| CVE-2026-2968 | low | 3.7 | 3.7 | 3mo ago | A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function mg_chacha20_poly1305_decrypt of the file /src/tls_chacha20.c of the component Poly1305 Authentication Tag Handle… | |||
| CVE-2026-2967 | low | 3.7 | 3.7 | 3mo ago | A security vulnerability has been detected in Cesanta Mongoose up to 7.20. This affects the function getpeer of the file /src/net_builtin.c of the component TCP Sequence Number Handler. The manipulat… | |||
| CVE-2026-2966 | low | 3.7 | 3.7 | 3mo ago | A weakness has been identified in Cesanta Mongoose up to 7.20. The impacted element is the function mg_sendnsreq of the file /src/dns.c of the component DNS Transaction ID Handler. Executing a manipu… | |||
| CVE-2026-2215 | low | 3.7 | 3.7 | 4mo ago | A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue affects some unknown processing of the file core/auth.py of the component JWT Handler. Performing a manipulation of th… | |||
| CVE-2026-10775 | low | 3.6 | 3.6 | 6h ago | A vulnerability was determined in sgl-project SGLang up to 0.5.11. Affected by this vulnerability is the function data_hash of the component Cache Handler. This manipulation causes denial of service.… | |||
| CVE-2026-10766 | low | 3.6 | 3.6 | 9h ago | A vulnerability has been found in mlrun up to 1.12.0-rc3. This impacts the function mlrun.utils.helpers.calculate_dataframe_hash of the file mlrun/utils/helpers.py of the component DataFrame Hash Han… | |||
| CVE-2026-41962 | low | 3.6 | 3.6 | 20d ago | Permission control vulnerability in the app management and control module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2026-10567 | low | 3.5 | 3.5 | 2d ago | A security vulnerability has been detected in 1Panel-dev CordysCRM up to 1.4.1. This impacts the function Save of the file src/main/java/cn/cordys/crm/system/service/ModuleFormService.java of the com… | |||
| CVE-2026-45266 | low | 3.5 | 3.5 | 3d ago | Nextcloud is an open source content collaboration platform. Prior to versions 21.1.10, 22.0.11, and 23.0.3, a low-privileged user can force other user's microphones to be muted in calls when no High-… | |||
| CVE-2026-45159 | low | 3.5 | 3.5 | 3d ago | Nextcloud is an open source content collaboration platform. From versions 1.15.0 to before 1.15.4, 1.16.0 to before 1.16.3, 1.17.0 to before 1.17.1, and 1.18.0 to before 1.18.1, a malicious user with… | |||
| CVE-2026-10264 | low | 3.5 | 3.5 | 3d ago | A vulnerability was determined in lharries whatsapp-mcp 0.0.1. Affected by this vulnerability is the function SendMessageRequest of the file whatsapp-bridge/main.go of the component Send API Endpoint… | |||
| CVE-2026-10247 | low | 3.5 | 3.5 | 3d ago | A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This vulnerability affects the function create_generic_name of the file /ShowForm/create_generic_name/main. The ma… | |||
| CVE-2026-10246 | low | 3.5 | 3.5 | 3d ago | A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects the function create_medicine_presentation of the file /ShowForm/create_medicine_presentation/mai… | |||
| CVE-2026-10245 | low | 3.5 | 3.5 | 3d ago | A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this issue is the function create_supplier of the file /ShowForm/create_supplier/main. Executing a manipul… | |||
| CVE-2026-10244 | low | 3.5 | 3.5 | 3d ago | A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function create_medicine_name of the file /ShowForm/create_medicine_name/… | |||
| CVE-2026-10234 | low | 3.5 | 3.5 | 3d ago | A vulnerability was detected in Mettle sendportal up to 3.0.1. This affects an unknown part of the file /webview/ of the component Campaign Handler. The manipulation of the argument content results i… | |||
| CVE-2026-10228 | low | 3.5 | 3.5 | 3d ago | A vulnerability was found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. The impacted element is an unknown function of the file admission_form_chec… | |||
| CVE-2026-48191 | low | 3.5 | 3.5 | 3d ago | An incorrect handling of permissions in STORM powered by OTRS and in OTRS (2026.x and above) Document Search Article Meta Filters modules allows gaining knowledge about number of affected CIs, SLA an… |