CVEs from 2026
Total
13,506
critical
critical 1,178
high
high 4,304
medium
medium 4,191
low
low 452
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 417
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 166
- commerce 104
- commerce_b2b 89
- magento 74
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-34479 | high | 7.5 | 7.5 | 2mo ago | Apache Log4j 1 to Log4j 2 bridge: silent log event loss in Log4j1XmlLayout due to unescaped XML 1.0 forbidden characters | |||
| CVE-2026-39304 | high | 7.5 | 7.5 | 2mo ago | Apache ActiveMQ: Denial of Service via Out of Memory vulnerability | |||
| CVE-2026-5447 | high | 7.5 | 7.5 | 2mo ago | Heap buffer overflow in CertFromX509 via AuthorityKeyIdentifier size confusion. A heap buffer overflow occurs when converting an X.509 certificate internally due to incorrect size handling of the Aut… | |||
| CVE-2026-34486 | high | 7.5 | 7.5 | 2mo ago | Apache Tomcat Missing Encryption of Sensitive Data vulnerability | |||
| CVE-2026-1584 | high | 7.5 | 7.5 | 2mo ago | A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted ClientHello message with an invalid Pre-Shared Key (PSK) binder value duri… | |||
| CVE-2026-40069 | high | 7.5 | 7.5 | 2mo ago | bsv-sdk ARC broadcaster treats INVALID/MALFORMED/ORPHAN responses as successful broadcasts | |||
| CVE-2026-27135 | high | 7.5 | 7.5 | 2mo ago | RHSA-2026:8339: nodejs:20 security update (Important) | |||
| CVE-2026-28390 | high | 7.5 | 7.5 | 2mo ago | Issue summary: During processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-contr… | |||
| CVE-2026-28389 | high | 7.5 | 7.5 | 2mo ago | Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlle… | |||
| CVE-2026-28388 | high | 7.5 | 7.5 | 2mo ago | Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the required CRL Number extension is missing. Impact summary: A … | |||
| CVE-2026-39364 | high | 7.5 | 7.5 | 2mo ago | Vite: `server.fs.deny` bypassed with queries | |||
| CVE-2026-39363 | high | 7.5 | 7.5 | 2mo ago | Vite Vulnerable to Arbitrary File Read via Vite Dev Server WebSocket | |||
| CVE-2026-35485 | high | 7.5 | 7.5 | 2mo ago | text-generation-webui is an open-source web interface for running Large Language Models. Prior to 4.3, an unauthenticated path traversal vulnerability in load_grammar() allows reading any file on the… | |||
| CVE-2026-31842 | high | 7.5 | 7.5 | 2mo ago | Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs.c. The is_chunked_transfer() function u… | |||
| CVE-2026-35172 | high | 7.5 | 7.5 | 2mo ago | Distribution: stale blob access resurrection via repo-scoped redis descriptor cache invalidation | |||
| CVE-2026-35209 | high | 7.5 | 7.5 | 2mo ago | defu: Prototype pollution via `__proto__` key in defaults argument | |||
| CVE-2026-34992 | high | 7.5 | 7.5 | 2mo ago | Antrea has Missing Encryption of Sensitive Data | |||
| CVE-2026-5585 | high | 7.5 | 7.5 | 2mo ago | A vulnerability was found in Tencent AI-Infra-Guard 4.0. The affected element is an unknown function of the file common/websocket/task_manager.go of the component Task Detail Endpoint. Performing a m… | |||
| CVE-2026-5571 | high | 7.5 | 7.5 | 2mo ago | A vulnerability was identified in Technostrobe HI-LED-WR120-G2 5.5.0.1R6.03.30. The impacted element is an unknown function of the file /fs of the component Configuration Data Handler. Such manipulat… | |||
| CVE-2026-5549 | high | 7.5 | 7.5 | 2mo ago | A vulnerability was determined in Tenda AC10 16.03.10.10_multi_TDE01. Affected by this issue is some unknown functionality of the file /webroot_ro/pem/privkeySrv.pem of the component RSA 2048-bit Pri… | |||
| CVE-2026-35468 | high | 7.5 | 7.5 | 2mo ago | nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers as… | |||
| CVE-2026-33184 | high | 7.5 | 7.5 | 2mo ago | nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, the discovery handler accepts a peer-controll… | |||
| CVE-2026-23453 | high | 7.5 | 7.5 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: Fix memory leak in XDP_DROP for non-zero-copy mode Page recycling was removed from the XDP_DROP path in em… | |||
| CVE-2026-23451 | high | 7.5 | 7.5 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: bonding: prevent potential infinite loop in bond_header_parse() bond_header_parse() can loop if a stack of two bonding devices is… | |||
| CVE-2026-32145 | high | 7.5 | 7.5 | 2mo ago | wisp has Allocation of Resources Without Limits or Throttling | |||
| CVE-2026-27018 | high | 7.5 | 7.5 | 2mo ago | Gotenberg has Chromium deny-list bypass via case-insensitive URL scheme (bypass of GHSA-rh2x-ccvw-q7r3) in github.com/gotenberg/gotenberg | |||
| CVE-2026-4959 | high | 7.5 | 7.5 | 2mo ago | A vulnerability was found in OpenBMB XAgent 1.0.0. This impacts the function check_user of the file XAgentServer/application/websockets/share.py of the component ShareServer WebSocket Endpoint. Perfo… | |||
| CVE-2026-32983 | high | 7.5 | 7.5 | 2mo ago | Wazuh Manager authd service in wazuh-manager packages through version 4.7.3 contains an improper restriction of client-initiated SSL/TLS renegotiation vulnerability that allows remote attackers to ca… | |||
| CVE-2026-27880 | high | 7.5 | 7.5 | 2mo ago | The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-memory crashes. | |||
| CVE-2026-2100 | high | 7.5 | 7.5 | 2mo ago | Moderate: p11-kit security update | |||
| CVE-2026-32846 | high | 7.5 | 7.5 | 2mo ago | OpenClaw is vulnerable to Path Traversal through path validation bypass | |||
| CVE-2026-4652 | high | 7.5 | 7.5 | 2mo ago | On a system exposing an NVMe/TCP target, a remote client can trigger a kernel panic by sending a CONNECT command for an I/O queue with a bogus or stale CNTLID. An attacker with network access to the… | |||
| CVE-2026-4247 | high | 7.5 | 7.5 | 2mo ago | When a challenge ACK is to be sent tcp_respond() constructs and sends the challenge ACK and consumes the mbuf that is passed in. When no challenge ACK should be sent the function returns and leaks t… | |||
| CVE-2026-32546 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in StellarWP Restrict Content restrict-content allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Restrict Content: from n/… | |||
| CVE-2026-32515 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Miraculous: from n/a through < 2.1… | |||
| CVE-2026-32485 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in weDevs WP User Frontend wp-user-frontend allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP User Frontend: from n/a t… | |||
| CVE-2026-27073 | high | 7.5 | 7.5 | 2mo ago | Use of Hard-coded Credentials vulnerability in Addi Addi – Cuotas que se adaptan a ti buy-now-pay-later-addi allows Password Recovery Exploitation.This issue affects Addi – Cuotas que se adaptan a ti… | |||
| CVE-2026-25397 | high | 7.5 | 7.5 | 2mo ago | Path Traversal: '.../...//' vulnerability in Snowray Software File Uploader for WooCommerce file-uploader-for-woocommerce allows Path Traversal.This issue affects File Uploader for WooCommerce: from … | |||
| CVE-2026-25396 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in CoderPress Commerce Coinbase For WooCommerce commerce-coinbase-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issu… | |||
| CVE-2026-25317 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in tychesoftwares Print Invoice & Delivery Notes for WooCommerce woocommerce-delivery-notes allows Exploiting Incorrectly Configured Access Control Security Levels… | |||
| CVE-2026-25002 | high | 7.5 | 7.5 | 2mo ago | Authentication Bypass Using an Alternate Path or Channel vulnerability in ThimPress LearnPress – Sepay Payment learnpress-sepay-payment allows Authentication Abuse.This issue affects LearnPress – Sep… | |||
| CVE-2026-24382 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in wproyal News Magazine X news-magazine-x allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects News Magazine X: from n/a thr… | |||
| CVE-2026-24372 | high | 7.5 | 7.5 | 2mo ago | Authentication Bypass by Spoofing vulnerability in WP Swings Subscriptions for WooCommerce subscriptions-for-woocommerce allows Input Data Manipulation.This issue affects Subscriptions for WooCommerc… | |||
| CVE-2026-23977 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in WPFactory Helpdesk Support Ticket System for WooCommerce support-ticket-system-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security … | |||
| CVE-2026-22448 | high | 7.5 | 7.5 | 2mo ago | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in flexcubed PitchPrint pitchprint allows Path Traversal.This issue affects PitchPrint: from n/a through <… | |||
| CVE-2026-3104 | high | 7.5 | 7.5 | 2mo ago | A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and… | |||
| CVE-2026-1940 | high | 7.5 | 7.5 | 2mo ago | An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gst_wavparse_adtl_chunk() function. The patch added a size validation check lsize + 8 > size, but it does not account for the GST_… | |||
| CVE-2026-25075 | high | 7.5 | 7.5 | 2mo ago | strongSwan versions 4.5.0 prior to 6.0.5 contain an integer underflow vulnerability in the EAP-TTLS AVP parser that allows unauthenticated remote attackers to cause a denial of service by sending cra… | |||
| CVE-2026-33180 | high | 7.5 | 7.5 | 2mo ago | HAPI FHIR HTTP authentication leak in redirects | |||
| CVE-2026-31904 | high | 7.5 | 7.5 | 2mo ago | The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks b… | |||
| CVE-2026-31903 | high | 7.5 | 7.5 | 2mo ago | The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks b… | |||
| CVE-2026-33040 | high | 7.5 | 7.5 | 2mo ago | Gossipsub PRUNE.backoff Duration Overflow | |||
| CVE-2026-2645 | high | 7.5 | 7.5 | 2mo ago | In wolfSSL 5.8.2 and earlier, a logic flaw existed in the TLS 1.2 server state machine implementation. The server could incorrectly accept the CertificateVerify message before the ClientKeyExchange m… | |||
| CVE-2026-4424 | high | 7.5 | 7.5 | 2mo ago | Important: libarchive security update | |||
| CVE-2026-25312 | high | 7.5 | 7.5 | 2mo ago | Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime:… | |||
| CVE-2026-4111 | high | 7.5 | 7.5 | 2mo ago | Important: libarchive security update | |||
| CVE-2026-30345 | high | 7.5 | 7.5 | 3mo ago | A zip slip vulnerability in the Admin import functionality of CTFd v3.8.1-18-gdb5a18c4 allows attackers to write arbitrary files outside the intended directories via supplying a crafted import. | |||
| CVE-2026-23242 | high | 7.5 | 7.5 | 3mo ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer dereference in header processing If siw_get_hdr() returns -EINVAL before set_rx_fpdu_context… | |||
| CVE-2026-4271 | high | 7.5 | 7.5 | 3mo ago | A flaw was found in libsoup, a library for handling HTTP requests. This vulnerability, known as a Use-After-Free, occurs in the HTTP/2 server implementation. A remote attacker can exploit this by sen… | |||
| CVE-2026-4269 | high | 7.5 | 7.5 | 3mo ago | Improper S3 ownership verification in Bedrock AgentCore Starter Toolkit | |||
| CVE-2026-4193 | high | 7.5 | 7.5 | 3mo ago | A security vulnerability has been detected in D-Link DIR-823G 1.0.2B05. The affected element is the function GetDDNSSettings/GetDeviceDomainName/GetDeviceSettings/GetDMZSettings/GetFirewallSettings/G… | |||
| CVE-2026-32597 | high | 7.5 | 7.5 | 3mo ago | RHSA-2026:12176: fence-agents security update (Important) | |||
| CVE-2026-32062 | high | 7.5 | 7.5 | 3mo ago | OpenClaw voice-call media stream validated streams after upgrade, which could allow pre-start unauthenticated sockets to increase resource pressure | |||
| CVE-2026-28807 | high | 7.5 | 7.5 | 3mo ago | Wisp Vulnerable to Path Traversal | |||
| CVE-2026-26801 | high | 7.5 | 7.5 | 3mo ago | pdfmake is vulnerable to server-side request forgery (SSRF) | |||
| CVE-2026-2339 | high | 7.5 | 7.5 | 3mo ago | Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Remote Code Inclusion, Privilege Abuse, Command Injection.This … | |||
| CVE-2026-24696 | high | 7.5 | 7.5 | 3mo ago | The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks b… | |||
| CVE-2026-20882 | high | 7.5 | 7.5 | 3mo ago | The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks b… | |||
| CVE-2026-27778 | high | 7.5 | 7.5 | 3mo ago | The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks b… | |||
| CVE-2026-28039 | high | 7.5 | 7.5 | 3mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpDataTables wpDataTables wpdatatables allows PHP Local File Inclusion.This is… | |||
| CVE-2026-27386 | high | 7.5 | 7.5 | 3mo ago | Missing Authorization vulnerability in designthemes DesignThemes Directory Addon designthemes-directory-addon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affect… | |||
| CVE-2026-22479 | high | 7.5 | 7.5 | 3mo ago | Missing Authorization vulnerability in ThemeRuby Easy Post Submission easy-post-submission allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Post Submiss… | |||
| CVE-2026-0847 | high | 7.5 | 7.5 | 3mo ago | A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in multiple CorpusReader classes, including WordListCorpusReader, TaggedCorpusReader, and Brac… | |||
| CVE-2026-1876 | high | 7.5 | 7.5 | 3mo ago | Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a deni… | |||
| CVE-2026-1875 | high | 7.5 | 7.5 | 3mo ago | Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP versions 1.000 and prior allows a remote attacker to cause… | |||
| CVE-2026-1874 | high | 7.5 | 7.5 | 3mo ago | Always-Incorrect Control Flow Implementation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP versions 1.106 and prior and Mitsubishi Electr… | |||
| CVE-2026-3163 | high | 7.5 | 7.5 | 3mo ago | A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affects the function file_get_contents of the component URL Handler. The manipulation leads to server-s… | |||
| CVE-2026-1773 | high | 7.5 | 7.5 | 3mo ago | IEC 60870-5-104 used in RTU500: Potential Denial of Service impact on reception of invalid U-format frame. Product is only affected if IEC 60870-5-104 bi-directional functionality is configured. Enab… | |||
| CVE-2026-2970 | high | 7.5 | 7.5 | 3mo ago | datapizza-ai has unsafe deserialization via pickle.loads() in RedisCache | |||
| CVE-2026-22383 | high | 7.5 | 7.5 | 3mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes PawFriends - Pet Shop and Veterinary WordPress Theme pawfriends allows Exploiting Incorrectly Configured Access Control… | |||
| CVE-2026-22351 | high | 7.5 | 7.5 | 3mo ago | Missing Authorization vulnerability in Marcus (aka @msykes) WP FullCalendar wp-fullcalendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP FullCalendar:… | |||
| CVE-2026-2706 | high | 7.5 | 7.5 | 3mo ago | A flaw has been found in code-projects Patient Record Management System 1.0. This affects an unknown function of the file /fecalysis_not.php. This manipulation of the argument comp_id causes sql inje… | |||
| CVE-2026-25990 | high | 7.5 | 7.5 | 4mo ago | Pillow affected by out-of-bounds write when loading PSD images | |||
| CVE-2026-25639 | high | 7.5 | 7.5 | 4mo ago | Axios is Vulnerable to Denial of Service via __proto__ Key in mergeConfig | |||
| CVE-2026-0919 | high | 7.5 | 7.5 | 4mo ago | The HTTP parser of Tapo C210 v3, C220 v1 and C520WS v2 cameras improperly handles requests containing an excessively long URL path. An invalid‑URL error path continues into cleanup code that assumes … | |||
| CVE-2026-0918 | high | 7.5 | 7.5 | 4mo ago | The Tapo C100 v5, C220 v1 and C520WS v2 cameras’ HTTP service does not safely handle POST requests containing an excessively large Content-Length header. The resulting failed memory allocation trigge… | |||
| CVE-2026-24538 | high | 7.5 | 7.5 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in omnipressteam Omnipress omnipress allows PHP Local File Inclusion.This issue a… | |||
| CVE-2026-24531 | high | 7.5 | 7.5 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Select-Themes Prowess prowess allows PHP Local File Inclusion.This issue affec… | |||
| CVE-2026-24390 | high | 7.5 | 7.5 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in QantumThemes Kentha Elementor Widgets kentha-elementor allows PHP Local File I… | |||
| CVE-2026-23978 | high | 7.5 | 7.5 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Softwebmedia Gyan Elements gyan-elements allows PHP Local File Inclusion.This … | |||
| CVE-2026-23975 | high | 7.5 | 7.5 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in uxper Golo golo allows PHP Local File Inclusion.This issue affects Golo: from … | |||
| CVE-2026-22464 | high | 7.5 | 7.5 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wphocus My auctions allegro my-auctions-allegro-free-edition allows PHP Local … | |||
| CVE-2026-22401 | high | 7.5 | 7.5 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in pavothemes Freshio freshio allows PHP Local File Inclusion.This issue affects … | |||
| CVE-2026-23956 | high | 7.5 | 7.5 | 4mo ago | seroval affected by Denial of Service via RegExp serialization | |||
| CVE-2026-21945 | high | 7.5 | 7.5 | 4mo ago | RHSA-2026:4832: java-1.8.0-ibm security update (Important) | |||
| CVE-2026-1195 | high | 7.5 | 7.5 | 4mo ago | MineAdmin improperly refreshes tokens | |||
| CVE-2026-23850 | high | 7.5 | 7.5 | 4mo ago | SiYuan vulnerable to Arbitrary file Read / SSRF in github.com/siyuan-note/siyuan/kernel | |||
| CVE-2026-20921 | high | 7.5 | 7.5 | 5mo ago | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network. | |||
| CVE-2026-22190 | high | 7.5 | 7.5 | 5mo ago | The egg-mkfont utility in Panda3D versions up to and including 1.10.16 contains an uncontrolled format string vulnerability. The -gp (glyph pattern) command-line option is used directly as the format… | |||
| CVE-2026-48555 | high | 7.4 | 7.4 | 3d ago | Spatie Laravel Media Library before version 11.23.0 contains a server-side request forgery vulnerability that allows remote attackers to cause the server to issue arbitrary outbound HTTP requests by … |