CVEs from 2026
Total
13,520
critical
critical 1,179
high
high 4,314
medium
medium 4,203
low
low 456
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 418
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 166
- commerce 104
- commerce_b2b 89
- magento 74
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-24525 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in CloudPanel CLP Varnish Cache clp-varnish-cache allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CLP Varnish Cache: fro… | |||
| CVE-2026-24523 | medium | 5.3 | 5.3 | 4mo ago | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Marcus (aka @msykes) WP FullCalendar wp-fullcalendar allows Retrieve Embedded Sensitive Data.This issue aff… | |||
| CVE-2026-24380 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime:… | |||
| CVE-2026-24368 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through < 2.8.0. | |||
| CVE-2026-24366 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in YITHEMES YITH WooCommerce Request A Quote yith-woocommerce-request-a-quote allows Exploiting Incorrectly Configured Access Control Security Levels.This issue af… | |||
| CVE-2026-23974 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in uxper Golo golo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Golo: from n/a through < 1.7.5. | |||
| CVE-2026-22469 | medium | 5.3 | 5.3 | 4mo ago | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in mwtemplates DeepDigital deepdigital allows Code Injection.This issue affects DeepDigital: from n/a throu… | |||
| CVE-2026-22447 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in Select-Themes Prowess prowess allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Prowess: from n/a through <= 1.8.1. | |||
| CVE-2026-22445 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in Proptech Plugin Apimo Connector apimo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Apimo Connector: from n/a throu… | |||
| CVE-2026-22348 | medium | 5.3 | 5.3 | 4mo ago | Missing Authorization vulnerability in Tasos Fel Civic Cookie Control civic-cookie-control-8 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Civic Cookie Co… | |||
| CVE-2026-1196 | medium | 5.3 | 5.3 | 4mo ago | MineAdmin May Expose Sensitive Information to an Unauthorized Actor | |||
| CVE-2026-22486 | medium | 5.3 | 5.3 | 5mo ago | Missing Authorization vulnerability in Re Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Re Gallery: from n/a through 1.18.9. | |||
| CVE-2026-40001 | medium | 5.2 | 5.2 | 26d ago | There is a local privilege escalation vulnerability in the ZTE PROCESS Guard service of the cloud computer client, which may allow local arbitrary code execution, privilege escalation and path traver… | |||
| CVE-2026-42077 | medium | 5.2 | 5.2 | 28d ago | Evolver has Prototype Pollution via `Object.assign()` in its mailbox store operations | |||
| CVE-2026-41662 | medium | 5.2 | 5.2 | 1mo ago | Admidio Missing Minimum Administrator Check in Role Membership Removal | |||
| CVE-2026-35244 | medium | 5.2 | 5.2 | 1mo ago | Vulnerability in the Oracle Hyperion Infrastructure Technology product of Oracle Hyperion (component: Lifecycle Management). The supported version that is affected is 11.2.24.0.000. Easily exploita… | |||
| CVE-2026-32591 | medium | 5.2 | 5.2 | 2mo ago | A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an organization administrator configures an upstream registry for proxy caching, Quay makes a network connection to the spec… | |||
| CVE-2026-3503 | medium | 5.2 | 5.2 | 2mo ago | Protection mechanism failure in wolfCrypt post-quantum implementations (ML-KEM and ML-DSA) in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cry… | |||
| CVE-2026-47271 | medium | 5.1 | 5.1 | 5d ago | pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, src/mem.c implemented out-of-memory guards for xmalloc(), xrealloc(), and xstrdup() using assert(dat… | |||
| CVE-2026-2607 | medium | 5.1 | 5.1 | 5d ago | IBM MQ Operator SC2: v3.2.0 through 3.2.23CD: v3.3.0, v3.4.0, v3.4.1, v3.5.0, v3.5.1 - v3.5.3, v3.6.0 - v3.6.4, v3.7.0 - v3.7.2, v3.8.0, v3.8.1, v3.9.0, v3.9.1LTS: v2.0.0 - 2.0.29 and IBM supplied M… | |||
| CVE-2026-8672 | medium | 5.1 | 5.1 | 10d ago | Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0. | |||
| CVE-2026-5091 | medium | 5.1 | 5.1 | 11d ago | Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess… | |||
| CVE-2026-23868 | medium | 5.1 | 5.1 | 14d ago | Giflib contains a double-free vulnerability that is the result of a shallow copy in GifMakeSavedImage and incorrect error handling. The conditions needed to trigger this vulnerability are difficult b… | |||
| CVE-2026-42371 | medium | 5.1 | 5.1 | 1mo ago | uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes. | |||
| CVE-2026-40337 | medium | 5.1 | 5.1 | 2mo ago | The Sentry kernel is a high security level micro-kernel implementation made for high security embedded systems. A given task with one of the DEV or IO capability is able to interact with another task… | |||
| CVE-2026-6654 | medium | 5.1 | 5.1 | 2mo ago | Double-Free / Use-After-Free (UAF) in the `IntoIter::drop` and `ThinVec::clear` functions in the thin_vec crate. A panic in `ptr::drop_in_place` skips setting the length to zero. | |||
| CVE-2026-6892 | medium | 5.0 | 5.0 | 4d ago | Improper handling of symbolic links in the installer of CUPS Printer Driver for macOS(*) may allow a local attacker with login privileges to exploit a specially crafted symbolic link during installat… | |||
| CVE-2026-6891 | medium | 5.0 | 5.0 | 4d ago | Improper handling of symbolic links in the installer of My Image Garden for macOS Version 3.6.8 or earlier may allow a local attacker with login privileges to exploit a specially crafted symbolic lin… | |||
| CVE-2026-9980 | medium | 5.0 | 5.0 | 4d ago | Insufficient validation of untrusted input in Printing in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a craft… | |||
| CVE-2026-9979 | medium | 5.0 | 5.0 | 4d ago | Insufficient validation of untrusted input in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted … | |||
| CVE-2026-9942 | medium | 5.0 | 5.0 | 4d ago | Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium secu… | |||
| CVE-2026-9903 | medium | 5.0 | 5.0 | 4d ago | Insufficient validation of untrusted input in Site Isolation in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a… | |||
| CVE-2026-10010 | medium | 5.0 | 5.0 | 4d ago | Inappropriate implementation in Input in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTM… | |||
| CVE-2026-46526 | medium | 5.0 | 5.0 | 4d ago | Local Deep Research is an AI-powered research assistant for deep, iterative research. Prior to 1.6.10, the URL checking logic in local-deep-research has a logical flaw that could be bypassed by attac… | |||
| CVE-2026-44972 | medium | 5.0 | 5.0 | 5d ago | GuardDog is a CLI tool to identify malicious PyPI packages. From 2.6.0 to 2.9.0, GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-read… | |||
| CVE-2026-41704 | medium | 5.0 | 5.0 | 5d ago | AgentClient#handle_method (lines 264-303) processes every NATS reply. It calls inject_compile_log (line 273) on every response, which reads response['value']['result']['compile_log_id'] (line 332-338… | |||
| CVE-2026-9568 | medium | 5.0 | 5.0 | 6d ago | A weakness has been identified in ThingsBoard up to 4.3.1.1. Affected by this vulnerability is the function getGatewayDockerComposeFile of the file /api/v1/provision of the component YAML Handler. Th… | |||
| CVE-2026-9304 | medium | 5.0 | 5.0 | 9d ago | A security flaw has been discovered in calcom cal.diy up to 4.9.4. The affected element is the function validateUrlForSSRF of the file apps/web/app/api/logo/route.ts of the component Logo API. The ma… | |||
| CVE-2026-9245 | medium | 5.0 | 5.0 | 10d ago | Improper input validation in the external authentication provider flow in Devolutions Server allows an unauthenticated remote attacker to redirect victims to an attacker-controlled domain via a craft… | |||
| CVE-2026-46561 | medium | 5.0 | 5.0 | 11d ago | pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the PREREQFUNCTION-based private IP check was not applied to HTTPRequest (used by the parse_urls API). An… | |||
| CVE-2026-44073 | medium | 5.0 | 5.0 | 11d ago | Authentication modules in Netatalk 1.5.0 through 4.4.2 fail to check the return value of seteuid(), which may allow a remote authenticated attacker to retain elevated privileges under error condition… | |||
| CVE-2026-45443 | medium | 5.0 | 5.0 | 12d ago | Missing Authorization vulnerability in ADD-ONS.ORG PDF for Elementor Forms + Drag And Drop Template Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affect… | |||
| CVE-2026-33234 | medium | 5.0 | 5.0 | 13d ago | AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.1.0 through 0.6.51, SendEmailBlock in autogpt_platform/backen… | |||
| CVE-2026-6333 | medium | 5.0 | 5.0 | 14d ago | Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to validate the Host header when constructing response URLs for custom slash commands which allows an authenticated attacker to redirect… | |||
| CVE-2026-44550 | medium | 5.0 | 5.0 | 17d ago | Open WebUI's Mass Assignment via Pydantic extra='allow' Allows Creating Folders in Other Users' Accounts | |||
| CVE-2026-41051 | medium | 5.0 | 5.0 | 19d ago | csync2 uses insecure temporary directories when compiled with C99 or later, allowing for TOCTOU style attacks on the temporary directories. | |||
| CVE-2026-41195 | medium | 5.0 | 5.0 | 20d ago | mosparo is the modern solution to protect your online forms from spam. Prior to 1.4.13, the automatic rule package source URL feature allows a project member with the editor role to store an attacker… | |||
| CVE-2026-41610 | medium | 5.0 | 5.0 | 20d ago | <p>Improper neutralization of input during web page generation ('cross-site scripting') in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.</p> | |||
| CVE-2026-43979 | medium | 5.0 | 5.0 | 21d ago | Local Deep Research is an AI-powered research assistant for deep, iterative research. Prior to 1.6.0, PDFService._markdown_to_html() constructs an HTML document by interpolating user-controlled value… | |||
| CVE-2026-45003 | medium | 5.0 | 5.0 | 21d ago | OpenClaw: Workspace dotenv files cannot override connector endpoint hosts | |||
| CVE-2026-45000 | medium | 5.0 | 5.0 | 21d ago | OpenClaw before 2026.4.20 contains a server-side request forgery vulnerability in browser CDP profile creation that skips strict-mode SSRF policy checks. Attackers can create stored profiles pointing… | |||
| CVE-2026-44992 | medium | 5.0 | 5.0 | 21d ago | OpenClaw: Workspace dotenv MiniMax host override could redirect credentialed requests | |||
| CVE-2026-41648 | medium | 5.0 | 5.0 | 25d ago | Incus is a system container and virtual machine manager. Prior to version 7.0.0, user provided image and backup tarballs would be unpacked and YAML files parsed without any size restrictions. This wa… | |||
| CVE-2026-8009 | medium | 5.0 | 5.0 | 26d ago | Inappropriate implementation in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML pa… | |||
| CVE-2026-7573 | medium | 5.0 | 5.0 | 26d ago | Velocidex Velociraptor has an authorization bypass vulnerability | |||
| CVE-2026-7317 | medium | 5.0 | 5.0 | 27d ago | Grav has Insecure Deserialization in File Cache | |||
| CVE-2026-35527 | medium | 5.0 | 5.0 | 27d ago | Incus is an open source container and virtual machine manager. In versions prior to 7.0.0, the image import flow issues an outbound HEAD request to a user-supplied URL before validating the request a… | |||
| CVE-2026-7778 | medium | 5.0 | 5.0 | 27d ago | An issue that could allow a dashboard configuration to be viewed from outside of the authorized organization scope has been resolved. This is an instance of CWE-269: Improper Privilege Management, an… | |||
| CVE-2026-7724 | medium | 5.0 | 5.0 | 28d ago | Prefect SSRF Bypass via DNS Rebinding in validate_restricted_url | |||
| CVE-2026-7688 | medium | 5.0 | 5.0 | 29d ago | Dolibarr has an Injection issue | |||
| CVE-2026-22726 | medium | 5.0 | 5.0 | 1mo ago | Route Services can be leveraged to send app traffic to network destinations outside of an app's configured egress rules. As a result, a malicious developer with access to Cloudfoundry could configure… | |||
| CVE-2026-36764 | medium | 5.0 | 5.0 | 1mo ago | A Server-Side Request Forgery (SSRF) in the /ureport/datasource/testConnection endpoint of SpringBlade v4.8.0 allows authenticated attackers to scan internal resources via a crafted GET request. | |||
| CVE-2026-42424 | medium | 5.0 | 5.0 | 1mo ago | OpenClaw: Shared reply MEDIA - paths are treated as trusted and can trigger cross-channel local file exfiltration | |||
| CVE-2026-41367 | medium | 5.0 | 5.0 | 1mo ago | OpenClaw versions 2026.2.14 through 2026.3.24 fail to consistently apply guild and channel policy gates to Discord button and component interactions. Attackers can trigger privileged component action… | |||
| CVE-2026-7085 | medium | 5.0 | 5.0 | 1mo ago | A vulnerability was determined in HBAI-Ltd Toonflow-app up to 1.1.1. This vulnerability affects the function z.url of the file src/routes/setting/about/downloadApp.ts of the component downloadApp End… | |||
| CVE-2026-41338 | medium | 5.0 | 5.0 | 1mo ago | OpenClaw before 2026.3.31 contains a time-of-check-time-of-use vulnerability in sandbox file operations that allows attackers to bypass fd-based defenses. Attackers can exploit check-then-act pattern… | |||
| CVE-2026-35372 | medium | 5.0 | 5.0 | 1mo ago | A logic error in the ln utility of uutils coreutils allows the utility to dereference a symbolic link target even when the --no-dereference (or -n) flag is explicitly provided. The implementation pre… | |||
| CVE-2026-6845 | medium | 5.0 | 5.0 | 1mo ago | A flaw was found in binutils, specifically within the `readelf` utility. This vulnerability allows a local attacker to cause a Denial of Service (DoS) by tricking a user into processing a specially c… | |||
| CVE-2026-34319 | medium | 5.0 | 5.0 | 1mo ago | Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vuln… | |||
| CVE-2026-34317 | medium | 5.0 | 5.0 | 1mo ago | Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vuln… | |||
| CVE-2026-4583 | medium | 5.0 | 5.0 | 2mo ago | A vulnerability was detected in Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N. Affected by this issue is some unknown functionality of the component Bluetooth Handler. Performing a manipulation result… | |||
| CVE-2026-4582 | medium | 5.0 | 5.0 | 2mo ago | A security vulnerability has been detected in Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N. Affected by this vulnerability is an unknown functionality of the component Bluetooth. Such manipulation le… | |||
| CVE-2026-32442 | medium | 5.0 | 5.0 | 3mo ago | Missing Authorization vulnerability in E2Pdf e2pdf e2pdf allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects e2pdf: from n/a through <= 1.28.15. | |||
| CVE-2026-10074 | medium | 4.9 | 4.9 | 3d ago | DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download arbitrary system files. | |||
| CVE-2026-10039 | medium | 4.9 | 4.9 | 3d ago | The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to generic SQL Injection via the 'order' parameter in all versions up to, and including, 3.28.28 due to insufficient escaping on th… | |||
| CVE-2026-9801 | medium | 4.9 | 4.9 | 4d ago | A flaw was found in Keycloak. A remote attacker with high privileges, such as a realm administrator configuring a malicious Lightweight Directory Access Protocol (LDAP) server or an attacker compromi… | |||
| CVE-2026-40826 | medium | 4.9 | 4.9 | 5d ago | A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dsgvo_contracts view due to improper neutralization of special elements in a SQL SELECT command. Th… | |||
| CVE-2026-40822 | medium | 4.9 | 4.9 | 5d ago | A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL SELECT command.… | |||
| CVE-2026-40821 | medium | 4.9 | 4.9 | 5d ago | A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAccountByID function due to improper neutralization of special elements in a SQL SELECT command.… | |||
| CVE-2026-7618 | medium | 4.9 | 4.9 | 5d ago | The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and including, 2.4.5 due to in… | |||
| CVE-2026-41917 | medium | 4.9 | 4.9 | 6d ago | OpenKM 6.3.12 contains a local file inclusion vulnerability in the administrative scripting interface at /admin/Scripting that allows authenticated administrators to read arbitrary files by supplying… | |||
| CVE-2026-27346 | medium | 4.9 | 4.9 | 7d ago | Missing Authorization vulnerability in Kings Plugins B2BKing allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects B2BKing: from n/a before 5.2.10. | |||
| CVE-2026-42797 | medium | 4.9 | 4.9 | 7d ago | Exposure of Sensitive Information Through Data Queries vulnerability in Apache Syncope. An administrator with adequate entitlements for Derived Schemas can create a malicious JEXL expression which a… | |||
| CVE-2026-4811 | medium | 4.9 | 4.9 | 11d ago | The WPB Floating Menu & Categories for WordPress – Sticky Side Menu with Icons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Icon CSS Class' category field in all version… | |||
| CVE-2026-7472 | medium | 4.9 | 4.9 | 12d ago | The Read More & Accordion plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and including, 3.5.7. This is due to the use of esc_s… | |||
| CVE-2026-37978 | medium | 4.9 | 4.9 | 13d ago | A flaw was found in Keycloak. A low-privilege administrator with the 'view-clients' role can exploit this by invoking the 'evaluate-scopes' Admin API endpoints with an arbitrary user ID (userId) para… | |||
| CVE-2026-7046 | medium | 4.9 | 4.9 | 17d ago | The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'table' parameter in all versions up to, and including, 9.1.12 due to … | |||
| CVE-2026-45054 | medium | 4.9 | 4.9 | 19d ago | CubeCart is an ecommerce software solution. Prior to 6.7.0, the admin orders-transactions listing page (admin.php?_g=orders&node=transactions) builds a raw ORDER BY SQL fragment from the attacker-con… | |||
| CVE-2026-42780 | medium | 4.9 | 4.9 | 19d ago | A directory traversal vulnerability exists in BIG-IP SSL Orchestrator that allows an authenticated attacker with high privilege to overwrite, delete or corrupt arbitrary local files. Note: Software … | |||
| CVE-2026-42063 | medium | 4.9 | 4.9 | 19d ago | A vulnerability exists in iControl SOAP where an authenticated attacker with the Resource Administrator or Administrator role can download sensitive files. Note: Software versions which have reached… | |||
| CVE-2026-41954 | medium | 4.9 | 4.9 | 19d ago | Sensitive information disclosure vulnerability exists in the undisclosed iControl REST endpoint and TMOS Shell (tmsh) command which may allow an authenticated attacker with resource administrator rol… | |||
| CVE-2026-44874 | medium | 4.9 | 4.9 | 20d ago | A vulnerability exists in the web-based management interface of an AOS-10 Gateway that could allow an authenticated remote attacker to access sensitive files on the underlying operating system. Succe… | |||
| CVE-2026-3604 | medium | 4.9 | 4.9 | 20d ago | The WP SEO Structured Data Schema plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `_kcseo_ative_tab` parameter in all versions up to, and including, 2.8.1 due to insufficien… | |||
| CVE-2026-42600 | medium | 4.9 | 4.9 | 21d ago | MinIO vulnerable to Path Traversal via msgpack Body in `ReadMultiple` Storage-REST Endpoint | |||
| CVE-2026-28967 | medium | 4.9 | 4.9 | 21d ago | A denial-of-service issue was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4. An attacker in a privileged network position may… | |||
| CVE-2026-42886 | medium | 4.9 | 4.9 | 21d ago | Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.32.2, the POST /api/backups/upload endpoint decompresses the details entry from an uploaded .audiobookshelf ZIP file entirely … | |||
| CVE-2026-42876 | medium | 4.9 | 4.9 | 21d ago | ExternalSecrets vulnerable to privilege escalation with secret overwriting | |||
| CVE-2026-42295 | medium | 4.9 | 4.9 | 23d ago | Argo vulnerable to exposure of artifact repository credentials | |||
| CVE-2026-44298 | medium | 4.9 | 4.9 | 24d ago | Kimai has an arbitrary file read in its invoice PDF renderer (admin) | |||
| CVE-2026-6344 | medium | 4.9 | 4.9 | 26d ago | The Fluent Forms plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including 6.2.1. This is due to insufficient path validation in the getAttachments() method of EmailNo… |