CVEs from 2026
Total
13,682
critical
critical 1,199
high
high 4,384
medium
medium 4,286
low
low 468
% Critical
8.8%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 503
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 172
- commerce 104
- commerce_b2b 89
- saml_sso_-_service_provider 77
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-30913 | medium | 4.6 | 4.6 | 3mo ago | flarum/nicknames extension has display name injection in notification emails (autolink & markdown) | |||
| CVE-2026-44640 | medium | 4.5 | 4.5 | 3d ago | NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Prior to 0.24.14, aio->prov_data is stored as nni_quic_conn* during dialing, but read as ex_quic_conn* during dialer close. This … | |||
| CVE-2026-44059 | medium | 4.5 | 4.5 | 12d ago | A race condition in the privilege toggle mechanism in Netatalk 2.2.5 through 4.4.2 allows a local attacker to obtain limited information, modify limited data, or cause a minor service disruption. | |||
| CVE-2026-42887 | medium | 4.5 | 4.5 | 21d ago | Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.33.0, a stored cross-site scripting (XSS) vulnerability exists in the Login Page due to improper sanitization of the authLogin… | |||
| CVE-2026-41656 | medium | 4.5 | 4.5 | 1mo ago | Admidio has Path Traversal via Unvalidated `name` Parameter in Document Add Mode that Enables Arbitrary Server File Read | |||
| CVE-2026-45279 | medium | 4.4 | 4.4 | 1h ago | Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.14, and 32.0.0 to before 32.0.4, if {lang} is used in the template directory config… | |||
| CVE-2026-7430 | medium | 4.4 | 4.4 | 4d ago | The Post Snippets plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 4.0.19. This is due to insufficient output escaping of imported snippet conte… | |||
| CVE-2026-48792 | medium | 4.4 | 4.4 | 5d ago | pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.1, src/evdev.c silently ignores EACCES errors when opening /dev/input/event* nodes, causing pusb_has_vi… | |||
| CVE-2026-5516 | medium | 4.4 | 4.4 | 5d ago | IBM WebSphere Application Server - Liberty 22.0.0.11 through 26.0.0.5 IBM WebSphere Application Server Liberty could allow a remote attacker to bypass security under limited conditions by exploiting … | |||
| CVE-2026-3348 | medium | 4.4 | 4.4 | 5d ago | The MinhNhut Link Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's settings (Description, Title, and other fields) in all versions up to, and including, 3.6.… | |||
| CVE-2026-41164 | medium | 4.4 | 4.4 | 6d ago | nuts-node has JWT type confusion in v1 access token introspection that allows VP replay as access token | |||
| CVE-2026-48849 | medium | 4.4 | 4.4 | 7d ago | In Roundcube Webmail 1.6.x before 1.6.16 and 1.7.x before 1.7.1, an unsanitized subject field in the draft restored value could lead to stored XSS/HTML/CSS injection on shared mailboxes. | |||
| CVE-2026-25602 | medium | 4.4 | 4.4 | 12d ago | Insufficient Verification of Data Authenticity vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component makes it possible to send messages to any email address. This i… | |||
| CVE-2026-6404 | medium | 4.4 | 4.4 | 13d ago | The Anomify AI – Anomaly Detection and Alerting plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'anomify_api_key' parameter in versions up to and including 0.3.6. This is du… | |||
| CVE-2026-6399 | medium | 4.4 | 4.4 | 13d ago | The General Options plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 1.1.0. This is due to the use of sanitize_text_field() for output escaping in the… | |||
| CVE-2026-42408 | medium | 4.4 | 4.4 | 19d ago | When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed TMOS Shell (tmsh) command that may allow a highly privileged authenticated attacker to view sensitive information. Note: Soft… | |||
| CVE-2026-28758 | medium | 4.4 | 4.4 | 19d ago | When BIG-IP DNS is provisioned, a vulnerability exists in the gtm_add and bigip_add iControl REST commands that return the ssh-password parameter in cleartext in the iControl REST response and is als… | |||
| CVE-2026-41100 | medium | 4.4 | 4.4 | 20d ago | Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally. | |||
| CVE-2026-32209 | medium | 4.4 | 4.4 | 20d ago | Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally. | |||
| CVE-2026-7431 | medium | 4.4 | 4.4 | 20d ago | An incorrect permission assignment for critical resource of Ivanti Secure Access Client before 22.8R6 allows a local authenticated user to read or modify sensitive log data via write access to a sh… | |||
| CVE-2026-6813 | medium | 4.4 | 4.4 | 20d ago | The Continually plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.3.1 due to insufficient input sanitization and output esca… | |||
| CVE-2026-6800 | medium | 4.4 | 4.4 | 20d ago | The FastBots plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.12 due to insufficient input sanitization and output escapi… | |||
| CVE-2026-7257 | medium | 4.4 | 4.4 | 21d ago | ** UNSUPPORTED WHEN ASSIGNED ** An insecure storage of sensitive information vulnerability in the configuration file of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could allow a local attacker … | |||
| CVE-2026-43895 | medium | 4.4 | 4.4 | 21d ago | jq is a command-line JSON processor. In 1.8.1 and earlier, jq accepts embedded NUL bytes in import paths at the jq-language level, but later resolves those paths through C string operations during mo… | |||
| CVE-2026-42307 | medium | 4.4 | 4.4 | 24d ago | Vim is an open source, command line text editor. Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim. By inducing a user to open a cr… | |||
| CVE-2026-41520 | medium | 4.4 | 4.4 | 24d ago | Cillium exposes sensitive information included in the cilium-bugtool debug archive | |||
| CVE-2026-41004 | medium | 4.4 | 4.4 | 26d ago | Spring Cloud Config Server Logged Sensitive Information | |||
| CVE-2026-42549 | medium | 4.4 | 4.4 | 26d ago | Flight has path traversal in `make:controller` CLI that creates arbitrary directories outside project root | |||
| CVE-2026-7941 | medium | 4.4 | 4.4 | 26d ago | Insufficient validation of untrusted input in Mobile in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via a crafted Chrome Extens… | |||
| CVE-2026-7932 | medium | 4.4 | 4.4 | 26d ago | Insufficient policy enforcement in Downloads in Google Chrome prior to 148.0.7778.96 allowed a local attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: M… | |||
| CVE-2026-41686 | medium | 4.4 | 4.4 | 28d ago | Claude SDK for TypeScript has Insecure Default File Permissions in Local Filesystem Memory Tool | |||
| CVE-2026-42140 | medium | 4.4 | 4.4 | 28d ago | XWiki PlantUML Macro Vulnerable to Server-Side Request Forgery (SSRF) via 'server' parameter | |||
| CVE-2026-6812 | medium | 4.4 | 4.4 | 1mo ago | The Ona theme for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.26 via the ona_activate_child_theme. This makes it possible for authenticated attacker… | |||
| CVE-2026-6447 | medium | 4.4 | 4.4 | 1mo ago | The Call for Price for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.2.0 due to insufficient input sanitizat… | |||
| CVE-2026-35233 | medium | 4.4 | 4.4 | 1mo ago | An unprivileged attacker can craft a user-space process with a malicious ELF binary containing an out-of-range sh_link field. When root-level dtrace attaches to -- or instruments -- that process (via… | |||
| CVE-2026-6539 | medium | 4.4 | 4.4 | 1mo ago | Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and information disclosure by crafting a malicious … | |||
| CVE-2026-40949 | medium | 4.4 | 4.4 | 1mo ago | CVE-2026-40949 is a buffer overflow vulnerability in the Secure Access Windows client prior to 14.50. Attackers with local control of the Windows client can use it to trigger a denial of service. | |||
| CVE-2026-7439 | medium | 4.4 | 4.4 | 1mo ago | AgentFlow's local web API accepts non-JSON content types on POST /api/runs and POST /api/runs/validate endpoints without enforcing application/json validation, allowing attackers to bypass trust-boun… | |||
| CVE-2026-7397 | medium | 4.4 | 4.4 | 1mo ago | A security flaw has been discovered in NousResearch hermes-agent 0.8.0. This affects the function _check_sensitive_path of the file tools/file_tools.py. The manipulation results in symlink following.… | |||
| CVE-2026-35901 | medium | 4.4 | 4.4 | 1mo ago | A handling issue in the RTSP service of the Mercury MIPC252W 1.0.5 Build 230306 Rel.79931n allows an authenticated attacker to trigger session termination by repeatedly sending SETUP requests for the… | |||
| CVE-2026-35370 | medium | 4.4 | 4.4 | 1mo ago | The id utility in uutils coreutils miscalculates the groups= section of its output. The implementation uses a user's real GID instead of their effective GID to compute the group list, leading to pote… | |||
| CVE-2026-35366 | medium | 4.4 | 4.4 | 1mo ago | The printenv utility in uutils coreutils fails to display environment variables containing invalid UTF-8 byte sequences. While POSIX permits arbitrary bytes in environment strings, the uutils impleme… | |||
| CVE-2026-28417 | medium | 4.4 | 4.4 | 2mo ago | RHSA-2026:6915: vim security update (Important) | |||
| CVE-2026-34757 | medium | 4.4 | 4.4 | 2mo ago | LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From 1.0.9 to before 1.6.57, passing a pointer obtained fro… | |||
| CVE-2026-24360 | medium | 4.4 | 4.4 | 4mo ago | Server-Side Request Forgery (SSRF) vulnerability in Craig Hewitt Seriously Simple Podcasting seriously-simple-podcasting allows Server Side Request Forgery.This issue affects Seriously Simple Podcast… | |||
| CVE-2026-45729 | medium | 4.3 | 4.3 | 1h ago | Thor Vector Graphics (ThorVG) is a production-ready vector graphics engine. Prior to version 1.0.5, a null pointer dereference in SvgLoader::run() allows any caller that passes untrusted SVG data to … | |||
| CVE-2026-45544 | medium | 4.3 | 4.3 | 1h ago | Nextcloud is an open source content collaboration platform. From version 0.8.0 to before version 1.0.4, the view filter criteria is exposed to users with read-only permissions in Nextcloud Tables. Th… | |||
| CVE-2026-45286 | medium | 4.3 | 4.3 | 1h ago | Nextcloud is an open source content collaboration platform. From versions 5.5.13 to before 5.5.17, and 6.2.0 to before 6.2.3, an authenticated user can enumerate users on the same Nextcloud instance … | |||
| CVE-2026-10282 | medium | 4.3 | 4.3 | 1h ago | A security vulnerability has been detected in Bottelet DaybydayCRM up to 2.2.1. This impacts the function view of the file app/Http/Controllers/DocumentsController.php. Such manipulation leads to imp… | |||
| CVE-2026-45264 | medium | 4.3 | 4.3 | 3h ago | Nextcloud is an open source content collaboration platform. From versions 17.0.0 to before 17.0.15, 18.0.0 to before 18.1.12, 19.0.0 to before 19.1.16, 20.0.0 to before 20.1.11, and 21.0.0 to before … | |||
| CVE-2026-34193 | medium | 4.3 | 4.3 | 7h ago | Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data outside the intended GPU memory. A logic error in the address… | |||
| CVE-2026-46764 | medium | 4.3 | 4.3 | 11h ago | The Event Log detail endpoint `GET /api/v2/eventLogs/{event_log_id}` in Apache Airflow fetched audit-log rows directly by numeric ID after only the generic Audit Log permission check, while the colle… | |||
| CVE-2026-46605 | medium | 4.3 | 4.3 | 11h ago | Incomplete authorization by Apache ActiveMQ server before versions v6.2.6 and v5.19.7 allows authenticated connections to remove existing destinations with proper permissions. This issue affects Apa… | |||
| CVE-2026-10215 | medium | 4.3 | 4.3 | 17h ago | A security vulnerability has been detected in Dolibarr ERP CRM up to 23.0.1. Impacted is the function checkUserAccessToObject of the file htdocs/holiday/class/api_holidays.class.php of the component … | |||
| CVE-2026-10173 | medium | 4.3 | 4.3 | 2d ago | A weakness has been identified in Orthanc Explorer 2 up to 1.12.0. The impacted element is an unknown function of the file WebApplication/src/components/StudyList.vue of the component URL Handler. Th… | |||
| CVE-2026-10156 | medium | 4.3 | 4.3 | 2d ago | A vulnerability was determined in Open5GS up to 2.7.7. This affects the function handle_amf_info in the library /lib/sbi/nnrf-handler.c of the component nf-instances Endpoint. Executing a manipulatio… | |||
| CVE-2026-10154 | medium | 4.3 | 4.3 | 2d ago | A vulnerability has been found in Dolibarr ERP CRM 23.0.0/23.0.1/23.0.2. The affected element is an unknown function of the file htdocs/user/messaging.php. Such manipulation of the argument ID leads … | |||
| CVE-2026-10153 | medium | 4.3 | 4.3 | 2d ago | A flaw has been found in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is the function Search of the file org/springframework/cache/support/AbstractCacheManager.java. Th… | |||
| CVE-2026-10117 | medium | 4.3 | 4.3 | 2d ago | A weakness has been identified in Open5GS up to 2.7.7. This issue affects the function ogs_pool_id_calloc in the library /lib/sbi/nghttp2-server.c. Executing a manipulation can lead to denial of serv… | |||
| CVE-2026-10116 | medium | 4.3 | 4.3 | 2d ago | A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_sbi_xact_add in the library /lib/core/ogs-timer.c of the component ue-authentications Endpoint.… | |||
| CVE-2026-10115 | medium | 4.3 | 4.3 | 2d ago | A vulnerability was identified in Open5GS up to 2.7.7. This affects an unknown part in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. Such manipulation leads to denial … | |||
| CVE-2026-10114 | medium | 4.3 | 4.3 | 2d ago | A vulnerability was determined in Open5GS up to 2.7.7. Affected by this issue is the function handle_scp_info in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. This man… | |||
| CVE-2026-10113 | medium | 4.3 | 4.3 | 2d ago | A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is an unknown functionality in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. The manip… | |||
| CVE-2026-48811 | medium | 4.3 | 4.3 | 3d ago | FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.221, FreeScout allows a non-admin user to permanently delete an internal note (private thread) from any… | |||
| CVE-2026-48810 | medium | 4.3 | 4.3 | 3d ago | FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.221, while investigating the ThreadPolicy::delete issue reported previously, the same missing mailbox m… | |||
| CVE-2026-49378 | medium | 4.3 | 4.3 | 3d ago | In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion | |||
| CVE-2026-49377 | medium | 4.3 | 4.3 | 3d ago | In JetBrains TeamCity before 2025.11.2 exposure of sensitive data via default agent parameters | |||
| CVE-2026-49369 | medium | 4.3 | 4.3 | 3d ago | In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on Users and Groups pages | |||
| CVE-2026-32906 | medium | 4.3 | 4.3 | 3d ago | OpenClaw before 2026.5.12 contains a privilege escalation vulnerability in Slack plugin approvals that allows exec-authorized users to resolve plugin approvals through the exec approver gate. Attacke… | |||
| CVE-2026-47696 | medium | 4.3 | 4.3 | 3d ago | WWBN AVideo is an open source video platform. In 29.0 and earlier, plugin/AuthorizeNet/processPayment.json.php credits the logged-in user's wallet based only on the attacker-controlled amount POST pa… | |||
| CVE-2026-49323 | medium | 4.3 | 4.3 | 3d ago | Weak authentication between the Wireless Control Module (WCM) and the Engine Control Module (ECM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with… | |||
| CVE-2026-49322 | medium | 4.3 | 4.3 | 4d ago | Weak authentication in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with read access to the in-vehicle network to… | |||
| CVE-2026-8995 | medium | 4.3 | 4.3 | 4d ago | The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to and including 6.3.7. This is due to insufficient acc… | |||
| CVE-2026-9955 | medium | 4.3 | 4.3 | 4d ago | Inappropriate implementation in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-9943 | medium | 4.3 | 4.3 | 4d ago | Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-9935 | medium | 4.3 | 4.3 | 4d ago | Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-9930 | medium | 4.3 | 4.3 | 4d ago | Out of bounds write in Dawn in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Hi… | |||
| CVE-2026-9929 | medium | 4.3 | 4.3 | 4d ago | Inappropriate implementation in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Hig… | |||
| CVE-2026-9921 | medium | 4.3 | 4.3 | 4d ago | Uninitialized Use in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin information via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-9919 | medium | 4.3 | 4.3 | 4d ago | Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-9913 | medium | 4.3 | 4.3 | 4d ago | Inappropriate implementation in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security… | |||
| CVE-2026-9911 | medium | 4.3 | 4.3 | 4d ago | Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-9907 | medium | 4.3 | 4.3 | 4d ago | Out of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) | |||
| CVE-2026-10028 | medium | 4.3 | 4.3 | 4d ago | A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS b… | |||
| CVE-2026-41160 | medium | 4.3 | 4.3 | 4d ago | EspoCRM is an open source customer relationship management application. Prior to 9.3.5, a business logic flaw (Broken Access Control) in EspoCRM 9.3.3 allows low-privileged users to pin arbitrary not… | |||
| CVE-2026-40914 | medium | 4.3 | 4.3 | 4d ago | A vulnerability exists in Apache Artemis whereby an application using the STOMP protocol with security credentials that grant either the consume or send permission on an address can augment the routi… | |||
| CVE-2026-9807 | medium | 4.3 | 4.3 | 4d ago | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed a blocked… | |||
| CVE-2026-9015 | medium | 4.3 | 4.3 | 4d ago | The Equalize Digital Accessibility Checker – WCAG, ADA, EAA and Section 508 compliance plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.42.0. This is… | |||
| CVE-2026-8689 | medium | 4.3 | 4.3 | 4d ago | The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 3.11.14. This is due to a missing capability … | |||
| CVE-2026-7526 | medium | 4.3 | 4.3 | 4d ago | The PDF Embedder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.9.3 via the enqueue_block_assets. This makes it possible for authenticate… | |||
| CVE-2026-9618 | medium | 4.3 | 4.3 | 5d ago | The PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authorize.net, NMI) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to… | |||
| CVE-2026-8682 | medium | 4.3 | 4.3 | 5d ago | The 3D Viewer – 3D Model Viewer – Augmented Reality – Virtual Try On plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.1. This is due to the plugin … | |||
| CVE-2026-7621 | medium | 4.3 | 4.3 | 5d ago | The SMTP2GO for WordPress – Email Made Easy plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.16.0. This is due to the plugin not properly verifying th… | |||
| CVE-2026-9798 | medium | 4.3 | 4.3 | 5d ago | A flaw was found in Keycloak, an open-source identity and access management solution. When a user account is temporarily locked due to repeated failed login attempts, an attacker with valid client cr… | |||
| CVE-2026-7533 | medium | 4.3 | 4.3 | 5d ago | The Easy Digital Downloads plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.6.7. This is due to missing nonce verification in the `handle_oauth… | |||
| CVE-2026-9791 | medium | 4.3 | 4.3 | 5d ago | A flaw was found in Keycloak. An authenticated user with existing organization membership can exploit this flaw by accessing user-facing APIs, such as the account API or by requesting an OpenID Conne… | |||
| CVE-2026-9241 | medium | 4.3 | 4.3 | 5d ago | The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and including 1.4.6. This is due … | |||
| CVE-2026-9228 | medium | 4.3 | 4.3 | 5d ago | The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.4.16 via the action_get_event_data due to … | |||
| CVE-2026-4888 | medium | 4.3 | 4.3 | 5d ago | The Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder plugin for WordPress is vulnerable to unauthorized email sending due to a missing capability check on the send_test_… | |||
| CVE-2026-2601 | medium | 4.3 | 4.3 | 5d ago | GitLab has remediated an issue in GitLab EE affecting all versions from 11.5 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authentic… |