CVEs from 2026
Total
13,841
critical
critical 1,207
high
high 4,497
medium
medium 4,324
low
low 469
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 503
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 172
- commerce 104
- commerce_b2b 89
- saml_sso_-_service_provider 77
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-2226 | high | 7.2 | 7.2 | 4mo ago | A vulnerability has been found in DouPHP up to 1.9. This issue affects some unknown processing of the file /admin/file.php of the component ZIP File Handler. Such manipulation of the argument sql_fil… | |||
| CVE-2026-2213 | high | 7.2 | 7.2 | 4mo ago | A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminAddAlbum.php. The manipulation of … | |||
| CVE-2026-2179 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was determined in PHPGurukul Hospital Management System 4.0. This impacts an unknown function of the file /admin/manage-users.php. This manipulation of the argument ID causes sql inje… | |||
| CVE-2026-2163 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was identified in D-Link DIR-600 up to 2.15WWb02. This vulnerability affects unknown code of the file ssdp.cgi. Such manipulation of the argument HTTP_ST/REMOTE_ADDR/REMOTE_PORT/SERVE… | |||
| CVE-2026-2162 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was determined in itsourcecode News Portal Project 1.0. This affects an unknown part of the file /admin/aboutus.php. This manipulation of the argument pagetitle causes sql injection. … | |||
| CVE-2026-2134 | high | 7.2 | 7.2 | 4mo ago | A security vulnerability has been detected in PHPGurukul Hospital Management System 4.0. The affected element is an unknown function of the file /hms/admin/manage-doctors.php. Such manipulation of th… | |||
| CVE-2026-2082 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was identified in D-Link DIR-823X 250416. The impacted element is an unknown function of the file /goform/set_mac_clone. Such manipulation of the argument mac leads to os command inje… | |||
| CVE-2026-2081 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was determined in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/set_password. This manipulation of the argument http_passwd causes os command… | |||
| CVE-2026-2063 | high | 7.2 | 7.2 | 4mo ago | A security flaw has been discovered in D-Link DIR-823X 250416. This vulnerability affects unknown code of the file /goform/set_ac_server of the component Web Management Interface. The manipulation of… | |||
| CVE-2026-2061 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was determined in D-Link DIR-823X 250416. Affected by this issue is the function sub_424D20 of the file /goform/set_ipv6. Executing a manipulation can lead to os command injection. It… | |||
| CVE-2026-2000 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function apply_config of the file /function/system/basic/bridge_cfg.php of the component Web Management Backend. Performing a… | |||
| CVE-2026-1742 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was identified in EFM ipTIME A8004T 14.18.2. Affected by this vulnerability is the function commit_vpncli_file_upload of the file /cgi/timepro.cgi of the component VPN Service. Such m… | |||
| CVE-2026-1424 | high | 7.2 | 7.2 | 4mo ago | A vulnerability was identified in PHPGurukul News Portal 1.0. This affects an unknown part of the component Profile Pic Handler. The manipulation leads to unrestricted upload. It is possible to initi… | |||
| CVE-2026-1419 | high | 7.2 | 7.2 | 4mo ago | A weakness has been identified in D-Link DCS700l 1.03.09. Affected is an unknown function of the file /setDayNightMode of the component Web Form Handler. Executing a manipulation of the argument Ligh… | |||
| CVE-2026-1111 | high | 7.2 | 7.2 | 5mo ago | A vulnerability has been found in Sanluan PublicCMS up to 5.202506.d. This impacts the function Save of the file com/publiccms/controller/admin/sys/TaskTemplateAdminController.java of the component T… | |||
| CVE-2026-0850 | high | 7.2 | 7.2 | 5mo ago | A vulnerability was determined in code-projects Intern Membership Management System 1.0. Impacted is an unknown function of the file /admin/delete_activity.php. Executing a manipulation of the argume… | |||
| CVE-2026-0729 | high | 7.2 | 7.2 | 5mo ago | A vulnerability was detected in code-projects Intern Membership Management System 1.0. Impacted is an unknown function of the file /intern/admin/add_activity.php. Performing a manipulation of the arg… | |||
| CVE-2026-0728 | high | 7.2 | 7.2 | 5mo ago | A security vulnerability has been detected in code-projects Intern Membership Management System 1.0. This issue affects some unknown processing of the file /intern/admin/delete_admin.php. Such manipu… | |||
| CVE-2026-0701 | high | 7.2 | 7.2 | 5mo ago | A vulnerability was identified in code-projects Intern Membership Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /intern/admin/add_admin.php. The manipu… | |||
| CVE-2026-0699 | high | 7.2 | 7.2 | 5mo ago | A vulnerability was found in code-projects Intern Membership Management System 1.0. This impacts an unknown function of the file /intern/admin/edit_activity.php. Performing a manipulation of the argu… | |||
| CVE-2026-0698 | high | 7.2 | 7.2 | 5mo ago | A vulnerability has been found in code-projects Intern Membership Management System 1.0. This affects an unknown function of the file /intern/admin/edit_students.php. Such manipulation of the argumen… | |||
| CVE-2026-0697 | high | 7.2 | 7.2 | 5mo ago | A flaw has been found in code-projects Intern Membership Management System 1.0. The impacted element is an unknown function of the file /intern/admin/edit_admin.php. This manipulation of the argument… | |||
| CVE-2026-45722 | high | 7.1 | 7.1 | 3h ago | Nextcloud is an open source content collaboration platform. From versions 0.9.0 to before 0.9.7, and 1.0.0 to before 1.0.2, a missing sanitization in the Tables app allowed a user with access to the … | |||
| CVE-2026-49135 | high | 7.1 | 7.1 | 4h ago | CodexBar prior to 0.32.0 contains an insecure temporary file handling vulnerability that allows local attackers to access sensitive credentials or tamper with build artifacts by exploiting predictabl… | |||
| CVE-2026-49134 | high | 7.1 | 7.1 | 4h ago | CodexBar prior to 0.32.0 contains a privilege escalation vulnerability in the CLI installer that allows local attackers to execute arbitrary commands as root by exploiting a race condition in tempora… | |||
| CVE-2026-42678 | high | 7.1 | 7.1 | 5h ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Liquid Web / StellarWP GiveWP allows DOM-Based XSS. This issue affects GiveWP: from n/a through … | |||
| CVE-2026-48865 | high | 7.1 | 7.1 | 7h ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress LearnPress allows Reflected XSS. This issue affects LearnPress: from n/a through 4.3.6. | |||
| CVE-2026-48839 | high | 7.1 | 7.1 | 7h ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VeronaLabs WP Statistics allows DOM-Based XSS. This issue affects WP Statistics: from n/a throug… | |||
| CVE-2026-42683 | high | 7.1 | 7.1 | 7h ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS allows DOM-Based XSS. This issue affects VikBooki… | |||
| CVE-2026-42681 | high | 7.1 | 7.1 | 7h ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in E2Pdf.Com e2pdf allows Reflected XSS. This issue affects e2pdf: from n/a through 1.32.14. | |||
| CVE-2026-48827 | high | 7.1 | 7.1 | 13h ago | Path traversal vulnerability in Apache MINA SSHD bundle sshd-git. Lack of path validation in git-upload-pack, git-receive-pack, and other git operations allows users authenticated over SSH access to … | |||
| CVE-2026-48209 | high | 7.1 | 7.1 | 18h ago | An improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting (XSS) attacks via … | |||
| CVE-2026-49373 | high | 7.1 | 7.1 | 3d ago | In JetBrains TeamCity before 2026.1 remote code execution was possible via Perforce connection settings | |||
| CVE-2026-49371 | high | 7.1 | 7.1 | 3d ago | In JetBrains TeamCity before 2026.1.1 reflected XSS in the keyword filter was possible | |||
| CVE-2026-9808 | high | 7.1 | 7.1 | 3d ago | An authorization bypass vulnerability exists in the Mautic 7 API v2 endpoints (utilizing API Platform). Under certain conditions, roles configured with owner-scope restrictions (such as `viewown` or … | |||
| CVE-2026-4776 | high | 7.1 | 7.1 | 4d ago | An SQL injection vulnerability exists in Mautic's API contact filtering mechanism. Due to insufficient recursive sanitization of nested query parameters, an authenticated API user can bypass input fi… | |||
| CVE-2026-46237 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn3: Avoid overflow on msg bound check As pointed out by SDL, the previous condition may be vulnerable to overflow. … | |||
| CVE-2026-46230 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg. | |||
| CVE-2026-46218 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ib_{get,set}_value The uvd/vce/vcn code accesses the IB at predefined offsets without checking… | |||
| CVE-2026-46204 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing IB Rewrite the IB parsing to use amdgpu_ib_get_value() which handles the bounds c… | |||
| CVE-2026-46199 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg. | |||
| CVE-2026-46190 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show() Sashiko noticed an out-of-bounds read [1]. In spi_nor_par… | |||
| CVE-2026-46175 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix fsck inconsistency caused by FGGC of node block During FGGC node block migration, fsck may incorrectly treat the migrat… | |||
| CVE-2026-46150 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: fanotify: fix false positive on permission events fsnotify_get_mark_safe() may return false for a mark on an unrelated group, whi… | |||
| CVE-2026-46149 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show() target_tg_pt_gp_members_show() formats LUN paths with … | |||
| CVE-2026-47272 | high | 7.1 | 7.1 | 5d ago | pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, the pusb_pad_compare() function in src/pad.c only verified that the user-side pad (~/.pamusb/device.… | |||
| CVE-2026-42081 | high | 7.1 | 7.1 | 5d ago | free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against it… | |||
| CVE-2026-44473 | high | 7.1 | 7.1 | 5d ago | Ella Core is a 5G core designed for private networks. Prior to 1.10.0, a radio with a valid NG Setup can send a forged PDUSessionResourceSetupResponse carrying any UE's AMF-UE-NGAP-ID. Ella Core does… | |||
| CVE-2026-42280 | high | 7.1 | 7.1 | 5d ago | Auth0.js is a client-side JavaScript library for Auth0. From 8.11.0 to 9.32.0, under specific preconditions, the Auth0.js SDK may improperly return user profile information using a valid access token… | |||
| CVE-2026-7528 | high | 7.1 | 7.1 | 5d ago | IBM Langflow OSS 1.0.0 through 1.9.0 could allow a denial of service due to uncontrolled resource consumption. | |||
| CVE-2026-46078 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: erofs: fix the out-of-bounds nameoff handling for trailing dirents Currently we already have boundary-checks for nameoffs, but th… | |||
| CVE-2026-46070 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: md/raid5: validate payload size before accessing journal metadata r5c_recovery_analyze_meta_block() and r5l_recovery_verify_data_… | |||
| CVE-2026-46055 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix string overrun due to missing termination When booting Ubuntu 26.04 with Linux 7.0-rc4 on an ARM64 Qualcomm Snapdra… | |||
| CVE-2026-46054 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect() access checks The existing SELinux security model for overlayfs is to allow access i… | |||
| CVE-2026-45999 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: erofs: fix unsigned underflow in z_erofs_lz4_handle_overlap() Some crafted images can have illegal (!partial_decoding && m_llen <… | |||
| CVE-2026-1933 | high | 7.1 | 7.1 | 5d ago | A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem wri… | |||
| CVE-2026-1718 | high | 7.1 | 7.1 | 5d ago | IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a specially crafted query when autonomous transactions are enabled. | |||
| CVE-2026-45958 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: fix to avoid directly dereferencing user pointer In vidi_connection_ioctl(), vidi->edid(user pointer) is direct… | |||
| CVE-2026-45856 | high | 7.1 | 7.1 | 5d ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqe_size before using it in ib_uverbs_post_send ib_uverbs_post_send() uses cmd.wqe_size from userspace with… | |||
| CVE-2026-42762 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking allows DOM-Based XSS.This issue affects… | |||
| CVE-2026-42759 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Timo Affiliate Super Assistent amazonsimpleadmin allows Stored XSS.This issue affects Affiliate S… | |||
| CVE-2026-42754 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in phbernard Favicon favicon-by-realfavicongenerator allows Reflected XSS.This issue affects Favicon… | |||
| CVE-2026-42749 | high | 7.1 | 7.1 | 6d ago | Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeisle Disable Comments for Any Post Types (Remove comments) comments-plus allows Password Recovery Exploitation.This issu… | |||
| CVE-2026-42739 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in IniLerm Advanced IP Blocker advanced-ip-blocker allows DOM-Based XSS.This issue affects Advanced … | |||
| CVE-2026-42738 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ZAYTECH Smart Online Order for Clover clover-online-orders allows Stored XSS.This issue affects S… | |||
| CVE-2026-42728 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HT Plugins HT Contact Form 7 ht-contactform allows Stored XSS.This issue affects HT Contact Form … | |||
| CVE-2026-42733 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RealMag777 WPCS currency-switcher allows DOM-Based XSS.This issue affects WPCS: from n/a through … | |||
| CVE-2026-42729 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Property Hive PropertyHive propertyhive allows DOM-Based XSS.This issue affects PropertyHive: fro… | |||
| CVE-2026-42734 | high | 7.1 | 7.1 | 6d ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dylan Kuhn Geo Mashup geo-mashup allows Reflected XSS.This issue affects Geo Mashup: from n/a t… | |||
| CVE-2026-40836 | high | 7.1 | 7.1 | 6d ago | An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the inmessage model due to improper neutralization of special elements in a SQL DELETE command allowing… | |||
| CVE-2026-40834 | high | 7.1 | 7.1 | 6d ago | An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash_layout.php files saveDashboardLayout function due to improper neutralization of special elemen… | |||
| CVE-2026-40833 | high | 7.1 | 7.1 | 6d ago | An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dash.php files saveDashboardLayout function due to improper neutralization of special elements in a… | |||
| CVE-2026-6268 | high | 7.1 | 7.1 | 6d ago | The EventPress WordPress theme before 22.2 does not sanitize or escape the 'id' parameter in the eventpress_customizer_notify_dismiss_action AJAX handler before outputting it back in the response, al… | |||
| CVE-2026-42012 | high | 7.1 | 7.1 | 6d ago | A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier (URI) or Service (SRV) Subject A… | |||
| CVE-2026-3603 | high | 7.1 | 7.1 | 6d ago | IBM Engineering Lifecycle Management 7.0.3 Interim Fix 001 through Interim Fix 021, 7.1.0 Interim Fix 001 through Interim Fix 009, and 7.2.0 and 7.2.0 Interim Fix 001 is vulnerable to an XML exter… | |||
| CVE-2026-24195 | high | 7.1 | 7.1 | 6d ago | NVIDIA Display Driver for Linux contains a vulnerability in UVM, where a user could cause improper input validation. A successful exploit of this vulnerability might lead to denial of service. | |||
| CVE-2026-24196 | high | 7.1 | 7.1 | 6d ago | NVIDIA Display Driver for Linux contains a vulnerability where a user could cause an out-of-bounds read. A successful exploit of this vulnerability might lead to denial of service and information dis… | |||
| CVE-2026-48690 | high | 7.1 | 7.1 | 6d ago | FastNetMon Community Edition through 1.2.9 contains an integer overflow vulnerability in the packet capture buffer allocation. In src/packet_storage.hpp, the allocate_buffer() function computes memor… | |||
| CVE-2026-39436 | high | 7.1 | 7.1 | 7d ago | Cross-Site Request Forgery (CSRF) vulnerability in bgermann CformsII allows Cross Site Request Forgery. This issue affects CformsII: from n/a through 15.1.3. | |||
| CVE-2026-41074 | high | 7.1 | 7.1 | 10d ago | RT is an open source, enterprise-grade issue and ticket tracking system. Versions 6.0.0 through 6.0.2 contain a Cross-Site Request Forgery (CSRF) vulnerability. An attacker who can induce a logged-in… | |||
| CVE-2026-9291 | high | 7.1 | 7.1 | 10d ago | Insecure deserialization in the job results processing component in Amazon Braket SDK before 1.117.0 might allow a remote authenticated user with S3 write access to the job output bucket to achieve a… | |||
| CVE-2026-39968 | high | 7.1 | 7.1 | 10d ago | TypeBot is a chatbot builder tool. In versions 3.15.2 and prior, the fix for GHSA-4xc5-wfwc-jw47 ("Credential Theft via Client-Side Script Execution and API Authorization Bypass") is incomplete. Whil… | |||
| CVE-2026-7325 | high | 7.1 | 7.1 | 10d ago | Improper authorization in the Active Directory browsing feature in Devolutions Server allows a low-privileged authenticated user to obtain authentication material associated with a stored PAM provide… | |||
| CVE-2026-3473 | high | 7.1 | 7.1 | 10d ago | Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to validate file ownership and access control, which allows an authenticated user to access and down… | |||
| CVE-2026-48240 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in ajax/statistics.php where the tick_id and f_tick_id POST parameters are concatenated into WHERE clauses of SELECT statements … | |||
| CVE-2026-48239 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in ajax/reports.php where the tick_id POST parameter is concatenated into the WHERE clause of SELECT statements in the incidents… | |||
| CVE-2026-48238 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in ajax/mobile_main.php where the id GET parameter is concatenated into the WHERE clause of a SELECT statement used as a ticket-… | |||
| CVE-2026-48237 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in message.php where the frm_ticket_id and frm_resp_id POST parameters are concatenated into WHERE clauses of SELECT/UPDATE stat… | |||
| CVE-2026-48236 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in db_loader.php where the multiple POST parameters (ticketsdb, ticketshost, ticketsuser, ticketspassword) are concatenated into… | |||
| CVE-2026-48234 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in portal/ajax/list_requests.php where the sort and dir GET parameters are concatenated into the ORDER BY clause of a SELECT sta… | |||
| CVE-2026-48233 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in ajax/sit_incidents.php where the offset GET parameter is concatenated into the LIMIT clause of a SELECT statement without san… | |||
| CVE-2026-48232 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in ajax/fullsit_incidents.php where the offset GET parameter is concatenated into the LIMIT clause of a SELECT statement without… | |||
| CVE-2026-48231 | high | 7.1 | 7.1 | 11d ago | Open ISES Tickets before 3.44.2 contains a SQL injection vulnerability in tables.php where the multiple POST parameters (tablename, indexname, sortby) are concatenated into table/column identifiers i… | |||
| CVE-2026-44066 | high | 7.1 | 7.1 | 12d ago | Multiple heap out-of-bounds reads in the Spotlight RPC unmarshalling code in Netatalk 3.1.0 through 4.4.2 allow a remote authenticated attacker to obtain sensitive information or cause a minor servic… | |||
| CVE-2026-44064 | high | 7.1 | 7.1 | 12d ago | An out-of-bounds read in ASP session ID handling in Netatalk 1.3 through 4.4.2 allows an adjacent network attacker to obtain limited information or cause a denial of service via a crafted ASP request. | |||
| CVE-2026-23204 | high | 7.1 | 7.1 | 13d ago | In the Linux kernel, the following vulnerability has been resolved: net/sched: cls_u32: use skb_header_pointer_careful() skb_header_pointer() does not fully validate negative @offset values. Use s… | |||
| CVE-2026-46333 | high | 7.1 | 7.1 | 13d ago | RHSA-2026:19666: kernel security update (Important) | |||
| CVE-2026-32882 | high | 7.1 | 7.1 | 13d ago | libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap buffer over-read in HeifPixelImage::overlay() in libheif/pixelimage.cc. When compositing an overla… | |||
| CVE-2026-32741 | high | 7.1 | 7.1 | 13d ago | libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and below contain a heap buffer overflow in MaskImageCodec::decode_mask_image(). When decoding a HEIF file containing a mas… | |||
| CVE-2026-7571 | high | 7.1 | 7.1 | 13d ago | A flaw was found in Keycloak. A low-privilege user, with knowledge of user credentials and client ID, can bypass a security control intended to disable the implicit flow in OpenID Connect (OIDC) clie… |