CVEs from 2026
Total
13,939
critical
critical 1,209
high
high 4,531
medium
medium 4,385
low
low 483
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 503
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 172
- commerce 104
- commerce_b2b 89
- saml_sso_-_service_provider 77
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-47410 | unknown | — | — | 4d ago | praisonai-platform: JWT signing key defaults to hardcoded "dev-secret-change-me", allowing token forgery for any user when PLATFORM_ENV is unset | |||
| CVE-2026-47405 | unknown | — | — | 4d ago | PraisonAI Platform: Missing role checks let any workspace member become owner and control workspace membership | |||
| CVE-2026-47399 | unknown | — | — | 4d ago | PraisonAI Platform workspace-scoped routes allow cross-workspace object access by global object ID | |||
| CVE-2026-47407 | unknown | — | — | 4d ago | PraisonAI Platform has a cross-workspace IDOR + member-role privilege escalation | |||
| CVE-2026-47408 | unknown | — | — | 4d ago | praisonai-platform: list_issue_activity returns activity log for any issue regardless of workspace ownership | |||
| CVE-2026-48169 | unknown | — | — | 4d ago | PraisonAI has Cross-Workspace IDOR and Privilege Escalation via Platform API | |||
| CVE-2026-47397 | unknown | — | — | 4d ago | PraisonAI has an Arbitrary File Write in Python API | |||
| CVE-2026-47391 | unknown | — | — | 4d ago | PraisonAI's unauthenticated A2A official example can reach real LLM-driven `eval()` tool execution | |||
| CVE-2026-47394 | unknown | — | — | 4d ago | PraisonAI vulnerable to unauthenticated arbitrary file read via MCP workflow.show, workflow.validate, deploy.validate | |||
| CVE-2026-47392 | unknown | — | — | 4d ago | PraisonAI vulnerable to sandbox escape via `print.__self__` builtins module leak in `execute_code` (subprocess mode) | |||
| CVE-2026-47395 | unknown | — | — | 4d ago | PraisonAI CLI automatically resolves @url mentions in prompt text and can read loopback URLs into model context | |||
| CVE-2026-47393 | unknown | — | — | 4d ago | PraisonAI `deploy --type api` emits a Flask server with authentication disabled by default | |||
| CVE-2026-47396 | unknown | — | — | 4d ago | PraisonAI call server exposes unauthenticated agent listing, invocation, and deletion when CALL_SERVER_TOKEN is unset | |||
| CVE-2026-47390 | unknown | — | — | 4d ago | PraisonAI spider_tools SSRF protection bypass via alternate loopback host encodings | |||
| CVE-2026-47398 | unknown | — | — | 4d ago | PraisonAI: Arbitrary code execution via unguarded `spec.loader.exec_module` in `agents_generator.py` - sibling of CVE-2026-44334 | |||
| CVE-2026-47268 | unknown | — | — | 4d ago | Nezha's authenticated DDNS webhook configuration allows blind SSRF from the dashboard host | |||
| CVE-2026-47233 | unknown | — | — | 4d ago | Admidio: Any logged-in user can delete inventory fields via `mode=field_delete` — incomplete fix of #2024 | |||
| CVE-2026-47234 | unknown | — | — | 4d ago | Admidio writes session IDs and auto-login cookie values to application logs | |||
| CVE-2026-47232 | unknown | — | — | 4d ago | Admidio PKCS#12 private key export action lacks CSRF protection | |||
| CVE-2026-47231 | unknown | — | — | 4d ago | Admidio has IDOR in `documents-files.php` `mode=move_save` that lets any folder-uploader exfiltrate files from private folders | |||
| CVE-2026-47230 | unknown | — | — | 4d ago | Admidio: IDOR in documents-files.php allows cross-folder file rename and description changes by unauthorized uploaders | |||
| CVE-2026-47229 | unknown | — | — | 4d ago | Admidio: CSRF in SSO client `enable` action toggles SAML/OIDC clients without token validation | |||
| CVE-2026-47228 | unknown | — | — | 4d ago | Admidio's CSRF in registration `send_login` mode resets arbitrary user passwords | |||
| CVE-2026-47227 | unknown | — | — | 4d ago | Admidio module-administrator can delete or reorder categories owned by other modules via dead authorization check in `modules/categories.php` | |||
| CVE-2026-47226 | unknown | — | — | 4d ago | Admidio: Authorization bypass in file_delete enables cross-folder file removal by authenticated users without delete privileges | |||
| CVE-2026-47213 | unknown | — | — | 4d ago | BoxLite has a Timeout Bypass Vulnerability | |||
| CVE-2026-47211 | unknown | — | — | 4d ago | ouroboros-ai Vulnerable to Remote Code Execution via Untrusted Project-Directory .env | |||
| CVE-2026-47203 | unknown | — | — | 4d ago | Authelia Missing Username Canonicalization in Basic Auth (LDAP) | |||
| CVE-2026-47201 | unknown | — | — | 4d ago | authentik's XML Signature Wrapping in SAML Source ACS allows authentication as arbitrary federated user | |||
| CVE-2026-47695 | unknown | — | — | 4d ago | CC-Tweaked has an SSRF Protection Bypass with NAT64 | |||
| CVE-2026-47184 | unknown | — | — | 4d ago | zeroconf has unbounded DNS record cache that allows LAN-local memory exhaustion via multicast flood | |||
| CVE-2026-45151 | unknown | — | — | 4d ago | NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In 0.24.8 and earlier, quic_stream_recv can dereference a null substream pointer when a substream is in reopen state. The code fi… | |||
| CVE-2026-47183 | unknown | — | — | 4d ago | zeroconf: Unbounded exception-dedup state retains packet buffers via traceback frame locals, enabling LAN-local memory exhaustion | |||
| CVE-2026-47180 | unknown | — | — | 4d ago | zeroconf has unbounded recursion in DNS compression-pointer decoder that allows LAN-local denial of service | |||
| CVE-2026-47260 | unknown | — | — | 4d ago | Koel Vulnerable to SSRF via Podcast Episode Enclosure URLs | |||
| CVE-2026-46705 | unknown | — | — | 4d ago | russh server userauth state is not reset when authentication principal changes | |||
| CVE-2026-46702 | unknown | — | — | 4d ago | russh: Post-decompression SSH packet size was not bounded, allowing remote oversized compressed packets | |||
| CVE-2026-47255 | unknown | — | — | 4d ago | AgenticMail API/storage and outbound relay hardening fixes | |||
| CVE-2026-47248 | unknown | — | — | 4d ago | Parse Server's GraphQL "Did you mean ...?" validation suggestions disclose schema to unauthenticated callers | |||
| CVE-2026-38739 | unknown | — | — | 4d ago | ezsystems/ezpublish-legacy has a SQL injection in dfscleanup | |||
| CVE-2026-46690 | unknown | — | — | 4d ago | unbounded-spsc: Sender::send pointer-as-value transmute causes OOB read and fake-Arc drop under TX/RX race | |||
| CVE-2026-47266 | unknown | — | — | 4d ago | formie's unauthenticated front-end submission editing can overwrite existing submissions | |||
| CVE-2026-4387 | unknown | — | — | 4d ago | StrongDM Desktop Application before 23.74.0 (Desktop Client before 53.77.0) on Microsoft Windows stores authentication state, including a JSON Web Token and asymmetric key material, in cleartext in a… | |||
| CVE-2026-47190 | unknown | — | — | 4d ago | IPAM controller service account granted unnecessary full access to Secrets | |||
| CVE-2026-47141 | unknown | — | — | 4d ago | NodeVM observability builtins leak host process and HTTP request data | |||
| CVE-2026-45668 | unknown | — | — | 4d ago | Trilium Notes is a cross-platform, hierarchical note taking application focused on building large personal knowledge bases. Prior to 0.102.2, a malicious ZIP archive imported with safe import enabled… | |||
| CVE-2026-43917 | unknown | — | — | 4d ago | Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.19.0 and earlier, the protectedProcedure middleware only verifies the user is authenticated - it does NOT enforce organization scop… | |||
| CVE-2026-47139 | unknown | — | — | 4d ago | NodeVM network builtin exclusions bypass via internal _http_client and _http_server | |||
| CVE-2026-47140 | unknown | — | — | 4d ago | NodeVM builtin denylist bypass via process and inspector/promises allows host code execution | |||
| CVE-2026-47210 | unknown | — | — | 4d ago | vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass | |||
| CVE-2026-47137 | unknown | — | — | 4d ago | vm2 has a CVE-2023-37903 patch bypass: nesting:true without explicit require still allows full RCE | |||
| CVE-2026-47209 | unknown | — | — | 4d ago | vm2's Bridge Proxy set trap ignores receiver parameter, enabling host object property injection via prototype chain | |||
| CVE-2026-47135 | unknown | — | — | 4d ago | vm2 has a sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks | |||
| CVE-2026-47208 | unknown | — | — | 4d ago | vm2 is Vulnerable to Sandbox Breakout Through Promise Species | |||
| CVE-2026-47131 | unknown | — | — | 4d ago | vm2 has a Sandbox Escape issue | |||
| CVE-2026-47200 | unknown | — | — | 4d ago | Nuxt's route middleware is not enforced when rendering `.server.vue` pages via `/__nuxt_island/page_*` | |||
| CVE-2026-45742 | unknown | — | — | 4d ago | Gotenberg has a Race Condition via Multipart `downloadFrom` Handling | |||
| CVE-2026-45741 | unknown | — | — | 4d ago | Gotenberg has an SSRF deny-list bypass in IsPublicIP via IPv6 6to4 / NAT64 / site-local prefixes | |||
| CVE-2026-44829 | unknown | — | — | 4d ago | Gotenberg has path traversal in zip entry name via Windows-style separators in upload filename | |||
| CVE-2026-9194 | unknown | — | — | 4d ago | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… | |||
| CVE-2026-33386 | unknown | — | — | 4d ago | QuickCMS is vulnerable to Cross-Site Scripting (XSS) through its insecure HTTP-based plugin‑fetching mechanism. A malicious attacker can perform a Man‑in‑the‑Middle (MITM) attack by impersonating the… | |||
| CVE-2026-33384 | unknown | — | — | 4d ago | QuickCMS allows a user's session identifier to be set before authentication. The value of this session ID stays the same after authentication. This behaviour enables an attacker to fix a session ID f… | |||
| CVE-2026-44495 | unknown | — | — | 4d ago | axios Vulnerable to Credential Theft and Response Hijacking via Prototype Pollution Gadget in Config Merge | |||
| CVE-2026-44494 | unknown | — | — | 4d ago | axios Vulnerable to Full Man-in-the-Middle via Prototype Pollution Gadget in `config.proxy` | |||
| CVE-2026-44492 | unknown | — | — | 4d ago | axios's shouldBypassProxy does not recognize IPv4-mapped IPv6 addresses, allowing NO_PROXY bypass (incomplete fix for CVE-2025-62718) | |||
| CVE-2026-44490 | unknown | — | — | 4d ago | axios has DoS & Header Injection via Prototype Pollution Read-Side Gadgets in axios merge functions | |||
| CVE-2026-44489 | unknown | — | — | 4d ago | Axios has a Patch Bypass: Proxy-Authorization Header Injection via Prototype Pollution — Incomplete Null-Prototype Fix | |||
| CVE-2026-41237 | unknown | — | — | 4d ago | Froxlor has an incomplete fix for CVE-2026-30932 | |||
| CVE-2026-41236 | unknown | — | — | 4d ago | Froxlor has privilege escalation in SSH key synchronization via symlinked `authorized_keys` path | |||
| CVE-2026-41235 | unknown | — | — | 4d ago | Froxlor has an authorization bypass in FTP shell assignment via missing server-side `available_shells` enforcement | |||
| CVE-2026-9509 | unknown | — | — | 4d ago | An unhandled exception in Suprema BioStar 2 (Server), versions 2.9.8, 2.9.10, and 2.9.11, that allows an unauthenticated remote attacker to cause a denial of service (DoS) by sending HTTP POST reques… | |||
| CVE-2026-9508 | unknown | — | — | 4d ago | Incorrect permission settings on a critical resource in Suprema BioStar 2 (versions 2.9.3 through 2.9.11) that allow backup files to be publicly exposed when the administrator configures their path w… | |||
| CVE-2026-8326 | unknown | — | — | 4d ago | Path traversal vulnerability in Remote Spark (https://www.Remotespark.Com/) SparkView allows reading and writing arbitrary files in all directories as root. This leads to RCE. The affected component … | |||
| CVE-2026-45611 | unknown | — | — | 4d ago | Rejected reason: Further research determined the issue is not a vulnerability. | |||
| CVE-2026-45551 | unknown | — | — | 4d ago | Group-Office is an enterprise customer relationship management and groupware tool. Prior to 26.0.25, 25.0.100, and 6.8.165, GroupOffice allows authenticated users to persist arbitrary legacy settings… | |||
| CVE-2026-45043 | unknown | — | — | 4d ago | RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, improper validation in the PUT /rustfs/admin/v3/import-iam endpoint allows a user with ImportIAMAction to create se… | |||
| CVE-2026-49201 | unknown | — | — | 4d ago | The upload.cgi binary, responsible for processing device backups, contains a hardcoded AES encryption key. This allows an attacker to decrypt, modify, and re-encrypt system backups, facilitating pers… | |||
| CVE-2026-49200 | unknown | — | — | 4d ago | The acer_cgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials (for web and Telnet), leading to unauthorized s… | |||
| CVE-2026-49199 | unknown | — | — | 4d ago | Crafted MQTT messages can trigger command injection, resulting in root-level code execution on the target device. | |||
| CVE-2026-49198 | unknown | — | — | 4d ago | Improper access control in the MQTT broker allows wildcard topic subscriptions, exposing all MQTT traffic to unauthorized actors. | |||
| CVE-2026-49197 | unknown | — | — | 4d ago | Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails. | |||
| CVE-2026-49196 | unknown | — | — | 4d ago | The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands. | |||
| CVE-2026-49195 | unknown | — | — | 4d ago | Unauthenticated Debug Service. The /sbin/mtk_dut binary is exposed on TCP port 9000 without authentication, allowing any LAN-based attacker to execute arbitrary UCC commands. | |||
| CVE-2026-49209 | unknown | — | — | 4d ago | symfony/ux-live-component Denial of service via unbounded batch action requests | |||
| CVE-2026-49208 | unknown | — | — | 4d ago | symfony/ux-live-component Format-less date LiveProps parsed with the permissive DateTime constructor | |||
| CVE-2026-49210 | unknown | — | — | 4d ago | symfony/ux-live-component XSS via attacker-controlled child component tag | |||
| CVE-2026-49215 | unknown | — | — | 4d ago | symfony/ux-live-component CSRF Protection Bypass: Accept Header is CORS-Safelisted | |||
| CVE-2026-49212 | unknown | — | — | 4d ago | symfony/ux-live-component LiveComponentHydrator HMAC checksum lacks component and slot binding | |||
| CVE-2026-49216 | unknown | — | — | 4d ago | symfony/ux-autocomplete XSS via unescaped AJAX response data | |||
| CVE-2026-49211 | unknown | — | — | 4d ago | symfony/ux-autocomplete Information exposure via unescaped LIKE wildcards in EntitySearchUtil | |||
| CVE-2026-8070 | unknown | — | — | 4d ago | Incorrect permission assignment for a critical resource in Armoury Crate allows a local user to bypass the driver’s validation mechanism, resulting in unauthorized read and write access to physical m… | |||
| CVE-2026-7480 | unknown | — | — | 4d ago | An Incorrect Permission Assignment for Critical Resource vulnerability in ASUS System Control Interface allows a local user to elevate privileges to SYSTEM and execute arbitrary code via a crafted RP… | |||
| CVE-2026-42563 | unknown | — | — | 5d ago | Dulwich Vulnerable to Command Injection via Merge Driver Path | |||
| CVE-2026-42305 | unknown | — | — | 5d ago | Dulwich has an arbitrary file write via NTFS-hostile tree entries on Windows | |||
| CVE-2026-49299 | unknown | — | — | 5d ago | In OpenStack Neutron before 28.0.1, the tagging controller enforces plural policy action names on single-tag write operations while the defined policy rules use singular names. The mismatched names e… | |||
| CVE-2026-45342 | unknown | — | — | 5d ago | LinkAce is a self-hosted archive to collect website links. Prior to 2.5.6, LinkAce contains an Insecure Direct Object Reference vulnerability in the authorization policy layer that allows any authent… | |||
| CVE-2026-45343 | unknown | — | — | 5d ago | LinkAce is a self-hosted archive to collect website links. Prior to 2.5.6, LinkAce contains a stored cross-site scripting vulnerability that allows a low-privilege user to execute arbitrary JavaScrip… | |||
| CVE-2026-47718 | unknown | — | — | 5d ago | FUXA provides guest and invalid-token access to protected read APIs in secure mode | |||
| CVE-2026-9039 | unknown | — | — | 5d ago | A configuration weakness in the device’s remote management service allows an authenticated session to be established over a communication channel intended solely for vehicle-charger signaling. The se… | |||
| CVE-2026-9038 | unknown | — | — | 5d ago | A stack-based buffer overflow vulnerability in the charging controller’s signal-processing logic allows an attacker with physical access to the charging interface to supply message fields that exceed… |