CVE-2026-48507 - Snipe-IT is an IT asset/license management system. A vulnerability in versions prior to 8.6.0 allows

CVE-2026-46481 - OpenMetadata is a unified metadata platform. Prior to version 1.12.4, a non-admin SSO user can trigg

CVE-2026-46314 - In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Reject empty multisync

CVE-2026-46313 - In the Linux kernel, the following vulnerability has been resolved: media: intel/ipu6: fix error po

CVE-2026-46312 - In the Linux kernel, the following vulnerability has been resolved: media: videobuf2: Set vma_flags

CVE-2026-46311 - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: fix access to

CVE-2026-46310 - In the Linux kernel, the following vulnerability has been resolved: media: renesas: vsp1: Fix NULL

CVE-2026-46309 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/uapi: Reject coh_none PA

CVE-2026-46308 - In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-aft

CVE-2026-46307 - In the Linux kernel, the following vulnerability has been resolved: wifi: ath5k: do not access arra

CVE-2026-46306 - In the Linux kernel, the following vulnerability has been resolved: flow_dissector: do not dissect

CVE-2026-46305 - In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: os_dep: avo

CVE-2026-46304 - In the Linux kernel, the following vulnerability has been resolved: nvmet: avoid recursive nvmet-wq

CVE-2026-46303 - In the Linux kernel, the following vulnerability has been resolved: isofs: validate Rock Ridge CE c

CVE-2026-46302 - In the Linux kernel, the following vulnerability has been resolved: selinux: allow multiple opens o

CVE-2026-46301 - In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-afte

CVE-2026-46299 - In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on

CVE-2026-46298 - In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix race w

CVE-2026-46297 - In the Linux kernel, the following vulnerability has been resolved: net: libwx: use request_irq for

CVE-2026-46296 - In the Linux kernel, the following vulnerability has been resolved: spi: s3c64xx: fix NULL-deref on

CVE-2026-46295 - In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Do IRR scan in __kvm_

CVE-2026-46294 - In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in io

CVE-2026-46293 - In the Linux kernel, the following vulnerability has been resolved: clk: microchip: mpfs-ccc: fix o

CVE-2026-46292 - In the Linux kernel, the following vulnerability has been resolved: pmdomain: core: Fix detach proc

CVE-2026-46291 - In the Linux kernel, the following vulnerability has been resolved: crypto: caam - guard HMAC key h

CVE-2026-46290 - In the Linux kernel, the following vulnerability has been resolved: x86/efi: Fix graceful fault han

CVE-2026-46289 - In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length cal

CVE-2026-46288 - In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-fre

CVE-2026-46287 - In the Linux kernel, the following vulnerability has been resolved: net: txgbe: fix RTNL assertion

CVE-2026-46286 - In the Linux kernel, the following vulnerability has been resolved: leds: qcom-lpg: Check for array

CVE-2026-46285 - In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free

CVE-2026-46284 - In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix early boot cras

CVE-2026-46283 - In the Linux kernel, the following vulnerability has been resolved: tpm: Use kfree_sensitive() to f

CVE-2026-46282 - In the Linux kernel, the following vulnerability has been resolved: iio: frequency: admv1013: fix N

CVE-2026-46281 - In the Linux kernel, the following vulnerability has been resolved: vmalloc: fix buffer overflow in

CVE-2026-46280 - In the Linux kernel, the following vulnerability has been resolved: lib: test_hmm: evict device pag

CVE-2026-46279 - In the Linux kernel, the following vulnerability has been resolved: mm/alloc_tag: clear codetag for

CVE-2026-46278 - In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Fix segfault w

CVE-2026-46277 - In the Linux kernel, the following vulnerability has been resolved: mm/zone_device: do not touch de

CVE-2026-46276 - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix zero-size GDS r

CVE-2026-45581 - fabric-chaincode-java is a Java based implementation of Hyperledger Fabric chaincode shim APIs. From

CVE-2026-43966 - Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') vulner

CVE-2026-41448 - AdGuard Home, when started with the --glinet flag, contains an authentication bypass vulnerability t

CVE-2026-39910 - STACKIT IaaS API contains a missing authorization check vulnerability that allows authenticated, low

CVE-2026-39908 - OpenBullet2 through version 0.3.2 on Windows contains a credential disclosure vulnerability that all

CVE-2026-25856 - OpenBullet2 through version 0.3.2 contains an authenticated remote code execution vulnerability that

CVE-2026-25855 - OpenBullet2 through version 0.3.2 contains a remote code execution vulnerability that allows authent

CVE-2026-25559 - OpenBullet2 through version 0.3.2 contains a path traversal vulnerability in the wordlist endpoint t

CVE-2026-25555 - OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key aut

CVE-2026-11611 - A flaw was found in 389 Directory Server. The Content Synchronization persistent search plugin allow

CVE-2026-11534 - A vulnerability was detected in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76b

CVE-2026-11533 - A security vulnerability has been detected in imvks786 student_management_system up to 9599b560ad3c3

CVE-2026-11532 - A weakness has been identified in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b7

CVE-2026-11531 - A security flaw has been discovered in imvks786 student_management_system up to 9599b560ad3c3b83e75d

CVE-2026-11530 - A vulnerability was identified in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b7

CVE-2026-49975 - Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to

CVE-2026-49756 - Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in wojtekmach Req allows

CVE-2026-49755 - Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in wojtekmach Req all

CVE-2026-48913 - Use After Free vulnerability in Apache HTTP Server module mod_http2 when file handles are already ex

CVE-2026-48488 - phpMyFAQ is an open source FAQ web application. Prior to version 4.1.4, attachment passwords are has

CVE-2026-46657 - Bludit is a content management system. Versions prior to 3.22.0 have a vulnerability in the user man

CVE-2026-46656 - Bludit is a content management system. Versions prior to 3.22.0 have a Broken Access Control flaw wh

CVE-2026-46480 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46479 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46478 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46477 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46476 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46475 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46444 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46443 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46442 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46441 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46440 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-46275 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_uart: fix UAFs a

CVE-2026-46274 - In the Linux kernel, the following vulnerability has been resolved: io-wq: check that the predecess

CVE-2026-44631 - Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the configur

CVE-2026-44186 - Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the mod_proxy_ftp module in

CVE-2026-44185 - Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker contr

CVE-2026-44119 - Improper Privilege Management vulnerability in Apache HTTP Server 2.4.67 and earlier allows local .h

CVE-2026-43951 - Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple re

CVE-2026-42863 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-42862 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-42861 - Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve

CVE-2026-42536 - Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and

CVE-2026-42535 - A path handling issue in mod_dav_fs in Apache 2.4.67 and earlier allows a WebDAV content author to d

CVE-2026-36786 - Shenzhen Tenda Technology Co., Ltd Tenda FH451 V1.0.0.9 was discovered to contain a stack overflow i

CVE-2026-34356 - Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and Pr

CVE-2026-34355 - A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an

CVE-2026-34194 - Software installed and run as a non-privileged user may conduct improper GPU system calls to cause m

CVE-2026-29170 - A cross-site scripting vulnerability exists in mod_proxy_ftp's HTML directory list generation in Apa

CVE-2026-29167 - Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration Thi

CVE-2026-22164 - Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt

CVE-2026-11529 - A vulnerability was determined in designcomputer mysql-mcp-server up to 0.2.2. The impacted element

CVE-2026-11528 - A vulnerability was found in Tenda AC18 15.03.05.05. The affected element is the function sub_45304

CVE-2026-11524 - A vulnerability has been found in Tenda W20E 15.11.0.6. Impacted is the function modifyWifiFilterRul

CVE-2026-11523 - A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of the

CVE-2026-11522 - A vulnerability was detected in Tenda W20E 15.11.0.6. This vulnerability affects the function formSe

CVE-2025-71315 - In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Convert to DRM's vbla

CVE-2020-37248 - OfflineIMAP before 8.0.3 trusts the server with their STARTTLS capability prior to authentication, w

CVE-2026-49235 - When Routinator encounters a file via RRDP using a specifically crafted Document Type Definition, Ro

CVE-2026-49234 - When sending a specifically crafted non-UTF-8 string as select-asn query parameter to the /api/v1/or

CVE-2026-49233 - Routinator does not properly check the module component of rsync URIs, which are used to create the

CVE-2026-49232 - Routinator exits on any error when accepting incoming HTTP or RTR connections, including ones it can

CVE-2026-43974 - Unexpected Status Code or Return Value vulnerability in ninenines gun (gun_http module) allows a mal

CVE-2026-43973 - Uncontrolled Resource Consumption vulnerability in ninenines gun (gun_http module) allows a maliciou

CVE-2026-43972 - Origin Validation Error vulnerability in ninenines gun (gun_http2 module) allows cross-origin cookie

CVE-2026-36789 - Shenzhen Tenda Technology Co., Ltd Tenda AC1206 v15.03.06.23 was discovered to contain multiple stac

CVE-2026-25558 - QloApps through 1.7.0 contains a stored cross-site scripting vulnerability in the admin file manager

CVE-2026-11521 - A security vulnerability has been detected in Mohammed-eid35 bank-management-system-springboot up to

CVE-2026-11520 - A weakness has been identified in SourceCodester Inventory System 1.0. Affected by this issue is som

CVE-2026-11519 - A security flaw has been discovered in SourceCodester Inventory System 1.0. Affected by this vulnera

CVE-2026-11518 - A vulnerability was identified in SourceCodester Inventory System 1.0. Affected is an unknown functi

CVE-2026-11517 - A vulnerability was determined in UTT HiPER 2610G up to 3.0.0-171107. This impacts the function strc

CVE-2026-11516 - A vulnerability was found in UTT HiPER 2610G up to 3.0.0-171107. This affects the function strcpy of

CVE-2026-9549 - Stored cross-site scripting in the service discovery active check output in Checkmk <2.5.0p5, <2.4.0

CVE-2026-8833 - Improper neutralization of HTML-encoded characters in the URL validation function in Checkmk <2.5.0p

CVE-2026-8078 - Stored cross-site scripting in the global settings change log in Checkmk <2.5.0p5, <2.4.0p31, <2.3.0

CVE-2026-7765 - Incorrect authorization in the User Messages dashboard widget in Checkmk <2.5.0p5 causes the message

CVE-2026-7186 - Stored cross-site scripting in the URL dashboard widget in Checkmk <2.5.0p5, <2.4.0p31, <2.3.0p48, a

CVE-2026-11577 - A flaw was found in Keycloak. A limited administrator can exploit an improper access control vulnera

CVE-2026-11515 - A vulnerability has been found in SourceCodester Barangay Resident Profiling and Information Managem

CVE-2026-11514 - A flaw has been found in itsourcecode Hospital Management System 1.0. The affected element is an unk

CVE-2026-11513 - A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown

CVE-2026-11512 - A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issu

CVE-2026-11511 - A weakness has been identified in Bolt CMS up to 3.7.5. This vulnerability affects unknown code of t

CVE-2026-50752 - A weakness in the certificate validation logic of the deprecated IKEv1 key exchange may allow an una

CVE-2026-50751 - A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1

CVE-2026-47430 - ## Summary The iOS implementation of `cordova-plugin-inappbrowser` passes the `id` field from a `WK

CVE-2026-3011 - The Recipe Card Blocks Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th

CVE-2026-11569 - A flaw was found in Quay. The filedrop endpoint accepts any mime type without validation, allowing a

CVE-2026-11510 - A security flaw has been discovered in CodeAstro Leave Management System 1.0. This affects an unknow

CVE-2026-11509 - A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is s

CVE-2026-11508 - A vulnerability was determined in CodeAstro Leave Management System 1.0. Affected by this vulnerabil

CVE-2026-11507 - A vulnerability was found in CodeAstro Leave Management System 1.0. Affected is an unknown function

CVE-2026-11506 - A vulnerability has been found in CodeAstro Leave Management System 1.0. This impacts an unknown fun

CVE-2026-11505 - A flaw has been found in GL.iNet A1300, AX1800, AXT1800, MT2500, MT3000, MT6000, X3000 and XE3000 4.

CVE-2026-11504 - A vulnerability was detected in Tenda CX12L 16.03.53.12. The impacted element is the function setSch

CVE-2026-9506 - This vulnerability exists in Bagisto due to improper validation of user-supplied input in the ImageC

CVE-2026-11503 - A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is the f

CVE-2026-11502 - A weakness has been identified in JeecgBoot up to 3.9.2. Impacted is the function HttpServletRespons

CVE-2026-11501 - A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.

CVE-2026-11500 - A vulnerability was identified in Weaviate up to 1.37.7. This vulnerability affects the function val

CVE-2024-56123 - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

CVE-2024-56122 - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

CVE-2024-56121 - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

CVE-2024-56120 - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

CVE-2026-41724 - VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A m

CVE-2026-41723 - VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A m

CVE-2026-41722 - VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A m

CVE-2026-3238 - A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Control

CVE-2026-11499 - A vulnerability was determined in Tenda HG7HG9 and HG10 300001138_en_xpon. This affects the function

CVE-2026-11498 - A vulnerability was found in Tenda HG7HG9 and HG10 300001138_en_xpon. Affected by this issue is the

CVE-2026-11497 - A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unkn

CVE-2026-11495 - A vulnerability was detected in CodeAstro Ingredients Stock Management System 1.0. This impacts an u

CVE-2026-11494 - A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unkno

CVE-2026-11493 - A weakness has been identified in Tenda AC15 15.03.05.19. The impacted element is an unknown functio

CVE-2026-11492 - A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown

CVE-2026-11491 - A vulnerability was identified in CodeAstro Human Resource Management System 1.0. Impacted is an unk

CVE-2026-11490 - A vulnerability was determined in code-projects Online Music Site 1.0. This issue affects some unkno

CVE-2026-11489 - A vulnerability was found in code-projects Online Music Site 1.0. This vulnerability affects unknown

CVE-2026-11488 - A vulnerability has been found in code-projects Simple Flight Ticket Booking System 1.0. This affect

CVE-2026-11487 - A flaw has been found in Neovim up to 0.12.2. Affected by this issue is the function M.read of the f

CVE-2026-11486 - A vulnerability was detected in SourceCodester Class and Exam Timetabling System 1.0. Affected by th

CVE-2026-11485 - A security vulnerability has been detected in SourceCodester Class and Exam Timetabling System 1.0.

CVE-2026-11484 - A weakness has been identified in SourceCodester Class and Exam Timetabling System 1.0. This impacts

CVE-2026-11483 - A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0. This af

CVE-2026-11482 - A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. The impacted

CVE-2026-11481 - A vulnerability was determined in yoanbernabeu grepai up to 0.35.0. The affected element is the func

CVE-2026-11480 - A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. Impacted

CVE-2026-11479 - A vulnerability has been found in yoanbernabeu grepai 0.35.0. This issue affects some unknown proces

CVE-2026-11478 - A flaw has been found in kokke tiny-regex-c up to f2632c6d9ed25272987471cdb8b70395c2460bdb. This vul

CVE-2026-11477 - A vulnerability was detected in hs-web hsweb-framework up to 5.0.1. This affects the function OAuth2

CVE-2026-11476 - A security vulnerability has been detected in Kushan2k student-management-system up to f16a4ceaddd67

CVE-2026-11475 - A weakness has been identified in Kushan2k student-management-system up to f16a4ceaddd6729c4b306ed46

CVE-2024-58349 - WordPress Theme Travelscape 1.0.3 contains an arbitrary file upload vulnerability that allows unauth

CVE-2024-58348 - WordPress Background Image Cropper version 1.2 contains a remote code execution vulnerability that a

CVE-2023-54352 - WordPress Seotheme contains a remote code execution vulnerability that allows unauthenticated attack

CVE-2023-54351 - WordPress Sonaar Music Plugin 4.7 contains a stored cross-site scripting vulnerability that allows u

CVE-2023-54350 - WordPress Augmented-Reality plugin contains a remote code execution vulnerability in the elFinder co

CVE-2022-50953 - WordPress Plugin admin-word-count-column 2.2 contains a local file read vulnerability that allows un

CVE-2021-47984 - WordPress Plugin WP24 Domain Check 1.6.2 contains a stored cross-site scripting vulnerability that a

CVE-2021-47983 - WordPress Plugin Stripe Payments 2.0.39 contains a stored cross-site scripting vulnerability that al

CVE-2021-47982 - WordPress Plugin WP-Paginate 2.1.3 contains a stored cross-site scripting vulnerability that allows

CVE-2026-11474 - A security flaw has been discovered in Kushan2k student-management-system up to f16a4ceaddd6729c4b30

CVE-2026-11473 - A vulnerability was identified in jflyfox jfinal_cms up to 5.1.0. This impacts the function list of

CVE-2026-11472 - A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0. This affects

CVE-2026-11471 - A vulnerability was found in SourceCodester Class and Exam Timetabling System 1.0. The impacted elem

CVE-2026-11470 - A vulnerability has been found in hs-web hsweb-framework up to 5.0.1. The affected element is the fu

CVE-2026-11469 - A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig

CVE-2026-11468 - A vulnerability was detected in SourceCodester Hospitals Patient Records Management System 1.0. This

CVE-2026-11467 - A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affect

CVE-2026-11466 - A weakness has been identified in zilliztech deep-searcher up to 0.0.2. This affects the function Co

CVE-2026-11465 - A security flaw has been discovered in songquanpeng one-api up to 0.6.11-preview.7. Affected by this

CVE-2026-11464 - A vulnerability was identified in JeecgBoot up to 3.9.2. Affected by this vulnerability is the funct

CVE-2026-11463 - A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the

CVE-2026-11462 - A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This imp

CVE-2026-11461 - A vulnerability has been found in NousResearch hermes-agent up to 0.12.0. This affects the function

CVE-2026-11460 - A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function

CVE-2026-49494 - Comodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 pac

CVE-2026-11459 - A security vulnerability has been detected in SecureAge CatchPulse up to 10.9.3. Impacted is an unkn

CVE-2026-11458 - A weakness has been identified in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69.

CVE-2026-11457 - A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2

CVE-2026-11456 - A vulnerability was identified in Chanjet CRM 1.0. This affects an unknown part of the file /tools/j

CVE-2026-11455 - A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is th

CVE-2026-11453 - A vulnerability was found in Tiobon Employee Self-Service System up to 7.2. Affected by this vulnera

CVE-2026-11452 - A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_0042e2

CVE-2026-11451 - A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snprintf of the file /cg

CVE-2026-11450 - A vulnerability was detected in GL.iNet GL-MT3000 4.4.5. This affects the function dlopen in the lib

CVE-2026-11449 - A security vulnerability has been detected in GL.iNet GL-MT3000 4.4.5. The impacted element is the f

CVE-2026-11448 - A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. The affected element is the functio

CVE-2026-11447 - A security flaw has been discovered in GL.iNet GL-MT3000 up to 4.4.5. Impacted is the function iwinf

CVE-2026-26422 - clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege

CVE-2026-36229 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with

CVE-2026-11441 - A vulnerability was identified in theonedev onedev up to 15.0.5. This vulnerability affects the func

CVE-2026-11440 - A vulnerability was determined in theonedev onedev up to 15.0.5. This affects an unknown part of the

CVE-2026-11439 - A vulnerability was found in theonedev onedev up to 15.0.5. Affected by this issue is some unknown f

CVE-2026-11438 - A vulnerability has been found in theonedev onedev up to 15.0.5. Affected by this vulnerability is a

CVE-2026-11437 - A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the function checkServer of

CVE-2026-11436 - A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the f

CVE-2026-11435 - A security vulnerability has been detected in Jinher OA 1.0. This affects an unknown function of the

CVE-2026-11434 - A weakness has been identified in FluentCMS 0.0.5. The impacted element is an unknown function of th

CVE-2026-11413 - A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3.r4546. The impacted

CVE-2026-11412 - A weakness has been identified in Jinher OA C6. The affected element is an unknown function of the f

CVE-2026-11411 - A security flaw has been discovered in iAI Lab PDF AI App 4.21.0 on Android. Impacted is the functio

CVE-2026-11408 - A vulnerability was identified in vertex-app vertex up to 2026.02.12. This issue affects some unknow

CVE-2026-11406 - A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown cod

CVE-2026-10725 - Protocol::HTTP2 versions before 1.13 for Perl is vulnerable to a HTTP/2 Bomb. Protocol::HTTP2's inb

CVE-2026-9851 - The Booking Package plugin for WordPress is vulnerable to Privilege Escalation via Account Takeover

CVE-2026-9829 - The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to tim

CVE-2026-9594 - The WP Maps – Google Maps,OpenStreetMap,Mapbox,Store Locator,Listing,Directory & Filters plugin for

CVE-2026-9016 - The Debug Log Manager – Conveniently Monitor and Inspect Errors plugin for WordPress is vulnerable t

CVE-2026-8839 - The MapPress Maps for WordPress plugin for WordPress is vulnerable to Authorization Bypass Through U

CVE-2026-8611 - The Klamra Paycal for Aspaclaria plugin for WordPress is vulnerable to Insecure Direct Object Refere

CVE-2026-7624 - The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to authorization bypass in all ver

CVE-2026-9280 - The Ad Inserter – Ad Manager & AdSense Ads plugin for WordPress is vulnerable to Reflected Cross-Sit

CVE-2026-9197 - The Smart Slider 3 plugin for WordPress is vulnerable to Directory Traversal in all versions up to,

CVE-2026-8991 - The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to Stor

CVE-2026-8978 - The OptinCraft – Drag & Drop Optins & Popup Builder for WordPress plugin for WordPress is vulnerable

CVE-2026-8502 - The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vul

CVE-2026-7796 - The EmbedPress – PDF Embedder, Embed PDF viewer, YouTube Videos, 3D FlipBook, Social feeds & more pl

CVE-2026-7795 - The Click to Chat – WA Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via

CVE-2026-7792 - The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More plugin

CVE-2026-7665 - The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is v

CVE-2026-7566 - The LearnPress – Backup & Migration Tool plugin for WordPress is vulnerable to PHP Object Injection

CVE-2026-7565 - The LearnPress – Backup & Migration Tool plugin for WordPress is vulnerable to Arbitrary File Read v

CVE-2026-7537 - The MDJM Event Management plugin for WordPress is vulnerable to Arbitrary File Upload in all version

CVE-2026-2500 - The Quick Playground plugin for WordPress is vulnerable to Path Traversal in all versions up to, and

CVE-2026-9281 - The Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits

CVE-2026-9008 - The Page-list plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and

CVE-2026-8901 - The Integration for Freshsales – Contact Form 7, WPForms, Elementor, Gravity Forms and More plugin f