CVE-2026-8443 - The WP Review Slider Pro plugin for WordPress is vulnerable to SQL Injection via the 'stypes' and 's

CVE-2026-42768 - Issue summary: The CMS_decrypt and PKCS7_decrypt functions are vulnerable to Bleichenbacher-style at

CVE-2026-34182 - Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input val

CVE-2026-48102 - 7-Zip is a file archiver with a high compression ratio. Versions 9.11 through 26.00 contain a heap o

CVE-2026-46344 - liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptogra

CVE-2026-44518 - liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptogra

CVE-2026-46843 - Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected

CVE-2026-46842 - Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected

CVE-2026-46841 - Vulnerability in Oracle REST Data Services (component: General). Supported versions that are affect

CVE-2026-46840 - Vulnerability in Oracle REST Data Services (component: Backend-as-a-Service). Supported versions th

CVE-2026-46839 - Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected

CVE-2026-46837 - Vulnerability in the Oracle Flow Manufacturing product of Oracle E-Business Suite (component: Securi

CVE-2026-46835 - Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are a

CVE-2026-46834 - Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are a

CVE-2026-46833 - Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are a

CVE-2026-46830 - Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affec

CVE-2026-46829 - Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affec

CVE-2026-46828 - Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operatio

CVE-2026-46827 - Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service Mana

CVE-2026-46826 - Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operatio

CVE-2026-46824 - Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component: Work

CVE-2026-46823 - Vulnerability in the Oracle Public Sector Financials (International) product of Oracle E-Business Su

CVE-2026-46822 - Vulnerability in the Oracle iAssets product of Oracle E-Business Suite (component: Internal Operatio

CVE-2026-46821 - Vulnerability in the Oracle Financials Common Modules product of Oracle E-Business Suite (component:

CVE-2026-46820 - Vulnerability in the Oracle Financials Common Modules product of Oracle E-Business Suite (component:

CVE-2026-46819 - Vulnerability in the Oracle Internet Procurement Connector product of Oracle E-Business Suite (compo

CVE-2026-46818 - Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmissio

CVE-2026-46817 - Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmissio

CVE-2026-46775 - Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected

CVE-2026-35277 - Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected

CVE-2026-35266 - Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected

CVE-2026-34311 - Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Appl

CVE-2025-69600 - Command injection in Raynet rvia RayVentory Scan Engine 12.6 Update 8 and previous versions allows a

CVE-2026-27886 - Strapi is an open source headless content management system. Strapi versions starting in 4.0.0 and p

CVE-2026-41195 - mosparo is the modern solution to protect your online forms from spam. Prior to 1.4.13, the automati

CVE-2026-43914 - Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.4, there is a security v

CVE-2026-43881 - WWBN AVideo is an open source video platform. In versions up to and including 29.0, objects/users.js

CVE-2026-29080 - A SQL injection vulnerability in `FilterEngine.create_sqla_query()` allows any authenticated Rucio u

CVE-2026-35255 - Vulnerability in the Oracle Cloud Native Environment Command Line Interface product of Oracle Open S

CVE-2026-35254 - Vulnerability in the Oracle OCI CLI product of Oracle Open Source Projects. The supported versions t

CVE-2026-35253 - Vulnerability in the Oracle Macoron Tool product of Oracle Open Source Projects. The supported versi

CVE-2026-23927 - A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' param

CVE-2026-35228 - Vulnerability in the Oracle MCP Server Helper Tool product of Oracle Open Source Projects (component

CVE-2026-42233 - n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1,

CVE-2026-41263 - Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.

CVE-2026-40514 - SmarterTools SmarterMail builds prior to 9610 contain a cryptographic weakness in the file and email

CVE-2026-35252 - Vulnerability in the Oracle Security Service product of Oracle Fusion Middleware (component: C Oracl

CVE-2026-35251 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35250 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35249 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35248 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35247 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35246 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35245 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35244 - Vulnerability in the Oracle Hyperion Infrastructure Technology product of Oracle Hyperion (component

CVE-2026-35243 - Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middlew

CVE-2026-35242 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35241 - Vulnerability in the PeopleSoft Enterprise CS Student Records product of Oracle PeopleSoft (componen

CVE-2026-35240 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-35239 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versi

CVE-2026-35238 - Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions t

CVE-2026-35237 - Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions t

CVE-2026-35236 - Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions t

CVE-2026-35235 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: GIS). Supported versi

CVE-2026-35234 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Partition). Supported

CVE-2026-35232 - Vulnerability in Oracle Fusion Middleware (component: Dynamic Monitoring Service). Supported versio

CVE-2026-35231 - Vulnerability in the Oracle Financial Services Transaction Filtering product of Oracle Financial Ser

CVE-2026-35230 - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The

CVE-2026-35229 - Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affec

CVE-2026-34325 - Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Ora

CVE-2026-34324 - Vulnerability in the Oracle Life Sciences InForm product of Oracle Life Science Applications (compon

CVE-2026-34323 - Vulnerability in the Oracle Life Sciences InForm product of Oracle Life Science Applications (compon

CVE-2026-34321 - Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Ora

CVE-2026-34320 - Vulnerability in the Oracle Financial Services Customer Screening product of Oracle Financial Servic

CVE-2026-34319 - Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported

CVE-2026-34318 - Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported

CVE-2026-34317 - Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported

CVE-2026-34315 - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Serv

CVE-2026-34314 - Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Ora

CVE-2026-34313 - Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Ora

CVE-2026-34312 - Vulnerability in the RDBMS component of Oracle Database Server. Supported versions that are affecte

CVE-2026-34310 - Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Ora

CVE-2026-34309 - Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Secu

CVE-2026-34308 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: JSON). Supported vers

CVE-2026-34307 - Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Work

CVE-2026-34306 - Vulnerability in the PeopleSoft Enterprise FIN Project Costing product of Oracle PeopleSoft (compone

CVE-2026-34305 - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Serv

CVE-2026-34304 - Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions t

CVE-2026-34303 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-34302 - Vulnerability in the Oracle Workflow product of Oracle E-Business Suite (component: Workflow Loader)

CVE-2026-34301 - Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (

CVE-2026-34300 - Vulnerability in the PeopleSoft Enterprise FIN Contracts product of Oracle PeopleSoft (component: Co

CVE-2026-34299 - Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (

CVE-2026-34298 - Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component: Pe

CVE-2026-34297 - Vulnerability in the Oracle HCM Common Architecture product of Oracle E-Business Suite (component: K

CVE-2026-34296 - Vulnerability in the Oracle Agile Product Lifecycle Management for Process product of Oracle Supply

CVE-2026-34295 - Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component: P

CVE-2026-34293 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versi

CVE-2026-34292 - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core).

CVE-2026-34291 - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Core). Supp

CVE-2026-34290 - Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (componen

CVE-2026-34289 - Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (componen

CVE-2026-34288 - Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (componen

CVE-2026-34287 - Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (componen

CVE-2026-34286 - Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (componen

CVE-2026-34285 - Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (componen

CVE-2026-34284 - Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware (c

CVE-2026-34283 - Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: Identit

CVE-2026-34281 - Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). The supported v

CVE-2026-34280 - Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft (compone

CVE-2026-34279 - Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (c

CVE-2026-34278 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-34277 - Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Flui

CVE-2026-34276 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plug

CVE-2026-34275 - Vulnerability in the Oracle Advanced Inbound Telephony product of Oracle E-Business Suite (component

CVE-2026-34274 - Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: User Interfa

CVE-2026-34273 - Vulnerability in Oracle GoldenGate (component: Libraries). Supported versions that are affected are

CVE-2026-34272 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-34271 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plug

CVE-2026-34270 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plug

CVE-2026-34269 - Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Port

CVE-2026-34267 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-34266 - Vulnerability in the PeopleSoft Enterprise HCM Absence Management product of Oracle PeopleSoft (comp

CVE-2026-22019 - Vulnerability in the PeopleSoft Enterprise HCM Shared Components product of Oracle PeopleSoft (compo

CVE-2026-22017 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-22015 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema).

CVE-2026-22014 - Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Workflow

CVE-2026-22011 - Vulnerability in the Oracle Applications DBA product of Oracle E-Business Suite (component: ADPatch)

CVE-2026-22010 - Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Ora

CVE-2026-22009 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-22006 - Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft (compone

CVE-2026-22005 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-22004 - Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions t

CVE-2026-22002 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-22001 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema).

CVE-2026-21999 - Vulnerability in the XML Database component of Oracle Database Server. Supported versions that are

CVE-2026-21998 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported

CVE-2026-21997 - Vulnerability in the Oracle Life Sciences Empirica Signal product of Oracle Life Science Application

CVE-2026-5234 - The LatePoint plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions

CVE-2026-40193 - maddy is a composable, all-in-one mail server. Versions prior to 0.9.3 contain an LDAP injection vul

CVE-2026-5504 - A padding oracle exists in wolfSSL's PKCS7 CBC decryption that could allow an attacker to recover pl

CVE-2026-29146 - Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration. This

CVE-2026-35187 - pyLoad is a free and open-source download manager written in Python. In 0.5.0b3.dev96 and earlier, t

CVE-2026-34595 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.

CVE-2026-21713 - A flaw in Node.js HMAC verification uses a non-constant-time comparison when validating user-provide

CVE-2019-25653 - Navicat for Oracle 12.1.15 contains a denial of service vulnerability that allows local attackers to

CVE-2026-27856 - Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attac

CVE-2026-33429 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.

CVE-2026-33292 - WWBN AVideo is an open source video platform. Prior to version 26.0, the HLS streaming endpoint (`vi

CVE-2026-32935 - phpseclib is a PHP secure communications library. Projects using versions 0.1.1 through 1.0.26, 2.0.

CVE-2026-21992 - Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST We