CVE-2026-28691 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28690 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28689 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28688 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28687 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28686 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28494 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28493 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-28433 - Misskey is an open source, federated social media platform. All Misskey servers running versions 10.

CVE-2026-28432 - Misskey is an open source, federated social media platform. All Misskey servers prior to 2026.3.1 co

CVE-2026-28431 - Misskey is an open source, federated social media platform. All Misskey servers running versions 8.4

CVE-2026-26982 - Ghostty is a cross-platform terminal emulator. Ghostty allows control characters such as 0x03 (Ctrl+

CVE-2026-1776 - Camaleon CMS versions 2.4.5.0 through 2.9.0, prior to commit f54a77e, contain a path traversal vulne

CVE-2026-3288 - A security issue was discovered in ingress-nginx where the `nginx.ingress.kubernetes.io/rewrite-targ

CVE-2026-31816 - Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.31.4

CVE-2026-30240 - Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.31.5

CVE-2026-25960 - vLLM is an inference and serving engine for large language models (LLMs). The SSRF protection fix fo

CVE-2026-25737 - Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.24.0

CVE-2026-25045 - Budibase is a low code platform for creating internal tools, workflows, and admin panels. This issue

CVE-2025-70973 - ScadaBR 1.12.4 is vulnerable to Session Fixation. The application assigns a JSESSIONID session cooki

CVE-2025-70028 - An issue pertaining to CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Tr

CVE-2025-15603 - A security vulnerability has been detected in open-webui up to 0.6.16. Affected is an unknown functi

CVE-2026-25041 - Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.23.22

CVE-2026-0846 - A vulnerability in the `filestring()` function of the `nltk.util` module in nltk version 3.9.2 allow

CVE-2025-70031 - An issue pertaining to CWE-352: Cross-Site Request Forgery was discovered in Sunbird-Ed SunbirdEd-po

CVE-2025-70030 - An issue pertaining to CWE-1333: Inefficient Regular Expression Complexity (4.19) was discovered in

CVE-2025-68402 - FreshRSS is a free, self-hostable RSS aggregator. From 57e1a37 - 00f2f04, the lengths of the nonce w

CVE-2025-62166 - FreshRSS is a free, self-hostable RSS aggregator. Prior 1.28.0, a bug in the auth logic related to m

CVE-2026-3638 - Improper access control in user and role restore API endpoints in Devolutions Server 2025.3.11.0 and

CVE-2026-30140 - An incorrect access control vulnerability exists in Tenda W15E V02.03.01.26_cn. An unauthenticated a

CVE-2025-70032 - An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in Sunbird-Ed Sunbi

CVE-2026-29023 - Keygraph Shannon contains a hard-coded API key in its router configuration that, when the router com

CVE-2025-70039 - An issue pertaining to CWE-78: Improper Neutralization of Special Elements used in an OS Command was

CVE-2025-70038 - An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was disco

CVE-2025-70034 - An issue pertaining to CWE-1333: Inefficient Regular Expression Complexity (4.19) was discovered in

CVE-2025-70033 - An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was disco

CVE-2025-70037 - An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in linagora Twake v

CVE-2025-15568 - A command injection vulnerability was identified in the web module of Archer AXE75 v1.6/v1.0 router.

CVE-2026-3588 - A server-side request forgery (SSRF) vulnerability in IKEA Dirigera v2.866.4 allows an attacker to e

CVE-2026-25866 - MobaXterm versions prior to 26.1 contain an uncontrolled search path element vulnerability. The appl

CVE-2025-70060 - An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was disco

CVE-2025-70050 - An issue pertaining to CWE-312: Cleartext Storage of Sensitive Information was discovered in lesspas

CVE-2025-70048 - An issue pertaining to CWE-319: Cleartext Transmission of Sensitive Information was discovered in Ne

CVE-2025-70047 - An issue pertaining to CWE-400: Uncontrolled Resource Consumption was discovered in Nexusoft NexusIn

CVE-2025-70046 - An issue pertaining to CWE-829: Inclusion of Functionality from Untrusted Control Sphere was discove

CVE-2025-70042 - An issue pertaining to CWE-918: Server-Side Request Forgery was discovered in oslabs-beta ThermaKube

CVE-2025-70040 - An issue pertaining to CWE-532: Insertion of Sensitive Information into Log File was discovered in L

CVE-2024-14027 - In the Linux kernel, the following vulnerability has been resolved: fs/xattr: missing fdput() in fr

CVE-2025-70250 - Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/form

CVE-2025-70243 - Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/form

CVE-2025-70238 - Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/form

CVE-2025-70059 - An issue pertaining to CWE-400: Uncontrolled Resource Consumption was discovered in YMFE yapi v1.12.

CVE-2025-69648 - GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafte

CVE-2025-69647 - GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafte

CVE-2026-3089 - Actual Sync Server allows authenticated users to upload files through POST /sync/upload-user-file. I

CVE-2026-2919 - Malicious scripts could display attacker-controlled web content under spoofed domains in Focus for i

CVE-2026-3819 - A vulnerability has been found in SourceCodester Resort Reservation System 1.0. The affected element

CVE-2026-3038 - The rtsock_msg_buffer() function serializes routing information into a buffer. As a part of this, i

CVE-2026-2261 - Due to a programming error, blocklistd leaks a socket descriptor for each adverse event report it re

CVE-2026-21736 - Software installed and run as a non-privileged user may conduct improper GPU system calls to gain wr

CVE-2026-3818 - A flaw has been found in Tiandy Easy7 CMS Windows 7.17.0. Impacted is an unknown function of the fil

CVE-2026-3817 - A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. Th

CVE-2025-15576 - If two sibling jails are restricted to separate filesystem trees, which is to say that neither of th

CVE-2025-15547 - By default, jailed processes cannot mount filesystems, including nullfs(4). However, the allow.moun

CVE-2025-14769 - In some cases, the `tcp-setmss` handler may free the packet data and throw an error without halting

CVE-2025-14558 - The rtsol(8) and rtsold(8) programs do not validate the domain search list options provided in route

CVE-2026-3816 - A security vulnerability has been detected in OWASP DefectDojo up to 2.55.4. This vulnerability affe

CVE-2026-3815 - A weakness has been identified in UTT HiPER 810G up to 1.7.7-1711. This affects the function strcpy

CVE-2026-25604 - In AWS Auth manager, the origin of the SAML authentication has been used as provided by the client a

CVE-2025-69219 - A user with access to the DB could craft a database entry that would result in executing code on Tri

CVE-2026-3814 - A security flaw has been discovered in UTT HiPER 810G up to 1.7.7-1711. Affected by this issue is th

CVE-2026-3813 - A vulnerability was identified in opencc JFlow up to 5badc00db382d7cb82dad231e6a866b18e0addfe. Affec

CVE-2025-40639 - A SQL injection vulnerability has been found in Eventobot. This vulnerability allows an attacker to

CVE-2025-40638 - A reflected Cross-Site Scripting (XSS) vulnerability has been found in Eventobot. This vulnerabilit

CVE-2025-33022 - Rejected reason: The reporter agreed to not assign CVE ID

CVE-2026-3812 - A vulnerability was determined in itsourcecode Payroll Management System 1.0. Affected is an unknown

CVE-2026-3811 - A vulnerability was found in Tenda FH1202 1.2.0.14(408). This impacts the function fromP2pListFilter

CVE-2026-24713 - Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.

CVE-2026-24015 - A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0

CVE-2025-69279 - In nr modem, there is a possible system crash due to improper input validation. This could lead to r

CVE-2025-69278 - In nr modem, there is a possible system crash due to improper input validation. This could lead to r

CVE-2025-61616 - In nr modem, there is a possible system crash due to improper input validation. This could lead to r

CVE-2025-61615 - In nr modem, there is a possible system crash due to improper input validation. This could lead to r

CVE-2025-61614 - In nr modem, there is a possible system crash due to improper input validation. This could lead to r

CVE-2025-61613 - In nr modem, there is a possible system crash due to improper input validation. This could lead to r

CVE-2025-61612 - In nr modem, there is a possible system crash due to improper input validation. This could lead to r

CVE-2025-61611 - In modem, there is a possible improper input validation. This could lead to remote denial of service

CVE-2025-41772 - An unauthenticated remote attacker can obtain valid session tokens because they are exposed in plain

CVE-2025-41767 - A high-privileged remote attacker can fully compromise the device by abusing an update signature byp

CVE-2025-41766 - A low-privileged remote attacker can trigger a stack-based buffer overflow via a crafted HTTP POST r

CVE-2025-41765 - Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwup

CVE-2025-41764 - Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwup

CVE-2025-41763 - A low‑privileged remote attacker can directly interact with the wwwdnload.cgi endpoint to download a

CVE-2025-41762 - An unauthenticated attacker can abuse the weak hash of the backup generated by the wwwdnload.cgi end

CVE-2025-41761 - A low‑privileged local attacker who gains access to the UBR service account (e.g., via SSH) can esca

CVE-2025-41760 - An administrator may attempt to block all traffic by configuring a pass filter with an empty table.

CVE-2025-41759 - An administrator may attempt to block all networks by specifying "\*" or "all" as the network identi

CVE-2025-41758 - A low-privileged remote attacker can exploit an arbitrary file write vulnerability in the wwupload.c

CVE-2025-41757 - A low-privileged remote attacker can abuse the backup restore functionality of UBR (ubr-restore) whi

CVE-2025-41756 - A low-privileged remote attacker can exploit the ubr-editfile method in wwwubr.cgi, an undocumented

CVE-2025-41755 - A low-privileged remote attacker can exploit the ubr-logread method in wwwubr.cgi to read arbitrary

CVE-2025-41754 - A low-privileged remote attacker can exploit the ubr-editfile method in wwwubr.cgi, an undocumented

CVE-2026-3810 - A vulnerability has been found in Tenda FH1202 1.2.0.14(408). This affects the function fromDhcpList

CVE-2026-3809 - A flaw has been found in Tenda FH1202 1.2.0.14(408). The impacted element is the function fromNatSta

CVE-2026-3808 - A vulnerability was detected in Tenda FH1202 1.2.0.14(408). The affected element is the function for

CVE-2026-3823 - EHG2408 series switch developed by Atop Technologies has a Stack-based Buffer Overflow vulnerability

CVE-2026-3807 - A security vulnerability has been detected in Tenda FH1202 1.2.0.14(408). Impacted is the function f

CVE-2026-3806 - A weakness has been identified in SourceCodester/janobe Resort Reservation System 1.0. This issue af

CVE-2026-3804 - A security flaw has been discovered in Tenda i3 1.0.0.6(2204). This vulnerability affects the functi

CVE-2026-3803 - A vulnerability was identified in Tenda i3 1.0.0.6(2204). This affects the function formWifiMacFilte

CVE-2026-30896 - The installer for Qsee Client versions 1.0.1 and prior insecurely load Dynamic Link Libraries (DLLs)

CVE-2026-3802 - A vulnerability was determined in Tenda i3 1.0.0.6(2204). Affected by this issue is the function for

CVE-2026-3822 - Taipower APP for Andorid developed by Taipower has an Improper Certificate Validation vulnerability.

CVE-2026-3801 - A vulnerability was found in Tenda i3 1.0.0.6(2204). Affected by this vulnerability is the function

CVE-2026-3800 - A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. Affected is t

CVE-2026-3799 - A flaw has been found in Tenda i3 1.0.0.6(2204). This impacts the function formSetCfm of the file /g

CVE-2026-3798 - A vulnerability was detected in Comfast CF-AC100 2.6.0.8. This affects the function sub_44AC14 of th

CVE-2026-3797 - A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The im

CVE-2026-3796 - A weakness has been identified in Qi-ANXIN QAX Virus Removal up to 2025-10-22. The affected element

CVE-2026-3631 - Delta Electronics COMMGR2 has Buffer Over-read DoS vulnerability.

CVE-2026-3630 - Delta Electronics COMMGR2 has Stack-based Buffer Overflow vulnerability.

CVE-2026-3795 - A security flaw has been discovered in doramart DoraCMS 3.0.x. Impacted is the function createFileBy

CVE-2026-3794 - A vulnerability was identified in doramart DoraCMS 3.0.x. This issue affects some unknown processing

CVE-2026-3793 - A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This vulnerability

CVE-2026-3792 - A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown

CVE-2026-3791 - A vulnerability has been found in SourceCodester Sales and Inventory System 1.0. Affected by this is

CVE-2026-3790 - A flaw has been found in SourceCodester Sales and Inventory System 1.0. Affected by this vulnerabili

CVE-2026-3789 - A vulnerability was detected in Bytedesk up to 1.3.9. Affected is the function getModels of the file

CVE-2026-3788 - A security vulnerability has been detected in Bytedesk up to 1.3.9. This impacts the function getMod

CVE-2026-3787 - A weakness has been identified in UltraVNC 1.6.4.0 on Windows. This affects an unknown function in t

CVE-2026-3786 - A security flaw has been discovered in EasyCMS up to 1.6. The impacted element is an unknown functio

CVE-2026-3785 - A vulnerability was identified in EasyCMS up to 1.6. The affected element is an unknown function of

CVE-2026-3771 - A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. This vulnerab

CVE-2026-3770 - A flaw has been found in SourceCodester Computer Laboratory Management System 1.0. This affects an u

CVE-2026-3769 - A vulnerability was detected in Tenda F453 1.0.0.3. Affected by this issue is the function Wrlclient

CVE-2026-3768 - A security vulnerability has been detected in Tenda F453 1.0.0.3. Affected by this vulnerability is

CVE-2026-3767 - A weakness has been identified in itsourcecode sanitize or validate this input 1.0. Affected is an u

CVE-2026-3766 - A security flaw has been discovered in SourceCodester Web-based Pharmacy Product Management System 1

CVE-2026-3765 - A vulnerability was identified in itsourcecode University Management System 1.0. This affects an unk

CVE-2026-3764 - A vulnerability was determined in SourceCodester Client Database Management System 1.0. The impacted

CVE-2026-3763 - A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. The affected ele

CVE-2026-3762 - A vulnerability has been found in SourceCodester Client Database Management System 1.0/3.1. Impacted

CVE-2026-3761 - A flaw has been found in SourceCodester Client Database Management System 1.0. This issue affects so

CVE-2026-3760 - A vulnerability was detected in itsourcecode University Management System 1.0. This vulnerability af

CVE-2026-3759 - A security vulnerability has been detected in projectworlds Online Art Gallery Shop 1.0. This affect

CVE-2026-3758 - A weakness has been identified in projectworlds Online Art Gallery Shop 1.0. Affected by this issue

CVE-2026-3757 - A security flaw has been discovered in projectworlds Online Art Gallery Shop 1.0. Affected by this v

CVE-2026-3756 - A vulnerability was identified in SourceCodester Sales and Inventory System up to 1.0. Affected is a

CVE-2026-3755 - A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This impacts an unk

CVE-2026-3754 - A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown

CVE-2026-3753 - A vulnerability has been found in SourceCodester Sales and Inventory System up to 1.0. The impacted

CVE-2026-3752 - A flaw has been found in SourceCodester Employee Task Management System up to 1.0. The affected elem

CVE-2026-3751 - A vulnerability was detected in SourceCodester Employee Task Management System 1.0. Impacted is an u

CVE-2026-3750 - A security vulnerability has been detected in ContiNew Admin up to 4.2.0. This issue affects the fun

CVE-2026-3749 - A weakness has been identified in Bytedesk up to 1.3.9. This vulnerability affects the function hand

CVE-2026-3748 - A security flaw has been discovered in Bytedesk up to 1.3.9. This affects the function uploadFile of

CVE-2026-3747 - A vulnerability was identified in itsourcecode University Management System 1.0. Affected by this is

CVE-2026-3746 - A vulnerability was determined in SourceCodester Simple Responsive Tourism Website 1.0. Affected by

CVE-2026-3745 - A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function o

CVE-2026-3744 - A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function va

CVE-2026-3743 - A flaw has been found in YiFang CMS 2.0.5. This affects the function update of the file app/db/admin

CVE-2026-3742 - A vulnerability was detected in YiFang CMS 2.0.5. The impacted element is the function update of the

CVE-2026-3741 - A security vulnerability has been detected in YiFang CMS 2.0.5. The affected element is the function

CVE-2026-3740 - A weakness has been identified in itsourcecode University Management System 1.0. Impacted is an unkn

CVE-2026-3739 - A security flaw has been discovered in suitenumerique messages 0.2.0. This issue affects the functio

CVE-2026-3738 - A vulnerability was identified in SourceCodester Pet Grooming Management Software 1.0. This vulnerab

CVE-2026-3737 - A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. This affects

CVE-2026-3736 - A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. Affected by this

CVE-2026-3735 - A vulnerability has been found in code-projects Simple Flight Ticket Booking System 1.0. Affected by

CVE-2026-3734 - A flaw has been found in SourceCodester Client Database Management System 1.0. Affected is an unknow

CVE-2026-3733 - A vulnerability was detected in xuxueli xxl-job up to 3.3.2. This impacts an unknown function of the

CVE-2026-3732 - A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy o

CVE-2026-3731 - A weakness has been identified in libssh up to 0.11.3. The impacted element is the function sftp_ext

CVE-2026-3730 - A security flaw has been discovered in itsourcecode Free Hotel Reservation System 1.0. The affected

CVE-2026-3729 - A vulnerability was identified in Tenda F453 1.0.0.3/3.As. Impacted is the function fromPptpUserAdd

CVE-2026-3728 - A vulnerability was determined in Tenda F453 1.0.0.3/1.If. This issue affects the function fromSetCf

CVE-2026-3727 - A vulnerability was found in Tenda F453 1.0.0.3. This vulnerability affects the function sub_3C6C0 o

CVE-2026-3726 - A vulnerability has been found in Tenda F453 1.0.0.3. This affects the function fromwebExcptypemanFi

CVE-2026-3725 - A flaw has been found in 1024-lab/lab1024 SmartAdmin up to 3.29. Affected by this issue is the funct

CVE-2026-3724 - A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0.

CVE-2026-3723 - A security flaw has been discovered in code-projects Simple Flight Ticket Booking System 1.0. This a

CVE-2026-3721 - A weakness has been identified in 1024-lab/lab1024 SmartAdmin up to 3.29. The affected element is an

CVE-2026-3720 - A security flaw has been discovered in 1024-lab/lab1024 SmartAdmin up to 3.29. Impacted is an unknow

CVE-2026-3719 - A vulnerability was identified in Tsinghua Unigroup Electronic Archives System 3.2.210802(62532). Th

CVE-2026-3716 - A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This vulnerability affects the functi

CVE-2026-3715 - A vulnerability was found in Wavlink WL-WN579X3-C 231124. This affects the function sub_40139C of th

CVE-2026-3714 - A vulnerability has been found in OpenCart 4.0.2.3. Affected by this issue is the function Save of t

CVE-2026-3713 - A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the functio

CVE-2026-3711 - A vulnerability was detected in code-projects Simple Flight Ticket Booking System 1.0. Affected is a

CVE-2026-3710 - A security vulnerability has been detected in code-projects Simple Flight Ticket Booking System 1.0.

CVE-2026-3709 - A weakness has been identified in code-projects Simple Flight Ticket Booking System 1.0. This affect

CVE-2026-3708 - A security flaw has been discovered in code-projects Simple Flight Ticket Booking System 1.0. The im

CVE-2026-3707 - A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function D

CVE-2026-3706 - A vulnerability was determined in mkj Dropbear up to 2025.89. Impacted is the function unpackneg of

CVE-2026-3705 - A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. This issue affec

CVE-2026-3703 - A flaw has been found in Wavlink NU516U1 251208. This affects the function sub_401A10 of the file /c

CVE-2026-3702 - A vulnerability was detected in SourceCodester Loan Management System 1.0. Affected by this issue is

CVE-2026-3701 - A security vulnerability has been detected in H3C Magic B1 up to 100R004. Affected by this vulnerabi

CVE-2026-3704 - A vulnerability has been found in Wavlink NU516U1 251208. This vulnerability affects the function su

CVE-2026-3700 - A weakness has been identified in UTT HiPER 810G up to 1.7.7-171114. Affected is the function strcpy

CVE-2026-3699 - A security flaw has been discovered in UTT HiPER 810G up to 1.7.7-171114. This impacts the function

CVE-2026-3698 - A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. This affects the function strcp

CVE-2026-3697 - A vulnerability was determined in Planet ICG-2510 1.0_20250811. The impacted element is the function

CVE-2026-30910 - Crypt::Sodium::XS versions through 0.001000 for Perl has potential integer overflows. Combined aead

CVE-2026-3696 - A vulnerability was found in Totolink N300RH 6..1c.1353_B20190305. The affected element is the funct

CVE-2026-3695 - A vulnerability has been found in SourceCodester Modern Image Gallery App 1.0. Impacted is an unknow

CVE-2026-3693 - A flaw has been found in Shy2593666979 AgentChat up to 2.3.0. This issue affects the function get_us

CVE-2026-30909 - Crypt::NaCl::Sodium versions through 2.002 for Perl has potential integer overflows. bin2hex, encry

CVE-2026-3683 - A vulnerability was detected in bufanyun HotGo up to 2.0. This issue affects the function ImageTrans

CVE-2026-3682 - A security vulnerability has been detected in welovemedia FFmate up to 2.0.15. This vulnerability af

CVE-2026-3681 - A weakness has been identified in welovemedia FFmate up to 2.0.15. This affects the function fireWeb

CVE-2026-3680 - A security flaw has been discovered in RyuzakiShinji biome-mcp-server up to 1.0.0. Affected by this

CVE-2026-3679 - A vulnerability was identified in Tenda FH451 1.0.0.9. Affected by this vulnerability is the functio

CVE-2026-3678 - A vulnerability was determined in Tenda FH451 1.0.0.9. Affected is the function sub_3C434 of the fil

CVE-2026-3677 - A vulnerability was found in Tenda FH451 1.0.0.9. This impacts the function fromSetCfm of the file /

CVE-2026-3675 - A vulnerability was determined in Freedom Factory dGEN1 up to 20260221. Affected by this issue is th

CVE-2026-3674 - A vulnerability was found in Freedom Factory dGEN1 up to 20260221. Affected by this vulnerability is

CVE-2026-3672 - A vulnerability has been found in JeecgBoot up to 3.9.1. Affected is the function isExistSqlInjectKe

CVE-2026-3671 - A flaw has been found in Freedom Factory dGEN1 up to 20260221. Affected by this vulnerability is the

CVE-2026-3670 - A vulnerability was detected in Freedom Factory dGEN1 up to 20260221. Affected is an unknown functio

CVE-2026-3669 - A security vulnerability has been detected in Freedom Factory dGEN1 up to 20260221. This impacts the

CVE-2026-2671 - A vulnerability was detected in Mendi Neurofeedback Headset V4. Affected by this vulnerability is an

CVE-2026-30863 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.

CVE-2026-30861 - WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.

CVE-2026-30860 - WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.

CVE-2026-30859 - WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.

CVE-2026-30858 - WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.

CVE-2026-30857 - WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.

CVE-2026-30856 - WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.

CVE-2026-30855 - WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.

CVE-2026-30854 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.

CVE-2026-30852 - Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before versio

CVE-2026-30851 - Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before versi

CVE-2026-30850 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.

CVE-2026-30848 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.

CVE-2026-29196 - Netmaker makes networks with WireGuard. Prior to version 1.5.0, a user assigned the platform-user ro

CVE-2026-29195 - Netmaker makes networks with WireGuard. Prior to version 1.5.0, the user update handler (PUT /api/us

CVE-2026-3668 - A weakness has been identified in Freedom Factory dGEN1 up to 20260221. This affects the function An

CVE-2026-3667 - A security flaw has been discovered in Freedom Factory dGEN1 up to 20260221. The impacted element is

CVE-2026-3665 - A vulnerability was identified in xlnt-community xlnt up to 1.6.1. The affected element is the funct

CVE-2026-30838 - league/commonmark is a PHP Markdown parser. Prior to version 2.8.1, the DisallowedRawHtml extension

CVE-2026-30834 - PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. Prio

CVE-2026-30832 - Soft Serve is a self-hostable Git server for the command line. From version 0.6.0 to before version

CVE-2026-29787 - mcp-memory-service is an open-source memory backend for multi-agent systems. Prior to version 10.21.

CVE-2026-29786 - node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creati

CVE-2026-29784 - Ghost is a Node.js content management system. From version 5.101.6 to 6.19.2, incomplete CSRF protec

CVE-2026-29781 - Sliver is a command and control framework that uses a custom Wireguard netstack. In versions from 1.

CVE-2026-29780 - eml_parser serves as a python module for parsing eml files and returning various information found i

CVE-2026-29779 - UptimeFlare is a serverless uptime monitoring & status page solution, powered by Cloudflare Workers.

CVE-2026-29778 - pyLoad is a free and open-source download manager written in Python. From version 0.5.0b3.dev13 to 0