CVE-2026-27961 - Agenta is an open-source LLMOps platform. A Server-Side Template Injection (SSTI) vulnerability exis

CVE-2026-27959 - Koa is middleware for Node.js using ES2017 async functions. Prior to versions 3.1.2 and 2.16.4, Koa'

CVE-2026-27954 - Live Helper Chat is an open-source application that enables live support websites. In versions up to

CVE-2026-27952 - Agenta is an open-source LLMOps platform. In Agenta-API prior to version 0.48.1, a Python sandbox es

CVE-2026-27948 - Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-

CVE-2026-27943 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-27942 - fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object wi

CVE-2026-27941 - OpenLIT is an open source platform for AI engineering. Prior to version 1.37.1, several GitHub Actio

CVE-2026-27938 - WPGraphQL provides a GraphQL API for WordPress sites. Prior to version 2.9.1, the `wp-graphql/wp-gra

CVE-2026-27904 - minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objec

CVE-2026-27903 - minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objec

CVE-2026-27902 - Svelte performance oriented web framework. Prior to version 5.53.5, errors from `transformError` wer

CVE-2026-27901 - Svelte performance oriented web framework. Prior to version 5.53.5, the contents of `bind:innerText`

CVE-2026-27900 - The Terraform Provider for Linode versions prior to v3.9.0 logged sensitive information including so

CVE-2026-27899 - WireGuard Portal (or wg-portal) is a web-based configuration portal for WireGuard server management.

CVE-2026-27887 - Spin is an open source developer tool for building and running serverless applications powered by We

CVE-2026-22728 - Bitnami Sealed Secrets is vulnerable to a scope-widening attack during the secret rotation (/v1/rota

CVE-2026-1557 - The WP Responsive Images plugin for WordPress is vulnerable to Path Traversal in all versions up to,

CVE-2026-27946 - ZITADEL is an open source identity management platform. Prior to versions 4.11.1 and 3.4.7, a vulner

CVE-2026-27945 - ZITADEL is an open source identity management platform. Zitadel Action V2 (introduced as early previ

CVE-2026-27896 - The Go MCP SDK used Go's standard encoding/json.Unmarshal for JSON-RPC and MCP protocol message pars

CVE-2026-27888 - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.3, an attacker who uses this v

CVE-2026-27884 - NetExec is a network execution tool. Prior to version 1.5.1, the module spider_plus improperly creat

CVE-2026-27840 - ZITADEL is an open source identity management platform. Starting in version 2.31.0 and prior to vers

CVE-2026-27837 - Dottie provides nested object access and manipulation in JavaScript. Versions 2.0.4 through 2.0.6 co

CVE-2026-27831 - rldns is an open source DNS server. Version 1.3 has a heap-based out-of-bounds read that leads to de

CVE-2026-27830 - c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serial

CVE-2026-27829 - Astro is a web framework. In versions 9.0.0 through 9.5.3, a bug in Astro's image pipeline allows by

CVE-2026-27976 - Zed, a code editor, has an extension installer allows tar/gzip downloads. Prior to version 0.224.4,

CVE-2026-27967 - Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file to

CVE-2026-27933 - Manyfold is an open source, self-hosted web application for managing a collection of 3d models, part

CVE-2026-27821 - GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer

CVE-2026-27818 - TerriaJS-Server is a NodeJS Express server for TerriaJS, a library for building web-based geospatial

CVE-2026-27812 - Sub2API is an AI API gateway platform designed to distribute and manage API quotas from AI product s

CVE-2026-27809 - psd-tools is a Python package for working with Adobe Photoshop PSD files. Prior to version 1.12.2, w

CVE-2026-27808 - Mailpit is an email testing tool and API for developers. Prior to version 1.29.2, the Link Check API

CVE-2026-27804 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.

CVE-2026-27800 - Zed, a code editor, has a Zip Slip (Path Traversal) vulnerability exists in its extension archive ex

CVE-2026-27799 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-27798 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-27735 - Model Context Protocol Servers is a collection of reference implementations for the model context pr

CVE-2026-27711 - NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.163

CVE-2026-27710 - NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.163

CVE-2026-27709 - NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.163

CVE-2026-27635 - Manyfold is an open source, self-hosted web application for managing a collection of 3d models, part

CVE-2026-27633 - TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Versions prior to version 2.02 ha

CVE-2026-27630 - TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Versions prior to version 2.02 ar

CVE-2026-26186 - Fleet is open source device management software. A SQL injection vulnerability in versions prior to

CVE-2026-3209 - A vulnerability has been found in fosrl Pangolin up to 1.15.4-s.3. This affects the function verifyR

CVE-2026-27613 - TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. A vulnerability in versions prior

CVE-2026-27578 - n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, a

CVE-2026-27577 - n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, a

CVE-2026-27498 - n8n is an open source workflow automation platform. Prior to versions 2.2.0 and 1.123.8, an authenti

CVE-2026-27497 - n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, a

CVE-2026-27495 - n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, a

CVE-2026-27494 - n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, a

CVE-2026-27493 - n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, a

CVE-2026-2694 - The The Events Calendar plugin for WordPress is vulnerable to unauthorized modification of data and

CVE-2026-27951 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the functi

CVE-2026-27950 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the fix fo

CVE-2026-27819 - Vikunja is an open-source self-hosted task management platform. Prior to version 2.0.0, the restoreC

CVE-2026-27616 - Vikunja is an open-source self-hosted task management platform. Prior to version 2.0.0, the applicat

CVE-2026-27575 - Vikunja is an open-source self-hosted task management platform. Prior to version 2.0.0, the applicat

CVE-2026-27148 - Storybook is a frontend workshop for building user interface components and pages in isolation. Prio

CVE-2026-27116 - Vikunja is an open-source self-hosted task management platform. Prior to version 2.0.0, a reflected

CVE-2026-26986 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_wind

CVE-2026-26985 - LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provid

CVE-2026-26984 - LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provid

CVE-2026-3200 - A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkNa

CVE-2026-3172 - Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user

CVE-2026-2845 - An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 18.7.5, 18.8 be

CVE-2026-27015 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing

CVE-2026-26965 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, in the RLE

CVE-2026-26955 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a maliciou

CVE-2026-26271 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer o

CVE-2026-25997 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipbo

CVE-2026-25959 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_cliprd

CVE-2026-25955 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpd

CVE-2026-25954 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_s

CVE-2026-25953 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpd

CVE-2026-25952 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWin

CVE-2026-25942 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_s

CVE-2026-22721 - VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with privile

CVE-2026-1747 - GitLab has remediated an issue in GitLab EE affecting all versions from 17.11 before 18.7.5, 18.8 be

CVE-2026-1725 - GitLab has remediated an issue in GitLab CE/EE affecting versions from 18.9 before 18.9.1 that could

CVE-2026-1662 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.5, 18.8

CVE-2026-1388 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.7.5, 18.8 b

CVE-2026-0752 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.2 before 18.7.5, 18.8

CVE-2026-0542 - ServiceNow has addressed a remote code execution vulnerability that was identified in the ServiceNow

CVE-2025-14511 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.2 before 18.7.5, 18.8

CVE-2026-2636 - This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" we

CVE-2026-25941 - FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to

CVE-2026-25736 - Rucio is a software framework that provides functionality to organize, manage, and access large volu

CVE-2026-25735 - Rucio is a software framework that provides functionality to organize, manage, and access large volu

CVE-2026-25734 - Rucio is a software framework that provides functionality to organize, manage, and access large volu

CVE-2026-25733 - Rucio is a software framework that provides functionality to organize, manage, and access large volu

CVE-2026-25138 - Rucio is a software framework that provides functionality to organize, manage, and access large volu

CVE-2026-25136 - Rucio is a software framework that provides functionality to organize, manage, and access large volu

CVE-2026-22720 - VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with

CVE-2026-22719 - VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor

CVE-2025-3525 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.0 before 18.7.5, 18.8 b

CVE-2025-14103 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.7.5, 18.8

CVE-2026-3221 - Sensitive user account information is not encrypted in the database in Devolutions Server 2025.3.14

CVE-2026-25930 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-25929 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-25927 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-25746 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-25743 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-25476 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-25220 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-25164 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-24908 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-24890 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-24487 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-24005 - Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1.

CVE-2026-23627 - OpenEMR is a free and open source electronic health records and medical practice management applicat

CVE-2026-3194 - A flaw has been found in Chia Blockchain 2.1.0. The affected element is the function send_transactio

CVE-2026-27850 - Due to an improperly configured firewall rule, the router will accept any connection on the WAN port

CVE-2026-27795 - LangChain is a framework for building LLM-powered applications. Prior to version 1.1.8, a redirect-b

CVE-2026-27794 - LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0,

CVE-2026-27739 - The Angular SSR is a server-rise rendering tool for Angular applications. Versions prior to 21.2.0-r

CVE-2026-25554 - OpenSIPS versions 3.1 before 3.6.4 containing the auth_jwt module (prior to commit 3822d33) contain

CVE-2026-21902 - An Incorrect Permission Assignment for Critical Resource vulnerability in the On-Box Anomaly detecti

CVE-2026-3193 - A vulnerability was detected in Chia Blockchain 2.1.0. Impacted is an unknown function of the file /

CVE-2026-3192 - A security vulnerability has been detected in Chia Blockchain 2.1.0. This issue affects the function

CVE-2026-3189 - A weakness has been identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This vulnerability a

CVE-2026-27849 - Due to missing neutralization of special elements, OS commands can be injected via the update functi

CVE-2026-27738 - The Angular SSR is a server-rise rendering tool for Angular applications. An Open Redirect vulnerabi

CVE-2026-27736 - BigBlueButton is an open-source virtual classroom. In versions on the 3.x branch prior to 3.0.20, th

CVE-2026-27728 - OneUptime is a solution for monitoring and managing online services. Prior to version 10.0.7, an OS

CVE-2026-27727 - mchange-commons-java, a library that provides Java utilities, includes code that mirrors early imple

CVE-2026-27706 - Plane is an an open-source project management tool. Prior to version 1.2.2, a Full Read Server-Side

CVE-2026-27705 - Plane is an an open-source project management tool. Prior to version 1.2.2, the `ProjectAssetEndpoin

CVE-2026-26717 - An issue in OpenFUN Richie (LMS) in src/richie/apps/courses/api.py. The application used the non-con

CVE-2026-20133 - A vulnerability in Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to

CVE-2026-20129 - A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unaut

CVE-2026-20128 - A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could al

CVE-2026-20127 - A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN v

CVE-2026-20126 - A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with l

CVE-2026-20122 - A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote att

CVE-2026-20107 - A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Control

CVE-2026-20099 - A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Mana

CVE-2026-20091 - A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Manager S

CVE-2026-20051 - A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 P

CVE-2026-20048 - A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Serie

CVE-2026-20037 - A vulnerability in the NX-OS CLI privilege levels of Cisco UCS Manager Software could allow an authe

CVE-2026-20036 - A vulnerability in the CLI and web-based management interface of Cisco UCS Manager Software could al

CVE-2026-20033 - A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticate

CVE-2026-20010 - A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could al

CVE-2026-3206 - Improper Resource Shutdown or Release vulnerability in KrakenD, SLU KrakenD-CE (CircuitBreaker modul

CVE-2026-3188 - A security flaw has been discovered in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This affects an

CVE-2026-27848 - Due to missing neutralization of special elements, OS commands can be injected via the handshake of

CVE-2026-27847 - Due to improper neutralization of special elements, SQL statements can be injected via the handshake

CVE-2026-27846 - Due to missing authentication, a user with physical access to the device can misuse the mesh functio

CVE-2026-27730 - esm.sh is a no-build content delivery network (CDN) for web development. Versions up to and includin

CVE-2026-27704 - The Dart and Flutter SDKs provide software development kits for the Dart programming language. In ve

CVE-2026-27702 - Budibase is a low code platform for creating internal tools, workflows, and admin panels. Prior to v

CVE-2026-27701 - LiveCode is an open-source, client-side code playground. Prior to commit e151c64c2bd80d2d53ac1333f1d

CVE-2026-27700 - Hono is a Web application framework that provides support for any JavaScript runtime. In versions 4.

CVE-2026-22866 - Ethereum Name Service (ENS) is a distributed, open, and extensible naming system based on the Ethere

CVE-2025-69771 - Cross-Site Scripting (XSS) vulnerability in the subtitle loading function of the asbplayer Chrome Ex

CVE-2025-50180 - esm.sh is a no-build content delivery network (CDN) for web development. In version 136, esm.sh is v

CVE-2025-1242 - The administrative credentials can be extracted through application API responses, mobile applicatio

CVE-2026-3203 - RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial

CVE-2026-3202 - NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service

CVE-2026-3201 - USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows

CVE-2026-3197 - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in

CVE-2026-3187 - A vulnerability was identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this iss

CVE-2026-2878 - In Progress® Telerik® UI for AJAX, versions prior to 2026.1.225, an insufficient entropy vulnerabili

CVE-2026-27699 - The `basic-ftp` FTP client library for Node.js contains a path traversal vulnerability (CWE-22) in v

CVE-2026-27695 - zae-limiter is a rate limiting library using the token bucket algorithm. Prior to version 0.10.1, al

CVE-2026-27692 - iccDEV provides a set of libraries and tools for working with ICC color management profiles. In vers

CVE-2026-27691 - iccDEV provides a set of libraries and tools for working with ICC color management profiles. In vers

CVE-2026-3186 - A vulnerability was determined in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this vul

CVE-2026-3185 - A vulnerability was found in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected is an unknown fu

CVE-2026-28196 - In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a credentials config on dis

CVE-2026-28195 - In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add param

CVE-2026-28194 - In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow

CVE-2026-28193 - In JetBrains YouTrack before 2025.3.121962 apps were able to send requests to the app permissions en

CVE-2026-2624 - Missing Authentication for Critical Function vulnerability in ePati Cyber ​​Security Technologies In

CVE-2026-21725 - A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sou

CVE-2026-0704 - In affected version of Octopus Deploy it was possible to remove files and/or contents of files on th

CVE-2026-3118 - A security flaw was identified in the Orchestrator Plugin of Red Hat Developer Hub (Backstage). The

CVE-2026-25701 - An Insecure Temporary File vulnerability in openSUSE sdbootutil allows local users to pre-create a d

CVE-2026-26104 - A flaw was found in the udisks storage management daemon that allows unprivileged users to back up L

CVE-2026-26103 - A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for res

CVE-2025-67860 - A vulnerability has been identified in the NeuVector scanner where the scanner process accepts regis

CVE-2025-67601 - A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates

CVE-2025-62878 - A malicious user can manipulate the parameters.pathPattern to create PersistentVolumes in arbitrary

CVE-2026-2410 - The Disable Admin Notices – Hide Dashboard Notifications plugin for WordPress is vulnerable to Cross

CVE-2026-2367 - The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Stored

CVE-2026-2301 - The Post Duplicator plugin for WordPress is vulnerable to unauthorized arbitrary protected post meta

CVE-2025-14742 - The WP Recipe Maker plugin for WordPress is vulnerable to unauthorized access of data due to a missi

CVE-2026-3171 - A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System

CVE-2026-2479 - The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery

CVE-2026-2416 - The Geo Mashup plugin for WordPress is vulnerable to SQL Injection via the 'sort' parameter in all v

CVE-2026-1929 - The Advanced Woo Labels plugin for WordPress is vulnerable to Remote Code Execution in all versions

CVE-2026-1916 - The WPGSI: Spreadsheet Integration plugin for WordPress is vulnerable to unauthorized modification a

CVE-2026-3170 - A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management

CVE-2026-3169 - A security vulnerability has been detected in Tenda F453 1.0.0.3. This impacts the function fromSafe

CVE-2025-11563 - URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into saving the output file out

CVE-2026-3168 - A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromNatStaticSetting

CVE-2026-3167 - A security flaw has been discovered in Tenda F453 1.0.0.3. The impacted element is the function form

CVE-2026-3166 - A vulnerability was identified in Tenda F453 1.0.0.3. The affected element is the function fromRoute

CVE-2026-1614 - The Rise Blocks – A Complete Gutenberg Page Builder plugin for WordPress is vulnerable to Stored Cro

CVE-2026-3179 - The FTP Backup on the ADM does not properly sanitize filenames received from the FTP server when par

CVE-2026-3165 - A vulnerability was determined in Tenda F453 1.0.0.3. Impacted is the function fromSetWifiGusetBasic

CVE-2026-3164 - A vulnerability was found in itsourcecode News Portal Project 1.0. This issue affects some unknown p

CVE-2026-3163 - A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affe

CVE-2026-3153 - A vulnerability has been found in itsourcecode Document Management System 1.0. Impacted is an unknow

CVE-2026-3152 - A flaw has been found in itsourcecode College Management System 1.0. This issue affects some unknown

CVE-2026-3151 - A vulnerability was detected in itsourcecode College Management System 1.0. This vulnerability affec

CVE-2026-3100 - The FTP Backup on the ADM will not properly strictly enforce TLS certificate verification while conn

CVE-2026-25785 - Path traversal vulnerability exists in Lanscope Endpoint Manager (On-Premises) Sub-Manager Server Ve

CVE-2026-3150 - A security vulnerability has been detected in itsourcecode College Management System 1.0. This affec

CVE-2026-3149 - A weakness has been identified in itsourcecode College Management System 1.0. Affected by this issue

CVE-2026-3148 - A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This impa

CVE-2026-27696 - changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1

CVE-2026-27645 - changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1

CVE-2026-27624 - Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured t

CVE-2025-0976 - Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configur

CVE-2026-3147 - A vulnerability was found in libvips up to 8.18.0. This affects the function vips_foreign_load_csv_b

CVE-2026-27747 - The SPIP interface_traduction_objets plugin versions prior to 2.2.2 contain an authenticated SQL inj

CVE-2026-27746 - The SPIP jeux plugin versions prior to 4.1.1 contain a reflected cross-site scripting (XSS) vulnerab

CVE-2026-27745 - The SPIP interface_traduction_objets plugin versions prior to 2.2.2 contain an authenticated remote

CVE-2026-27744 - The SPIP tickets plugin versions prior to 4.3.3 contain an unauthenticated remote code execution vul

CVE-2026-27743 - The SPIP referer_spam plugin versions prior to 1.3.0 contain an unauthenticated SQL injection vulner

CVE-2026-27641 - Flask-Reuploaded provides file uploads for Flask. A critical path traversal and extension bypass vul

CVE-2026-27640 - tfplan2md is software for converting Terraform plan JSON files into human-readable Markdown reports.

CVE-2026-27639 - Mercator is an open source web application designed to enable mapping of information systems. A stor

CVE-2026-27637 - FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version

CVE-2026-27636 - FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version

CVE-2026-27627 - Karakeep is a elf-hostable bookmark-everything app. In version 0.30.0, when the Reddit metascraper p

CVE-2026-27597 - Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to version 2

CVE-2026-3146 - A vulnerability has been found in libvips up to 8.18.0. The impacted element is the function vips_fo

CVE-2026-3145 - A flaw has been found in libvips up to 8.18.0. The affected element is the function vips_foreign_loa

CVE-2026-27822 - RustFS is a distributed object storage system built in Rust. Prior to version 1.0.0-alpha.83, a Stor

CVE-2026-27632 - Talishar is a fan-made Flesh and Blood project. Prior to commit 6be3871a14c192d1fb8146cdbc76f29f27c1

CVE-2026-27629 - InvenTree is an Open Source Inventory Management System. Prior to version 1.2.3, insecure server-sid

CVE-2026-27628 - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this v

CVE-2026-27626 - OliveTin gives access to predefined shell commands from a web interface. In versions up to and inclu

CVE-2026-27621 - TypiCMS is a multilingual content management system based on the Laravel framework. A Stored Cross-S

CVE-2026-27615 - ADB Explorer is a fluent UI for ADB on Windows. In versions prior to Beta 0.9.26022, ADB-Explorer al

CVE-2026-27614 - Bugsink is a self-hosted error tracking tool. In versions prior to 2.0.13, an unauthenticated attack

CVE-2026-27612 - Repostat is a React component to fetch and display GitHub repository info. Prior to version 1.0.1, t

CVE-2026-27611 - FileBrowser Quantum is a free, self-hosted, web-based file manager. Prior to versions 1.1.3-stable a

CVE-2026-27610 - Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alpha.42

CVE-2026-27609 - Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alpha.42

CVE-2026-27608 - Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alpha.42

CVE-2026-27607 - RustFS is a distributed object storage system built in Rust. In versions 1.0.0-alpha.56 through 1.0.