CVE-2026-25934 - go-git is a highly extensible git implementation library written in pure Go. Prior to 5.16.5, a vuln

CVE-2026-25931 - vscode-spell-checker is a basic spell checker that works well with code and documents. Prior to v4.5

CVE-2026-25895 - FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. A path traversal vulnerabi

CVE-2026-25894 - FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. An insecure default config

CVE-2026-25893 - FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. Prior to 1.2.10, an authen

CVE-2025-15319 - Tanium addressed a local privilege escalation vulnerability in Patch Endpoint Tools.

CVE-2025-15318 - Tanium addressed an arbitrary file deletion vulnerability in End-User Notifications Endpoint Tools.

CVE-2026-25961 - SumatraPDF is a multi-format reader for Windows. In 3.5.0 through 3.5.2, SumatraPDF's update mechani

CVE-2026-25925 - PowerDocu contains a Windows GUI executable to perform technical documentations. Prior to 2.4.0, Pow

CVE-2026-25923 - my little forum is a PHP and MySQL based internet forum that displays the messages in classical thre

CVE-2026-25920 - SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, a heap out-of-bounds read vul

CVE-2026-25918 - unity-cli is a command line utility for the Unity Game Engine. Prior to 1.8.2 , the sign-package com

CVE-2026-25892 - Adminer is open-source database management software. Adminer v5.4.1 and earlier has a version check

CVE-2026-25890 - File Browser provides a file managing interface within a specified directory and it can be used to u

CVE-2026-25889 - File Browser provides a file managing interface within a specified directory and it can be used to u

CVE-2026-25885 - PolarLearn is a free and open-source learning program. In 0-PRERELEASE-16 and earlier, the group cha

CVE-2026-25881 - SandboxJS is a JavaScript sandboxing library. Prior to 0.8.31, a sandbox escape vulnerability allows

CVE-2026-25880 - SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, the PDF reader allows executi

CVE-2026-25875 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, Th

CVE-2026-25814 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, Us

CVE-2026-25813 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, Th

CVE-2026-25812 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, th

CVE-2026-25811 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, th

CVE-2026-25808 - Hollo is a federated single-user microblogging software designed to be federated through ActivityPub

CVE-2026-25807 - ZAI Shell is an autonomous SysOps agent designed to navigate, repair, and secure complex environment

CVE-2025-15317 - Tanium addressed an uncontrolled resource consumption vulnerability in Tanium Server.

CVE-2025-15316 - Tanium addressed a local privilege escalation vulnerability in Tanium Server.

CVE-2025-15315 - Tanium addressed a local privilege escalation vulnerability in Tanium Module Server.

CVE-2026-25878 - FroshAdminer is the Adminer plugin for Shopware Platform. Prior to 2.2.1, the Adminer route (/admin/

CVE-2026-25876 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, th

CVE-2026-25810 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, th

CVE-2026-25809 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, th

CVE-2026-25806 - PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, th

CVE-2026-25791 - Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to 1.7.0, the

CVE-2026-25765 - Faraday is an HTTP client library abstraction layer that provides a common interface over many adapt

CVE-2026-25761 - Super-linter is a combination of multiple linters to run as a GitHub Action or standalone. From 6.0.

CVE-2026-25740 - captive browser, a dedicated Chrome instance to log into captive portals without messing with DNS se

CVE-2026-25639 - Axios is a promise based HTTP client for the browser and Node.js. Prior to versions 0.30.3 and 1.13.

CVE-2026-25528 - LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. The LangSmith SDK's

CVE-2026-2246 - A security vulnerability has been detected in AprilRobotics apriltag up to 3.4.5. Affected by this v

CVE-2026-2245 - A vulnerability was identified in CCExtractor up to 183. This affects the function parse_PAT/parse_P

CVE-2026-25598 - Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. Prior to

CVE-2026-25498 - Craft is a platform for creating digital experiences. In versions 4.0.0-RC1 through 4.16.17 and 5.0.

CVE-2026-25497 - Craft is a platform for creating digital experiences. In Craft versions from 4.0.0-RC1 to before 4.1

CVE-2026-25496 - Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 an

CVE-2026-25495 - Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 an

CVE-2026-25494 - Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 a

CVE-2026-25493 - Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 an

CVE-2026-25492 - Craft CMS is a content management system. In Craft versions 3.5.0 through 4.16.17 and 5.0.0-RC1 thro

CVE-2026-25491 - Craft is a platform for creating digital experiences. From 5.0.0-RC1 to 5.8.21, Craft has a stored X

CVE-2026-25480 - Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to 2.20.0, FileStore ma

CVE-2026-25479 - Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to 2.20.0, in litestar.

CVE-2026-25478 - Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to 2.20.0, CORSConfig.a

CVE-2026-25231 - FileRise is a self-hosted web file manager / WebDAV server. Versions prior to 3.3.0, the application

CVE-2026-25230 - FileRise is a self-hosted web file manager / WebDAV server. Prior to 3.3.0, an HTML Injection vulner

CVE-2026-25057 - MarkUs is a web application for the submission and grading of student assignments. Prior to 2.9.1, i

CVE-2026-24900 - MarkUs is a web application for the submission and grading of student assignments. Prior to 2.9.1, t

CVE-2026-1529 - A flaw was found in Keycloak. An attacker can exploit this vulnerability by modifying the organizati

CVE-2026-1486 - A flaw was found in Keycloak. A vulnerability exists in the jwt-authorization-grant flow where the s

CVE-2025-14778 - A flaw was found in Keycloak. A significant Broken Access Control vulnerability exists in the UserMa

CVE-2026-24777 - OpenProject is an open-source, web-based project management software. Prior to 17.0.2, users with th

CVE-2026-24684 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, the RDPSND async p

CVE-2026-24683 - FreeRDP is a free implementation of the Remote Desktop Protocol. ainput_send_input_event caches chan

CVE-2026-24682 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, audin_server_recv_

CVE-2026-24681 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, aAsynchronous bulk

CVE-2026-24680 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, sdl_Pointer_New fr

CVE-2026-24679 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, The URBDRC client

CVE-2026-24678 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread s

CVE-2026-24677 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, ecam_encoder_compr

CVE-2026-24676 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, AUDIN format reneg

CVE-2026-24675 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, urb_select_interfa

CVE-2026-24491 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, video_timer can se

CVE-2026-23948 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer der

CVE-2026-2242 - A vulnerability was determined in janet-lang janet up to 1.40.1. This impacts the function janetc_if

CVE-2026-2241 - A vulnerability was found in janet-lang janet up to 1.40.1. This affects the function os_strftime of

CVE-2026-21419 - Dell Display and Peripheral Manager (Windows) versions prior to 2.2 contain an Improper Link Resolut

CVE-2025-7432 - DPA countermeasures in Silicon Labs' Series 2 devices are not reseeded under certain conditions.  T

CVE-2025-66630 - Fiber is an Express inspired web framework written in Go. Before 2.52.11, on Go versions prior to 1.

CVE-2026-2240 - A vulnerability has been found in janet-lang janet up to 1.40.1. The impacted element is the functio

CVE-2026-24095 - Improper permission enforcement in Checkmk versions 2.4.0 before 2.4.0p21, 2.3.0 before 2.3.0p43, an

CVE-2026-24027 - Crafted zones can lead to increased incoming network traffic.

CVE-2026-0398 - Crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poison

CVE-2025-63354 - Hitron HI3120 v7.2.4.5.2b1 allows stored XSS via the Parental Control option when creating a new fil

CVE-2025-59024 - Crafted delegations or IP fragments can poison cached delegations in Recursor.

CVE-2025-59023 - Crafted delegations or IP fragments can poison cached delegations in Recursor.

CVE-2025-14831 - A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Ce

CVE-2025-10465 - Unrestricted Upload of File with Dangerous Type vulnerability in Birtech Information Technologies In

CVE-2025-10464 - Insecure Storage of Sensitive Information vulnerability in Birtech Information Technologies Industry

CVE-2026-1960 - Stored Cross-Site Scripting (XSS) vulnerability in Loggro Pymes, via the 'Facebook' parameter in '/l

CVE-2026-1959 - Stored Cross-Site Scripting (XSS) vulnerability in Loggro Pymes, via the 'descripción' parameter

CVE-2026-0632 - The Fluent Forms Pro Add On Pack plugin for WordPress is vulnerable to Server-Side Request Forgery i

CVE-2025-7708 - Insertion of Sensitive Information Into Sent Data vulnerability in Atlas Educational Software Indust

CVE-2025-6830 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i

CVE-2025-10463 - Improper Authentication vulnerability in Birtech Information Technologies Industry and Trade Ltd. Co

CVE-2026-25848 - In JetBrains Hub before 2025.3.119807 authentication bypass allowing administrative actions was poss

CVE-2026-25847 - In JetBrains PyCharm before 2025.3.2 a DOM-based XSS on Jupyter viewer page was possible

CVE-2026-25846 - In JetBrains YouTrack before 2025.3.119033 access tokens could be exposed in Mailbox logs

CVE-2026-24098 - Apache Airflow versions 3.0.0 - 3.1.7, has vulnerability that allows authenticated UI users with per

CVE-2026-22922 - Apache Airflow versions 3.1.0 through 3.1.6 contain an authorization flaw that can allow an authenti

CVE-2026-2227 - A vulnerability was found in D-Link DCS-931L up to 1.13.0. Impacted is the function doSystem of the

CVE-2026-2226 - A vulnerability has been found in DouPHP up to 1.9. This issue affects some unknown processing of th

CVE-2026-23903 - Authentication Bypass by Alternate Name vulnerability in Apache Shiro. This issue affects Apache Sh

CVE-2026-2225 - A flaw has been found in itsourcecode News Portal Project 1.0. This vulnerability affects unknown co

CVE-2026-2224 - A vulnerability was detected in code-projects Online Reviewer System 1.0. This affects an unknown pa

CVE-2026-25916 - Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13, when "Block remote images" is used, does not

CVE-2026-25905 - The Python code being run by 'runPython' or 'runPythonAsync' is not isolated from the rest of the JS

CVE-2026-25904 - The Pydantic-AI MCP Run Python tool configures the Deno sandbox with an overly permissive configurat

CVE-2025-7799 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab

CVE-2026-2236 - C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attac

CVE-2026-2235 - C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing authenticated remote attacker

CVE-2026-2234 - C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated rem

CVE-2026-2223 - A security vulnerability has been detected in code-projects Online Reviewer System 1.0. Affected by

CVE-2026-2222 - A weakness has been identified in code-projects Online Reviewer System 1.0. Affected by this vulnera

CVE-2026-22906 - User credentials are stored using AES‑ECB encryption with a hardcoded key. An unauthenticated remote

CVE-2026-22905 - An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validati

CVE-2026-22904 - Improper length handling when parsing multiple cookie fields (including TRACKID) allows an unauthent

CVE-2026-22903 - An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSION

CVE-2026-2221 - A security flaw has been discovered in code-projects Online Reviewer System 1.0. Affected is an unkn

CVE-2026-2220 - A vulnerability was identified in code-projects Online Reviewer System 1.0. This impacts an unknown

CVE-2026-24466 - Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd., Murata M

CVE-2026-1868 - GitLab has remediated a vulnerability in the Duo Workflow Service component of GitLab AI Gateway aff

CVE-2026-0870 - MacroHub developed by GIGABYTE has a Local Privilege Escalation vulnerability. Due to the MacroHub a

CVE-2026-2218 - A vulnerability was determined in D-Link DCS-933L up to 1.14.11. This affects an unknown function of

CVE-2026-2217 - A vulnerability was found in itsourcecode Event Management System 1.0. The impacted element is an un

CVE-2026-2216 - A flaw has been found in rachelos WeRSS we-mp-rss up to 1.4.8. Impacted is the function download_exp

CVE-2026-22613 - The server identity check mechanism for firmware upgrade performed via command shell is insecurely i

CVE-2026-2215 - A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue affects some unknow

CVE-2026-2214 - A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the

CVE-2026-2213 - A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue i

CVE-2026-1615 - Versions of the package jsonpath before 1.2.0 are vulnerable to Arbitrary Code Injection via unsafe

CVE-2025-66598 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66597 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66596 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66595 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66594 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Detailed me

CVE-2026-2212 - A vulnerability was identified in code-projects Online Music Site 1.0. Affected by this vulnerabilit

CVE-2026-2211 - A vulnerability was determined in code-projects Online Music Site 1.0. Affected is an unknown functi

CVE-2025-66608 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66607 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The respo

CVE-2025-66606 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66605 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Since the

CVE-2025-66604 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The libra

CVE-2025-66603 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The web s

CVE-2025-66602 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The web s

CVE-2025-66601 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66600 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This prod

CVE-2025-66599 - A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Physical

CVE-2026-2210 - A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub_4211C8 of th

CVE-2026-2203 - A flaw has been found in Tenda AC8 16.03.33.05. Affected by this vulnerability is an unknown functio

CVE-2026-2202 - A vulnerability was detected in Tenda AC8 16.03.33.05. Affected is the function fromSetWifiGusetBasi

CVE-2026-2201 - A security vulnerability has been detected in ZeroWdd studentmanager up to 2151560fc0a50ec00426785ec

CVE-2026-2200 - A weakness has been identified in heyewei JFinalCMS 5.0.0. This affects an unknown function of the f

CVE-2026-2199 - A security flaw has been discovered in code-projects Online Reviewer System 1.0. The impacted elemen

CVE-2026-2198 - A vulnerability was identified in code-projects Online Reviewer System 1.0. The affected element is

CVE-2026-2197 - A vulnerability was determined in code-projects Online Reviewer System 1.0. Impacted is an unknown f

CVE-2026-2196 - A vulnerability was found in code-projects Online Reviewer System 1.0. This issue affects some unkno

CVE-2026-2195 - A vulnerability has been found in code-projects Online Reviewer System 1.0. This vulnerability affec

CVE-2026-2194 - A flaw has been found in D-Link DI-7100G C1 24.04.18D1. This affects the function start_proxy_client

CVE-2026-2193 - A vulnerability was detected in D-Link DI-7100G C1 24.04.18D1. Affected by this issue is the functio

CVE-2026-2192 - A security vulnerability has been detected in Tenda AC9 15.03.06.42_multi. Affected by this vulnerab

CVE-2026-2191 - A weakness has been identified in Tenda AC9 15.03.06.42_multi. Affected is the function formGetDdosD

CVE-2026-2190 - A security flaw has been discovered in itsourcecode School Management System 1.0. This impacts an un

CVE-2026-2189 - A vulnerability was identified in itsourcecode School Management System 1.0. This affects an unknown

CVE-2026-2188 - A vulnerability was determined in UTT 进取 521G 3.1.1-190816. The impacted element is the function sub

CVE-2026-2187 - A vulnerability was found in Tenda RX3 16.03.13.11. The affected element is the function set_qosMib_

CVE-2026-2186 - A vulnerability has been found in Tenda RX3 16.03.13.11. Impacted is the function fromSetIpMacBind o

CVE-2026-2185 - A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function set_device_name of t

CVE-2026-2184 - A vulnerability was detected in Great Developers Certificate Generation System up to 97171bb0e5e22e5

CVE-2026-2183 - A security vulnerability has been detected in Great Developers Certificate Generation System up to 9

CVE-2026-2182 - A weakness has been identified in UTT 进取 521G 3.1.1-190816. Affected by this issue is the function d

CVE-2026-2181 - A security flaw has been discovered in Tenda RX3 16.03.13.11. Affected by this vulnerability is an u

CVE-2026-2180 - A vulnerability was identified in Tenda RX3 16.03.13.11. Affected is an unknown function of the file

CVE-2026-2179 - A vulnerability was determined in PHPGurukul Hospital Management System 4.0. This impacts an unknown

CVE-2026-2178 - A vulnerability was found in r-huijts xcode-mcp-server up to f3419f00117aa9949e326f78cc940166c88f18c

CVE-2026-2177 - A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element

CVE-2026-2176 - A security vulnerability has been detected in code-projects Contact Management System 1.0. This issu

CVE-2026-2175 - A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function su

CVE-2026-2174 - A security flaw has been discovered in code-projects Contact Management System 1.0. This affects an

CVE-2026-2173 - A vulnerability was identified in code-projects Online Examination System 1.0. Affected by this issu

CVE-2026-2172 - A vulnerability was determined in code-projects Online Application System for Admission 1.0. Affecte

CVE-2026-2171 - A vulnerability was found in code-projects Online Student Management System 1.0. Affected is an unkn

CVE-2026-2169 - A vulnerability has been found in D-Link DWR-M921 1.1.50. This impacts an unknown function of the fi

CVE-2026-2168 - A flaw has been found in D-Link DWR-M921 1.1.50. This affects the function sub_419920 of the file /b

CVE-2026-2167 - A vulnerability was detected in Totolink WA300 5.2cu.7112_B20190227. The impacted element is the fun

CVE-2026-2166 - A security vulnerability has been detected in code-projects Online Reviewer System 1.0. The affected

CVE-2026-2165 - A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of t

CVE-2026-2164 - A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue affects some unknown

CVE-2026-2163 - A vulnerability was identified in D-Link DIR-600 up to 2.15WWb02. This vulnerability affects unknown

CVE-2026-2162 - A vulnerability was determined in itsourcecode News Portal Project 1.0. This affects an unknown part

CVE-2026-2161 - A vulnerability was found in itsourcecode Directory Management System 1.0. Affected by this issue is

CVE-2026-2160 - A vulnerability has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by

CVE-2026-2159 - A flaw has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected is an unknow

CVE-2026-2158 - A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown functi

CVE-2026-2157 - A security vulnerability has been detected in D-Link DIR-823X 250416. This affects the function sub_

CVE-2026-2156 - A weakness has been identified in code-projects Online Student Management System 1.0. The impacted e

CVE-2026-2155 - A security flaw has been discovered in D-Link DIR-823X 250416. The affected element is the function

CVE-2026-2154 - A vulnerability was identified in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Managemen

CVE-2026-2153 - A vulnerability was determined in mwielgoszewski doorman up to 0.6. This issue affects the function

CVE-2026-2152 - A vulnerability was found in D-Link DIR-615 4.10. This vulnerability affects unknown code of the fil

CVE-2026-2151 - A vulnerability has been found in D-Link DIR-615 4.10. This affects an unknown part of the file adv_

CVE-2026-2150 - A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System

CVE-2026-2149 - A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management

CVE-2026-2148 - A security vulnerability has been detected in Tenda AC21 16.03.08.16. Affected is an unknown functio

CVE-2026-2147 - A weakness has been identified in Tenda AC21 16.03.08.16. This impacts an unknown function of the fi

CVE-2026-2146 - A security flaw has been discovered in guchengwuyue yshopmall up to 1.9.1. This affects the function

CVE-2026-2145 - A vulnerability was identified in cym1102 nginxWebUI up to 4.3.7. The impacted element is an unknown

CVE-2026-2143 - A security vulnerability has been detected in D-Link DIR-823X 250416. This issue affects some unknow

CVE-2026-2142 - A weakness has been identified in D-Link DIR-823X 250416. This vulnerability affects the function su

CVE-2026-2141 - A security flaw has been discovered in WuKongOpenSource WukongCRM up to 11.3.3. This affects an unkn

CVE-2026-2140 - A vulnerability was identified in Tenda TX9 up to 22.03.02.10_multi. Affected by this issue is the f

CVE-2026-2139 - A vulnerability was determined in Tenda TX9 up to 22.03.02.10_multi. Affected by this vulnerability

CVE-2026-2138 - A vulnerability was found in Tenda TX9 up to 22.03.02.10_multi. Affected is the function sub_42D03C

CVE-2026-2137 - A vulnerability has been found in Tenda TX3 up to 16.03.13.11_multi. This impacts an unknown functio

CVE-2026-2136 - A flaw has been found in projectworlds Online Food Ordering System 1.0. This affects an unknown func

CVE-2026-2135 - A vulnerability was detected in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub

CVE-2026-2134 - A security vulnerability has been detected in PHPGurukul Hospital Management System 4.0. The affecte

CVE-2026-2133 - A weakness has been identified in code-projects Online Music Site 1.0. Impacted is an unknown functi

CVE-2026-2132 - A security flaw has been discovered in code-projects Online Music Site 1.0. This issue affects some

CVE-2026-2131 - A vulnerability was identified in XixianLiang HarmonyOS-mcp-server 0.1.0. This vulnerability affects

CVE-2026-2130 - A vulnerability was determined in BurtTheCoder mcp-maigret up to 1.0.12. This affects an unknown par

CVE-2026-2209 - A vulnerability was detected in WeKan up to 8.18. The affected element is the function setCreateTran

CVE-2026-2208 - A security vulnerability has been detected in WeKan up to 8.20. Impacted is an unknown function of t

CVE-2026-2207 - A weakness has been identified in WeKan up to 8.20. This issue affects some unknown processing of th

CVE-2026-2206 - A security flaw has been discovered in WeKan up to 8.20. This vulnerability affects unknown code of

CVE-2026-2205 - A vulnerability was identified in WeKan up to 8.20. This affects an unknown part of the file server/

CVE-2026-2129 - A vulnerability was found in D-Link DIR-823X 250416. Affected by this issue is some unknown function

CVE-2025-15100 - The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions

CVE-2025-15027 - The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions

CVE-2026-2122 - A security flaw has been discovered in Xiaopi Panel up to 20260126. This impacts an unknown function

CVE-2026-2120 - A vulnerability was identified in D-Link DIR-823X 250416. This affects an unknown function of the fi

CVE-2026-2118 - A vulnerability was determined in UTT HiPER 810 1.7.4-141218. The impacted element is the function s

CVE-2026-2117 - A vulnerability was found in itsourcecode Society Management System 1.0. The affected element is an

CVE-2026-2116 - A vulnerability has been found in itsourcecode Society Management System 1.0. Impacted is an unknown

CVE-2026-2115 - A flaw has been found in itsourcecode Society Management System 1.0. This issue affects some unknown

CVE-2026-2114 - A vulnerability was detected in itsourcecode Society Management System 1.0. This vulnerability affec

CVE-2026-25859 - Wekan versions prior to 8.20 allow non-administrative users to access migration functionality due to

CVE-2026-25858 - macrozheng mall version 1.0.3 and prior contains an authentication vulnerability in the mall-portal

CVE-2026-25857 - Tenda G300-F router firmware version 16.01.14.2 and prior contain an OS command injection vulnerabil

CVE-2026-25568 - WeKan versions prior to 8.19 contain an authorization logic vulnerability where the instance configu

CVE-2026-25567 - WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in the card comment

CVE-2026-25566 - WeKan versions prior to 8.19 contain an authorization vulnerability in card move logic. A user can s

CVE-2026-25565 - WeKan versions prior to 8.19 contain an authorization vulnerability where certain card update API pa

CVE-2026-25564 - WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in checklist creatio

CVE-2026-25563 - WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in checklist creatio

CVE-2026-25562 - WeKan versions prior to 8.19 contain an information disclosure vulnerability in the attachments publ

CVE-2026-25561 - WeKan versions prior to 8.19 contain an authorization weakness in the attachment upload API. The API

CVE-2026-25560 - WeKan versions prior to 8.19 contain an LDAP filter injection vulnerability in LDAP authentication.

CVE-2025-15564 - A vulnerability has been found in Mapnik up to 4.2.0. This vulnerability affects the function mapnik

CVE-2026-2113 - A security vulnerability has been detected in yuan1994 tpadmin up to 1.3.12. This affects an unknown

CVE-2026-2111 - A weakness has been identified in JeecgBoot up to 3.9.0. Affected by this issue is some unknown func