CVE-2025-58091 - Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality

CVE-2025-58090 - Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality

CVE-2025-58089 - Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality

CVE-2025-58088 - Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality

CVE-2025-58087 - Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality

CVE-2025-58080 - A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7App functionality of Med

CVE-2025-57881 - A reflected cross-site scripting (xss) vulnerability exists in the modifyEmail functionality of MedD

CVE-2025-57787 - A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedD

CVE-2025-57786 - A reflected cross-site scripting (xss) vulnerability exists in the notifynewstudy functionality of M

CVE-2025-55071 - A reflected cross-site scripting (xss) vulnerability exists in the modifyAnonymize functionality of

CVE-2025-54861 - A reflected cross-site scripting (xss) vulnerability exists in the modifyCoercion functionality of M

CVE-2025-54853 - A reflected cross-site scripting (xss) vulnerability exists in the modifyUser functionality of MedDr

CVE-2025-54852 - A reflected cross-site scripting (xss) vulnerability exists in the modifyAeTitle functionality of Me

CVE-2025-54817 - A reflected cross-site scripting (xss) vulnerability exists in the autoPurge functionality of MedDre

CVE-2025-54814 - A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopurgeFilter functionali

CVE-2025-54778 - A reflected cross-site scripting (xss) vulnerability exists in the existingUser functionality of Med

CVE-2025-54495 - A reflected cross-site scripting (xss) vulnerability exists in the emailfailedjob functionality of M

CVE-2025-54157 - A reflected cross-site scripting (xss) vulnerability exists in the encapsulatedDoc functionality of

CVE-2025-53912 - An arbitrary file read vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Pr

CVE-2025-53854 - A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of M

CVE-2025-53707 - A reflected cross-site scripting (xss) vulnerability exists in the modifyTranscript functionality of

CVE-2025-53516 - A reflected cross-site scripting (xss) vulnerability exists in the downloadZip functionality of MedD

CVE-2025-46270 - A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStudies functionality o

CVE-2025-44000 - A reflected cross-site scripting (xss) vulnerability exists in the sendOruReport functionality of Me

CVE-2025-36556 - A reflected cross-site scripting (xss) vulnerability exists in the ldapUser functionality of MedDrea

CVE-2025-1722 - IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from a

CVE-2025-1719 - IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from a

CVE-2025-15380 - The NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Anno

CVE-2025-15347 - The Creator LMS – The LMS for Creators, Coaches, and Trainers plugin for WordPress is vulnerable to

CVE-2025-15043 - The The Events Calendar plugin for WordPress is vulnerable to unauthorized access due to a missing c

CVE-2025-14115 - IBM Sterling Connect:Direct for UNIX Container 6.3.0.0 through 6.3.0.6 Interim Fix 016, and 6.4.0.0

CVE-2025-13925 - IBM Aspera Console 3.4.7 stores potentially sensitive information in log files that could be read by

CVE-2025-12985 - IBM Licensing Operator incorrectly assigns privileges to security critical files which could allow a

CVE-2026-22844 - A Command Injection vulnerability in Zoom Node Multimedia Routers (MMRs) before version 5.2.1716.0 m

CVE-2025-9466 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Duri

CVE-2025-9465 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Duri

CVE-2025-9464 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. This

CVE-2025-9283 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Duri

CVE-2025-9282 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Duri

CVE-2025-9281 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Duri

CVE-2025-9280 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Fuzz

CVE-2025-9279 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Duri

CVE-2025-9278 - A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. Afte

CVE-2025-15281 - Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0 to

CVE-2025-14377 - A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager,

CVE-2025-14376 - A security issue was discovered within the legacy ADI server component of Verve Asset Manager, cause

CVE-2025-14027 - Multiple denial-of-service vulnerabilities exist in the affected product. These issues can be trigge

CVE-2025-11743 - A denial-of-service security issue in the affected product. The security issue occurs when a malform

CVE-2026-1183 - HTML injection vulnerability in multiple Botble products such as TransP, Athena, Martfury, and Homze

CVE-2026-1180 - A flaw was identified in Keycloak’s OpenID Connect Dynamic Client Registration feature when clients

CVE-2025-41081 - Reflected Cross-Site Scripting (XSS) vulnerability in IsMyGym by Zuinq Studio. This vulnerability al

CVE-2025-41025 - Stored Cross-Site Scripting (XSS) in Poultry Farm Management System v1.0 due to the lack of proper v

CVE-2025-41024 - Stored Cross-Site Scripting (XSS) in Poultry Farm Management System v1.0 due to the lack of proper v

CVE-2025-40679 - HTML Injection vulnerability in Isshue by Bdtask, consisting os an HTML injection due to a lack o

CVE-2025-40644 - Reflected Cross-Site Scripting (XSS) vulnerability in Riftzilla's QRGen. This vulnerability allows a

CVE-2025-14369 - dr_flac, an audio decoder within the dr_libs toolset, contains an integer overflow vulnerability fla

CVE-2025-41084 - Stored Cross-Site Scripting (XSS) vulnerability in Sesame web application, due to the fact that uplo

CVE-2025-14533 - The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation in a

CVE-2025-41768 - An high privileged remote attacker can inject arbitrary content into the custom CSS field on the aff

CVE-2026-0895 - The extension extends TYPO3’ FileSpool component, which was vulnerable to Insecure Deserialization p

CVE-2026-1223 - PrismX MX100 AP controller developed by BROWAN COMMUNICATIONS has an Insufficiently Protected Creden

CVE-2026-1222 - PrismX MX100 AP controller developed by BROWAN COMMUNICATIONS has an Arbitrary File Upload vulnerabi

CVE-2026-1221 - PrismX MX100 AP controller developed by BROWAN COMMUNICATIONS has a Use of Hard-coded Credentials v

CVE-2025-66523 - URL parameters are directly embedded into JavaScript code or HTML attributes without proper encoding

CVE-2026-1218 - A vulnerability was detected in Bjskzy Zhiyou ERP up to 11.0. Impacted is the function initRCForm of

CVE-2026-1045 - The Viet contact plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin setting

CVE-2026-1042 - The WP Hello Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'digit_on

CVE-2025-12573 - The Bookingor WordPress plugin through 1.0.12 exposes authenticated AJAX actions without capability

CVE-2026-23917 - Rejected reason: Not used

CVE-2026-23916 - Rejected reason: Not used

CVE-2026-23915 - Rejected reason: Not used

CVE-2026-23914 - Rejected reason: Not used

CVE-2026-23913 - Rejected reason: Not used

CVE-2026-23912 - Rejected reason: Not used

CVE-2026-23911 - Rejected reason: Not used

CVE-2026-23910 - Rejected reason: Not used

CVE-2026-23909 - Rejected reason: Not used

CVE-2026-0908 - Use after free in ANGLE in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to potenti

CVE-2026-0907 - Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacke

CVE-2026-0906 - Incorrect security UI in Google Chrome on Android prior to 144.0.7559.59 allowed a remote attacker

CVE-2026-0905 - Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attack

CVE-2026-0904 - Incorrect security UI in Digital Credentials in Google Chrome prior to 144.0.7559.59 allowed a remot

CVE-2026-0903 - Inappropriate implementation in Downloads in Google Chrome on Windows prior to 144.0.7559.59 allowed

CVE-2026-0902 - Inappropriate implementation in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker

CVE-2026-0901 - Inappropriate implementation in Blink in Google Chrome on Android prior to 144.0.7559.59 allowed a r

CVE-2026-0900 - Inappropriate implementation in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker

CVE-2026-0899 - Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker

CVE-2025-14977 - The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Et

CVE-2025-14348 - The weMail - Email Marketing, Lead Generation, Optin Forms, Email Newsletters, A/B Testing, and Auto

CVE-2025-14798 - The LearnPress – WordPress LMS Plugin for WordPress is vulnerable to Sensitive Information Exposure

CVE-2025-14351 - The Custom Fonts – Host Your Fonts Locally plugin for WordPress is vulnerable to unauthorized loss o

CVE-2026-1051 - The Newsletter – Send awesome emails from WordPress plugin for WordPress is vulnerable to Cross-Site

CVE-2025-14978 - The PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authori

CVE-2026-23950 - node-tar,a Tar for Node.js, has a race condition vulnerability in versions up to and including 7.5.3

CVE-2026-23949 - jaraco.context, an open-source software package that provides some useful decorators and context man

CVE-2026-23947 - Orval generates type-safe JS clients (TypeScript) from any valid OpenAPI v3 or Swagger v2 specificat

CVE-2026-23876 - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior

CVE-2026-23874 - ImageMagick is free and open-source software used for editing and manipulating digital images. Versi

CVE-2026-22770 - ImageMagick is free and open-source software used for editing and manipulating digital images. The B

CVE-2026-1203 - A weakness has been identified in CRMEB up to 5.6.3. The impacted element is the function remoteRegi

CVE-2026-1202 - A security flaw has been discovered in CRMEB up to 5.6.3. The affected element is the function apple

CVE-2026-1197 - A vulnerability was detected in MineAdmin 1.x/2.x. Affected by this vulnerability is an unknown func

CVE-2026-1196 - A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of

CVE-2026-1195 - A weakness has been identified in MineAdmin 1.x/2.x. This impacts the function refresh of the file /

CVE-2026-22219 - Chainlit versions prior to 2.9.4 contain a server-side request forgery (SSRF) vulnerability in the /

CVE-2026-22218 - Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in the /project/elemen

CVE-2026-1194 - A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the co

CVE-2025-15466 - The Image Photo Gallery Final Tiles Grid plugin for WordPress is vulnerable to unauthorized access a

CVE-2026-1193 - A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of

CVE-2026-1192 - A vulnerability was determined in Tosei Online Store Management System ネット店舗管理システム 1.01. The affecte

CVE-2026-1179 - A vulnerability was detected in Yonyou KSOA 9.0. This affects an unknown part of the file /kmf/user_

CVE-2026-23944 - Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to versi

CVE-2026-23885 - Alchemy is an open source content management system engine written in Ruby on Rails. Prior to versio

CVE-2026-1178 - A security vulnerability has been detected in Yonyou KSOA 9.0. Affected by this issue is some unknow

CVE-2026-1177 - A weakness has been identified in Yonyou KSOA 9.0. Affected by this vulnerability is an unknown func

CVE-2026-23886 - Swift W3C TraceContext is a Swift implementation of the W3C Trace Context standard, and Swift OTel i

CVE-2026-23880 - OnboardLite is a comprehensive membership lifecycle platform built for student organizations at the

CVE-2026-23877 - Swing Music is a self-hosted music player for local audio files. Prior to version 2.1.4, Swing Music

CVE-2026-23875 - CrawlChat is an open-source, AI-powered platform that transforms technical documentation into intell

CVE-2026-23849 - File Browser provides a file managing interface within a specified directory and can be used to uplo

CVE-2026-23848 - MyTube is a self-hosted downloader and player for several video websites. Prior to version 1.7.71, a

CVE-2026-23844 - Whisper Money is a personal finance application. Versions prior to 0.1.5 have an insecure direct obj

CVE-2026-23837 - MyTube is a self-hosted downloader and player for several video websites. A vulnerability present in

CVE-2026-1176 - A security flaw has been discovered in itsourcecode School Management System 1.0. Affected is an unk

CVE-2026-1175 - A vulnerability was identified in birkir prime up to 0.4.0.beta.0. This impacts an unknown function

CVE-2026-23852 - SiYuan is a personal knowledge management system. Versions prior to 3.5.4 have a stored Cross-Site S

CVE-2026-23851 - SiYuan is a personal knowledge management system. Versions prior to 3.5.4 contain a logic vulnerabil

CVE-2026-23850 - SiYuan is a personal knowledge management system. In versions prior to 3.5.4, the markdown feature a

CVE-2026-23847 - SiYuan is a personal knowledge management system. Versions prior to 3.5.4 are vulnerable to reflecte

CVE-2026-23846 - Tugtainer is a self-hosted app for automating updates of Docker containers. In versions prior to 1.1

CVE-2026-21696 - Wings is the server control plane for Pterodactyl, a free, open-source game server management panel.

CVE-2026-1174 - A vulnerability was determined in birkir prime up to 0.4.0.beta.0. This affects an unknown function

CVE-2026-1173 - A vulnerability was found in birkir prime up to 0.4.0.beta.0. The impacted element is an unknown fun

CVE-2025-69199 - Wings is the server control plane for Pterodactyl, a free, open-source game server management panel.

CVE-2026-23878 - HotCRP is conference review software. Starting in commit aa20ef288828b04550950cf67c831af8a525f508 an

CVE-2026-23845 - Mailpit is an email testing tool and API for developers. Versions prior to 1.28.3 are vulnerable to

CVE-2026-23843 - teklifolustur_app is a web-based PHP application that allows users to create, manage, and track quot

CVE-2026-23842 - ChatterBot is a machine learning, conversational dialog engine for creating chat bots. ChatterBot ve

CVE-2026-23841 - Movary is a web application to track, rate and explore your movie watch history. Due to insufficient

CVE-2026-23840 - Movary is a web application to track, rate and explore your movie watch history. Due to insufficient

CVE-2026-23839 - Movary is a web application to track, rate and explore your movie watch history. Due to insufficient

CVE-2026-23838 - Tandoor Recipes is a recipe manager than can be installed with the Nix package manager. Starting in

CVE-2026-1172 - A vulnerability has been found in birkir prime up to 0.4.0.beta.0. The affected element is an unknow

CVE-2026-1171 - A flaw has been found in birkir prime up to 0.4.0.beta.0. Impacted is an unknown function of the fil

CVE-2025-69198 - Pterodactyl is a free, open-source game server management panel. Pterodactyl implements rate limits

CVE-2025-55252 - HCL AION  version 2 is affected by a Weak Password Policy vulnerability. This can  allow the use of

CVE-2025-55250 - HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensit

CVE-2026-23884 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen

CVE-2026-23883 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, `xf_Pointe

CVE-2026-23836 - HotCRP is conference review software. A problem introduced in April 2024 in version 3.1 led to inade

CVE-2026-23833 - ESPHome is a system to control microcontrollers remotely through Home Automation systems. In version

CVE-2026-23732 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, FastGlyph

CVE-2026-23721 - OpenProject is an open-source, web-based project management software. When using groups in OpenProje

CVE-2026-23646 - OpenProject is an open-source, web-based project management software. Users of OpenProject versions

CVE-2026-23625 - OpenProject is an open-source, web-based project management software. Versions 16.3.0 through 16.6.4

CVE-2026-23534 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-s

CVE-2026-23533 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-s

CVE-2026-22797 - An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10

CVE-2026-1170 - A vulnerability was detected in birkir prime up to 0.4.0.beta.0. This issue affects some unknown pro

CVE-2026-1169 - A security vulnerability has been detected in birkir prime up to 0.4.0.beta.0. This vulnerability af

CVE-2025-55251 - HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file upl

CVE-2025-55249 - HCL AION is affected by a Missing Security Response Headers vulnerability. The absence of standard s

CVE-2025-52661 - HCL AION version 2 is affected by a JWT Token Expiry Too Long vulnerability. This may increase the r

CVE-2025-52660 - HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file upl

CVE-2025-52659 - HCL AION version 2 is affected by a Cacheable HTTP Response vulnerability. This may lead to unintend

CVE-2026-23532 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-s

CVE-2026-23531 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCo

CVE-2026-23530 - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,`freerdp_bi

CVE-2026-23522 - LobeChat is an open source chat application platform. Prior to version 2.0.0-next.193, `knowledgeBas

CVE-2026-22850 - Koko Analytics is an open-source analytics plugin for WordPress. Versions prior to 2.1.3 are vulnera

CVE-2026-22037 - The @fastify/express plugin adds full Express compatibility to Fastify. A security vulnerability exi

CVE-2026-1162 - A flaw has been found in UTT HiPER 810 1.7.4-141218. The impacted element is the function strcpy of

CVE-2026-22031 - @fastify/middie is the plugin that adds middleware support on steroids to Fastify. A security vulner

CVE-2026-1161 - A vulnerability was detected in pbrong hrms 1.0.1. The affected element is the function UpdateRecrui

CVE-2026-1160 - A security vulnerability has been detected in PHPGurukul Directory Management System 1.0. Impacted i

CVE-2025-68616 - WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side reques

CVE-2025-61684 - Quicly, an IETF QUIC protocol implementation, is susceptible to a denial-of-service attack prior to

CVE-2025-11044 - An Allocation of Resources Without Limits or Throttling vulnerability in the ANSL-Server component o

CVE-2025-11043 - An Improper Certificate Validation vulnerability in the OPC-UA client and ANSL over TLS client used

CVE-2026-21618 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab

CVE-2026-1159 - A weakness has been identified in itsourcecode Online Frozen Foods Ordering System 1.0. This issue a

CVE-2026-1158 - A security flaw has been discovered in Totolink LR350 9.3.5u.6369_B20220309. This vulnerability affe

CVE-2026-1007 - Incorrect Authorization vulnerability in virtual gateway component in Devolutions Server allows atta

CVE-2026-0610 - SQL Injection vulnerability in remote-sessions in Devolutions Server.This issue affects Devolutions

CVE-2026-1157 - A vulnerability was identified in Totolink LR350 9.3.5u.6369_B20220309. This affects the function se

CVE-2026-1156 - A vulnerability was determined in Totolink LR350 9.3.5u.6369_B20220309. Affected by this issue is th

CVE-2026-1181 - Altium 365 workspace endpoints were configured with an overly permissive Cross-Origin Resource Shari

CVE-2026-1155 - A vulnerability was found in Totolink LR350 9.3.5u.6369_B20220309. Affected by this vulnerability is

CVE-2026-1154 - A flaw has been found in SourceCodester E-Learning System 1.0. This impacts an unknown function of t

CVE-2026-1153 - A vulnerability was detected in technical-laohu mpay up to 1.2.4. This affects an unknown function.

CVE-2026-1152 - A security vulnerability has been detected in technical-laohu mpay up to 1.2.4. The impacted element

CVE-2026-1151 - A weakness has been identified in technical-laohu mpay up to 1.2.4. The affected element is an unkno

CVE-2026-1150 - A security flaw has been discovered in Totolink LR350 9.3.5u.6369_B20220309. Impacted is the functio

CVE-2026-1149 - A vulnerability was identified in Totolink LR350 9.3.5u.6369_B20220309. This issue affects the funct

CVE-2026-1148 - A vulnerability was determined in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Managemen

CVE-2026-1147 - A vulnerability was found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management Sys

CVE-2026-1146 - A vulnerability has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Managemen

CVE-2026-1145 - A flaw has been found in quickjs-ng quickjs up to 0.11.0. Affected by this vulnerability is the func

CVE-2025-59355 - A vulnerability. When org.apache.linkis.metadata.util.HiveUtils.decode() fails to perform Base64 de

CVE-2025-29847 - A vulnerability in Apache Linkis. Problem Description When using the JDBC engine and da When using

CVE-2026-1144 - A vulnerability was detected in quickjs-ng quickjs up to 0.11.0. Affected is an unknown function of

CVE-2026-1143 - A weakness has been identified in TOTOLINK A3700R 9.1.2u.5822_B20200513. This affects the function s

CVE-2026-1142 - A security flaw has been discovered in PHPGurukul News Portal 1.0. The impacted element is an unknow

CVE-2026-1141 - A vulnerability was identified in PHPGurukul News Portal 1.0. The affected element is an unknown fun

CVE-2026-1140 - A vulnerability was found in UTT 进取 520W 1.7.7-180627. This issue affects the function strcpy of the

CVE-2026-1139 - A vulnerability has been found in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function

CVE-2026-1138 - A flaw has been found in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /gof

CVE-2026-1137 - A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function str

CVE-2026-1136 - A weakness has been identified in lcg0124 BootDo up to e93dd428ef6f5c881aa74d49a2099ab0cf1e0fcb. Aff

CVE-2026-1135 - A security flaw has been discovered in itsourcecode Society Management System 1.0. This impacts an u

CVE-2026-1134 - A vulnerability was identified in itsourcecode Society Management System 1.0. This affects an unknow

CVE-2026-0943 - HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer deref

CVE-2026-1133 - A vulnerability was determined in Yonyou KSOA 9.0. The impacted element is an unknown function of th

CVE-2026-1132 - A vulnerability was found in Yonyou KSOA 9.0. The affected element is an unknown function of the fil

CVE-2026-1131 - A vulnerability has been found in Yonyou KSOA 9.0. Impacted is an unknown function of the file /kmc/

CVE-2026-1130 - A flaw has been found in Yonyou KSOA 9.0. This issue affects some unknown processing of the file /wo

CVE-2026-1129 - A vulnerability was detected in Yonyou KSOA 9.0. This vulnerability affects unknown code of the file

CVE-2026-23829 - Mailpit is an email testing tool and API for developers. Prior to version 1.28.3, Mailpit's SMTP ser

CVE-2025-15539 - A vulnerability was determined in Open5GS up to 2.7.6. Impacted is the function sgwc_s11_handle_down

CVE-2026-23733 - LobeChat is an open source chat application platform. Prior to version 2.0.0-next.180, a stored Cros

CVE-2026-23644 - esm.sh is a no-build content delivery network (CDN) for web development. Prior to Go pseeudoversion

CVE-2026-23626 - Kimai is a web-based multi-user time-tracking application. Prior to version 2.46.0, Kimai's export f

CVE-2026-23525 - 1Panel is an open-source, web-based control panel for Linux server management. A stored Cross-Site S

CVE-2025-15538 - A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected

CVE-2026-1126 - A security vulnerability has been detected in lwj flow up to a3d2fe8133db9d3b50fda4f66f6863464034464

CVE-2026-1125 - A weakness has been identified in D-Link DIR-823X 250416. Affected by this issue is the function sub

CVE-2026-1124 - A security flaw has been discovered in Yonyou KSOA 9.0. Affected by this vulnerability is an unknown

CVE-2026-0863 - Using string formatting and exception handling, an attacker may bypass n8n's python-task-executor sa

CVE-2026-1123 - A vulnerability was identified in Yonyou KSOA 9.0. Affected is an unknown function of the file /work

CVE-2026-1122 - A vulnerability was determined in Yonyou KSOA 9.0. This impacts an unknown function of the file /wor

CVE-2026-1121 - A vulnerability was found in Yonyou KSOA 9.0. This affects an unknown function of the file /workshee

CVE-2026-1120 - A vulnerability has been found in Yonyou KSOA 9.0. The impacted element is an unknown function of th

CVE-2026-1119 - A flaw has been found in itsourcecode Society Management System 1.0. The affected element is an unkn

CVE-2026-1118 - A vulnerability was detected in itsourcecode Society Management System 1.0. Impacted is an unknown f

CVE-2025-15537 - A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function ma

CVE-2025-15536 - A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function

CVE-2025-15535 - A security flaw has been discovered in nicbarker clay up to 0.14. This affects the function Clay__Me

CVE-2026-1112 - A vulnerability was found in Sanluan PublicCMS up to 5.202506.d. Affected is the function delete of

CVE-2025-15534 - A vulnerability was identified in raysan5 raylib up to 909f040. Affected by this issue is the functi

CVE-2026-1111 - A vulnerability has been found in Sanluan PublicCMS up to 5.202506.d. This impacts the function Save

CVE-2026-1110 - A flaw has been found in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. This affects

CVE-2025-15533 - A vulnerability was determined in raysan5 raylib up to 909f040. Affected by this vulnerability is th

CVE-2026-1109 - A vulnerability was detected in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. The i

CVE-2026-1108 - A security vulnerability has been detected in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10f

CVE-2026-1107 - A weakness has been identified in EyouCMS up to 1.7.1/5.0. Impacted is the function check_userinfo o

CVE-2026-1106 - A security flaw has been discovered in Chamilo LMS up to 2.0.0 Beta 1. This issue affects the functi

CVE-2026-1105 - A vulnerability was identified in EasyCMS up to 1.6. This vulnerability affects unknown code of the

CVE-2026-1066 - A vulnerability was detected in kalcaddle kodbox up to 1.61.10. This issue affects some unknown proc

CVE-2026-1064 - A vulnerability was found in bastillion-io Bastillion up to 4.0.1. This issue affects some unknown p

CVE-2026-1063 - A vulnerability has been found in bastillion-io Bastillion up to 4.0.1. This vulnerability affects u