CVE-2025-69252 - free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th gener

CVE-2025-69251 - free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th gener

CVE-2025-69250 - free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th gener

CVE-2024-58041 - Smolder versions through 1.51 for Perl uses insecure rand() function for cryptographic functions. S

CVE-2026-3063 - Inappropriate implementation in DevTools in Google Chrome prior to 145.0.7632.116 allowed an attacke

CVE-2026-3062 - Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remot

CVE-2026-3061 - Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to pe

CVE-2026-21665 - The Print Service component of Fiserv Originate Loans Peripherals (formerly Velocity Services) in un

CVE-2026-3041 - A security vulnerability has been detected in xingfuggz BaykeShop up to 1.3.20. Impacted is an unkno

CVE-2026-3040 - A vulnerability was identified in DrayTek Vigor 300B up to 1.5.1.6. This affects the function cgiGet

CVE-2026-3028 - A vulnerability was determined in erzhongxmu JEEWMS up to 3.7. This vulnerability affects the functi

CVE-2026-27742 - Bludit version 3.16.2 contains a stored cross-site scripting (XSS) vulnerability in the post content

CVE-2026-27741 - Bludit version 3.16.1 contains a cross-site request forgery (CSRF) vulnerability in the /admin/unins

CVE-2026-27163 - Rejected reason: This CVE was assigned in error.

CVE-2026-25984 - Rejected reason: This CVE was assigned in error.

CVE-2026-25649 - Versions of the Traccar open-source GPS tracking system up to and including 6.11.1 contain an issue

CVE-2025-69248 - free5GC is an open-source project for 5th generation (5G) mobile core networks. Versions up to and i

CVE-2025-69247 - free5GC go-upf is the User Plane Function (UPF) implementation for 5G networks that is part of the f

CVE-2025-69232 - free5GC is an open-source project for 5th generation (5G) mobile core networks. free5GC go-upf versi

CVE-2025-69208 - free5GC UDR is the user data repository (UDR) for free5GC, an an open-source project for 5th generat

CVE-2026-3075 - Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Sta

CVE-2026-3027 - A vulnerability was found in erzhongxmu JEEWMS up to 3.7. This affects an unknown part of the file s

CVE-2026-3026 - A vulnerability has been found in erzhongxmu JEEWMS 3.7. Affected by this issue is some unknown func

CVE-2026-3025 - A flaw has been found in ShuoRen Smart Heating Integrated Management Platform 1.0.0. Affected by thi

CVE-2026-25648 - Versions of the Traccar open-source GPS tracking system starting with 6.11.1 contain an issue in whi

CVE-2026-23694 - Aruba HiSpeed Cache (aruba-hispeed-cache) WordPress plugin versions prior to 3.0.5 contain a cross-s

CVE-2026-23693 - ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor (elementskit-lite)

CVE-2026-23521 - Versions of the Traccar open-source GPS tracking system up to and including 6.11.1 contain an issue

CVE-2025-71056 - Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute a

CVE-2025-70328 - TOTOLINK X6000R v9.4.0cu.1498_B20250826 contains an OS command injection vulnerability in the NTPSyn

CVE-2025-70327 - TOTOLINK X5000R v9.1.0cu_2415_B20250515 contains an argument injection vulnerability in the setDiagn

CVE-2025-68930 - Versions of the Traccar open-source GPS tracking system up to and including 6.11.1 contain a Cross-S

CVE-2026-27623 - Valkey is a distributed key-value database. Starting in version 9.0.0 and prior to version 9.0.3, a

CVE-2026-21863 - Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a mal

CVE-2025-70329 - TOTOLink X5000R v9.1.0cu_2415_B20250515 contains an OS command injection vulnerability in the setIpt

CVE-2025-67733 - Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a mal

CVE-2025-63946 - A privilege escalation (PE) vulnerability in the Tencent PC Manager app thru 17.10.28554.205 on Wind

CVE-2025-63945 - A privilege escalation (PE) vulnerability in the Tencent iOA app thru 210.9.28693.621001 on Windows

CVE-2025-61147 - strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault via the component d

CVE-2025-61146 - saitoha libsixel until v1.8.7 was discovered to contain a memory leak via the component malloc_stub.

CVE-2025-61145 - libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c.

CVE-2025-61144 - libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer

CVE-2025-61143 - libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/

CVE-2026-26464 - Stored Cross-Site Scripting (XSS) was found in the /admin/edit_user.php page of Society Management S

CVE-2026-2698 - An improper access control vulnerability exists where an authenticated user could access areas outsi

CVE-2026-27514 - Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55_multi contains a sensitive information expos

CVE-2026-27513 - Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55_multi contains a cross-site request forgery

CVE-2026-27512 - Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55_multi contains a content-type confusion vuln

CVE-2026-27511 - Shenzhen Tenda F3 Wireless Router firmware V12.01.01.55_multi contains a clickjacking vulnerability

CVE-2026-22568 - Improper neutralization of special elements in user-supplied input within the ZIA Admin UI could all

CVE-2026-22567 - Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administ

CVE-2026-3016 - A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. The affected element is the fun

CVE-2026-3015 - A vulnerability was determined in UTT HiPER 810G up to 1.7.7-171114. Impacted is the function strcpy

CVE-2026-2697 - An Indirect Object Reference (IDOR) in Security Center allows an authenticated remote attacker to es

CVE-2025-70058 - An issue pertaining to CWE-295: Improper Certificate Validation was discovered in YMFE yapi v1.12.0.

CVE-2025-70045 - An issue pertaining to CWE-295: Improper Certificate Validation was discovered in jxcore jxm master.

CVE-2025-70044 - An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-qui

CVE-2025-70043 - An issue pertaining to CWE-295: Improper Certificate Validation was discovered in Ayms node-To maste

CVE-2025-14905 - A flaw was found in the 389-ds-base server. A heap buffer overflow vulnerability exists in the `sche

CVE-2026-21420 - Dell Repository Manager (DRM), versions prior to 3.4.8, contains an Uncontrolled Search Path Element

CVE-2025-69700 - Tenda FH1203 V2.0.1.6 contains a stack-based buffer overflow vulnerability in the modify_add_client_

CVE-2026-2985 - A security flaw has been discovered in Tiandy Video Surveillance System 视频监控平台 7.17.0. This impacts

CVE-2026-2984 - A vulnerability was identified in SourceCodester Student Result Management System 1.0. This affects

CVE-2025-59873 - An information exposure vulnerability exists in Vulnerability in HCL Software ZIE for Web. The app

CVE-2025-40986 - Reflected Cross-Site Scripting (XSS) vulnerability in PideTuCita. This vulnerability allows an attac

CVE-2025-40701 - Reflected Cross-Site Scripting vulnerability in SOTESHOP, version 8.3.4. THis vulnerability allows a

CVE-2026-2983 - A vulnerability was determined in SourceCodester Student Result Management System 1.0. The impacted

CVE-2025-41002 - SQL injection vulnerability in Infoticketing. This vulnerability allows an unauthenticated attacker

CVE-2026-2981 - A vulnerability was found in UTT HiPER 810G up to 1.7.7-1711. The affected element is the function s

CVE-2026-2980 - A vulnerability has been found in UTT HiPER 810G up to 1.7.7-1711. Impacted is the function strcpy o

CVE-2026-2979 - A flaw has been found in FastApiAdmin up to 2.2.0. This issue affects the function user_avatar_uploa

CVE-2026-26365 - Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop

CVE-2026-25747 - Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component. The Camel-LevelD

CVE-2026-23552 - Cross-Realm Token Acceptance Bypass in KeycloakSecurityPolicy Apache Camel Keycloak component.  The

CVE-2026-2978 - A vulnerability was detected in FastApiAdmin up to 2.2.0. This vulnerability affects the function up

CVE-2026-2977 - A security vulnerability has been detected in FastApiAdmin up to 2.2.0. This affects the function up

CVE-2026-1367 - Zohocorp ManageEngine ADSelfService Plus versions 6522 and below are vulnerable to authenticated SQL

CVE-2026-2976 - A weakness has been identified in FastApiAdmin up to 2.2.0. Affected by this issue is the function d

CVE-2026-2975 - A security flaw has been discovered in FastApiAdmin up to 2.2.0. Affected by this vulnerability is t

CVE-2026-2974 - A vulnerability was identified in AliasVault App up to 0.25.3 on Android/iOS. This vulnerability aff

CVE-2026-2972 - A vulnerability was determined in a466350665 Smart-SSO up to 2.1.1. This affects the function Save o

CVE-2026-2971 - A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknow

CVE-2026-2970 - A vulnerability has been found in datapizza-labs datapizza-ai 0.0.2. Affected by this vulnerability

CVE-2026-2969 - A flaw has been found in datapizza-labs datapizza-ai 0.0.2. Affected is the function ChatPromptTempl

CVE-2026-2998 - ERP developed by eAI Technologies has a DLL Hijacking vulnerability, allowing authenticated local at

CVE-2026-2968 - A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function mg_chacha20_p

CVE-2026-2967 - A security vulnerability has been detected in Cesanta Mongoose up to 7.20. This affects the function

CVE-2026-2997 - Tronclass developed by WisdomGarden has a Insecure Direct Object Reference vulnerability. After obta

CVE-2026-2966 - A weakness has been identified in Cesanta Mongoose up to 7.20. The impacted element is the function

CVE-2026-2965 - A security flaw has been discovered in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.9. The affected el

CVE-2026-2964 - A vulnerability was identified in higuma web-audio-recorder-js 0.1/0.1.1. Impacted is the function e

CVE-2026-24494 - SQL Injection vulnerability in the /api/integrations/getintegrations endpoint of Order Up Online Ord

CVE-2026-2963 - A vulnerability was determined in Jinher OA C6 up to 20260210. This issue affects some unknown proce

CVE-2026-2962 - A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_46

CVE-2026-2961 - A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4196C4 of t

CVE-2026-2960 - A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_468D64

CVE-2026-2959 - A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the funct

CVE-2026-2958 - A security vulnerability has been detected in D-Link DWR-M960 1.01.07. Affected is the function sub_

CVE-2026-2588 - Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems.

CVE-2026-2957 - A weakness has been identified in qinming99 dst-admin up to 1.5.0. This impacts the function deleteB

CVE-2026-2956 - A security flaw has been discovered in qinming99 dst-admin up to 1.5.0. This affects the function re

CVE-2026-2954 - A vulnerability was found in Dromara UJCMS 10.0.2. Impacted is the function importChanel of the file

CVE-2019-25462 - Web Ofisi Rent a Car v3 contains an SQL injection vulnerability that allows unauthenticated attacker

CVE-2019-25461 - Web Ofisi Platinum E-Ticaret v5 contains an SQL injection vulnerability that allows unauthenticated

CVE-2019-25460 - Web Ofisi Platinum E-Ticaret v5 contains an SQL injection vulnerability that allows unauthenticated

CVE-2019-25459 - Web Ofisi Emlak V2 contains multiple SQL injection vulnerabilities in the endpoint that allow unauth

CVE-2019-25458 - Web Ofisi Firma Rehberi v1 contains an SQL injection vulnerability that allows unauthenticated attac

CVE-2019-25457 - Web Ofisi Firma v13 contains an SQL injection vulnerability that allows unauthenticated attackers to

CVE-2019-25456 - Web Ofisi Emlak v2 contains an SQL injection vulnerability that allows unauthenticated attackers to

CVE-2019-25455 - Web Ofisi E-Ticaret v3 contains an SQL injection vulnerability that allows unauthenticated attackers

CVE-2026-2953 - A vulnerability has been found in Dromara UJCMS 101.2. This issue affects the function deleteDirecto

CVE-2026-2952 - A flaw has been found in Vaelsys 4.1.0. This vulnerability affects unknown code of the file /tree/tr

CVE-2026-2947 - A vulnerability was detected in rymcu forest up to 0.0.5. This affects the function updateUserInfo o

CVE-2019-25452 - Dolibarr ERP/CRM 10.0.1 contains an SQL injection vulnerability in the elemid POST parameter of the

CVE-2019-25450 - Dolibarr ERP/CRM 10.0.1 contains multiple SQL injection vulnerabilities that allow authenticated att

CVE-2019-25446 - DIGIT CENTRIS ERP contains an SQL injection vulnerability that allows unauthenticated attackers to m

CVE-2019-25443 - Inventory Webapp contains an SQL injection vulnerability that allows unauthenticated attackers to ma

CVE-2019-25442 - Web Wiz Forums 12.01 contains an SQL injection vulnerability that allows unauthenticated attackers t

CVE-2019-25440 - WebIncorp ERP contains an SQL injection vulnerability that allows unauthenticated attackers to manip

CVE-2019-25439 - NoviSmart CMS contains an SQL injection vulnerability that allows remote attackers to execute arbitr

CVE-2019-25433 - XOOPS CMS 2.5.9 contains an SQL injection vulnerability that allows unauthenticated attackers to man

CVE-2019-25391 - Ashop Shopping Cart Software contains a time-based blind SQL injection vulnerability that allows att

CVE-2019-25366 - microASP Portal+ CMS contains an SQL injection vulnerability that allows unauthenticated attackers t

CVE-2026-2946 - A security vulnerability has been detected in rymcu forest up to 0.0.5. Affected by this issue is th

CVE-2026-2945 - A weakness has been identified in JeecgBoot 3.9.0. Affected by this vulnerability is an unknown func

CVE-2026-2944 - A security flaw has been discovered in Tosei Online Store Management System ネット店舗管理システム 1.01. Affect

CVE-2026-2943 - A vulnerability was identified in SapneshNaik Student Management System up to f4b4f0928f0b5551a28ee8

CVE-2026-2940 - A vulnerability was determined in Zaher1307 tiny_web_server up to 8d77b1044a0ca3a5297d8726ac8aa2cf94

CVE-2026-2939 - A vulnerability was found in itsourcecode Student Management System 1.0. The impacted element is an

CVE-2026-2938 - A vulnerability has been found in SourceCodester Student Result Management System 1.0. The affected

CVE-2026-2935 - A weakness has been identified in UTT HiPER 810G up to 1.7.7-171114. This issue affects the function

CVE-2026-2934 - A security vulnerability has been detected in YiFang CMS up to 2.0.5. This impacts the function upda

CVE-2026-2385 - The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCom

CVE-2026-2933 - A weakness has been identified in YiFang CMS up to 2.0.5. This affects the function update of the fi

CVE-2026-2932 - A security flaw has been discovered in YiFang CMS up to 2.0.5. The impacted element is the function

CVE-2026-2930 - A vulnerability was identified in Tenda A18 15.13.07.13. The affected element is the function webCgi

CVE-2026-2929 - A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_453140 of th

CVE-2026-1369 - The Conditional CAPTCHA WordPress plugin through 4.0.0 does not validate a parameter before redirect

CVE-2026-2928 - A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_452CCC of

CVE-2026-2927 - A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function s

CVE-2026-2926 - A flaw has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4237AC of the file /

CVE-2026-2925 - A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_

CVE-2026-2913 - A vulnerability was determined in libvips up to 8.19.0. The affected element is the function vips_so

CVE-2026-2912 - A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown functi

CVE-2026-2911 - A vulnerability has been found in Tenda FH451 up to 1.0.0.9. This issue affects some unknown process

CVE-2026-2910 - A flaw has been found in Tenda HG9 300001138. This vulnerability affects unknown code of the file /b

CVE-2026-2909 - A vulnerability was detected in Tenda HG9 300001138. This affects an unknown part of the file /boafo

CVE-2026-2908 - A security vulnerability has been detected in Tenda HG9 300001138. Affected by this issue is some un

CVE-2026-2907 - A weakness has been identified in Tenda HG9 300001138. Affected by this vulnerability is an unknown

CVE-2026-2906 - A security flaw has been discovered in Tenda HG9 300001138. Affected is an unknown function of the f

CVE-2026-2905 - A vulnerability was identified in Tenda HG9 300001138. This impacts an unknown function of the file

CVE-2026-2904 - A vulnerability was determined in UTT HiPER 810G 1.7.7-171114. This affects the function strcpy of t

CVE-2026-2903 - A flaw has been found in skvadrik re2c up to 4.4. Impacted is the function check_and_merge_special_r

CVE-2026-2898 - A vulnerability was detected in funadmin up to 7.1.0-rc4. This issue affects the function getMember

CVE-2026-2897 - A security vulnerability has been detected in funadmin up to 7.1.0-rc4. This vulnerability affects u

CVE-2026-2896 - A weakness has been identified in funadmin up to 7.1.0-rc4. This affects the function setConfig of t

CVE-2026-2895 - A security flaw has been discovered in funadmin up to 7.1.0-rc4. Affected by this issue is the funct

CVE-2026-2894 - A vulnerability was identified in funadmin up to 7.1.0-rc4. Affected by this vulnerability is the fu

CVE-2026-2889 - A vulnerability was detected in CCExtractor up to 0.96.5. Affected is the function processmp4 in the

CVE-2026-2887 - A security vulnerability has been detected in aardappel lobster up to 2025.4. This impacts the funct

CVE-2026-2886 - A weakness has been identified in Tenda A21 1.0.0.0. This affects the function set_device_name of th

CVE-2026-2885 - A security flaw has been discovered in D-Link DWR-M960 1.01.07. The impacted element is the function

CVE-2026-2884 - A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub_

CVE-2026-2883 - A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_427D74 of th

CVE-2026-2882 - A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_46385C of

CVE-2026-2881 - A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function s

CVE-2026-2877 - A vulnerability has been found in Tenda A18 15.13.07.13. This affects the function strcpy of the fil

CVE-2026-2876 - A vulnerability was determined in Tenda A18 15.13.07.13. This affects the function parse_macfilter_r

CVE-2026-2874 - A flaw has been found in Tenda A21 1.0.0.0. Impacted is the function form_fast_setting_wifi_set of t

CVE-2026-2873 - A vulnerability was detected in Tenda A21 1.0.0.0. This issue affects the function setSchedWifi of t

CVE-2026-2872 - A security vulnerability has been detected in Tenda A21 1.0.0.0. This vulnerability affects the func

CVE-2026-2871 - A weakness has been identified in Tenda A21 1.0.0.0. This affects the function fromSetIpMacBind of t

CVE-2026-2870 - A security flaw has been discovered in Tenda A21 1.0.0.0. Affected by this issue is the function set

CVE-2026-2869 - A vulnerability was identified in janet-lang janet up to 1.40.1. Affected by this vulnerability is t

CVE-2026-2867 - A vulnerability was determined in itsourcecode Vehicle Management System 1.0. Affected is an unknown

CVE-2026-27579 - CollabPlatform is a full-stack, real-time doc collaboration platform. In all versions of CollabPlatf

CVE-2026-27574 - OneUptime is a solution for monitoring and managing online services. In versions 9.5.13 and below, c

CVE-2026-27492 - Lettermint Node.js SDK is the official Node.js SDK for Lettermint. In versions 1.5.0 and below, emai

CVE-2026-1787 - The LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress is vulnerable

CVE-2026-27576 - OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, the ACP bridge accepts very la

CVE-2026-27488 - OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, Cron webhook delivery in src/g

CVE-2026-27487 - OpenClaw is a personal AI assistant. In versions 2026.2.13 and below, when using macOS, the Claude C

CVE-2026-27486 - OpenClaw is a personal AI assistant. In versions 2026.2.13 and below of the OpenClaw CLI, the proces

CVE-2026-27485 - OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, skills/skill-creator/scripts/p

CVE-2026-27484 - OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, the Discord moderation action

CVE-2026-27482 - Ray is an AI compute engine. In versions 2.53.0 and below, thedashboard HTTP server blocks browser-o

CVE-2026-27480 - Static Web Server (SWS) is a production-ready web server suitable for static web files or assets. In

CVE-2025-14339 - The weMail - Email Marketing, Lead Generation, Optin Forms, Email Newsletters, A/B Testing, and Auto

CVE-2026-27479 - Wallos is an open-source, self-hostable personal subscription tracker. Versions 4.6.0 and below cont

CVE-2026-2865 - A vulnerability was found in itsourcecode Agri-Trading Online Shopping System 1.0. This impacts an u

CVE-2026-2864 - A vulnerability has been found in feng_ha_ha/megagao ssm-erp and production_ssm up to 4288d53bd35757

CVE-2026-27470 - ZoneMinder is a free, open source closed-circuit television software application. In versions 1.36.3

CVE-2026-27469 - Isso is a lightweight commenting server written in Python and JavaScript. In commits before 0afbfe06

CVE-2026-27467 - BigBlueButton is an open-source virtual classroom. In versions 3.0.19 and below, when first joining

CVE-2026-27466 - BigBlueButton is an open-source virtual classroom. In versions 3.0.21 and below, the official docume

CVE-2026-27464 - Metabase is an open-source data analytics platform. In versions prior to 0.57.13 and versions 0.58.x

CVE-2026-27471 - ERP is a free and open source Enterprise Resource Planning tool. In versions up to 15.98.0 and 16.0.

CVE-2026-27458 - LinkAce is a self-hosted archive to collect website links. Versions 2.4.2 and below have a Stored Cr

CVE-2026-27452 - ASN.1 TypeScript ESM library, including codecs for Basic Encoding Rules (BER) and Distinguished Enco

CVE-2026-27206 - Zumba Json Serializer is a library to serialize PHP variables in JSON format. In versions 3.2.2 and

CVE-2026-2863 - A flaw has been found in feng_ha_ha/megagao ssm-erp and production_ssm up to 4288d53bd35757b27f2d070

CVE-2026-2861 - A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of

CVE-2026-27212 - Swiper is a free and mobile touch slider with hardware accelerated transitions and native behavior.

CVE-2026-27211 - Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevul

CVE-2026-27210 - Pannellum is a lightweight, free, and open source panorama viewer for the web. In versions 3.5.0 thr

CVE-2026-27205 - Flask is a web server gateway interface (WSGI) web application framework. In versions 3.1.2 and belo

CVE-2026-27199 - Werkzeug is a comprehensive WSGI web application library. Versions 3.1.5 and below, the safe_join fu

CVE-2026-27198 - Formwork is a flat file-based Content Management System (CMS). In versions 2.0.0 through 2.3.3, the

CVE-2026-26047 - A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX

CVE-2026-26046 - A vulnerability was found in a Moodle TeX filter administrative setting where insufficient sanitizat

CVE-2026-26045 - A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files

CVE-2026-2860 - A security vulnerability has been detected in feng_ha_ha/megagao ssm-erp and production_ssm up to 42

CVE-2026-27534 - Rejected reason: Not used

CVE-2026-27533 - Rejected reason: Not used

CVE-2026-27532 - Rejected reason: Not used

CVE-2026-27531 - Rejected reason: Not used

CVE-2026-27530 - Rejected reason: Not used

CVE-2026-27529 - Rejected reason: Not used

CVE-2026-27528 - Rejected reason: Not used

CVE-2026-27527 - Rejected reason: Not used

CVE-2026-27197 - Sentry is a developer-first error tracking and performance monitoring tool. Versions 21.12.0 through

CVE-2026-27196 - Statmatic is a Laravel and Git powered content management system (CMS). Versions 5.73.8 and below in

CVE-2026-27194 - D-Tale is a visualizer for pandas data structures. Versions prior to 3.20.0 are vulnerable to Remote

CVE-2026-27193 - Feathersjs is a framework for creating web APIs and real-time applications with TypeScript or JavaSc

CVE-2026-27192 - Feathersjs is a framework for creating web APIs and real-time applications with TypeScript or JavaSc

CVE-2026-27191 - Feathersjs is a framework for creating web APIs and real-time applications with TypeScript or JavaSc

CVE-2025-65995 - When a DAG failed during parsing, Airflow’s error-reporting in the UI could include the full kwargs

CVE-2026-27203 - eBay API MCP Server is an open source local MCP server providing AI assistants with comprehensive ac

CVE-2026-27202 - GetSimple CMS is a content management system. All versions of GetSimple CMS have a flaw in the Uploa

CVE-2026-27189 - OpenSift is an AI study tool that sifts through large datasets using semantic search and generative

CVE-2026-27170 - OpenSift is an AI study tool that sifts through large datasets using semantic search and generative

CVE-2026-27169 - OpenSift is an AI study tool that sifts through large datasets using semantic search and generative

CVE-2026-27168 - SAIL is a cross-platform library for loading and saving images with support for animation, metadata,

CVE-2026-27161 - GetSimple CMS is a content management system. All versions of GetSimple CMS rely on .htaccess files

CVE-2026-27147 - GetSimple CMS is a content management system. All versions of GetSimple CMS are vulnerable to XSS th

CVE-2026-27146 - GetSimple CMS is a content management system. All versions of GetSimple CMS do not implement CSRF pr

CVE-2026-27134 - Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployme

CVE-2026-2635 - MLflow Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows remote

CVE-2026-2492 - TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. T

CVE-2026-2490 - RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability. This

CVE-2026-2048 - GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability al

CVE-2026-2047 - GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerab

CVE-2026-2045 - GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability al

CVE-2026-2044 - GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability a

CVE-2026-2043 - Nagios Host esensors_websensor_configwizard_func Command Injection Remote Code Execution Vulnerabili

CVE-2026-2042 - Nagios Host monitoringwizard Command Injection Remote Code Execution Vulnerability. This vulnerabili

CVE-2026-2041 - Nagios Host zabbixagent_configwizard_func Command Injection Remote Code Execution Vulnerability. Thi

CVE-2026-2040 - PDF-XChange Editor TrackerUpdate Uncontrolled Search Path Element Local Privilege Escalation Vulnera

CVE-2026-2039 - GFI Archiver MArc.Store Missing Authorization Authentication Bypass Vulnerability. This vulnerabilit

CVE-2026-2038 - GFI Archiver MArc.Core Missing Authorization Authentication Bypass Vulnerability. This vulnerability