CVE-2026-44006 - vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, It is possible to reach BaseHandler.g

CVE-2026-44005 - vm2 is an open source vm/sandbox for Node.js. From 3.9.6 to 3.10.5, vm2's bridge exposes mutable pro

CVE-2026-43997 - vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.0, it is possible to obtain the host Obj

CVE-2026-42288 - ChurchCRM is an open-source church management system. Prior to 7.3.2, The fix for CVE-2026-39337 is

CVE-2026-42869 - SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations nee

CVE-2026-44643 - Angular Expressions provides expressions for the Angular.JS web framework as a standalone module. Pr

CVE-2026-42298 - Postiz is an AI social media scheduling tool. Prior to commit da44801, a "Pwn Request" vulnerability

CVE-2026-41070 - openvpn-auth-oauth2 is a plugin/management interface client for OpenVPN server to handle an OIDC bas

CVE-2026-42826 - Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized at

CVE-2026-33587 - Lack of user input sanitisation in Open Notebook v1.8.3 allows the application user to execute Pytho