31,467 indexed
CVECVE vulnerabilities
31,467 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 701–750 of 8,314 in Critical · page 15 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2026-40477 | CVE-2026-40477 CVSS 9.0 | Thymeleaf is a server-side Java template engine for web and standalone environments. Versions 3.1.3.RELEASE and prior contain a security bypass vulnerability i… |
| CVE-2026-40472 | CVE-2026-40472 CVSS 9.9 | In hackage-server, user-controlled metadata from .cabal files are rendered into HTML href attributes without proper sanitization, enabling stored Cross-Site Sc… |
| CVE-2026-40471 | CVE-2026-40471 CVSS 9.6 | hackage-server lacked Cross-Site Request Forgery (CSRF) protection across its endpoints. Scripts on foreign sites could trigger requests to hackage server, pos… |
| CVE-2026-40470 | CVE-2026-40470 CVSS 9.9 | A critical XSS vulnerability affected hackage-server and hackage.haskell.org. HTML and JavaScript files provided in source packages or via the documentation u… |
| CVE-2026-40453 | CVE-2026-40453 CVSS 9.9 | The fix for CVE-2025-27636 added setLowerCase(true) to HttpHeaderFilterStrategy so that case-variant header names such as 'CAmelExecCommandExecutable' are filt… |
| CVE-2026-40412 | CVE-2026-40412 CVSS 10.0 | Unrestricted upload of file with dangerous type in Azure Orbital Spatio allows an unauthorized attacker to execute code over a network. |
| CVE-2026-40411 | CVE-2026-40411 CVSS 9.9 | Improper input validation in Azure Virtual Network Gateway allows an authorized attacker to execute code over a network. |
| CVE-2026-40402 | CVE-2026-40402 CVSS 9.3 | Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally. |
| CVE-2026-40393 | CVE-2026-40393 CVSS 9.8 | In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted … |
| CVE-2026-4038 | CVE-2026-4038 CVSS 9.8 | The Aimogen Pro plugin for WordPress is vulnerable to Arbitrary Function Call that can lead to privilege escalation due to a missing capability check on the 'a… |
| CVE-2026-40372 | CVE-2026-40372 CVSS 9.1 | Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network. |
| CVE-2026-40351 | CVE-2026-40351 CVSS 9.8 | FastGPT is an AI Agent building platform. In versions prior to 4.14.9.5, the password-based login endpoint uses TypeScript type assertion without runtime valid… |
| CVE-2026-40342 | CVE-2026-40342 CVSS 9.9 | Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the external engine plugin loader concatenates … |
| CVE-2026-40324 | CVE-2026-40324 CVSS 9.1 | Hot Chocolate is an open-source GraphQL server. Prior to versions 12.22.7, 13.9.16, 14.3.1, and 15.1.14, Hot Chocolate's recursive descent parser `Utf8GraphQLP… |
| CVE-2026-40322 | CVE-2026-40322 CVSS 9.0 | SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and below, Mermaid diagrams are rendered with securityLevel set to "loose", an… |
| CVE-2026-40317 | CVE-2026-40317 CVSS 9.3 | NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 12 (JumpToUser) accepts an arbitrary entry poin… |
| CVE-2026-40315 | CVE-2026-40315 CVSS 9.8 | PraisonAI is a multi-agent teams system. Prior to 4.5.133, there is an SQL identifier injection vulnerability in SQLiteConversationStore where the table_prefix… |
| CVE-2026-40313 | CVE-2026-40313 CVSS 9.1 | PraisonAI is a multi-agent teams system. In versions 4.5.139 and below, the GitHub Actions workflows are vulnerable to ArtiPACKED attack, a known credential le… |
| CVE-2026-40289 | CVE-2026-40289 CVSS 9.1 | PraisonAI is a multi-agent teams system. In versions below 4.5.139 of PraisonAI and 1.5.140 of praisonaiagents, the browser bridge (praisonai browser start) is… |
| CVE-2026-40288 | CVE-2026-40288 CVSS 9.8 | PraisonAI is a multi-agent teams system. In versions below 4.5.139 of PraisonAI and 1.5.140 of praisonaiagents, the workflow engine is vulnerable to arbitrary … |
| CVE-2026-40281 | CVE-2026-40281 CVSS 9.1 | Gotenberg is a Docker-powered stateless API for PDF files. In versions 8.30.1 and earlier, the metadata write endpoint validates metadata keys for control char… |
| CVE-2026-40258 | CVE-2026-40258 CVSS 9.1 | The Gramps Web API is a Python REST API for the genealogical research software Gramps. Versions 1.6.0 through 3.11.0 have a path traversal vulnerability (Zip S… |
| CVE-2026-40189 | CVE-2026-40189 CVSS 9.8 | goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.4, goshs enforces the documented per-folder .goshs ACL/basic-auth mechanism for directory listin… |
| CVE-2026-40173 | CVE-2026-40173 CVSS 9.4 | Dgraph is an open source distributed GraphQL database. Versions 25.3.1 and prior contain an unauthenticated credential disclosure vulnerability where the /debu… |
| CVE-2026-40154 | CVE-2026-40154 CVSS 9.6 | PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI treats remotely fetched template files as trusted executable code without integrity verifi… |
| CVE-2026-4014 | CVE-2026-4014 CVSS 9.8 | A security flaw has been discovered in itsourcecode Cafe Reservation System 1.0. This impacts an unknown function of the file /curvus2/signup.php of the compon… |
| CVE-2026-40114 | CVE-2026-40114 CVSS 10.0 | PraisonAI is a multi-agent teams system. Prior to 4.5.128, the /api/v1/runs endpoint accepts an arbitrary webhook_url in the request body with no URL validatio… |
| CVE-2026-40089 | CVE-2026-40089 CVSS 9.9sonicverse | Sonicverse is a Self-hosted Docker Compose stack for live radio streaming. The Sonicverse Radio Audio Streaming Stack dashboard contains a Server-Side Request … |
| CVE-2026-40088 | CVE-2026-40088 CVSS 9.6 | PraisonAI is a multi-agent teams system. Prior to 4.5.121, the execute_command function and workflow shell execution are exposed to user-controlled input via a… |
| CVE-2026-40050 | CVE-2026-40050 CVSS 9.8 | CrowdStrike has released security updates to address a critical unauthenticated path traversal vulnerability (CVE-2026-40050) in LogScale. This vulnerability o… |
| CVE-2026-40044 | CVE-2026-40044 CVSS 9.8 | Pachno 1.0.6 contains a deserialization vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting malicious serialized objects… |
| CVE-2026-40042 | CVE-2026-40042 CVSS 9.8 | Pachno 1.0.6 contains an XML external entity injection vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting unsafe XML par… |
| CVE-2026-40035 | CVE-2026-40035 CVSS 9.1 | Unfurl through 2025.08 contains an improper input validation vulnerability in config parsing that enables Flask debug mode by default. The debug configuration … |
| CVE-2026-4003 | CVE-2026-4003 CVSS 9.8 | The Users manager – PN plugin for WordPress is vulnerable to Privilege Escalation via Arbitrary User Meta Update in all versions up to and including 1.1.15. Th… |
| CVE-2026-40010 | CVE-2026-40010 CVSS 9.1 | Missing invocation of Servlet http web request method changeSessionId after session binding can be exploited for a session fixation attack in Apache Wicket. T… |
| CVE-2026-4001 | CVE-2026-4001 CVSS 9.8 | The Woocommerce Custom Product Addons Pro plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 5.4.1 via the custo… |
| CVE-2026-39987 | Marimo Remote Code Execution Vulnerability KEVCVSS 9.8Marimo | Marimo contains an pre-authorization remote code execution vulnerability, allowing an unauthenticated attacked to shell access and execute arbitrary system com… |
| CVE-2026-39962 | CVE-2026-39962 CVSS 9.6 | MISP is an open source threat intelligence and sharing platform. Prior to 2.5.36, improper neutralization of special elements in an LDAP query in ApacheAuthent… |
| CVE-2026-39958 | CVE-2026-39958 CVSS 9.1 | oma is a package manager for AOSC OS. Prior to 1.25.2, oma-topics is responsible for fetching metadata for testing repositories (topics) named "Topic Manifests… |
| CVE-2026-39920 | CVE-2026-39920 CVSS 9.8 | BridgeHead FileStore versions prior to 24A (released in early 2024) expose the Apache Axis2 administration module on network-accessible endpoints with default … |
| CVE-2026-39918 | CVE-2026-39918 CVSS 9.8 | Vvveb prior to 1.0.8.1 contains a code injection vulnerability in the installation endpoint where the subdir POST parameter is written unsanitized into the env… |
| CVE-2026-39912 | CVE-2026-39912 CVSS 9.1 | V2Board 1.6.1 through 1.7.4 and Xboard through 0.1.9 expose authentication tokens in HTTP response bodies of the loginWithMailLink endpoint when the login_with… |
| CVE-2026-39907 | CVE-2026-39907 CVSS 10.0 | Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose an unauthenticated WCF SOAP endpoint on TCP port 1208 that accepts unsanitized … |
| CVE-2026-39906 | CVE-2026-39906 CVSS 10.0 | Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose a deprecated .NET Remoting TCP channel that allows remote unauthenticated attac… |
| CVE-2026-39892 | CVE-2026-39892 CVSS 9.8 | cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffe… |
| CVE-2026-39890 | CVE-2026-39890 CVSS 9.8 | PraisonAI is a multi-agent teams system. Prior to 4.5.115, the AgentService.loadAgentFromFile method uses the js-yaml library to parse YAML files without disab… |
| CVE-2026-39888 | CVE-2026-39888 CVSS 9.9 | PraisonAI is a multi-agent teams system. Prior to 1.5.115, execute_code() in praisonaiagents.tools.python_tools defaults to sandbox_mode="sandbox", which runs … |
| CVE-2026-39861 | CVE-2026-39861 CVSS 10.0 | Claude Code is an agentic coding tool. Prior to version 2.1.64, Claude Code's sandbox did not prevent sandboxed processes from creating symlinks pointing to lo… |
| CVE-2026-39858 | CVE-2026-39858 CVSS 10.0 | Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerabi… |
| CVE-2026-39846 | CVE-2026-39846 CVSS 9.0 | SiYuan is a personal knowledge management system. Prior to 3.6.4, a malicious note synced to another user can trigger remote code execution in the SiYuan Elect… |