31,467 indexed
CVECVE vulnerabilities
31,467 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 1,101–1,150 of 8,314 in Critical · page 23 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2026-33102 | CVE-2026-33102 CVSS 9.3 | Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network. |
| CVE-2026-33088 | CVE-2026-33088 CVSS 9.8 | Movable Type provided by Six Apart Ltd. contains an SQL Injection vulnerability which may allow an attacker to execute an arbitrary SQL statement. |
| CVE-2026-33082 | CVE-2026-33082 CVSS 9.8 | DataEase is an open source data visualization analysis tool. Versions 2.10.20 and below contain a SQL injection vulnerability in the dataset export functionali… |
| CVE-2026-33078 | CVE-2026-33078 CVSS 9.8 | Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Versions prior to 8.2.6.4 have a SQL injection vulnerability in the hapr… |
| CVE-2026-33076 | CVE-2026-33076 CVSS 9.8 | Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the haproxy_section_save interface presents a … |
| CVE-2026-33067 | CVE-2026-33067 CVSS 9.0 | SiYuan is a personal knowledge management system. Versions 3.6.0 and below render package metadata fields (displayName, description) using template literals wi… |
| CVE-2026-33066 | CVE-2026-33066 CVSS 9.0 | SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the backend renderREADME function uses lute.New() without calling SetSanitize(tr… |
| CVE-2026-33057 | CVE-2026-33057 CVSS 9.8 | Mesop is a Python-based UI framework that allows users to build web applications. In versions 1.2.2 and below, an explicit web endpoint inside the ai/ testing … |
| CVE-2026-33054 | CVE-2026-33054 CVSS 9.8 | Mesop is a Python-based UI framework that allows users to build web applications. Versions 1.2.2 and below contain a Path Traversal vulnerability that allows a… |
| CVE-2026-33032 | CVE-2026-33032 CVSS 9.8 | Nginx UI is a web user interface for the Nginx web server. In versions 2.3.5 and prior, the nginx-ui MCP (Model Context Protocol) integration exposes two HTTP … |
| CVE-2026-33030 | CVE-2026-33030 CVSS 9.9 | Nginx UI is a web user interface for the Nginx web server. In versions 2.3.3 and prior, Nginx-UI contains an Insecure Direct Object Reference (IDOR) vulnerabil… |
| CVE-2026-33026 | CVE-2026-33026 CVSS 9.1 | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui backup restore mechanism allows attackers to tamper with encryp… |
| CVE-2026-33024 | CVE-2026-33024 CVSS 9.1 | AVideo is a video-sharing Platform. Versions prior to 8.0 contain a Server-Side Request Forgery vulnerability (CWE-918) in the public thumbnail endpoints getIm… |
| CVE-2026-33017 | Langflow Code Injection Vulnerability KEVCVSS 9.8Langflow | Langflow contains a code injection vulnerability that could allow building public flows without requiring authentication. |
| CVE-2026-3301 | CVE-2026-3301 CVSS 9.8 | A security flaw has been discovered in Totolink N300RH 6.1c.1353_B20190305. Affected by this vulnerability is the function setWebWlanIdx of the file /cgi-bin/c… |
| CVE-2026-33000 | CVE-2026-33000 CVSS 9.1 | A malicious actor with access to the network and high privileges could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute … |
| CVE-2026-3300 | CVE-2026-3300 CVSS 9.8 | The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in all versions up to, and including, 1.9.12. This is … |
| CVE-2026-32987 | CVE-2026-32987 CVSS 9.8 | OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verification in src/infra/device-bootstrap.ts. Attackers can verify… |
| CVE-2026-32985 | CVE-2026-32985 CVSS 9.8 | Xerte Online Toolkits versions 3.14 and earlier contain an unauthenticated arbitrary file upload vulnerability in the template import functionality that allows… |
| CVE-2026-32975 | CVE-2026-32975 CVSS 9.8 | OpenClaw before 2026.3.12 contains a weak authorization vulnerability in Zalouser allowlist mode that matches mutable group display names instead of stable gro… |
| CVE-2026-32974 | CVE-2026-32974 CVSS 9.8 | OpenClaw before 2026.3.12 contains an authentication bypass vulnerability in Feishu webhook mode when only verificationToken is configured without encryptKey, … |
| CVE-2026-32973 | CVE-2026-32973 CVSS 9.8 | OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where matchesExecAllowlistPattern improperly normalizes patterns with lowercasing and… |
| CVE-2026-32968 | CVE-2026-32968 CVSS 9.8 | Due to the improper neutralisation of special elements used in an OS command, an unauthenticated remote attacker can exploit an RCE vulnerability in the com_mb… |
| CVE-2026-3296 | CVE-2026-3296 CVSS 9.8 | The Everest Forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.4.3 via deserialization of untrusted input… |
| CVE-2026-32956 | CVE-2026-32956 CVSS 9.8 | SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code … |
| CVE-2026-32945 | CVE-2026-32945 CVSS 9.8 | PJSIP is a free and open source multimedia communication library written in C. Versions 2.16 and below have a Heap-based Buffer Overflowvulnerability in the DN… |
| CVE-2026-32924 | CVE-2026-32924 CVSS 9.8 | OpenClaw before 2026.3.12 contains an authorization bypass vulnerability where Feishu reaction events with omitted chat_type are misclassified as p2p conversat… |
| CVE-2026-32922 | CVE-2026-32922 CVSS 9.9 | OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate that allows callers with operator.pairing scope to mint tokens w… |
| CVE-2026-32917 | CVE-2026-32917 CVSS 9.8 | OpenClaw before 2026.3.13 contains a remote command injection vulnerability in the iMessage attachment staging flow that allows attackers to execute arbitrary … |
| CVE-2026-32916 | CVE-2026-32916 CVSS 9.8 | OpenClaw versions 2026.3.7 before 2026.3.11 contain an authorization bypass vulnerability where plugin subagent routes execute gateway methods through a synthe… |
| CVE-2026-32913 | CVE-2026-32913 CVSS 9.1 | OpenClaw before 2026.3.7 contains an improper header validation vulnerability in fetchWithSsrFGuard that forwards custom authorization headers across cross-ori… |
| CVE-2026-32891 | CVE-2026-32891 CVSS 9.0 | Anchorr is a Discord bot for requesting movies and TV shows and receiving notifications when items are added to a media server. Versions 1.4.1 and below contai… |
| CVE-2026-32890 | CVE-2026-32890 CVSS 9.6 | Anchorr is a Discord bot for requesting movies and TV shows and receiving notifications when items are added to a media server. In versions 1.4.1 and below, a … |
| CVE-2026-3289 | CVE-2026-3289 CVSS 9.8 | A weakness has been identified in Sanluan PublicCMS 6.202506.d. This impacts the function saveMetadata of the file TemplateCacheComponent.java of the component… |
| CVE-2026-32885 | CVE-2026-32885 CVSS 9.1 | DDEV is an open-source tool for running local web development environments for PHP and Node.js. Versions prior to 1.25.2 have unsanitized extraction in both `U… |
| CVE-2026-32871 | CVE-2026-32871 CVSS 10.0 | FastMCP is a Pythonic way to build MCP servers and clients. Prior to version 3.2.0, the OpenAPIProvider in FastMCP exposes internal APIs to MCP clients by pars… |
| CVE-2026-3287 | CVE-2026-3287 CVSS 9.8 | A security flaw has been discovered in youlaitech youlai-mall 2.0.0. This affects the function listPagedSpuForApp of the file mall-pms/pms-boot/src/main/java/c… |
| CVE-2026-32867 | CVE-2026-32867 CVSS 9.8 | OPEXUS eComplaint before version 10.1.0.0 allows an unauthenticated attacker to obtain or guess an existing case number and upload arbitrary files via 'Portal/… |
| CVE-2026-32865 | CVE-2026-32865 CVSS 9.8 | OPEXUS eComplaint and eCASE before version 10.1.0.0 include the secret verification code in the HTTP response when requesting a password reset via 'ForcePasswo… |
| CVE-2026-32817 | CVE-2026-32817 CVSS 9.1 | Admidio is an open-source user management solution. In versions 5.0.0 through 5.0.6, the documents and files module does not verify whether the current user ha… |
| CVE-2026-32771 | CVE-2026-32771 CVSS 9.8 | The CTFer.io Monitoring component is in charge of the collection, process and storage of various signals (i.e. logs, metrics and distributed traces). In versio… |
| CVE-2026-32769 | CVE-2026-32769 CVSS 9.8 | Fullchain is an umbrella project for deploying a ready-to-use CTF platform. In versions prior to 0.1.1, due to a mis-written NetworkPolicy, a malicious actor … |
| CVE-2026-32768 | CVE-2026-32768 CVSS 9.9 | Chall-Manager is a platform-agnostic system able to start Challenges on Demand of a player. In versions prior to 0.6.5, due to a miswritten NetworkPolicy, a ma… |
| CVE-2026-32767 | CVE-2026-32767 CVSS 9.8 | SiYuan is a personal knowledge management system. Versions 3.6.0 and below contain an authorization bypass vulnerability in the /api/search/fullTextSearchBlock… |
| CVE-2026-32760 | CVE-2026-32760 CVSS 9.8 | File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. In versions 2.61.2 and… |
| CVE-2026-32754 | CVE-2026-32754 CVSS 9.3 | FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Versions 1.8.208 and below are vulnerable to Stored Cross-Site Scripting (XS… |
| CVE-2026-32751 | CVE-2026-32751 CVSS 9.0 | SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the mobile file tree (MobileFiles.ts) renders notebook names via innerHTML witho… |
| CVE-2026-32749 | CVE-2026-32749 CVSS 9.1 | SiYuan is a personal knowledge management system. In versions 3.6.0 and below, POST /api/import/importSY and POST /api/import/importZipMd write uploaded archiv… |
| CVE-2026-32746 | CVE-2026-32746 CVSS 9.8 | telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC (Set Local Characters) suboption handler because add_slc does not check … |
| CVE-2026-32737 | CVE-2026-32737 CVSS 10.0 | Romeo gives the capability to reach high code coverage of Go ≥1.20 apps by helping to measure code coverage for functional and integration tests within GitHub … |