31,509 indexed
CVECVE vulnerabilities
31,509 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 1,501–1,550 of 8,314 in Critical · page 31 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2026-28373 | CVE-2026-28373 CVSS 9.6stackfield | The Stackfield Desktop App before 1.10.2 for macOS and Windows contains a path traversal vulnerability in certain decryption functionality when processing the … |
| CVE-2026-28370 | CVE-2026-28370 CVSS 9.1 | In the query parser in OpenStack Vitrage before 12.0.1, 13.0.0, 14.0.0, and 15.0.0, a user allowed to access the Vitrage API may trigger code execution on the … |
| CVE-2026-28369 | CVE-2026-28369 CVSS 8.7redhat | A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, it incorrectly processes the r… |
| CVE-2026-28368 | CVE-2026-28368 CVSS 8.7redhat | A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by … |
| CVE-2026-28367 | CVE-2026-28367 CVSS 8.7redhat | A flaw was found in Undertow. A remote attacker can exploit this vulnerability by sending `\r\r\r` as a header block terminator. This can be used for request s… |
| CVE-2026-2835 | CVE-2026-2835 CVSS 9.1 | An HTTP Request Smuggling vulnerability (CWE-444) has been found in Pingora's parsing of HTTP/1.0 and Transfer-Encoding requests. The issue occurs due to impro… |
| CVE-2026-2833 | CVE-2026-2833 CVSS 9.1 | An HTTP request smuggling vulnerability (CWE-444) was found in Pingora's handling of HTTP/1.1 connection upgrades. The issue occurs when a Pingora proxy reads … |
| CVE-2026-28292 | CVE-2026-28292 CVSS 9.8 | `simple-git`, an interface for running git commands in any node.js application, has an issue in versions 3.15.0 through 3.32.2 that allows an attacker to bypas… |
| CVE-2026-28286 | CVE-2026-28286 CVSS 9.9 | ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In version 1.5.2-beta3, the application enforces restrictions in… |
| CVE-2026-28268 | CVE-2026-28268 CVSS 9.8 | Vikunja is an open-source self-hosted task management platform. Versions prior to 2.1.0 have a business logic vulnerability exists in the password reset mechan… |
| CVE-2026-28256 | CVE-2026-28256 CVSS 9.8 | A Use of Hard-coded, Security-relevant Constants vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to disclose sensiti… |
| CVE-2026-28255 | CVE-2026-28255 CVSS 9.8 | A Use of Hard-coded Credentials vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to disclose sensitive information an… |
| CVE-2026-28252 | CVE-2026-28252 CVSS 9.8 | A Use of a Broken or Risky Cryptographic Algorithm vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to bypass authent… |
| CVE-2026-28231 | CVE-2026-28231 CVSS 9.1 | pillow_heif is a Python library for working with HEIF images and plugin for Pillow. Prior to version 1.3.0, an integer overflow in the encode path buffer valid… |
| CVE-2026-28215 | CVE-2026-28215 CVSS 9.1 | hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, an unauthenticated attacker can overwrite the entire infrastructure configur… |
| CVE-2026-28213 | CVE-2026-28213 CVSS 9.8 | EverShop is a TypeScript-first eCommerce platform. Versions prior to 2.1.1 have a vulnerability in the "Forgot Password" functionality. When specifying a targe… |
| CVE-2026-28205 | CVE-2026-28205 CVSS 9.8 | OpenPLC_V3 is vulnerable to an Initialization of a Resource with an Insecure Default vulnerability which could allow an attacker to gain access to the system b… |
| CVE-2026-28115 | CVE-2026-28115 CVSS 9.3 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in loopus WP Attractive Donations System - Easy Stripe & Pay… |
| CVE-2026-28114 | CVE-2026-28114 CVSS 9.1 | Unrestricted Upload of File with Dangerous Type vulnerability in firassaidi WooCommerce License Manager fs-license-manager allows Upload a Web Shell to a Web S… |
| CVE-2026-28105 | CVE-2026-28105 CVSS 9.8 | Deserialization of Untrusted Data vulnerability in ThemeREX Good Energy goodenergy allows Object Injection.This issue affects Good Energy: from n/a through <= … |
| CVE-2026-28074 | CVE-2026-28074 CVSS 9.8 | Deserialization of Untrusted Data vulnerability in ThemeREX Pizza House pizzahouse allows Object Injection.This issue affects Pizza House: from n/a through <= … |
| CVE-2026-2807 | CVE-2026-2807 CVSS 9.8 | Memory safety bugs present in Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort s… |
| CVE-2026-2806 | CVE-2026-2806 CVSS 9.1 | Uninitialized memory in the Graphics: Text component. This vulnerability was fixed in Firefox 148 and Thunderbird 148. |
| CVE-2026-2805 | CVE-2026-2805 CVSS 9.8 | Invalid pointer in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148. |
| CVE-2026-28043 | CVE-2026-28043 CVSS 9.8 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Healer - Doctor, Clinic & Med… |
| CVE-2026-2800 | CVE-2026-2800 CVSS 9.8 | Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerability was fixed in Firefox 148 and Thunderbird 148. |
| CVE-2026-2799 | CVE-2026-2799 CVSS 9.8 | Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148 and Thunderbird 148. |
| CVE-2026-27984 | CVE-2026-27984 CVSS 9.0 | Improper Control of Generation of Code ('Code Injection') vulnerability in Marketing Fire Widget Options widget-options allows Code Injection.This issue affect… |
| CVE-2026-27983 | CVE-2026-27983 CVSS 9.8 | Incorrect Privilege Assignment vulnerability in designthemes LMS Elementor Pro lms-elementor-pro allows Privilege Escalation.This issue affects LMS Elementor P… |
| CVE-2026-27975 | CVE-2026-27975 CVSS 9.8 | Ajenti is a Linux and BSD modular server admin panel. Prior to version 2.2.13, an unauthenticated user could gain access to a server to execute arbitrary code … |
| CVE-2026-27971 | CVE-2026-27971 CVSS 9.8 | Qwik is a performance focused javascript framework. qwik <=1.19.0 is vulnerable to RCE due to an unsafe deserialization vulnerability in the server$ RPC mechan… |
| CVE-2026-2797 | CVE-2026-2797 CVSS 9.8 | Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148. |
| CVE-2026-27966 | CVE-2026-27966 CVSS 9.8 | Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.8.0, the CSV Agent node in Langflow hardcodes `allow_dangerou… |
| CVE-2026-27965 | CVE-2026-27965 CVSS 9.9 | Vitess is a database clustering system for horizontal scaling of MySQL. Prior to versions 23.0.3 and 22.0.4, anyone with read/write access to the backup storag… |
| CVE-2026-27962 | CVE-2026-27962 CVSS 9.1 | Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a JWK Header Injection vulnerability in authlib's JWS implem… |
| CVE-2026-27960 | CVE-2026-27960 CVSS 9.8 | OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. In versions 6.6.0 through 6.9.12, there is a privilege esc… |
| CVE-2026-2796 | CVE-2026-2796 CVSS 9.8 | JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 148 and Thunderbird 148. |
| CVE-2026-27953 | CVE-2026-27953 CVSS 9.8 | ormar is a async mini ORM for Python. Versions 0.23.0 and below are vulnerable to Pydantic validation bypass through the model constructor, allowing any unauth… |
| CVE-2026-27952 | CVE-2026-27952 CVSS 9.9 | Agenta is an open-source LLMOps platform. In Agenta-API prior to version 0.48.1, a Python sandbox escape vulnerability existed in Agenta's custom code evaluato… |
| CVE-2026-2795 | CVE-2026-2795 CVSS 9.8 | Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148 and Thunderbird 148. |
| CVE-2026-27944 | CVE-2026-27944 CVSS 9.8 | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.3, the /api/backup endpoint is accessible without authentication and discloses … |
| CVE-2026-27941 | CVE-2026-27941 CVSS 9.9 | OpenLIT is an open source platform for AI engineering. Prior to version 1.37.1, several GitHub Actions workflows in OpenLIT's GitHub repository use the `pull_r… |
| CVE-2026-2793 | CVE-2026-2793 CVSS 9.8 | Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence… |
| CVE-2026-2792 | CVE-2026-2792 CVSS 9.8 | Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruptio… |
| CVE-2026-2791 | CVE-2026-2791 CVSS 9.8 | Mitigation bypass in the Networking: Cache component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8. |
| CVE-2026-2790 | CVE-2026-2790 CVSS 9.8 | Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 14… |
| CVE-2026-2789 | CVE-2026-2789 CVSS 9.8 | Use-after-free in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Th… |
| CVE-2026-2788 | CVE-2026-2788 CVSS 9.8 | Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbir… |
| CVE-2026-27876 | CVE-2026-27876 CVSS 9.1 | A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature i… |
| CVE-2026-2787 | CVE-2026-2787 CVSS 9.8 | Use-after-free in the DOM: Window and Location component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, … |