31,509 indexed
CVECVE vulnerabilities
31,509 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 2,001–2,050 of 8,314 in Critical · page 41 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2026-24042 | CVE-2026-24042 CVSS 9.8 | Appsmith is a platform to build admin panels, internal tools, and dashboards. In versions 1.94 and below, publicly accessible apps allow unauthenticated users … |
| CVE-2026-24015 | CVE-2026-24015 CVSS 9.8 | A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to versi… |
| CVE-2026-24009 | CVE-2026-24009 CVSS 9.8 | Docling Core (or docling-core) is a library that defines core data types and transformations in the document processing application Docling. A PyYAML-related R… |
| CVE-2026-24002 | CVE-2026-24002 CVSS 9.6 | Grist is spreadsheet software using Python as its formula language. Grist offers several methods for running those formulas in a sandbox, for cases where the u… |
| CVE-2026-23997 | CVE-2026-23997 CVSS 9.0 | FacturaScripts is open-source enterprise resource planning and accounting software. In 2025.71 and earlier, a Stored Cross-Site Scripting (XSS) vulnerability w… |
| CVE-2026-23966 | CVE-2026-23966 CVSS 9.1 | sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A private key recovery vulnerability exists in the SM2… |
| CVE-2026-23958 | CVE-2026-23958 CVSS 9.8 | Dataease is an open source data visualization analysis tool. Prior to version 2.10.19, DataEase uses the MD5 hash of the user’s password as the JWT signing sec… |
| CVE-2026-23947 | CVE-2026-23947 CVSS 9.8 | Orval generates type-safe JS clients (TypeScript) from any valid OpenAPI v3 or Swagger v2 specification. Versions prior to 7.19.0 until 8.0.2 are vulnerable to… |
| CVE-2026-23944 | CVE-2026-23944 CVSS 9.8 | Arcane is an interface for managing Docker containers, images, networks, and volumes. Prior to version 1.13.2, unauthenticated requests could be proxied to rem… |
| CVE-2026-23941 | CVE-2026-23941 CVSS 9.4 | Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in Erlang OTP (inets httpd module) allows HTTP Request Smuggling. This v… |
| CVE-2026-23906 | CVE-2026-23906 CVSS 9.8 | Affected Products and Versions * Apache Druid * Affected Versions: 0.17.0 through 35.x (all versions prior to 36.0.0) * Prerequisites: * druid-basic… |
| CVE-2026-23885 | CVE-2026-23885 CVSS 9.9 | Alchemy is an open source content management system engine written in Ruby on Rails. Prior to versions 7.4.12 and 8.0.3, the application uses the Ruby `eval()`… |
| CVE-2026-23884 | CVE-2026-23884 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen bitmap deletion leaves `gdi->drawing` pointing to freed mem… |
| CVE-2026-23883 | CVE-2026-23883 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, `xf_Pointer_New` frees `cursorPixels` on failure, then `pointer_free`… |
| CVE-2026-23876 | CVE-2026-23876 CVSS 9.8 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow… |
| CVE-2026-23873 | CVE-2026-23873 CVSS 9.0 | hustoj is an open source online judge based on PHP/C++/MySQL/Linux for ACM/ICPC and NOIP training. All versions are vulnerable to CSV Injection (Formula Inject… |
| CVE-2026-23852 | CVE-2026-23852 CVSS 9.6 | SiYuan is a personal knowledge management system. Versions prior to 3.5.4 have a stored Cross-Site Scripting (XSS) vulnerability that allows an attacker to inj… |
| CVE-2026-23846 | CVE-2026-23846 CVSS 9.1 | Tugtainer is a self-hosted app for automating updates of Docker containers. In versions prior to 1.16.1, the password authentication mechanism transmits passwo… |
| CVE-2026-23837 | CVE-2026-23837 CVSS 9.8 | MyTube is a self-hosted downloader and player for several video websites. A vulnerability present in version 1.7.65 and poetntially earlier versions allows una… |
| CVE-2026-23830 | CVE-2026-23830 CVSS 10.0 | SandboxJS is a JavaScript sandboxing library. Versions prior to 0.8.26 have a sandbox escape vulnerability due to `AsyncFunction` not being isolated in `Sandbo… |
| CVE-2026-23818 | CVE-2026-23818 CVSS 9.6 | A vulnerability has been identified in the graphical user interface (GUI) of HPE Aruba Networking Private 5G Core On-Prem that could allow an attacker to abuse… |
| CVE-2026-23813 | CVE-2026-23813 CVSS 9.8 | A vulnerability has been identified in the web-based management interface of AOS-CX switches that could potentially allow an unauthenticated remote actor to ci… |
| CVE-2026-23802 | CVE-2026-23802 CVSS 9.1 | Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine ai-engine allows Using Malicious Files.This issue affects AI Engine: from… |
| CVE-2026-23800 | CVE-2026-23800 CVSS 10.0 | Incorrect Privilege Assignment vulnerability in Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from 2.5.2 before 2.6.0. |
| CVE-2026-23796 | CVE-2026-23796 CVSS 9.8 | Quick.Cart allows a user's session identifier to be set before authentication. The value of this session ID stays the same after authentication. This behaviour… |
| CVE-2026-23781 | CVE-2026-23781 CVSS 9.8 | An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. A set of default debug user credentials is hardcoded in cleartext within the application pa… |
| CVE-2026-23767 | CVE-2026-23767 CVSS 9.8 | ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide c… |
| CVE-2026-23760 | SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability KEVCVSS 9.8SmarterTools | SmarterTools SmarterMail contains an authentication bypass using an alternate path or channel vulnerability in the password reset API. The force-reset-password… |
| CVE-2026-23751 | CVE-2026-23751 CVSS 9.8 | Kofax Capture, now referred to as Tungsten Capture, version 6.0.0.0 (other versions may be affected) exposes a deprecated .NET Remoting HTTP channel on port 24… |
| CVE-2026-23744 | CVE-2026-23744 CVSS 9.8 | MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerabilit… |
| CVE-2026-23736 | CVE-2026-23736 CVSS 9.8 | seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0 and below, due to improper inp… |
| CVE-2026-23696 | CVE-2026-23696 CVSS 9.9 | Windmill CE and EE versions 1.276.0 through 1.603.2 contain an SQL injection vulnerability in the folder ownership management functionality that allows authent… |
| CVE-2026-23693 | CVE-2026-23693 CVSS 10.0 | ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor (elementskit-lite) WordPress plugin versions prior to 3.7.9 expose the REST en… |
| CVE-2026-2369 | CVE-2026-2369 CVSS 9.1 | A flaw was found in libsoup. An integer underflow vulnerability occurs when processing content with a zero-length resource, leading to a buffer overread. This … |
| CVE-2026-23658 | CVE-2026-23658 CVSS 9.8 | Insufficiently protected credentials in Azure DevOps allows an unauthorized attacker to elevate privileges over a network. |
| CVE-2026-23652 | CVE-2026-23652 CVSS 10.0 | Improper neutralization of special elements used in a command ('command injection') in Microsoft Power Pages allows an unauthorized attacker to execute code ov… |
| CVE-2026-23647 | CVE-2026-23647 CVSS 9.8 | Glory RBG-100 recycler systems using the ISPK-08 software component contain hard-coded operating system credentials that allow remote authentication to the und… |
| CVE-2026-23552 | CVE-2026-23552 CVSS 9.1 | Cross-Realm Token Acceptance Bypass in KeycloakSecurityPolicy Apache Camel Keycloak component. The Camel-Keycloak KeycloakSecurityPolicy does not validate th… |
| CVE-2026-23550 | CVE-2026-23550 CVSS 9.8 | Incorrect Privilege Assignment vulnerability in Modular DS Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from n/a thr… |
| CVE-2026-23549 | CVE-2026-23549 CVSS 9.8 | Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Object Injection.This issue affects WpEvently: from n/a thro… |
| CVE-2026-23542 | CVE-2026-23542 CVSS 9.8 | Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Object Injection.This issue affects Grand Restaurant: fro… |
| CVE-2026-23534 | CVE-2026-23534 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec bands dec… |
| CVE-2026-23533 | CVE-2026-23533 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the RDPGFX ClearCodec de… |
| CVE-2026-23532 | CVE-2026-23532 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the FreeRDP client’s `g… |
| CVE-2026-23531 | CVE-2026-23531 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when `glyphData` is present, `clear_decompress` calls … |
| CVE-2026-23530 | CVE-2026-23530 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,`freerdp_bitmap_decompress_planar` does not validate `nSrcWidth`/`nSrc… |
| CVE-2026-23527 | CVE-2026-23527 CVSS 9.8 | H3 is a minimal H(TTP) framework built for high performance and portability. Prior to 1.15.5, there is a critical HTTP Request Smuggling vulnerability. readRaw… |
| CVE-2026-23524 | CVE-2026-23524 CVSS 9.8 | Laravel Reverb provides a real-time WebSocket communication backend for Laravel applications. In versions 1.6.3 and below, Reverb passes data from the Redis ch… |
| CVE-2026-23519 | CVE-2026-23519 CVSS 9.8 | RustCrypto CMOV provides conditional move CPU intrinsics which are guaranteed on major platforms to execute in constant-time and not be rewritten as branches b… |
| CVE-2026-23518 | CVE-2026-23518 CVSS 9.8 | Fleet is open source device management software. In versions prior to 4.78.3, 4.77.1, 4.76.2, 4.75.2, and 4.53.3, a vulnerability in Fleet's Windows MDM enroll… |