31,467 indexed
CVECVE vulnerabilities
31,467 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 1,051–1,100 of 8,161 in High · page 22 of 164
| ID | Title | Summary |
|---|---|---|
| CVE-2026-40901 | CVE-2026-40901 CVSS 8.8 | DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below ship the legacy velocity-1.7.jar, which pulls in commons-colle… |
| CVE-2026-40900 | CVE-2026-40900 CVSS 8.8 | DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /de2api/datasetDa… |
| CVE-2026-40897 | CVE-2026-40897 CVSS 8.8 | Math.js is an extensive math library for JavaScript and Node.js. From 13.1.1 to before 15.2.0, a vulnerability allowed executing arbitrary JavaScript via the e… |
| CVE-2026-40893 | CVE-2026-40893 CVSS 8.2 | Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.31.0, Gotenberg only checks if the tag is exactly FileName, so System:FileName slips righ… |
| CVE-2026-40885 | CVE-2026-40885 CVSS 8.8 | goshs is a SimpleHTTPServer written in Go. From 2.0.0-beta.4 to 2.0.0-beta.5, goshs leaks file-based ACL credentials through its public collaborator feed when … |
| CVE-2026-40883 | CVE-2026-40883 CVSS 8.1 | goshs is a SimpleHTTPServer written in Go. From 2.0.0-beta.4 to 2.0.0-beta.5, goshs contains a cross-site request forgery issue in its state-changing HTTP GET … |
| CVE-2026-40880 | CVE-2026-40880 CVSS 8.1 | ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.1 and zebra-consensus version 5.0.2, a logic error in Zebra's transaction verificat… |
| CVE-2026-40876 | CVE-2026-40876 CVSS 8.8 | goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs contains an SFTP root escape caused by prefix-based path validation. An authenticated S… |
| CVE-2026-40868 | CVE-2026-40868 CVSS 8.1 | Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to 1.16.4, kyverno’s apiCall servicecall helper implicitly injects Autho… |
| CVE-2026-40858 | CVE-2026-40858 CVSS 8.8 | The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data read from a remote Infinispan cache using java.io.ObjectInpu… |
| CVE-2026-40784 | CVE-2026-40784 CVSS 8.1 | Authorization Bypass Through User-Controlled Key vulnerability in Mahmudul Hasan Arif FluentBoards fluent-boards allows Exploiting Incorrectly Configured Acces… |
| CVE-2026-40764 | CVE-2026-40764 CVSS 8.1 | Cross-Site Request Forgery (CSRF) vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite allows Cross Site Request Forgery.This issue affects Contac… |
| CVE-2026-40744 | CVE-2026-40744 CVSS 8.5 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Beaver Builder Beaver Builder beaver-builder-lite-version… |
| CVE-2026-40706 | CVE-2026-40706 CVSS 8.4 | In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfs_build_permissions_posix() in acls.c that allows an attacker to corrupt heap memory… |
| CVE-2026-40698 | CVE-2026-40698 CVSS 8.7 | A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Resource Administrator role can create … |
| CVE-2026-4064 | CVE-2026-4064 CVSS 8.3 | Missing authorization checks on multiple gRPC service endpoints in PowerShell Universal before 2026.1.4 allows an authenticated user with any valid token to by… |
| CVE-2026-40631 | CVE-2026-40631 CVSS 8.7 | An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objects through iControl SOAP resulting in privilege e… |
| CVE-2026-40623 | CVE-2026-40623 CVSS 8.1 | A vulnerability in SenseLive X3050's web management interface allows critical system and network configuration parameters to be modified without sufficient val… |
| CVE-2026-40614 | CVE-2026-40614 CVSS 8.8 | PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, there is a buffer overflow when decoding Opus audio frames … |
| CVE-2026-40611 | CVE-2026-40611 CVSS 8.8 | Let's Encrypt client and ACME library written in Go (Lego). Prior to 4.34.0, the webroot HTTP-01 challenge provider in lego is vulnerable to arbitrary file wri… |
| CVE-2026-40600 | CVE-2026-40600 CVSS 8.1 | Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. In version 4.9.0, Chartbrew allo… |
| CVE-2026-40588 | CVE-2026-40588 CVSS 8.1 | blueprintUE is a tool to help Unreal Engine developers. Prior to 4.2.0, the password change form at /profile/{slug}/edit/ does not include a current_password f… |
| CVE-2026-40583 | CVE-2026-40583 CVSS 8.2 | UltraDAG is a minimal DAG-BFT blockchain in Rust. In version 0.1, a non-council attacker can submit a signed SmartOp::Vote transaction that passes signature, n… |
| CVE-2026-40581 | CVE-2026-40581 CVSS 8.1 | ChurchCRM is an open-source church management system. In versions prior to 7.2.0, the family record deletion endpoint (SelectDelete.php) performs permanent, ir… |
| CVE-2026-40568 | CVE-2026-40568 CVSS 8.5 | FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a stored cross-site scripting (XSS) vulnerability in the mailbox s… |
| CVE-2026-40563 | CVE-2026-40563 CVSS 8.1 | Description: Improper Control of Generation of Code ('Code Injection') vulnerability in Apache Atlas Apache Atlas exposes a DSL search endpoint that accepts us… |
| CVE-2026-40520 | CVE-2026-40520 CVSS 8.8 | FreePBX api module version 17.0.8 and prior contain a command injection vulnerability in the initiateGqlAPIProcess() function where GraphQL mutation input fiel… |
| CVE-2026-40502 | CVE-2026-40502 CVSS 8.8 | OpenHarness prior to commit dd1d235 contains a command injection vulnerability that allows remote gateway users with chat access to invoke sensitive administra… |
| CVE-2026-40497 | CVE-2026-40497 CVSS 8.1 | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, FreeScout's `Helper::stripDangerousTags()` removes `<script>`, `<form>`… |
| CVE-2026-40488 | CVE-2026-40488 CVSS 8.8 | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a … |
| CVE-2026-40473 | CVE-2026-40473 CVSS 8.8 | The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io.ObjectInputStream without applying any ObjectInp… |
| CVE-2026-40466 | CVE-2026-40466 CVSS 8.8 | Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache Activ… |
| CVE-2026-40459 | CVE-2026-40459 CVSS 8.8 | PAC4J is vulnerable to LDAP Injection in multiple methods. A low-privileged remote attacker can inject crafted LDAP syntax into ID-based search parameters, pot… |
| CVE-2026-40434 | CVE-2026-40434 CVSS 8.1 | Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or … |
| CVE-2026-4043 | CVE-2026-4043 CVSS 8.8 | A security vulnerability has been detected in Tenda i12 1.0.0.6(2204). The impacted element is the function formwrlSSIDget of the file /goform/wifiSSIDget. Suc… |
| CVE-2026-40420 | CVE-2026-40420 CVSS 8.8microsoft | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. |
| CVE-2026-4042 | CVE-2026-4042 CVSS 8.8 | A weakness has been identified in Tenda i12 1.0.0.6(2204). The affected element is the function formWifiMacFilterGet of the file /goform/WifiMacFilterGet. This… |
| CVE-2026-40415 | CVE-2026-40415 CVSS 8.1 | Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network. |
| CVE-2026-4041 | CVE-2026-4041 CVSS 8.8 | A security flaw has been discovered in Tenda i12 1.0.0.6(2204). Impacted is the function vos_strcpy of the file /goform/exeCommand. The manipulation of the arg… |
| CVE-2026-40403 | CVE-2026-40403 CVSS 8.8 | Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally. |
| CVE-2026-4039 | CVE-2026-4039 CVSS 8.8 | A vulnerability was determined in OpenClaw 2026.2.19-2. This vulnerability affects the function applySkillConfigenvOverrides of the component Skill Env Handler… |
| CVE-2026-40370 | CVE-2026-40370 CVSS 8.8microsoft | External control of file name or path in SQL Server allows an authorized attacker to execute code over a network. |
| CVE-2026-40368 | CVE-2026-40368 CVSS 8.0 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
| CVE-2026-40367 | CVE-2026-40367 CVSS 8.4microsoft | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
| CVE-2026-40366 | CVE-2026-40366 CVSS 8.4microsoft | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
| CVE-2026-40365 | CVE-2026-40365 CVSS 8.8microsoft | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
| CVE-2026-40364 | CVE-2026-40364 CVSS 8.4 | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
| CVE-2026-40363 | CVE-2026-40363 CVSS 8.4 | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. |
| CVE-2026-40361 | CVE-2026-40361 CVSS 8.4microsoft | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. |
| CVE-2026-40358 | CVE-2026-40358 CVSS 8.4microsoft | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. |