31,467 indexed
CVECVE vulnerabilities
31,467 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 851–900 of 31,467 · page 18 of 630
| ID | Title | Summary |
|---|---|---|
| CVE-2026-6921 | CVE-2026-6921 CVSS 8.3 | Race in GPU in Google Chrome on Windows prior to 147.0.7727.117 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Ch… |
| CVE-2026-6920 | CVE-2026-6920 CVSS 9.6 | Out of bounds read in GPU in Google Chrome on Android prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially… |
| CVE-2026-6919 | CVE-2026-6919 CVSS 9.6 | Use after free in DevTools in Google Chrome prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a… |
| CVE-2026-6912 | CVE-2026-6912 CVSS 8.8 | Improperly controlled modification of dynamically-determined object attributes in the Cognito User Pool configuration in AWS Ops Wheel before PR #165 allows re… |
| CVE-2026-6911 | CVE-2026-6911 CVSS 9.8 | Missing JWT signature verification in AWS Ops Wheel allows unauthenticated attackers to forge JWT tokens and gain unintended administrative access to the appli… |
| CVE-2026-6899 | CVE-2026-6899 CVSS 5.6 | Check for certificate revocation only considers the first matching CRL and ignores other valid CRLs of the same CA in the CycloneCrypto cryptographic wrapper o… |
| CVE-2026-6898 | CVE-2026-6898 CVSS 8.8 | The Wishlist Member plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'WishListMember3_Hooks::ge… |
| CVE-2026-6897 | CVE-2026-6897 CVSS 8.8 | The Wishlist Member plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'WishListMember\Features\T… |
| CVE-2026-6895 | CVE-2026-6895 CVSS 8.8 | The WishList Member plugin for WordPress is vulnerable to Missing Authorization leading to Sensitive Information Disclosure and Privilege Escalation in version… |
| CVE-2026-6893 | CVE-2026-6893 CVSS 7.5 | A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by providing specially crafted DHCP (Dynamic Host Configur… |
| CVE-2026-6887 | CVE-2026-6887 CVSS 9.8 | Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a SQL Injection vulnerability, allowing unauthenticated remote attackers to in… |
| CVE-2026-6886 | CVE-2026-6886 CVSS 9.8 | Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthenticated remote attacke… |
| CVE-2026-6885 | CVE-2026-6885 CVSS 9.8 | Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attack… |
| CVE-2026-6873 | CVE-2026-6873 CVSS 3.1djangoproject | An issue was discovered in Django 6.0 before 6.0.6 and 5.2 before 5.2.15. `django.http.HttpRequest.get_signed_cookie` in Django uses a non-injective salt deriv… |
| CVE-2026-6859 | CVE-2026-6859 CVSS 8.8 | A flaw was found in InstructLab. The `linux_train.py` script hardcodes `trust_remote_code=True` when loading models from HuggingFace. This allows a remote atta… |
| CVE-2026-6857 | CVE-2026-6857 CVSS 7.5 | A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream remote aggregation repository. A remote attacker wi… |
| CVE-2026-6853 | CVE-2026-6853 CVSS 9.8 | Improper restriction of excessive authentication attempts vulnerability in Başbelen Group Food Cafe Businesses Industry and Trade Ltd. Co. Pause+ Mobile App al… |
| CVE-2026-6849 | CVE-2026-6849 CVSS 8.8 | Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILGEM Software Technologies Research Insti… |
| CVE-2026-6848 | CVE-2026-6848 CVSS 8.1 | A flaw was found in Red Hat Quay. When Red Hat Quay requests password re-verification for sensitive operations, such as token generation or robot account creat… |
| CVE-2026-6841 | CVE-2026-6841 CVSS 6.1bestpractical | Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL tha… |
| CVE-2026-6832 | CVE-2026-6832 CVSS 8.1get-hermes | Hermes WebUI contains an arbitrary file deletion vulnerability in the /api/session/delete endpoint that allows authenticated attackers to delete files outside … |
| CVE-2026-6824 | CVE-2026-6824 CVSS 8.4 | A stored cross-site scripting (XSS) vulnerability exists in certain 1xxx series NVR devices due to insufficient sanitization of user-supplied input in specific… |
| CVE-2026-6823 | CVE-2026-6823 CVSS 8.2 | HKUDS OpenHarness prior to PR #147 remediation contains an insecure default configuration vulnerability where remote channels inherit allow_from = ["*"] permit… |
| CVE-2026-6819 | CVE-2026-6819 CVSS 8.8 | HKUDS OpenHarness prior to PR #156 remediation exposes plugin lifecycle commands including /plugin install, /plugin enable, /plugin disable, and /reload-plugin… |
| CVE-2026-6816 | CVE-2026-6816 CVSS 3.8tfa_basic_plugins_project | An access bypass vulnerability in Drupal TFA Basic Plugins allows users with the administer users permission to view or generate recovery codes for other users… |
| CVE-2026-6815 | CVE-2026-6815 CVSS 5.9casbin | An arbitrary file write vulnerability exists in Casdoor's Local File System storage provider. Due to insufficient path sanitization, an authenticated attacker … |
| CVE-2026-6798 | CVE-2026-6798 CVSS 5.3 | The 2Download Connector for 2DL Hosted Checkout plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 0.1.5. This is … |
| CVE-2026-6795 | CVE-2026-6795 CVSS 9.6 | URL redirection to untrusted site ('open redirect') vulnerability in DivvyDrive Information Technologies Inc. DivvyDrive allows Parameter Injection. This issu… |
| CVE-2026-6785 | CVE-2026-6785 CVSS 8.1 | Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence… |
| CVE-2026-6771 | CVE-2026-6771 CVSS 9.8 | Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. |
| CVE-2026-6769 | CVE-2026-6769 CVSS 8.8 | Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. |
| CVE-2026-6768 | CVE-2026-6768 CVSS 9.8 | Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. |
| CVE-2026-6761 | CVE-2026-6761 CVSS 8.8 | Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10. |
| CVE-2026-6760 | CVE-2026-6760 CVSS 9.8 | Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. |
| CVE-2026-6750 | CVE-2026-6750 CVSS 8.8 | Privilege escalation in the Graphics: WebRender component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150… |
| CVE-2026-6748 | CVE-2026-6748 CVSS 9.8 | Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbir… |
| CVE-2026-6741 | CVE-2026-6741 CVSS 8.8 | The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Privilege Escalation in versions up to and including … |
| CVE-2026-6739 | CVE-2026-6739 CVSS 6.7mattermost | Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x <= 10.11.15, 10.11.x <= 10.11.16 fail to require system-level permission when patching protecte… |
| CVE-2026-6722 | CVE-2026-6722 CVSS 9.8 | In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOAP extension's object deduplication mechanism stor… |
| CVE-2026-6716 | CVE-2026-6716 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| CVE-2026-6692 | CVE-2026-6692 CVSS 8.8 | The Slider Revolution plugin for WordPress is vulnerable to Arbitrary File Upload in versions 7.0.0 to 7.0.10 via the '_get_media_url' and '_check_file_path' f… |
| CVE-2026-6691 | CVE-2026-6691 CVSS 7.8mongodb | The MongoDB C Driver's Cyrus SASL integration performs unsafe string copying during username canonicalization, enabling a heap buffer overflow before any authe… |
| CVE-2026-6689 | CVE-2026-6689 CVSS 4.3mattermost | Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x <= 10.11.15, 10.11.x <= 10.11.16 Fail to enforce PermissionInviteUser when setting AllowOpenInv… |
| CVE-2026-6676 | CVE-2026-6676 CVSS 7.8 | Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial… |
| CVE-2026-6665 | CVE-2026-6665 CVSS 9.8 | The SCRAM code in PgBouncer before 1.25.2 did not check the return value of strlcat() correctly when building the contents of the SCRAM client-final-message. A… |
| CVE-2026-6657 | CVE-2026-6657 CVSS 6.1 | A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin validation when the `allow_origin_pat` configuration … |
| CVE-2026-6644 | CVE-2026-6644 CVSS 9.1 | A command injection vulnerability was found in the PPTP VPN Clients on the ADM. The vulnerability allows an administrative user to break out of the restricted … |
| CVE-2026-6643 | CVE-2026-6643 CVSS 9.9 | A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems from the use of unbounded sscanf() and passing user-contro… |
| CVE-2026-6638 | CVE-2026-6638 CVSS 8.8 | SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the … |
| CVE-2026-6637 | CVE-2026-6637 CVSS 8.8 | Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged database user to execute arbitrary code as the operating system user running the dat… |