CVE Field Guide

Critical CVEs

CVE Title Updated Score
CVE-2025-62718 Axios has a NO_PROXY Hostname Normalization Bypass Leads to SSRF 09.04.2026 9.3
CVE-2026-34177 VM lowlevel restriction bypass via raw.apparmor and raw.qemu.conf 09.04.2026 9.1
CVE-2026-34178 Importing a crafted backup leads to project restriction bypass 09.04.2026 9.1
CVE-2026-34179 Update of type field in restricted TLS certificate allows privilege escalation to cluster admin 09.04.2026 9.1
CVE-2026-5852 Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command injection 09.04.2026 9.3
CVE-2026-5853 Totolink A7100RU CGI cstecgi.cgi setIpv6LanCfg os command injection 09.04.2026 9.3
CVE-2026-5854 Totolink A7100RU CGI cstecgi.cgi setWiFiEasyCfg os command injection 09.04.2026 9.3
CVE-2026-5850 Totolink A7100RU CGI cstecgi.cgi setVpnPassCfg os command injection 09.04.2026 9.3
CVE-2026-5851 Totolink A7100RU CGI cstecgi.cgi setUPnPCfg os command injection 09.04.2026 9.3
CVE-2026-1830 Quick Playground <= 1.3.1 - Missing Authorization to Unauthenticated Arbitrary File Upload 09.04.2026 9.8
CVE-2026-3199 Nexus Repository 3 - Authenticated Remote Code Execution via Task Property Injection 09.04.2026 9.4
CVE-2026-40035 Unfurl - Werkzeug Debugger Exposure via String Config Parsing 09.04.2026 9.3
CVE-2026-39860 Nix sandbox escape: file write via symlink at FOD `.tmp` copy destination 09.04.2026 9
CVE-2026-39888 PraisonAIAgents has a sandbox escape via exception frame traversal in `execute_code` (subprocess mode) 08.04.2026 10
CVE-2026-39890 PraisonAI Affected by Remote Code Execution via YAML Deserialization in Agent Definition Loading 08.04.2026 9.8
CVE-2026-2942 ProSolution WP Client <= 1.9.9 - Unauthenticated Arbitrary File Upload via proSol_fileUploadProcess 08.04.2026 9.8
CVE-2025-14815 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64 08.04.2026 9.3
CVE-2025-14816 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64 08.04.2026 9.3
CVE-2026-25776 08.04.2026 9.3
CVE-2026-3535 DSGVO Google Web Fonts GDPR <= 1.1 - Unauthenticated Arbitrary File Upload via 'fonturl' Parameter 08.04.2026 9.8
CVE-2026-4003 Users manager – PN <= 1.1.15 - Unauthenticated Privilege Escalation via Account Takeover via 'userspn_form_save' AJAX Action 08.04.2026 9.8
CVE-2026-3296 Everest Forms <= 3.4.3 - Unauthenticated PHP Object Injection via Form Entry Metadata 08.04.2026 9.8
CVE-2026-1346 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access 09.04.2026 9.3
CVE-2026-34078 Flatpak has a complete sandbox escape leading to host file access and code execution in the host context 09.04.2026 9.3
CVE-2026-39846 SiYuan affected by Remote Code Execution in the Electron desktop client via stored XSS in synced table captions 08.04.2026 9.1
CVE-2026-39847 Emmett has a path traversal in internal assets handler 08.04.2026 9.1
CVE-2026-34580 Botan has a certificate authentication bypass due to trust anchor confusion 09.04.2026 9.3
CVE-2026-33439 Pre-Authentication Remote Code Execution via `jato.clientSession` Deserialization in OpenAM 08.04.2026 9.3
CVE-2026-39397 @delmaredigital/payload-puc is missing authorization on /api/puck/* CRUD endpoints allows unauthenticated access to Puck-registered collections 07.04.2026 9.4
CVE-2026-39382 dbt has a Command Injection in Reusable Workflow via Unsanitized comment-body Output 08.04.2026 9.3
CVE-2026-39322 PolarLearn: Any password authenticates banned accounts and grants API access 07.04.2026 9.2
CVE-2026-39355 Genealogy is Missing Authorization in `TeamController::transferOwnership()` Allows Any Authenticated User to Hijack Any Team (Broken Access Control) 08.04.2026 10
CVE-2026-39324 Rack::Session::Cookie secrets: decrypt failure fallback enables secretless session forgery and Marshal deserialization 08.04.2026 9.3
CVE-2026-39337 ChurchCRM Affected by Unauthenticated RCE in Install Wizard 07.04.2026 10
CVE-2026-39339 ChurchCRM has an API Authentication Bypass 07.04.2026 9.1
CVE-2026-39342 ChurchCRM has a SQL injection searchwhat parameter via QueryView.php 07.04.2026 9.4
CVE-2026-35573 ChurchCRM has a Path traversal leads to RCE 08.04.2026 9.1
CVE-2026-23696 Windmill < 1.603.3 File Ownership Handling SQLi RCE 08.04.2026 9.4
CVE-2026-35614 Frappe has a SQL injection in bulk_update 09.04.2026 9.3
CVE-2026-35615 PraisonAI has a Path Traversal in FileTools 07.04.2026 9.2
CVE-2026-39305 Arbitrary File Write / Path Traversal in Action Orchestrator 07.04.2026 9
CVE-2026-4631 Cockpit: cockpit: unauthenticated remote code execution due to ssh command-line argument injection 08.04.2026 9.8
CVE-2026-35580 Emissary has GitHub Actions Shell Injection via Workflow Inputs 07.04.2026 9.1
CVE-2026-35490 changedetection.io has an Authentication Bypass via Decorator Ordering 09.04.2026 9.8
CVE-2026-20889 08.04.2026 9.8
CVE-2026-20911 08.04.2026 9.8
CVE-2026-21413 08.04.2026 9.8
CVE-2026-5627 Path Traversal in mintplex-labs/anything-llm 07.04.2026 9.1
CVE-2021-4473 Tianxin Internet Behavior Management System Command Injection via toQuery.php 08.04.2026 9.3
CVE-2026-22679 Weaver E-cology 10.0 Unauthenticated RCE via dubboApi Debug Endpoint 07.04.2026 9.3
CVE-2025-39666 omd: Local privilege escalation when executing omd commands as root 07.04.2026 9.3
CVE-2026-1114 Improper Access Control via Weak JWT Token in parisneo/lollms 07.04.2026 9.8
CVE-2026-0740 Ninja Forms - File Upload <= 3.3.26 - Unauthenticated Arbitrary File Upload 08.04.2026 9.8
CVE-2026-35471 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs 07.04.2026 9.8
CVE-2026-35392 goshs has an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs PUT Upload 07.04.2026 9.8
CVE-2026-35393 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in goshs POST multipart upload 08.04.2026 9.8
CVE-2026-35459 pyLoad has SSRF fix bypass via HTTP redirect 07.04.2026 9.3
CVE-2026-35022 Anthropic Claude Code & Agent SDK OS Command Injection via Authentication Helper 07.04.2026 9.3
CVE-2026-35178 Workbench Affected by Remote Code Execution (RCE) via Malicious Cookie in Timezone Conversion 07.04.2026 9.3
CVE-2026-35174 Chyrp Lite has a Path Traversal to Remote Code Execution 07.04.2026 9.1
CVE-2026-35050 text-generation-webui affected by Remote Code Execution (RCE) through Path Traversal at "Session -> Save extention settings to user_data/settings.yaml". 07.04.2026 9.1
CVE-2026-35171 Arbitrary Code Execution via Malicious Logging Configuration in Kedro 07.04.2026 9.8
CVE-2026-35047 Brave CMS has Unrestricted File Upload in BraveCMS via CKEditor Endpoint 07.04.2026 9.3
CVE-2026-35030 LiteLLM has an authentication bypass via OIDC userinfo cache key collision 07.04.2026 9.4
CVE-2026-35039 fast-jwt Affected by Cache Confusion via cacheKeyBuilder Collisions Can Return Claims From a Different Token (Identity/Authorization Mixup) 08.04.2026 9.1
CVE-2026-34989 CI4MS affected by Profile & User Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS 07.04.2026 9.4
CVE-2026-34841 Axios npm Supply Chain Incident Impacting @usebruno/cli 08.04.2026 9.8
CVE-2026-34976 Dgraph Affected by Pre-Auth Database Overwrite + SSRF + File Read via restoreTenant Missing Authorization 07.04.2026 10
CVE-2026-34977 Aperi'Solve Affected by Unauthenticated RCE via JPSeek Analyzer Command 07.04.2026 9.3
CVE-2026-34950 fast-jwt has an incomplete fix for CVE-2023-48223: JWT Algorithm Confusion via Whitespace-Prefixed RSA Public Key 06.04.2026 9.1
CVE-2026-34208 SandboxJS: Sandbox integrity escape 06.04.2026 10
CVE-2026-26026 GLPI has a Server-Side Template Injection via Double-Compilation 07.04.2026 9.1
CVE-2019-25687 Pegasus CMS 1.0 Remote Code Execution via extra_fields.php 06.04.2026 9.3
CVE-2016-20052 Snews CMS 1.7 Unrestricted File Upload via snews_files 06.04.2026 9.3
CVE-2018-25254 NICO-FTP 3.0.1.19 Buffer Overflow SEH 06.04.2026 9.3
CVE-2026-35616 07.04.2026 9.1
CVE-2017-20236 ProSoft Technology ICX35-HWC Command Injection via Web Interface 06.04.2026 9.3
CVE-2026-34938 PraisonAI: Python Sandbox Escape via str Subclass startswith() Override in execute_code 06.04.2026 10
CVE-2026-34952 PraisonAI: Missing Authentication in WebSocket Gateway 06.04.2026 9.1
CVE-2026-34953 PraisonAI: Authentication Bypass in OAuthManager.validate_token() 06.04.2026 9.1
CVE-2017-20234 GarrettCom Magnum 6K and 10K Authentication Bypass via Hardcoded String 06.04.2026 9.3
CVE-2018-25236 Hirschmann HiOS HiSecOS Authentication Bypass via HTTP Management 06.04.2026 9.3
CVE-2021-4477 Hirschmann HiLCOS OpenBAT BAT450 IPv6 IPsec Firewall Bypass 06.04.2026 9.3
CVE-2026-34612 Kestra: Remote Code Execution via SQL Injection 06.04.2026 10
CVE-2026-34934 PraisonAI: Second-Order SQL Injection in `get_all_user_threads` 06.04.2026 9.8
CVE-2026-34935 PraisonAI: OS Command Injection in MCPHandler.parse_mcp_command() 06.04.2026 9.8
CVE-2018-25237 Hirschmann HiSecOS Buffer Overflow via HTTPS Login 06.04.2026 9.3
CVE-2017-20237 Hirschmann Industrial HiVision Authentication Bypass Remote Code Execution 06.04.2026 9.3
CVE-2026-25197 Gardyn Cloud API Authorization Bypass Through User-Controlled Key 07.04.2026 9.3
CVE-2026-28766 Gardyn Cloud API Missing Authentication for Critical Function 07.04.2026 9.2
CVE-2026-35560 Improper certificate validation in identity provider connection components in Amazon Athena ODBC driver 07.04.2026 9.1
CVE-2026-35561 Insufficient authentication security controls in browser-based authentication components in Amazon Athena ODBC driver 07.04.2026 9.1
CVE-2026-28798 Arbitrary internal service access via /v1/sys/proxy when Cloudflare Tunnel is enabled on ZimaOS 06.04.2026 9.1
CVE-2026-32186 Microsoft Bing Elevation of Privilege Vulnerability 07.04.2026 10
CVE-2026-0545 Missing Authentication for Critical Function in mlflow/mlflow 03.04.2026 9.1
CVE-2026-35216 Budibase: Unauthenticated Remote Code Execution via Webhook Trigger and Bash Automation Step 03.04.2026 9.1
CVE-2026-31818 Budibase: Server-Side Request Forgery via REST Connector with Empty Default Blacklist 03.04.2026 9.6
CVE-2026-5463 03.04.2026 9.3
CVE-2026-26135 Azure Custom Locations Resource Provider (RP) Elevation of Privilege Vulnerability 07.04.2026 9.6
CVE-2026-32211 Azure MCP Server Information Disclosure Vulnerability 07.04.2026 9.1
CVE-2026-32213 Azure AI Foundry Elevation of Privilege Vulnerability 07.04.2026 10
CVE-2026-33105 Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability 07.04.2026 10
CVE-2026-33107 Azure Databricks Elevation of Privilege Vulnerability 07.04.2026 10
CVE-2025-15620 HiOS Switch Platform Denial-of-Service via Web Interface 03.04.2026 9.2
CVE-2024-14034 Hirschmann HiEOS Authentication Bypass via HTTP Management Module 03.04.2026 9.3
CVE-2026-34838 Group-Office: Authenticated Remote Code Execution via PHP Insecure Deserialization in `AbstractSettingsCollection` 03.04.2026 10
CVE-2026-35053 OneUptime: Unauthenticated Workflow Execution via ManualAPI 03.04.2026 9.2
CVE-2026-34745 Unauthenticated Path Traversal Arbitrary File Write in /api/uploadChunked/public 02.04.2026 9.1
CVE-2026-34758 OneUptime: Missing Authentication on Notification Endpoints 03.04.2026 9.1
CVE-2026-34759 OneUptime: Unauthenticated notification API endpoints - financial abuse via phone number purchase, service disruption, and SMTP credential exposure 03.04.2026 9.2

Latest Updates

CVE Title Updated Score
CVE-2025-70364 09.04.2026
CVE-2025-70365 09.04.2026
CVE-2026-33005 Apache OpenMeetings: Insufficient checks in FileWebService 09.04.2026
CVE-2026-33266 Apache OpenMeetings: Hardcoded Remember-Me Cookie Encryption Key and Salt 09.04.2026
CVE-2026-34020 Apache OpenMeetings: Login Credentials Passed via GET Query Parameters 09.04.2026
CVE-2026-39398 09.04.2026
CVE-2026-39843 Plane has a Server-Side Request Forgery (SSRF) in Favicon Fetching 09.04.2026 7.7
CVE-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification 09.04.2026 7.8
CVE-2026-39941 ChurchCRM has an XSS vulnerability 09.04.2026
CVE-2025-14551 Senstive information disclosure was affecting subiquity 09.04.2026
CVE-2025-15480 Senstive information disclosure was affecting ubuntu-desktop-provision 09.04.2026
CVE-2026-35040 fast-jwt: Stateful RegExp (/g or /y) causes non-deterministic allowed-claim validation (logical DoS) 09.04.2026 5.3
CVE-2026-35041 ReDoS in fast-jwt when using RegExp in allowed* leading to CPU exhaustion during token verification 09.04.2026 4.2
CVE-2026-35204 Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory 09.04.2026
CVE-2026-35205 Helm's plugin verification fails open when .prov is missing, allowing unsigned plugin install 09.04.2026
CVE-2026-4878 Libcap: libcap: privilege escalation via toctou race condition in cap_set_file() 09.04.2026
CVE-2026-5960 code-projects Patient Record Management System SQL Database Backup File hcpms.sql information disclosure 09.04.2026
CVE-2025-50228 09.04.2026
CVE-2025-62718 Axios has a NO_PROXY Hostname Normalization Bypass Leads to SSRF 09.04.2026
CVE-2025-70810 09.04.2026
CVE-2025-70811 09.04.2026
CVE-2026-34578 OPNsense has an LDAP Injection via Unsanitized Username in Authentication 09.04.2026 8.2
CVE-2026-34757 LIBPNG has a yse-after-free in png_set_PLTE, png_set_tRNS and png_set_hIST leading to corrupted chunk data and potential heap information disclosure 09.04.2026 5.1
CVE-2026-4112 09.04.2026
CVE-2026-4113 09.04.2026
CVE-2026-4114 09.04.2026
CVE-2026-4116 09.04.2026
CVE-2026-5437 Out-of-Bounds Read in DicomStreamReader 09.04.2026
CVE-2026-5438 Gzip Decompression Bomb via Content-Encoding Header 09.04.2026
CVE-2026-5439 Memory Exhaustion via Forged ZIP Metadata 09.04.2026
CVE-2026-5440 Memory Exhaustion via Unbounded Content-Length 09.04.2026
CVE-2026-5441 Out-of-Bounds Read in DicomImageDecoder (PMSCT_RLE1 Decompression) 09.04.2026
CVE-2026-5442 Heap Buffer Overflow in DICOM Image Decoder via VR UL Dimensions 09.04.2026
CVE-2026-5443 Heap Buffer Overflow in DICOM Image Decoder (Palette Color Decode) 09.04.2026
CVE-2026-5444 Heap Buffer Overflow in PAM Image Buffer Allocation 09.04.2026
CVE-2026-5445 Out-of-Bounds Read in DicomImageDecoder (DecodeLookupTable) 09.04.2026
CVE-2026-5959 GL.iNet GL-RM1/GL-RM10/GL-RM10RC/GL-RM1PE Factory Reset improper authentication 09.04.2026
CVE-2025-45806 09.04.2026
CVE-2026-4660 Go-getter may allow to arbitrary filesystem reads through git operations 09.04.2026 7.5
CVE-2026-2519 Online Scheduling and Appointment Booking System – Bookly <= 27.0 - Unauthenticated Price Manipulation via 'tips' 09.04.2026 5.3
CVE-2026-3005 List category posts <= 0.94.0 - Authenticated (Author+) Stored Cross-Site Scripting via 'catlist' Shortcode 09.04.2026 6.4
CVE-2024-1490 Wago: Vulnerability in WBM through Open VPN 09.04.2026 7.2
CVE-2025-57735 Apache Airflow: Airflow Logout Not Invalidating JWT 09.04.2026
CVE-2026-21388 Unbounded Request Body Read in MS Teams Plugin {{/lifecycle}} Webhook Endpoint 09.04.2026 3.7
CVE-2026-24661 Unbounded Request Body Read in MS Teams Plugin {{/changes}} Webhook Endpoint 09.04.2026 3.7
CVE-2025-62188 Apache DolphinScheduler: Users can access sensitive information through the actuator endpoint. 09.04.2026
CVE-2026-34184 Missing Authorization in Hydrosystem Control System 09.04.2026
CVE-2026-34185 SQL Injection in Hydrosystem Control System 09.04.2026
CVE-2026-4901 Insertion of Sesitive Information into Log File in Hydrosystem Control System 09.04.2026
CVE-2026-34177 VM lowlevel restriction bypass via raw.apparmor and raw.qemu.conf 09.04.2026 9.1
CVE-2026-34178 Importing a crafted backup leads to project restriction bypass 09.04.2026 9.1
CVE-2026-34179 Update of type field in restricted TLS certificate allows privilege escalation to cluster admin 09.04.2026 9.1
CVE-2026-34538 Apache Airflow: Authorization bypass in DagRun wait endpoint (XCom exposure) 09.04.2026
CVE-2026-5852 Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command injection 09.04.2026
CVE-2026-5853 Totolink A7100RU CGI cstecgi.cgi setIpv6LanCfg os command injection 09.04.2026
CVE-2026-5854 Totolink A7100RU CGI cstecgi.cgi setWiFiEasyCfg os command injection 09.04.2026
CVE-2026-5850 Totolink A7100RU CGI cstecgi.cgi setVpnPassCfg os command injection 09.04.2026
CVE-2026-5851 Totolink A7100RU CGI cstecgi.cgi setUPnPCfg os command injection 09.04.2026
CVE-2026-5848 jeecgboot JimuReport Data Source testConnection DriverManager.getConnection code injection 09.04.2026
CVE-2026-5849 Tenda i12 HTTP path traversal 09.04.2026
CVE-2026-5841 Tenda i3 HTTP R7WebsSecurityHandler path traversal 09.04.2026
CVE-2026-5842 decolua 9router Administrative API Endpoint api authorization 09.04.2026
CVE-2026-5844 D-Link DIR-882 HNAP1 SetNetworkSettings prog.cgi sprintf os command injection 09.04.2026
CVE-2026-5847 code-projects Movie Ticketing System SQL Database Backup File moviedb.sql information disclosure 09.04.2026
CVE-2026-1830 Quick Playground <= 1.3.1 - Missing Authorization to Unauthenticated Arbitrary File Upload 09.04.2026 9.8
CVE-2026-4336 Ultimate FAQ Accordion Plugin <= 2.4.7 - Authenticated (Author+) Stored Cross-Site Scripting via FAQ Content 09.04.2026 6.4
CVE-2026-5742 UsersWP <= 1.2.60 - Authenticated (Subscriber+) Stored Cross-Site Scripting via User Badge Link Substitution 09.04.2026 6.4
CVE-2026-5838 PHPGurukul News Portal Project add-subadmins.php sql injection 09.04.2026
CVE-2026-5839 PHPGurukul News Portal Project add-subcategory.php sql injection 09.04.2026
CVE-2026-5840 PHPGurukul News Portal Project check_availability.php sql injection 09.04.2026
CVE-2026-3568 MStore API <= 4.18.3 - Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary User Meta Update 09.04.2026 4.3
CVE-2026-3574 Experto Dashboard for WooCommerce <= 1.0.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Navigation Font Size' Setting 09.04.2026 4.4
CVE-2026-4124 Ziggeo <= 3.1.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification via 'ziggeo_ajax' AJAX Action 09.04.2026 5.4
CVE-2026-4429 OSM <= 6.1.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'marker_name' Shortcode Attribute 09.04.2026 6.4
CVE-2026-5357 Download Manager <= 3.3.52 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes 09.04.2026 6.4
CVE-2026-5833 awwaiid mcp-server-taskwarrior index.ts server.setRequestHandler command injection 09.04.2026
CVE-2026-5834 code-projects Online Shoe Store admin_running.php cross site scripting 09.04.2026
CVE-2026-5835 code-projects Online Shoe Store admin_football.php cross site scripting 09.04.2026
CVE-2026-5836 code-projects Online Shoe Store admin_product.php cross site scripting 09.04.2026
CVE-2026-5837 PHPGurukul News Portal Project news-details.php sql injection 09.04.2026
CVE-2026-4326 Vertex Addons for Elementor <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation and Activation via 'afeb_activate_required_plugins' 09.04.2026 8.8
CVE-2026-5830 Tenda AC15 SysToolChangePwd websGetVar stack-based overflow 09.04.2026
CVE-2026-5831 Agions taskflow-ai terminal_execute handlers.ts os command injection 09.04.2026
CVE-2026-5832 atototo api-lab-mcp HTTP http-server.ts test_http_endpoint server-side request forgery 09.04.2026
CVE-2026-5828 code-projects Simple IT Discussion Forum addcomment.php sql injection 09.04.2026
CVE-2026-5829 code-projects Simple IT Discussion Forum content.php sql injection 09.04.2026
CVE-2026-5825 code-projects Simple Laundry System delmemberinfo.php cross site scripting 09.04.2026
CVE-2026-5826 code-projects Simple IT Discussion Forum edit-category.php cross site scripting 09.04.2026
CVE-2026-5827 code-projects Simple IT Discussion Forum question-function.php sql injection 09.04.2026
CVE-2026-5824 code-projects Simple Laundry System userchecklogin.php sql injection 08.04.2026
CVE-2026-5823 itsourcecode Construction Management System borrowed_tool_report.php sql injection 09.04.2026
CVE-2026-5814 PHPGurukul Online Course Registration check_availability.php sql injection 09.04.2026
CVE-2026-5815 D-Link DIR-645 hedwig.cgi hedwigcgi_main stack-based overflow 08.04.2026
CVE-2026-5813 PHPGurukul Online Course Registration check_availability.php sql injection 09.04.2026
CVE-2025-12664 Improper Validation of Specified Quantity in Input in GitLab 09.04.2026 7.5
CVE-2025-9484 Missing Authorization in GitLab 09.04.2026 4.3
CVE-2026-1092 Improper Validation of Specified Quantity in Input in GitLab 09.04.2026 7.5
CVE-2026-1101 Improper Validation of Specified Quantity in Input in GitLab 09.04.2026 6.5
CVE-2026-1516 Improper Control of Generation of Code ('Code Injection') in GitLab 09.04.2026 5.7
CVE-2026-1752 Incorrect Authorization in GitLab 09.04.2026 4.3
CVE-2026-2104 Authorization Bypass Through User-Controlled Key in GitLab 09.04.2026 4.3
CVE-2026-2619 Incorrect Authorization in GitLab 09.04.2026 4.3
CVE-2026-4332 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 09.04.2026 5.4
CVE-2026-4916 Missing Authorization in GitLab 09.04.2026 2.7
CVE-2026-5173 Exposed Dangerous Method or Function in GitLab 09.04.2026 8.5
CVE-2026-5812 SourceCodester Pharmacy Product Management System POST Parameter add-sales.php logic error 08.04.2026
CVE-2026-3199 Nexus Repository 3 - Authenticated Remote Code Execution via Task Property Injection 09.04.2026
CVE-2026-3438 Nexus Repository 3 - Reflected Cross-Site Scripting (XSS) in ?describe Pages 09.04.2026
CVE-2026-4398 08.04.2026
CVE-2026-5811 SourceCodester Online Food Ordering System POST Parameter Actions.php save_product logic error 09.04.2026
CVE-2026-5810 SourceCodester Sales and Inventory System GET Parameter delete.php cross site scripting 08.04.2026
CVE-2026-40024 Sleuth Kit tsk_recover Path Traversal 08.04.2026
CVE-2026-40025 Sleuth Kit APFS Keybag Parser Out-of-Bounds Read 08.04.2026
CVE-2026-40026 Sleuth Kit ISO9660 SUSP Extension Reference Out-of-Bounds Read 08.04.2026
CVE-2026-40027 ALEAPP NQ Vault Artifact Parser Path Traversal 09.04.2026
CVE-2026-40028 Hayabusa < 3.8.0 XSS via JSON Log Import 08.04.2026
CVE-2026-40029 parseusbs < 1.9 Command Injection via Crafted LNK Filename 09.04.2026
CVE-2026-40030 parseusbs < 1.9 Command Injection via Volume Path Argument 08.04.2026
CVE-2026-40031 MemProcFS < 5.17 DLL/Shared Library Hijacking 08.04.2026
CVE-2026-40032 UAC < 3.3.0-rc1 Command Injection via Placeholder Substitution 08.04.2026
CVE-2026-40035 Unfurl - Werkzeug Debugger Exposure via String Config Parsing 09.04.2026
CVE-2026-40036 Unfurl < 2026.04 - Denial of Service via Unbounded zlib Decompression 08.04.2026
CVE-2026-40037 OpenClaw < 2026.3.31 - Unsafe Request Body Replay via fetchWithSsrFGuard Cross-Origin Redirects 09.04.2026
CVE-2026-5711 Post Blocks & Tools <= 1.3.0 - Authenticated (Author+) Stored Cross-Site Scripting via 'sliderStyle' Block Attribute 08.04.2026 6.4
CVE-2026-5808 openstatusHQ openstatus Onboarding Endpoint client.tsx cross site scripting 09.04.2026
CVE-2026-39901 monetr: Protected Transactions Deletable via PUT 08.04.2026 5.7
CVE-2026-5806 code-projects Easy Blog Site update.php cross site scripting 08.04.2026
CVE-2026-5858 08.04.2026
CVE-2026-5859 08.04.2026
CVE-2026-5860 08.04.2026
CVE-2026-5861 08.04.2026
CVE-2026-5862 08.04.2026
CVE-2026-5863 08.04.2026
CVE-2026-5864 08.04.2026
CVE-2026-5865 08.04.2026
CVE-2026-5866 09.04.2026
CVE-2026-5867 08.04.2026
CVE-2026-5868 08.04.2026
CVE-2026-5869 08.04.2026
CVE-2026-5870 08.04.2026
CVE-2026-5871 08.04.2026
CVE-2026-5872 08.04.2026
CVE-2026-5873 08.04.2026
CVE-2026-5874 08.04.2026
CVE-2026-5875 08.04.2026
CVE-2026-5876 08.04.2026
CVE-2026-5877 08.04.2026
CVE-2026-5878 08.04.2026
CVE-2026-5879 08.04.2026
CVE-2026-5880 08.04.2026
CVE-2026-5881 08.04.2026
CVE-2026-5882 08.04.2026
CVE-2026-5883 08.04.2026
CVE-2026-5884 08.04.2026
CVE-2026-5885 08.04.2026
CVE-2026-5886 08.04.2026
CVE-2026-5887 08.04.2026
CVE-2026-5888 08.04.2026
CVE-2026-5889 08.04.2026
CVE-2026-5890 08.04.2026
CVE-2026-5891 08.04.2026
CVE-2026-5892 08.04.2026
CVE-2026-5893 08.04.2026
CVE-2026-5894 08.04.2026
CVE-2026-5895 08.04.2026
CVE-2026-5896 08.04.2026
CVE-2026-5897 08.04.2026
CVE-2026-5898 08.04.2026
CVE-2026-5899 08.04.2026
CVE-2026-5900 08.04.2026
CVE-2026-5901 08.04.2026
CVE-2026-5902 08.04.2026
CVE-2026-5903 08.04.2026
CVE-2026-5904 08.04.2026
CVE-2026-5905 09.04.2026
CVE-2026-5906 09.04.2026
CVE-2026-5907 09.04.2026
CVE-2026-5908 09.04.2026
CVE-2026-5909 09.04.2026
CVE-2026-5910 09.04.2026
CVE-2026-5911 09.04.2026
CVE-2026-5912 09.04.2026
CVE-2026-5913 08.04.2026
CVE-2026-5914 09.04.2026
CVE-2026-5915 09.04.2026
CVE-2026-5918 09.04.2026
CVE-2026-5919 09.04.2026
CVE-2026-39860 Nix sandbox escape: file write via symlink at FOD `.tmp` copy destination 09.04.2026 9
CVE-2026-39888 PraisonAIAgents has a sandbox escape via exception frame traversal in `execute_code` (subprocess mode) 08.04.2026 10
CVE-2026-39889 PraisonAI has Unauthenticated SSE Event Stream Exposes All Agent Activity in A2U Server 08.04.2026 7.5
CVE-2026-39890 PraisonAI Affected by Remote Code Execution via YAML Deserialization in Agent Definition Loading 08.04.2026 9.8
CVE-2026-39891 PraisonAI has a Template Injection in Agent Tool Definitions 09.04.2026 8.8
CVE-2026-39892 cryptography has a buffer overflow if non-contiguous buffers were passed to APIs 08.04.2026
CVE-2026-39882 OpenTelemetry-Go OTLP HTTP exporters read unbounded HTTP response bodies 08.04.2026 5.3
CVE-2026-39883 OpenTelemetry-Go has an incomplete fix for CVE-2026-24051: BSD kenv command not using absolute path enables PATH hijacking 08.04.2026
CVE-2026-39885 FrontMCP Affected by SSRF via $ref Dereferencing in Untrusted OpenAPI Specifications 08.04.2026 7.5
CVE-2026-5436 MW WP Form <= 5.1.1 - Unauthenticated Arbitrary File Move via regenerate_upload_file_keys 08.04.2026 8.1
CVE-2026-5451 Extensions for Leaflet Map <= 4.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'elevation-track' Shortcode 08.04.2026 6.4
CVE-2026-5805 code-projects Easy Blog Site contact_us.php sql injection 08.04.2026
CVE-2026-39414 MinIO affected a DoS via Unbounded Memory Allocation in S3 Select CSV Parsing 08.04.2026
CVE-2026-39415 Frappe Learning Management System has Client-Side Manipulation of Quiz Scores 09.04.2026
CVE-2026-39416 Stored XSS in modal item preview for long item content in AIL Framework 08.04.2026
CVE-2026-39429 kcp's cache server is accessible without authentication or authorization checks 08.04.2026 8.2
CVE-2026-39844 NiceGUI has a Path Traversal in NiceGUI Upload Filename on Windows via Backslash Bypass of PurePosixPath Sanitization 08.04.2026 5.9
CVE-2026-39881 Vim Ex command injection in Vims NetBeans integration 09.04.2026 5
CVE-2026-5803 bigsk1 openai-realtime-ui API Proxy Endpoint server.js server-side request forgery 09.04.2026
CVE-2026-39413 LightRAG has a JWT Algorithm Confusion Vulnerability in LightRAG API 08.04.2026 4.2
CVE-2026-39859 LiquidJS has a renderFile() / parseFile() bypass configured root and allow arbitrary file read 08.04.2026
CVE-2026-39862 Tophat has a Command Injection Vulnerability When Accessing a Maliciously Crafted Tophat Link 08.04.2026
CVE-2026-39863 Kamailio Core: TCP Data Processing Vulnerability 09.04.2026 7.5
CVE-2026-39864 Kamailio Auth: Processing Vulnerability For Additional Authenticated User Identity Checks 08.04.2026 4.4
CVE-2026-39880 Remnawave Backend has a race condition in HWID device limit allows bypassing max devices 08.04.2026 5
CVE-2026-5802 idachev mcp-javadc HTTP os command injection 08.04.2026
CVE-2026-23869 08.04.2026 7.5
CVE-2026-35476 InvenTree Affected by Privilege Escalation via API 08.04.2026 7.2
CVE-2026-35477 InvenTree has SSTI in PART_NAME_FORMAT bypasses CVE-2026-27629 fix via {% if part.pk %} sandbox escape 08.04.2026 5.5
CVE-2026-35478 InvenTree has Arbitrary API Token Creation 08.04.2026 8.3
CVE-2026-35479 InvenTree Plugin Installation - Insufficient Permissions 09.04.2026 6.6
CVE-2026-35525 LiquidJS has a root restriction bypass for partial and layout loading through symlinked templates 08.04.2026
CVE-2026-39362 InvenTree has SSRF via Remote Image Download — No IP/Hostname Validation on remote_image URLs 08.04.2026
CVE-2026-39411 LobeHub has an unauthenticated authentication bypass on `webapi` routes via forgeable `X-lobe-chat-auth` header 08.04.2026 5
CVE-2026-39412 LiquidJS has an ownPropertyOnly bypass via sort_natural filter — prototype property information disclosure through sorting side-channel 09.04.2026 5.3