CVE Field Guide

Critical CVEs

CVE	Title	Updated	Score
CVE-2026-6284	Horner Automation Cscape and XL4, XL7 PLC Weak password requirements	17.04.2026	9.3
CVE-2025-15623	Sparx Pro Cloud Server reveals sensitive information to an unauthenticated user	17.04.2026	9.3
CVE-2025-15624	Plaintext Storage of a Password in Sparx Pro Cloud Server.	17.04.2026	9.3
CVE-2025-15625	Unauthenticated execution of arbitrary SQL queries in Sparx Pro Cloud Server	17.04.2026	9.5
CVE-2026-6443	Accordion and Accordion Slider 1.4.6 - Injected Backdoor	17.04.2026	9.8
CVE-2026-40322	SiYuan: Mermaid `javascript:` Link Injection Leads to Stored XSS and Electron RCE	17.04.2026	9.1
CVE-2026-6270	@fastify/middie vulnerable to middleware authentication bypass in child plugin scopes	16.04.2026	9.1
CVE-2026-31843		16.04.2026	10
CVE-2026-3596	Riaxe Product Customizer <= 2.1.2 - Missing Authorization to Unauthenticated Arbitrary Options Update to Privilege Escalation via 'install-imprint' AJAX Action	16.04.2026	9.8
CVE-2026-6348	Simopro Technology｜WinMatrix - Missing Authentication	16.04.2026	9.3
CVE-2026-6349	HGiga｜iSherlock - OS Command Injection	16.04.2026	10
CVE-2026-6350	Openfind｜MailGates/MailAudit - Stack-based Buffer Overflow	16.04.2026	9.3
CVE-2026-40504	Creolabs Gravity < 0.9.6 Heap Buffer Overflow via gravity_vm_exec	16.04.2026	9.3
CVE-2026-40959		16.04.2026	9.3
CVE-2026-4880	Barcode Scanner (+Mobile App) <= 1.11.0 - Unauthenticated Privilege Escalation via Insecure Token Authentication	16.04.2026	9.8
CVE-2026-6388	Argocd-image-updater: argocd image updater: cross-namespace privilege escalation via insufficient namespace validation	16.04.2026	9.1
CVE-2026-40173	Dgraph: Unauthenticated pprof endpoint leaks admin auth token	16.04.2026	9.4
CVE-2025-41118	Sensitive COS `SecretKey` exposed in plaintext via configuration API due to missing type protection	15.04.2026	9.1
CVE-2026-5189	Nexus Repository 3 - Hardcoded Credential in Internal Database Component	16.04.2026	9.2
CVE-2025-15610		15.04.2026	9.3
CVE-2026-20147	Cisco Identity Services Engine Remote Code Execution Vulnerability	16.04.2026	9.9
CVE-2026-20180	Cisco Identity Services Engine Multiple Remote Code Execution Vulnerability	16.04.2026	9.9
CVE-2026-20184	Cisco Webex Meetings Certificate Validation Vulnerability	16.04.2026	9.8
CVE-2026-20186	Cisco Identity Services Engine Multiple Authenticated Remote Code Execution Vulnerability	16.04.2026	9.9
CVE-2026-5387	AVEVA Pipeline Simulation Missing Authorization	15.04.2026	9.3
CVE-2026-33805	@fastify/reply-from vulnerable to connection header abuse enabling stripping of proxy-added headers	15.04.2026	9
CVE-2026-33807	@fastify/express vulnerable to middleware path doubling causing authentication bypass in child plugin scopes	15.04.2026	9.1
CVE-2026-33808	@fastify/express vulnerable to middleware authentication bypass via URL normalization gaps (duplicate slashes and semicolons)	15.04.2026	9.1
CVE-2025-14813	GOSTCTR implementation unable to process more than 255 blocks correctly	15.04.2026	9.3
CVE-2026-5598	Non-constant time comparisons risk private key leakage in FrodoKEM.	15.04.2026	10
CVE-2026-3461	Visa Acceptance Solutions <= 2.1.0 - Unauthenticated Authentication Bypass via Billing Email	15.04.2026	9.8
CVE-2026-1555	WebStack <= 1.2024 - Unauthenticated Arbitrary File Upload	15.04.2026	9.8
CVE-2026-39842	OpenRemote is Vulnerable to Expression Injection	16.04.2026	10
CVE-2026-39399	NuGet Gallery: Arbitrary Blob Overwrite via Nuspec Confusion and URI Fragment Truncation	15.04.2026	9.6
CVE-2026-34457	OAuth2 Proxy: Health Check User-Agent Matching Bypasses Authentication in auth_request Mode	15.04.2026	9.1
CVE-2026-35031	Jellyfin: Potential RCE via subtitle upload path traversal + .strm chain	16.04.2026	10
CVE-2026-35033	Jellyfin: Potential SSRF + Arbitrary file read via stream argument injection	15.04.2026	9.3
CVE-2026-27304	ColdFusion \| Improper Input Validation (CWE-20)	15.04.2026	9.3
CVE-2026-27243	Adobe Connect \| Cross-site Scripting (Reflected XSS) (CWE-79)	14.04.2026	9.3
CVE-2026-27245	Adobe Connect \| Cross-site Scripting (Reflected XSS) (CWE-79)	14.04.2026	9.3
CVE-2026-27246	Adobe Connect \| Cross-site Scripting (DOM-based XSS) (CWE-79)	14.04.2026	9.3
CVE-2026-27303	Adobe Connect \| Deserialization of Untrusted Data (CWE-502)	15.04.2026	9.6
CVE-2026-34615	Adobe Connect \| Deserialization of Untrusted Data (CWE-502)	15.04.2026	9.3
CVE-2026-26149	Microsoft Power Apps Security Feature Bypass	17.04.2026	9
CVE-2026-33824	Windows Internet Key Exchange (IKE) Service Extensions Remote Code Execution Vulnerability	17.04.2026	9.8
CVE-2026-39808		15.04.2026	9.1
CVE-2026-39813		15.04.2026	9.1
CVE-2025-63939		14.04.2026	9.8
CVE-2025-65135		14.04.2026	9.8
CVE-2026-38526		14.04.2026	9.9
CVE-2025-8095	Recoverable obfuscation using the OECH1 prefix encoding in OpenEdge	15.04.2026	9.1
CVE-2026-2449		14.04.2026	9
CVE-2026-40288	PraisonAI: Critical RCE via `type: job` workflow YAML	14.04.2026	9.8
CVE-2026-40289	PraisonAI Browser Server allows unauthenticated WebSocket clients to hijack connected extension sessions	14.04.2026	9.1
CVE-2026-40313	PraisonAI: ArtiPACKED Vulnerability via GitHub Actions Credential Persistence	14.04.2026	9.1
CVE-2026-6264	Critical Security fix for the Talend JobServer and Talend Runtime	16.04.2026	9.8
CVE-2026-4365	LearnPress <= 4.3.2.8 - Missing Authorization to Unauthenticated Arbitrary Quiz Answer Deletion	14.04.2026	9.1
CVE-2026-27681	SQL Injection vulnerability in SAP Business Planning and Consolidation and SAP Business Warehouse	14.04.2026	9.9
CVE-2026-22562		14.04.2026	9.8
CVE-2026-22563		14.04.2026	9.8
CVE-2026-22564		14.04.2026	9.8
CVE-2026-40042	Pachno 1.0.6 Wiki TextParser XML External Entity Injection	14.04.2026	9.3
CVE-2026-40044	Pachno 1.0.6 FileCache Deserialization Remote Code Execution	13.04.2026	9.3
CVE-2026-6100	Use-after-free in lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile after re-use under memory pressure	14.04.2026	9.1
CVE-2026-6195	Totolink A7100RU CGI cstecgi.cgi setPasswordCfg os command injection	13.04.2026	9.3
CVE-2026-23891	Decidim has a Cross-site scripting (XSS) vulnerability via user name field	14.04.2026	9.3
CVE-2026-4810	Remote Code Execution in Google Agent Development Kit (ADK)	13.04.2026	9.3
CVE-2026-34865		13.04.2026	10
CVE-2026-6154	Totolink A7100RU CGI cstecgi.cgi setWizardCfg os command injection	13.04.2026	9.3
CVE-2026-6155	Totolink A7100RU CGI cstecgi.cgi setWanCfg os command injection	14.04.2026	9.3
CVE-2026-6156	Totolink A7100RU CGI cstecgi.cgi setIpQosRules os command injection	13.04.2026	9.3
CVE-2026-6139	Totolink A7100RU CGI cstecgi.cgi UploadOpenVpnCert os command injection	14.04.2026	9.3
CVE-2026-6140	Totolink A7100RU CGI cstecgi.cgi UploadFirmwareFile os command injection	13.04.2026	9.3
CVE-2026-6138	Totolink A7100RU CGI cstecgi.cgi setAccessDeviceCfg os command injection	13.04.2026	9.3
CVE-2026-6132	Totolink A7100RU CGI cstecgi.cgi setLedCfg os command injection	13.04.2026	9.3
CVE-2026-6131	Totolink A7100RU CGI cstecgi.cgi setTracerouteCfg os command injection	14.04.2026	9.3
CVE-2019-25709	CF Image Hosting Script 1.6.5 Unauthorized Database Access	15.04.2026	9.3
CVE-2026-6115	Totolink A7100RU CGI cstecgi.cgi setAppCfg os command injection	13.04.2026	9.3
CVE-2026-6116	Totolink A7100RU CGI cstecgi.cgi setDiagnosisCfg os command injection	13.04.2026	9.3
CVE-2026-6112	Totolink A7100RU CGI cstecgi.cgi setRadvdCfg os command injection	15.04.2026	9.3
CVE-2026-6113	Totolink A7100RU CGI cstecgi.cgi setTtyServiceCfg os command injection	14.04.2026	9.3
CVE-2026-6114	Totolink A7100RU CGI cstecgi.cgi setNetworkCfg os command injection	14.04.2026	9.3
CVE-2026-31845		13.04.2026	9.3

Latest Updates

CVE	Title	Updated	Score
CVE-2026-21709		17.04.2026
CVE-2026-6284	Horner Automation Cscape and XL4, XL7 PLC Weak password requirements	17.04.2026
CVE-2026-6497	prasathmani TinyFileManager File Upload filemanager.php server-side request forgery	17.04.2026
CVE-2026-37749		17.04.2026
CVE-2026-41153		17.04.2026	5.8
CVE-2026-6493	lukevella rallly Reset Password reset-password-form.tsx cross site scripting	17.04.2026
CVE-2026-6496	prasathmani TinyFileManager POST Parameter filemanager.php path traversal	17.04.2026
CVE-2025-70795		17.04.2026
CVE-2026-31317		17.04.2026
CVE-2026-6491	libvips nip2 vips7compat.c im_minpos_vec heap-based overflow	17.04.2026
CVE-2026-6492	arnobt78 Hotel Booking Management System Health Check Endpoint detailed information disclosure	17.04.2026
CVE-2026-40458	Cross-Site Request Forgery in PAC4J	17.04.2026
CVE-2026-40459	LDAP Injection in PAC4J	17.04.2026
CVE-2026-6490	QueryMine sms GET Request Parameter deletecourse.php sql injection	17.04.2026
CVE-2026-6488	QueryMine sms GET Request Parameter editcourse.php sql injection	17.04.2026
CVE-2026-6489	QueryMine sms Background Management addteacher.php unrestricted upload	17.04.2026
CVE-2026-6486	classroombookings User Display Name layout.php read cross site scripting	17.04.2026
CVE-2026-6487	Qihui jtbc5 CMS Code Endpoint manage.php path traversal	17.04.2026
CVE-2026-6507	Dnsmasq: dnsmasq: denial of service due to out-of-bounds write in dhcp bootreply processing	17.04.2026
CVE-2025-46606		17.04.2026	6.2
CVE-2026-23777		17.04.2026	4.3
CVE-2026-28263		17.04.2026	5.9
CVE-2025-46605		17.04.2026	6.2
CVE-2025-46607		17.04.2026	6.6
CVE-2025-46641		17.04.2026	6.6
CVE-2026-35072		17.04.2026	6.7
CVE-2026-35073		17.04.2026	6.7
CVE-2026-35074		17.04.2026	6.7
CVE-2026-5131	Server-Side Request Forgery in GREENmod	17.04.2026
CVE-2026-35153		17.04.2026	6.7
CVE-2026-6483	Wavlink WL-WN530H4 internet.cgi snprintf os command injection	17.04.2026
CVE-2026-23776		17.04.2026	7.2
CVE-2026-23779		17.04.2026	6.7
CVE-2025-15622	Sparx Enterprise Architect Client reveals plaintext OAuth2 client secret	17.04.2026
CVE-2025-15623	Sparx Pro Cloud Server reveals sensitive information to an unauthenticated user	17.04.2026
CVE-2025-15624	Plaintext Storage of a Password in Sparx Pro Cloud Server.	17.04.2026
CVE-2025-15625	Unauthenticated execution of arbitrary SQL queries in Sparx Pro Cloud Server	17.04.2026
CVE-2025-36568		17.04.2026	7.8
CVE-2026-23775		17.04.2026	7.6
CVE-2026-23778		17.04.2026	7.2
CVE-2026-6439	VideoZen <= 1.0.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'VideoZen available subtitles languages' Field	17.04.2026	4.4
CVE-2026-6494	Aap-mcp-server: aap mcp server: log injection allows social engineering attacks via unsanitized input	17.04.2026
CVE-2026-33392		17.04.2026	7.2
CVE-2026-40002	ZTE Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations.	17.04.2026	5
CVE-2026-6451	CMS für Motorrad Werkstätten <= 1.0.0 - Cross-Site Request Forgery	17.04.2026	4.3
CVE-2026-23853		17.04.2026	8.4
CVE-2026-4659	Unlimited Elements For Elementor <= 2.0.6 - Authenticated (Contributor+) Arbitrary File Read via Path Traversal in Repeater JSON/CSV URL with Path Traversal	17.04.2026	7.5
CVE-2026-6441	Canto <= 3.1.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Setting Modification	17.04.2026	4.3
CVE-2026-6443	Accordion and Accordion Slider 1.4.6 - Injected Backdoor	17.04.2026	9.8
CVE-2026-5797	Quiz and Survey Master (QSM) <= 11.1.0 - Unauthenticated Shortcode Injection Leading to Arbitrary Quiz Result Disclosure via Quiz Answer Text Input Fields	17.04.2026	5.3
CVE-2026-6421	Mobatek MobaXterm Home Edition msimg32.dll uncontrolled search path	17.04.2026
CVE-2026-6482	Local Privilege Escalation via OpenSSL configuration file in Insight Agent	17.04.2026
CVE-2026-21719		17.04.2026
CVE-2026-34018		17.04.2026
CVE-2026-35496		17.04.2026