CVE Field Guide

Critical CVEs

CVE	Title	Updated	Score
CVE-2026-41500	electerm has Command Injection Vulnerability via runMac function	08.05.2026	9.8
CVE-2026-41501	electerm has Command Injection Vulnerability via runLinux function	08.05.2026	9.8
CVE-2026-42208	LiteLLM: SQL injection in Proxy API key verification	08.05.2026	9.3
CVE-2026-43941	Unvalidated shell.openExternal in electerm allows arbitrary protocol execution via terminal link click	08.05.2026	9.6
CVE-2026-43944	electerm: dangerous code can be run through links or command line	08.05.2026	9.4
CVE-2026-42880	ArgoCD ServerSideDiff is vulnerable to Kubernetes Secret Extraction	07.05.2026	9.6
CVE-2026-33109	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	07.05.2026	9.9
CVE-2026-33823	Microsoft Team Events Portal Information Disclosure Vulnerability	07.05.2026	9.6
CVE-2026-33844	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	07.05.2026	9
CVE-2026-35428	Azure Cloud Shell Spoofing Vulnerability	07.05.2026	9.6
CVE-2026-42826	Azure DevOps Information Disclosure Vulnerability	07.05.2026	10
CVE-2026-7891		07.05.2026	9.3
CVE-2026-41902	FreeScout's user invitation hash never expires: permanent unauthenticated account takeover if invite link leaks	07.05.2026	9.1
CVE-2026-7414	Hardcoded credentials in Yarbo robot firmware	07.05.2026	9.8
CVE-2026-7415	Open MQTT orchestration without read/write ACLs in Yarbo robot firmware	07.05.2026	9.8
CVE-2026-41589	Wish has SCP Path Traversal that allows arbitrary file read/write	07.05.2026	9.6
CVE-2026-6795	Open Redirect in DivvyDrive Information Technologies' DivvyDrive	07.05.2026	9.6
CVE-2026-5791	CSRF in DivvyDrive Information Technologies' DivvyDrive	07.05.2026	9.6
CVE-2026-6508	RCE in TUBITAK BILGEM's Liderahenk	07.05.2026	9.8
CVE-2026-33587	Remote Code Execution (RCE) via Server-Side Template Injection (SSTI)	07.05.2026	9.2
CVE-2026-41586	ObjectInputStream.readObject() without ObjectInputFilter in fabric-sdk-java allows Java deserialization RCE	07.05.2026	9.3
CVE-2026-40982		07.05.2026	9.1
CVE-2026-41201	CI4MS: Backup Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM Blind XSS Version 2	07.05.2026	9.1
CVE-2026-41202	ci4ms Backup::restore is vulnerable to Zip Slip leading to RCE	07.05.2026	9.4
CVE-2026-41203	ci4ms Theme::upload is vulnerable to Zip Slip leading to RCE	07.05.2026	9.4
CVE-2026-40281	Gotenberg vulnerable to argument injection via newlines in ExifTool metadata values	07.05.2026	10
CVE-2026-43575	OpenClaw 2026.2.21 < 2026.4.10 - Authentication Bypass in Sandbox noVNC Helper Route	07.05.2026	9.2
CVE-2026-43578	OpenClaw 2026.3.31 < 2026.4.10 - Privilege Escalation via Missed Async Exec Completion Events in Heartbeat Owner Downgrade	07.05.2026	9.1
CVE-2026-43581	OpenClaw < 2026.4.10 - Chrome DevTools Protocol Exposure via Overly Broad CDP Relay Binding	07.05.2026	9
CVE-2026-43585	OpenClaw < 2026.4.15 - Bearer Token Validation Bypass via Stale SecretRef Resolution	07.05.2026	9.2
CVE-2026-44109	OpenClaw < 2026.4.15 - Authentication Bypass in Feishu Webhook and Card-Action Validation	07.05.2026	9.2
CVE-2026-40076	OpenMRS Core arbitrary file write and code execution via Zip Slip in module upload	07.05.2026	9.4
CVE-2026-41930	Vvveb < 1.0.8.2 Hard-coded Credentials Information Disclosure via phpMyAdmin	06.05.2026	9.2
CVE-2026-29090	Rucio SQL injection in postgres_meta DID search path compromises PostgreSQL metadata database	06.05.2026	9
CVE-2026-29080	Rucio SQL Injection in FilterEngine Oracle JSON Path via DID Search API	06.05.2026	9.4
CVE-2026-7875	NanoClaw Host/Container Filesystem Boundary Vulnerability via Outbound Attachment Handling	07.05.2026	9.3
CVE-2026-34458	Sandboxie-Plus privilege escalation via INI CRLF injection bypassing EditAdminOnly	07.05.2026	9.3
CVE-2026-40329	SQL Injection vulnerability via sortBy in beanFeed	06.05.2026	9.3
CVE-2026-40330	Masa CMS SQL injection via sortDirection parameter in beanFeed	06.05.2026	9.3
CVE-2026-40331	Masa CMS unauthenticated SQL injection via altTable parameter in JSON API	06.05.2026	9.3
CVE-2026-33324	SQLBot prompt injection allows arbitrary SQL execution and remote code execution	05.05.2026	9.4
CVE-2026-34084	PhpSpreadsheet SSRF and RCE via PHP stream wrappers in IOFactory::load	05.05.2026	9.2
CVE-2026-27960	OpenCTI privilege escalation and unauthenticated access via default admin account	06.05.2026	9.8
CVE-2026-7854	D-Link DI-8100 POST Parameter url_rule.asp url_rule_asp buffer overflow	06.05.2026	9.3
CVE-2026-7853	D-Link DI-8100 HTTP auto_reboot.asp sprintf buffer overflow	05.05.2026	9.3
CVE-2026-7411		06.05.2026	10
CVE-2026-7834	EFM ipTIME NAS1dual misc_main.cgi get_csrf_whites stack-based overflow	05.05.2026	9.3
CVE-2023-54342	Eclipse Equinox OSGi 3.8-3.18 Console Remote Code Execution	05.05.2026	9.3
CVE-2023-54344	Eclipse Equinox OSGi 3.7.2 Remote Code Execution via Console	05.05.2026	9.3
CVE-2026-43534	OpenClaw < 2026.4.10 - Unsanitized External Input in Agent Hook Events	06.05.2026	9.3
CVE-2026-43566	OpenClaw 2026.4.7 < 2026.4.14 - Privilege Escalation via Untrusted Webhook Wake Events	05.05.2026	9.1
CVE-2026-40797	WordPress WebinarIgnition plugin <= 4.08.253 - SQL Injection vulnerability	05.05.2026	9.3
CVE-2026-7823	Totolink A8000RU cstecgi.cgi setAppFilterCfg os command injection	05.05.2026	9.3
CVE-2026-5294	GeekyBot <= 1.2.2 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation via 'geekybot_frontendajax' AJAX Action	06.05.2026	9.8
CVE-2025-13618	Mentoring <= 1.2.8 - Unauthenticated Privilege Escalation in mentoring_process_registration	05.05.2026	9.8
CVE-2026-5722	MoreConvert Pro <= 1.9.14 - Authentication Bypass via Waitlist Guest Verification Token Reuse	05.05.2026	9.8
CVE-2026-42238	Unauthenticated Remote Code Execution via Backup Restore in nginx-ui	05.05.2026	9
CVE-2026-41922	WDR201A WiFi Extender OS Command Injection via wireless.cgi	04.05.2026	9.3
CVE-2026-41923	WDR201A WiFi Extender OS Command Injection via internet.cgi	05.05.2026	9.3
CVE-2026-41924	WDR201A WiFi Extender OS Command Injection via makeRequest.cgi	04.05.2026	9.3
CVE-2026-41925	WDR201A WiFi Extender OS Command Injection via adm.cgi (reboot_time)	04.05.2026	9.3
CVE-2026-41926	WDR201A WiFi Extender OS Command Injection via firewall.cgi	06.05.2026	9.3
CVE-2026-42231	n8n: Prototype Pollution in XML Webhook Body Parser Leads to RCE	05.05.2026	9.4
CVE-2026-42232	n8n: XML Node Prototype Pollution to RCE	05.05.2026	9.4
CVE-2026-41571	Note Mark: OIDC-registered users authenticated by submitting password "null"	04.05.2026	9.4
CVE-2026-42087	OpenC3 COSMOS: SQL Injection in QuestDB Time-Series Data Base	05.05.2026	9.6
CVE-2026-42088	OpenC3 COSMOS: Administrative Actions via the Script Runner Tool	04.05.2026	9.6
CVE-2026-42796	Arelle < 2.39.10 Unauthenticated RCE via /rest/configure	04.05.2026	9.2
CVE-2026-24118	VM2 Sandbox Breakout Through __lookupGetter__	04.05.2026	9.8
CVE-2026-24120	vm2: Sandbox Breakout Through Promise Species	05.05.2026	9.8
CVE-2026-24781	vm2: Sandbox Breakout Through Inspect	04.05.2026	9.8
CVE-2026-25293	Incorrect authorization in PLC FW	05.05.2026	9.6
CVE-2026-26332	vm2: Sandbox Escape	04.05.2026	9.8
CVE-2026-26956	vm2: WASM Sandbox Escape (Node 25 only)	05.05.2026	9.8
CVE-2026-42076	Evolver: Command Injection via `execSync` in `_extractLLM()` function allows Remote Code Execution	05.05.2026	9.8
CVE-2026-42090	Notesnook: RCE via stored XSS in note export rendering	05.05.2026	9.6
CVE-2026-42810	Apache Polaris: could broaden vended S3 credentials through wildcard-bearing namespace or table names	04.05.2026	9.4
CVE-2026-42811	Apache Polaris: could broaden vended GCS credentials through unescaped identifier content in access-boundary CEL conditions	04.05.2026	9.4
CVE-2026-42373	D-Link DIR-605L B2 Hardcoded Telnet Backdoor Credentials	05.05.2026	9.8
CVE-2026-42374	D-Link DIR-600L B1 Hardcoded Telnet Backdoor Credentials	05.05.2026	9.8
CVE-2026-42375	D-Link DIR-600L A1 Hardcoded Telnet Backdoor Credentials	05.05.2026	9.8
CVE-2026-42376	D-Link DIR-456U A1 Hardcoded Telnet Backdoor Credentials	04.05.2026	9.8
CVE-2026-42809	Apache Polaris: staged table creation could vend storage credentials for unvalidated locations	04.05.2026	9.4
CVE-2026-42812	Apache Polaris: No protection on `write.metadata.path`	04.05.2026	9.4
CVE-2025-13605	Shell command injection in 3onedata GW1101-1D(RS-485)-TB-P modbus gateway	04.05.2026	9.3
CVE-2025-14320	XSS in Tegsoft's Online Support Application	04.05.2026	9.8
CVE-2026-7747	Totolink N300RH Parameter cstecgi.cgi loginauth buffer overflow	04.05.2026	9.3
CVE-2026-29200		04.05.2026	9.9
CVE-2026-7719	Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow	05.05.2026	9.3
CVE-2026-42364	GeoVision LPC2011/LPC2211 Web Interface / DdnsSetting.cgi OS command injection vulnerability	05.05.2026	9.9
CVE-2026-42368	GeoVision LPC2011/LPC2211 Web Interface privilege escalation vulnerability	05.05.2026	9.9
CVE-2026-42369	GeoVision GV-VMS V20 WebCam Server stack overflow vulnerability	05.05.2026	10
CVE-2026-42370	GeoVision GV-VMS V20 WebCam Server Login stack overflow vulnerability	05.05.2026	9
CVE-2026-7161	GeoVision GV-IP Device Utility Device Authentication insufficient encryption vulnerability	05.05.2026	9.3
CVE-2026-7372	GeoVision GV-VMS V20 WebCam Server Login stack overflow vulnerability	05.05.2026	9
CVE-2026-4882	User Registration Advanced Fields <= 1.6.20 - Unauthenticated Arbitrary File Upload	04.05.2026	9.8
CVE-2026-7458	User Verification by PickPlugins <= 2.0.46 - Unauthenticated Authentication Bypass via OTP Verification REST API Endpoint	04.05.2026	9.8
CVE-2026-37539		01.05.2026	9.8
CVE-2026-37541		07.05.2026	10
CVE-2026-37531		01.05.2026	9.8
CVE-2026-43011	net/x25: Fix potential double free of skb	03.05.2026	9.8
CVE-2026-43037	ip6_tunnel: clear skb2->cb[] in ip4ip6_err()	03.05.2026	9.8
CVE-2026-43038	ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach()	03.05.2026	9.8
CVE-2026-43039	net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch	03.05.2026	9.8
CVE-2026-31705	ksmbd: fix out-of-bounds write in smb2_get_ea() EA alignment	03.05.2026	9.8
CVE-2026-31718	ksmbd: fix use-after-free in __ksmbd_close_fd() via durable scavenger	03.05.2026	9.8

Latest Updates

CVE	Title	Updated	Score
CVE-2026-43284	xfrm: esp: avoid in-place decrypt on shared skb frags	08.05.2026
CVE-2026-44927		08.05.2026	2.9
CVE-2026-44928		08.05.2026	2.9
CVE-2023-46453		08.05.2026
CVE-2026-44916		08.05.2026	3
CVE-2025-55449		08.05.2026
CVE-2025-67886		08.05.2026
CVE-2025-67887		08.05.2026
CVE-2025-67888		08.05.2026
CVE-2025-69599		08.05.2026
CVE-2025-69690		08.05.2026
CVE-2025-69691		08.05.2026
CVE-2026-4935	SureTriggers < 1.1.23 – Unauthenticated SQLi	08.05.2026
CVE-2026-8069	PredatorSense V3: Local Privilege Escalation (LPE) vulnerability	08.05.2026
CVE-2026-8149	GCM chunking can lead to bad tag exception on decryption	08.05.2026
CVE-2023-47268		08.05.2026
CVE-2024-27686		08.05.2026
CVE-2024-30167		08.05.2026
CVE-2024-33288		08.05.2026
CVE-2024-33722		08.05.2026
CVE-2024-33724		08.05.2026
CVE-2024-45257		08.05.2026
CVE-2024-46507		08.05.2026
CVE-2024-46508		08.05.2026
CVE-2024-51092		08.05.2026
CVE-2024-53326		08.05.2026
CVE-2022-23961		08.05.2026
CVE-2022-26522		08.05.2026
CVE-2022-26523		08.05.2026
CVE-2022-45899		08.05.2026
CVE-2023-42343		08.05.2026
CVE-2023-42344		08.05.2026
CVE-2023-42345		08.05.2026
CVE-2023-42346		08.05.2026
CVE-2026-42276	Onyx: IDOR in /chat/stop-chat-session allows any authenticated user to interrupt other users chat sessions	08.05.2026	4.3
CVE-2026-42277	Onyx: IDOR in /chat/file/{file_id} allows any authenticated user to download other users files	08.05.2026	6.5
CVE-2026-42278	UltraDAG: Smart Account Spending Policy Bypass via Pockets	08.05.2026
CVE-2026-42279	solidtime: Time entry update endpoint allows cross-organization modification of a known time-entry UUID	08.05.2026	5.8
CVE-2026-8137	Totolink X5000R formDdns sub_458E40 buffer overflow	08.05.2026
CVE-2026-8138	Tenda CX12L SetPptpServerCfg” formSetPPTPServer stack-based overflow	08.05.2026
CVE-2026-8148		08.05.2026
CVE-2026-41498	Kimai: Team API Missing Object-Level Authorization	08.05.2026	3.3
CVE-2026-41500	electerm has Command Injection Vulnerability via runMac function	08.05.2026	9.8
CVE-2026-41501	electerm has Command Injection Vulnerability via runLinux function	08.05.2026	9.8
CVE-2026-41645	Nuclei: Environment variable disclosure via Response-Derived DSL Expressions	08.05.2026	5.3
CVE-2026-41646	Nuclei: Local File Read via require() Module Loader Bypass	08.05.2026	5.5
CVE-2026-41900	OpenLearnX has Critical Remote Code Execution Through Python Sandbox Escape via Code Execution Environment	08.05.2026	8.8
CVE-2026-42150	wlc: print_html outputs API data without HTML escaping, enabling stored XSS	08.05.2026	5.1
CVE-2026-42203	LiteLLM: Server-Side Template Injection in /prompts/test endpoint	08.05.2026
CVE-2026-42208	LiteLLM: SQL injection in Proxy API key verification	08.05.2026
CVE-2026-42261	PromptHub: Authenticated SSRF via IPv6 filter bypass in `POST /api/skills/fetch-remote`	08.05.2026	7.1
CVE-2026-42264	Axios: Prototype pollution read-side gadgets in HTTP adapter allow credential injection and request hijacking	08.05.2026	7.4
CVE-2026-42267	Kimai: Formula Injection via tag names in XLSX export	08.05.2026
CVE-2026-42271	LiteLLM: Authenticated command execution via MCP stdio test endpoints	08.05.2026
CVE-2026-42272	Heimdall: Case-sensitive handling of URL-encoded slashes may lead to inconsistent path interpretation	08.05.2026
CVE-2026-42273	Heimdall: Case-sensitive host matching may lead to policy bypass	08.05.2026
CVE-2026-42274	Heimdall: Authorization bypass via path normalization mismatch	08.05.2026
CVE-2026-42275	zrok: WebDAV drive backend follows symlinks outside DriveRoot, enabling host filesystem read/write	08.05.2026	8.7
CVE-2026-43940	electerm: Path traversal in electerm runWidget leads to arbitrary code execution	08.05.2026	8.4
CVE-2026-43941	Unvalidated shell.openExternal in electerm allows arbitrary protocol execution via terminal link click	08.05.2026	9.6
CVE-2026-43942	electerm: Full process.env exposed to renderer via window.pre.env in electerm	08.05.2026	5.5
CVE-2026-43943	electerm: RCE via malicious SSH server filename in openFileWithEditor	08.05.2026	7.8
CVE-2026-43944	electerm: dangerous code can be run through links or command line	08.05.2026
CVE-2026-44298	Kimai: Arbitrary file read in invoice PDF renderer (admin)	08.05.2026	4.1
CVE-2026-8129	SourceCodester SUP Online Shopping wishlist.php sql injection	08.05.2026
CVE-2026-8130	SourceCodester SUP Online Shopping message.php sql injection	08.05.2026
CVE-2026-8131	SourceCodester SUP Online Shopping replymsg.php sql injection	08.05.2026
CVE-2026-8132	CodeAstro Leave Management System login.php sql injection	08.05.2026
CVE-2026-8133	zyx0814 FilePress Shares Filelist API admin.php sql injection	08.05.2026
CVE-2026-8136	SourceCodester Pharmacy Sales and Inventory System index.php users cross site scripting	08.05.2026
CVE-2026-3508		08.05.2026
CVE-2026-6737		08.05.2026
CVE-2026-8126	SourceCodester Comment System post_comment.php sql injection	08.05.2026
CVE-2026-8127	eladmin Users API Endpoint UserController.java checkLevel access control	08.05.2026
CVE-2026-8128	SourceCodester SUP Online Shopping viewmsg.php sql injection	08.05.2026
CVE-2026-8123	Open5GS NSSF message.c ogs_sbi_discovery_option_add_snssais denial of service	08.05.2026
CVE-2026-8124	GPAC box_code_base.c sidx_box_read allocation of resources	08.05.2026
CVE-2026-8125	code-projects Simple Chat System sendMessage.php sql injection	08.05.2026
CVE-2026-8119	Open5GS NSSF nghttp2-server.c ogs_sbi_stream_find_by_id denial of service	08.05.2026
CVE-2026-8120	Open5GS NSSF nnssf-handler.c denial of service	08.05.2026
CVE-2026-8121	Open5GS NSSF conv.c ogs_sbi_parse_plmn_list denial of service	08.05.2026
CVE-2026-8122	Open5GS NSSF message.c ogs_sbi_discovery_option_add_service_names denial of service	08.05.2026
CVE-2026-8117	SourceCodester Pizzafy Ecommerce System index.php cross site scripting	07.05.2026
CVE-2026-8116	huangjunsen0406 xiaozhi-mcphub dxtController.ts path traversal	07.05.2026
CVE-2026-8115	gyoridavid short-video-maker REST API rest.ts path traversal	07.05.2026
CVE-2026-2710		07.05.2026
CVE-2026-42880	ArgoCD ServerSideDiff is vulnerable to Kubernetes Secret Extraction	07.05.2026	9.6
CVE-2026-6411	MAXHUB Pivot Client Application Use of a Broken or Risky Cryptographic Algorithm	07.05.2026	7.3
CVE-2026-40213		07.05.2026	7.4
CVE-2026-40214		07.05.2026	6.3
CVE-2026-8114	JeecgBoot JSON Object loadTreeData sql injection	07.05.2026
CVE-2026-7541	Denial of service vulnerability in GitHub Enterprise Server allowed service disruption via unauthenticated API endpoint	07.05.2026
CVE-2026-8034	Server-side request forgery vulnerability in GitHub Enterprise Server notebook viewer via URL parser confusion	07.05.2026
CVE-2026-8106	Reflected HTML injection vulnerability in GitHub Enterprise Server Management Console login page allowed credential theft	07.05.2026
CVE-2026-26129	M365 Copilot Information Disclosure Vulnerability	07.05.2026	7.5
CVE-2026-26164	M365 Copilot Information Disclosure Vulnerability	07.05.2026	7.5
CVE-2026-32207	Azure Machine Learning Notebook Spoofing Vulnerability	07.05.2026	8.8
CVE-2026-33109	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	07.05.2026	9.9
CVE-2026-33111	Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability	07.05.2026	7.5
CVE-2026-33823	Microsoft Team Events Portal Information Disclosure Vulnerability	07.05.2026	9.6
CVE-2026-33844	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	07.05.2026	9
CVE-2026-34327	Microsoft Partner Center Spoofing Vulnerability	07.05.2026	8.2
CVE-2026-35428	Azure Cloud Shell Spoofing Vulnerability	07.05.2026	9.6
CVE-2026-35435	Azure AI Foundry Elevation of Privilege Vulnerability	07.05.2026	8.6
CVE-2026-41105	Azure Monitor Action Group Notification System Elevation of Privilege Vulnerability	07.05.2026	8.1
CVE-2026-41928	Vvveb < 1.0.8.2 Information Disclosure via Cron Controller	07.05.2026
CVE-2026-41929	Vvveb < 1.0.8.2 Unauthenticated Reflected XSS via Visual Editor	07.05.2026
CVE-2026-42826	Azure DevOps Information Disclosure Vulnerability	07.05.2026	10
CVE-2026-6736	Authentication bypass vulnerability in GitHub Enterprise Server allowed creation of local user accounts bypassing the configured external identity provider	07.05.2026
CVE-2026-7891		07.05.2026
CVE-2026-8112	8421bit MiniClaw kernel.ts executeCognitivePulse os command injection	07.05.2026
CVE-2026-8113	8421bit MiniClaw executeSkillScript kernel.ts isPathInside path traversal	07.05.2026
CVE-2026-42047	Inngest TypeScript SDK exposes environment variables via serve() handler on unhandled HTTP methods	07.05.2026	8.6
CVE-2026-42449	n8n-MCP: IPv4-mapped IPv6 addresses bypass SSRF protection in validateUrlSync(), enabling full SSRF for SDK embedders	07.05.2026	8.5
CVE-2026-44365		07.05.2026
CVE-2026-8098	code-projects Feedback System checklogin.php sql injection	07.05.2026
CVE-2026-41691	i18next-http-backend has Path Traversal & URL Injection via Unsanitised lng/ns	07.05.2026	6.5
CVE-2026-41692	i18nextify is vulnerable to DOM XSS via javascript:/data: URL schemes in translated href/src attributes	07.05.2026	4.7
CVE-2026-8097	CodeAstro Online Classroom askquery.php sql injection	07.05.2026
CVE-2026-33811	Crash when handling long CNAME response in net	07.05.2026
CVE-2026-33814	Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net	07.05.2026
CVE-2026-39817	Invoking "go tool pack" does not sanitize output paths in cmd/go	07.05.2026
CVE-2026-39819	Invoking "go bug" follows symlinks in predictable temporary filenames in cmd/go	07.05.2026
CVE-2026-39820	Quadratic string concatentation in consumeComment in net/mail	07.05.2026
CVE-2026-39823	Bypass of meta content URL escaping causes XSS in html/template	07.05.2026
CVE-2026-39825	ReverseProxy forwards queries with more than urlmaxqueryparams parameters in net/http/httputil	07.05.2026
CVE-2026-39826	Escaper bypass leads to XSS in html/template	07.05.2026
CVE-2026-39836	Panic in Dial and LookupPort when handling NUL byte on Windows in net	07.05.2026
CVE-2026-42499	Quadratic string concatenation in consumePhrase in net/mail	07.05.2026
CVE-2026-42501	Malicious module proxy can bypass checksum database in cmd/go	07.05.2026
CVE-2026-8088	OSGeo gdal GDapi.c GDfieldinfo out-of-bounds	07.05.2026
CVE-2026-8142	CVE-2026-8142	07.05.2026
CVE-2026-42225	GnuTLS backend silently skips certificate chain verification when verify_peer is false	07.05.2026
CVE-2026-42239	Budibase auth session cookies are set with httpOnly:false — any XSS can lead to full account takeover	07.05.2026	8.1
CVE-2026-42241	ParquetSharp: Possible Stack Overflow When Reading a ParquetFile with Large Decimal Type Width	07.05.2026	5.3
CVE-2026-42259	Saltcorn: Open Redirect in `POST /auth/login` due to incomplete `is_relative_url` validation (backslash bypass)	07.05.2026
CVE-2026-43510	CISA manage.get.gov insecure portfolio administrative privileges	07.05.2026
CVE-2026-8087	OSGeo gdal GDapi.c GDnentries heap-based overflow	07.05.2026
CVE-2026-41653	BentoPDF: Stored XSS via Markdown Editor Leading to Persistent File Exfiltration	07.05.2026
CVE-2026-41902	FreeScout's user invitation hash never expires: permanent unauthenticated account takeover if invite link leaks	07.05.2026	9.1
CVE-2026-41903	FreeScout IDOR Vulnerability: PERM_EDIT_USERS allows modifying any user's notification subscriptions (incomplete fix of CVE-2025-48472)	07.05.2026	5.4
CVE-2026-41904	FreeScout Stored XSS vulnerability in mailbox auto-reply: payload reaches every customer's email client (no CSP), bypassing strip_tags validator with mixed text+HTML content	07.05.2026	7.6
CVE-2026-41905	FreeScout vulnerable to SSRF via Helper::sanitizeRemoteUrl: redirect destination not re-validated, allowing internal HTTP / cloud-metadata access	07.05.2026	7.7
CVE-2026-41906	FreeScout: Conversation Change-Customer Cross-Mailbox Authorization Bypass	07.05.2026	7.1
CVE-2026-42214	Improper Control of Generation of Code ('Code Injection') in dail8859/NotepadNext	07.05.2026	7.8
CVE-2026-42215	GitPython: Command injection via Git options bypass	07.05.2026	8.8
CVE-2026-42284	GitPython: Unsafe option check validates multi_options before shlex.split transforms it	07.05.2026	8.1
CVE-2026-44243	GitPython: Path traversal in GitPython reference APIs allows arbitrary file write and delete outside the repository	07.05.2026
CVE-2026-44244	GitPython: Newline injection in config_writer().set_value() enables RCE via core.hooksPath	07.05.2026	7.8
CVE-2026-44742		08.05.2026	7.2
CVE-2026-8083	SourceCodester Pharmacy Sales and Inventory System ajax.php save_user sql injection	07.05.2026
CVE-2026-8084	OSGeo gdal HDF-EOS Grid File SWapi.c memmove out-of-bounds	07.05.2026
CVE-2026-8086	OSGeo gdal SWapi.c SWnentries heap-based overflow	07.05.2026
CVE-2026-8081	router-for-me CLIProxyAPI api_tools.go server-side request forgery	07.05.2026
CVE-2026-37709		07.05.2026
CVE-2026-7413	Persistent undocumented backdoor access in Yarbo robot	07.05.2026	7.2
CVE-2026-7414	Hardcoded credentials in Yarbo robot firmware	07.05.2026	9.8
CVE-2026-7415	Open MQTT orchestration without read/write ACLs in Yarbo robot firmware	07.05.2026	9.8
CVE-2025-63703		07.05.2026
CVE-2025-63704		07.05.2026
CVE-2026-36341		07.05.2026
CVE-2026-5787		08.05.2026	8.9
CVE-2026-5788		07.05.2026	7
CVE-2026-6973		08.05.2026	7.2
CVE-2026-7821		07.05.2026	7.4
CVE-2025-4386	Medtronic MyCareLink Patient Monitor Hardware Debug Port	07.05.2026	6.8
CVE-2025-4397	Medtronic MyCareLink Patient Monitor Data Encryption Weakness	07.05.2026	6.8
CVE-2025-65122		07.05.2026
CVE-2026-36387		07.05.2026
CVE-2026-36388		07.05.2026
CVE-2026-5786		08.05.2026	8.8
CVE-2025-63705		07.05.2026
CVE-2025-63706		07.05.2026
CVE-2025-67202		07.05.2026
CVE-2026-32686	Unbounded exponent in decimal enables unauthenticated DoS	07.05.2026
CVE-2026-36458		07.05.2026
CVE-2026-41422	Daptin vulnerable to SQL injection via unvalidated goqu.L() calls in aggregate API	07.05.2026	8.3
CVE-2026-41505	RELATE: Predictable Token Generation in auth.py and exam.py	07.05.2026	8.7
CVE-2026-41519	Weblate's API Token Not Invalidated on Password Change	07.05.2026	4.2
CVE-2026-41650	fast-xml-parser XMLBuilder: XML Comment and CDATA Injection via Unescaped Delimiters	07.05.2026	6.1
CVE-2026-41654	Weblate is Vulnerable to Authenticated SSRF via Project Backup Import bypassing validate_repo_url	07.05.2026
CVE-2026-41687	Wallos: SSRF CGNAT Bypass in subscription/payments Logo URL — is_cgnat_ip() Not Used in Inline Checks	07.05.2026	4.3
CVE-2026-41688	Incomplete fix for CVE-2026-33399: SSRF in Wallos	07.05.2026	7.7
CVE-2026-41689	Wallos: Shared local webhook allowlist lets low-privilege users send arbitrary requests to allowlisted internal services	07.05.2026	6
CVE-2026-42011	Gnutls: gnutls: security bypass due to incorrect name constraint handling	08.05.2026
CVE-2026-44263	Weblate: Private Translation Enumeration via Screenshot API	07.05.2026	4.3
CVE-2026-44264	Weblate is vulnerable to XSS via crafted Markdown	07.05.2026	4.3
CVE-2026-44349	Daptin fuzzy search injects unvalidated column name into raw SQL	07.05.2026
CVE-2025-14341	Input Data Manipulation in DivvyDrive Information Technologies' DivvyDrive	07.05.2026	8.3
CVE-2026-30495		07.05.2026
CVE-2026-30496		07.05.2026
CVE-2026-41490	Dagster Vulnerable to SQL Injection via Dynamic Partition Keys in Database I/O Manager Integrations	07.05.2026	8.3
CVE-2026-41554	WordPress Bricks Builder theme 1.9.2-2.2 - Cross Site Scripting (XSS) vulnerability	07.05.2026	7.1
CVE-2026-41589	Wish has SCP Path Traversal that allows arbitrary file read/write	07.05.2026	9.6
CVE-2026-41647	Incus: Nil-Pointer Dereference via S3 Bucket Import	07.05.2026	6.5
CVE-2026-41648	Incus: Unbounded YAML Metadata Decode via Parsing	07.05.2026
CVE-2026-41684	Incus: Nil Dereferences on Restore via Malformed YAML	07.05.2026	6.5
CVE-2026-41685	Incus: Unbounded binary import disk exhaustion	07.05.2026	4.3
CVE-2026-6795	Open Redirect in DivvyDrive Information Technologies' DivvyDrive	07.05.2026	9.6
CVE-2026-5784	Stored XSS in DivvyDrive Information Technologies' DivvyDrive	07.05.2026	8.8
CVE-2026-5791	CSRF in DivvyDrive Information Technologies' DivvyDrive	07.05.2026	9.6
CVE-2026-6002	HTML Injection in DivvyDrive Information Technologies' DivvyDrive	07.05.2026	8.8
CVE-2026-8090	Use-after-free in the DOM: Networking component	07.05.2026
CVE-2026-8091	Incorrect boundary conditions in the Audio/Video: Playback component	07.05.2026
CVE-2026-8092	Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2	08.05.2026
CVE-2026-8093	Memory safety bugs fixed in Firefox 150.0.2	08.05.2026
CVE-2026-8094	Other issue in the WebRTC component	07.05.2026
CVE-2026-41642	GoBGP: Remote Denial of Service (Panic) via Malformed Well-known Path Attribute	07.05.2026	7.5
CVE-2026-41643	GoBGP: Remote Denial of Service (Panic) in UpdatePathAttrs4ByteAs via Malformed BGP UPDATE	07.05.2026	7.5
CVE-2026-41644	monetr is vulnerable to server-side request forgery in Lunch Flow link creation and refresh	07.05.2026
CVE-2026-42010	Gnutls: gnutls: authentication bypass via nul character in username	07.05.2026
CVE-2026-42285	GoBGP: Panic in AdjRib.Update via malformed BGP Update message (Nil Pointer Dereference)	07.05.2026	7.5
CVE-2026-6508	RCE in TUBITAK BILGEM's Liderahenk	07.05.2026	9.8
CVE-2026-8080	MISP core - Stored XSS in MISP template (old engine) element attribute type	07.05.2026
CVE-2026-3953	Reflected XSS in Gosoft Software's Proticaret E-Commerce	07.05.2026	8.8
CVE-2026-28201	SurrealDB Injection on Open Notebook	07.05.2026
CVE-2026-33588	Arbitrary File Write Through Path Traversal	07.05.2026
CVE-2026-33589	Arbitrary File Read via Local File Inclusion (LFI)	07.05.2026