CVE Field Guide

Critical CVEs

CVE	Title	Updated	Score
CVE-2026-27604	FOSSBilling: Improper API Role Validation (system) Enables Unauthenticated Access to Privileged Admin Functions	23.06.2026	10
CVE-2026-28496	FOSSBilling: Server-side template injection in Twig template rendering enables information disclosure and RCE	23.06.2026	9.4
CVE-2026-35019	NetComm NF20MESH < R6B032 Hardcoded AES Key Authentication Bypass	23.06.2026	9.2
CVE-2026-44089	Buffer Overflow in Totolink EX1200L router	23.06.2026	9.4
CVE-2026-56258	Crawl4AI - Arbitrary File Write via output_path Symlink and TOCTOU	23.06.2026	9.2
CVE-2026-56315	picklescan - Remote Code Execution via Unblocked Standard Library Modules	23.06.2026	9.3
CVE-2026-11374	Account Takeover via Predictable SSO Ticket Generation	23.06.2026	9
CVE-2026-12866		23.06.2026	9.2
CVE-2026-48746	vLLM: OpenAI auth bypass	23.06.2026	9.1
CVE-2026-56266	Crawl4AI - Server-Side Request Forgery via Direct Crawl Endpoints	23.06.2026	9.2
CVE-2026-44727	Jupyter Server: Stored XSS in `NbconvertFileHandler` / `NbconvertPostHandler` via missing `sandbox` CSP	23.06.2026	9.3
CVE-2026-45034	PhpSpreadsheet: File::prohibitWrappers bypass	23.06.2026	9.2
CVE-2026-49468	LiteLLM: Authentication Bypass via Host Header Injection	23.06.2026	9.5
CVE-2026-10789	MCP Extension Code Injection Vulnerability in Autodesk Fusion Desktop	23.06.2026	9.6
CVE-2026-12249	Canonical ADSys Trust Store Poisoning via Plaintext HTTP Certificate Auto-Enrollment	22.06.2026	9
CVE-2026-7664	Unauthenticated Flow Execution via Webhook Endpoint in Langflow OSS	23.06.2026	9.8
CVE-2026-10561	Unauthenticated Remote Code Execution in Langflow OSS PythonREPLComponent via Builtins Injection	23.06.2026	10
CVE-2026-28381	Local File Read/Write to Potential Privilege Escalation via Snowflake GET/PUT	22.06.2026	9.6
CVE-2026-56423	MISP Core: Broken access control allows instance-wide unauthorized deletion of event reports and sharing groups via bulk deletion endpoints	23.06.2026	9.4
CVE-2026-56425	MISP AAD authentication plugin - Improper OAuth State Handling, Missing Session Rotation, Insecure Redirect URI Validation, and Log Injection	23.06.2026	9.3
CVE-2026-56447	MISP remote code execution via arbitrary rdkafka configuration path	22.06.2026	9.3
CVE-2026-7165	Multiple vulnerabilities in the Assassin game by Gaudire	22.06.2026	9.4
CVE-2026-7166	Multiple vulnerabilities in the Assassin game by Gaudire	22.06.2026	9.2
CVE-2026-56422	MISP Core: Mass Assignment and Object Re-ownership via Unvalidated Request Fields	23.06.2026	9.4
CVE-2026-11746		22.06.2026	9.4
CVE-2026-56265	Crawl4AI - Authentication Bypass via Hardcoded JWT Signing Key	22.06.2026	9.3
CVE-2026-56395	SiYuan - Remote Code Execution via Malicious Bazaar Package Metadata and README	22.06.2026	9.4
CVE-2026-56397	SiYuan - Remote Code Execution via Malicious Bazaar Package Metadata and README	21.06.2026	9.4
CVE-2026-56345	AVideo - Arbitrary User Session Hijacking via Meet Plugin uploadRecordedVideo Endpoint	23.06.2026	9.2
CVE-2026-5366	Git Argument Injection in prefecthq/prefect	22.06.2026	9.9
CVE-2024-58351	Flowise - Remote Code Execution via overrideConfig Parameter	22.06.2026	9.3
CVE-2019-25763	WordPress Ultimate Addons for Beaver Builder 1.2.4.1 Authentication Bypass	22.06.2026	9.3
CVE-2022-50972	WooCommerce 7.1.0 Remote Code Execution via class-wc-meta-box-product-images.php	22.06.2026	9.3
CVE-2026-48908	Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2	23.06.2026	10
CVE-2026-48909	Joomla Extension - joomshaper.com - PHP Object injection in SP LMS extension for Joomla < 4.1.4	23.06.2026	9.5
CVE-2026-48939	Joomla Extension - icagenda.com - Remote Code Execution in iCaganda extension for Joomla < 4.0.8/3.9.15	23.06.2026	10
CVE-2026-11551	Branda – White Label & Branding, Free Login Page Customizer <= 3.4.29 - Unauthenticated Privilege Escalation via Account Takeover	23.06.2026	9.8
CVE-2026-56073	Cap-go - OTP Bypass via Response Manipulation in Email Verification	22.06.2026	9.3
CVE-2026-56081	Cap-go - Account Lockout via 2FA Misconfiguration on Unverified Email	22.06.2026	9.3
CVE-2026-45480	Azure Active Directory Elevation of Privilege Vulnerability	22.06.2026	10
CVE-2026-48582	Microsoft Exchange Online Elevation of Privilege Vulnerability	22.06.2026	9.6
CVE-2026-48584	Microsoft Azure Synapse Elevation of Privilege Vulnerability	22.06.2026	9.9
CVE-2026-48772	ProxySQL: PROXY-Protocol-v1 UNKNOWN parses spoofed source IP, bypassing mysql_query_rules.client_addr ACL	22.06.2026	10
CVE-2026-48773	ProxySQL pre-auth heap overflow in MySQL and PostgreSQL first-packet handling	22.06.2026	9.8
CVE-2026-48137	Untrusted pointer dereference in NI grpc-device sideband streaming API	22.06.2026	9.3
CVE-2026-9142	Insecure Default Credentials vulnerability in NI grpc-device when TLS configuration is not present	22.06.2026	9.3
CVE-2026-44939	Command injection through unsanitized YAML parameter in Rancher	22.06.2026	9.4
CVE-2026-50242		22.06.2026	10
CVE-2026-56141		22.06.2026	9.8
CVE-2026-56142		22.06.2026	9.6
CVE-2026-54414	FileRise shared-folder upload path traversal allows arbitrary file write and admin takeover	22.06.2026	9.3
CVE-2026-7515	BetterDocs Pro <= 3.8.0 - Unauthenticated Local File Inclusion via doc_style	22.06.2026	9.8
CVE-2026-8713	Avada (Fusion) Builder <= 3.15.3 - Unauthenticated Arbitrary File Deletion via Form Entry Value	22.06.2026	9.1
CVE-2026-12045	pgAdmin 4: AI Assistant read-only transaction bypass allows unauthorised writes and remote code execution	23.06.2026	9.4
CVE-2026-12046	pgAdmin 4: Unauthenticated pickle deserialization in SQL Editor close / update_connection routes enables remote code execution	23.06.2026	9.5
CVE-2026-12048	pgAdmin 4: Stored XSS via untrusted error and plan-node text rendered through html-react-parser	22.06.2026	9.3
CVE-2026-40624	AVer PTC cameras Files or Directories Accessible to External Parties	22.06.2026	9.3
CVE-2026-47647	Dynamics 365 Elevation of Privilege Vulnerability	22.06.2026	9.9
CVE-2026-54130	M365 Copilot Information Disclosure Vulnerability	22.06.2026	9.8
CVE-2026-49257	mcp-pinot: Unauthenticated tool invocation via default oauth_enabled=False + host 0.0.0.0 bind	22.06.2026	10
CVE-2026-49454	Relyra SAML SignatureValue not cryptographically verified -> authentication bypass	22.06.2026	9.1
CVE-2026-49252	deepstream is vulnerable to prototype pollution	22.06.2026	9.9
CVE-2026-47846		18.06.2026	9.8
CVE-2026-54390	JTL Shop < 5.7.2 Server-Side Template Injection via Smarty Renderer	23.06.2026	9.3
CVE-2026-54103	U.S. GAO EPDS and CBCA EDS unauthenticated password change	22.06.2026	9.3
CVE-2026-55203	HAProxy - Integer Overflow in FCGI Demux Record Length Field	23.06.2026	9
CVE-2026-56020	Webmin HTTP header authentication bypass	22.06.2026	9.2
CVE-2026-11717		18.06.2026	9.3
CVE-2026-11718		18.06.2026	9.3
CVE-2026-54419	PIAF-HMS multiple unauthenticated SQL injection vulnerabilities via mysql_query	18.06.2026	9.3
CVE-2026-8024	Deserialization vulnerability in ibaPDA and ibaDatCoordinator	18.06.2026	9.3
CVE-2025-10560	Hardcoded cloud credentials in Worksnaps client application binaries expose production cloud resources	21.06.2026	9.3
CVE-2026-28573		22.06.2026	10
CVE-2026-55742	Cotonti CSRF in admin.rights.php allows privilege escalation	18.06.2026	9.4
CVE-2026-55740	SQL Injection in Nur-Alam39 bus-ticket bus_info.php via busid parameter	18.06.2026	9.3
CVE-2026-12569	Remote Code Execution (RCE) vulnerability in Windchill PDMlink	18.06.2026	9.3
CVE-2026-48768	TypeBot: Unauthenticated arbitrary s3 object write in generate-upload-url via unsanitized fileName	18.06.2026	9.3
CVE-2026-48814	Network-AI: Empty default secret still authorizes all requests (Incomplete fix for CVE-2026-46701)	18.06.2026	9.1
CVE-2026-54387	Tinyproxy - HTTP Request Smuggling via CL/TE Desynchronization	18.06.2026	9.3
CVE-2026-54388	Tinyproxy - HTTP Request Smuggling via Duplicate Content-Length Headers	18.06.2026	9.3
CVE-2026-55200	libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c	18.06.2026	9.2
CVE-2026-55196	Hermes WebUI < 0.51.409 - Unauthenticated Passkey Registration via Authentication Bypass	23.06.2026	9.1
CVE-2026-20266	OS Command Injection in the btool Configuration Helper in Splunk AI Toolkit	17.06.2026	9.1
CVE-2026-53805	NVIDIA SIL GEN3C Unauthenticated RCE via Pickle Deserialization in Inference API	17.06.2026	9.3
CVE-2025-71320	picklescan - Remote Code Execution via Incomplete Disallowed Inputs	17.06.2026	9.3
CVE-2025-71321	picklescan - Arbitrary File Writing via distutils Module Bypass	17.06.2026	9.3
CVE-2025-71323	picklescan - Remote Code Execution via Unblocked ctypes Module	17.06.2026	9.3
CVE-2025-71325	picklescan - Detection Bypass via STACK_GLOBAL Opcode Parsing Logic Flaw	17.06.2026	9.3
CVE-2026-20181	Cisco Identity Services Engine Remote Code Execution Vulnerability	18.06.2026	9.1
CVE-2026-3490	picklescan - Universal Blocklist Bypass via pkgutil.resolve_name	18.06.2026	10
CVE-2026-53873	picklescan - Arbitrary Code Execution via profile.run() Blocklist Bypass	17.06.2026	9.3
CVE-2026-53874	picklescan - Arbitrary Code Execution via Obfuscated eval Call	23.06.2026	9.3
CVE-2026-42055	NGINX ngx_http_proxy_v2_module and ngx_http_grpc_module vulnerability	18.06.2026	9.2
CVE-2026-42530	NGINX Open-Source ngx_http_v3_module vulnerability	18.06.2026	9.2
CVE-2026-47103	Python StateMachine 3.0.0 < 3.2.0 RCE via SCXML eval() Injection	18.06.2026	9.3
CVE-2026-54812	WordPress Motors plugin <= 1.4.109 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-55743	OpenHuman desktop agent shell tool sandbox bypass leads to arbitrary command execution	17.06.2026	9.4
CVE-2025-59554	WordPress Advanced Ads – Tracking plugin < 3.0.7 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2025-60229	WordPress Lagom theme <= 2.0 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2025-60230	WordPress The Barber Shop theme <= 1.9 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2025-60231	WordPress The Hospital theme <= 1.8.1 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2025-60236	WordPress Creatify theme <= 1.5 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2025-69111	WordPress Reisen theme <= 1.4.1 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2025-69127	WordPress Plumbing theme <= 1.6 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-49108	WordPress Moderno theme < 1.43 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-54808	WordPress WP Travel Gutenberg Blocks plugin <= 3.9.4 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-54809	WordPress GIFT4U plugin <= 1.0.10 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-54815	WordPress Cargo Shipping Location for WooCommerce plugin <= 5.6 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-54819	WordPress Listdom plugin <= 5.4.0 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2024-52488	WordPress Grip theme <= 1.0.9 - Arbitrary Plugin Activation/Deactivation to RCE vulnerability	17.06.2026	9.9
CVE-2025-60205	WordPress ThemeREX Addons plugin <= 2.36.1.1 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2025-60218	WordPress PT Luxa Addons Plugin <= 1.2.2 - Arbitrary File Upload Vulnerability	17.06.2026	9.9
CVE-2025-69129	WordPress WordPress & WooCommerce Scraper Plugin, Import Data from Any Site plugin <= 1.0.7 - Arbitrary File Upload vulnerability	17.06.2026	10
CVE-2025-69179	WordPress Support Ticket Management System plugin <= 1.9 - Privilege Escalation vulnerability	17.06.2026	9.8
CVE-2026-22327	WordPress Restaurt theme <= 1.0.4 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-22332	WordPress Tutor LMS Pro plugin <= 3.9.6 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-22340	WordPress WPJobster theme <= 6.3.5 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-24611	WordPress MetForm Pro plugin <= 3.9.1 - Broken Access Control vulnerability	17.06.2026	9.1
CVE-2026-25446	WordPress WishList Member X plugin <= 3.29.0 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-27041	WordPress Unlimited Elements for Elementor (Premium) plugin <= 2.0.6 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-39589	WordPress Webenvo theme <= 0.0.6 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-39596	WordPress Blocksy Companion Pro plugin < 2.1.29 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-40725	WordPress WooCommerce Product Filters plugin < 2.0.6 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-40746	WordPress Restaurant Zone theme <= 0.7.8 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-40747	WordPress Ecommerce Zone theme <= 0.9.7 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-40748	WordPress Kids Gift Shop theme <= 0.5.4 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-40749	WordPress Charity Zone theme <= 1.1.1 - Arbitrary File Upload vulnerability	17.06.2026	9.9
CVE-2026-40783	WordPress Blocksy Companion Pro plugin <= 2.1.37 - Remote Code Execution (RCE) vulnerability	17.06.2026	9.9
CVE-2026-42380	WordPress AI Lab theme < 5.4.2 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-48875	WordPress JetSmartFilters plugin <= 3.8.1 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-49058	WordPress LoginPress Pro plugin <= 6.2.2 - Privilege Escalation vulnerability	17.06.2026	9.8
CVE-2026-49075	WordPress JetEngine plugin <= 3.8.9.1 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-49076	WordPress JetEngine plugin <= 3.8.9.1 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-49079	WordPress JetSearch plugin <= 3.5.17 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-49084	WordPress JetEngine plugin < 3.8.9.1 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-49107	WordPress Thrive Apprentice plugin < 10.8.10.2 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-49767	WordPress wpForo Forum plugin <= 3.1.0 - Broken Authentication vulnerability	17.06.2026	9.8
CVE-2026-52705	WordPress SigmaForms Pro – AI Generated Forms plugin <= 1.4.5 - Arbitrary File Upload vulnerability	17.06.2026	9
CVE-2026-52706	WordPress JetEngine plugin <= 3.8.10 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-54186	WordPress JobSearch plugin <= 3.2.9 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-54187	WordPress JetEngine plugin <= 3.8.10.1 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-54803	WordPress SMS Alert Order Notifications plugin <= 3.9.4 - Privilege Escalation vulnerability	17.06.2026	9.8
CVE-2026-54806	WordPress WP Activity Log plugin <= 5.6.3.1 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-54807	WordPress Registration Form for WooCommerce plugin <= 1.0.9 - Privilege Escalation vulnerability	17.06.2026	9.8
CVE-2026-54811	WordPress WP eMember plugin < v10.9.4 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-0063		18.06.2026	10
CVE-2026-0064		17.06.2026	10
CVE-2026-0068		18.06.2026	10
CVE-2026-0071		18.06.2026	10
CVE-2026-0081		18.06.2026	10
CVE-2026-0082		18.06.2026	10
CVE-2026-0083		18.06.2026	10
CVE-2026-0092		18.06.2026	10
CVE-2026-10094	Path Traversal vulnerability affecting SOLIDWORKS Visualize from SOLIDWORKS Desktop Release 2024 through SOLIDWORKS Desktop Release 2026	17.06.2026	9.8
CVE-2026-28575		17.06.2026	10
CVE-2026-28576		17.06.2026	10
CVE-2026-28587		17.06.2026	10
CVE-2026-28615		18.06.2026	10
CVE-2026-48797	Backpropagate: backprop ui --auth and backprop ui --share do not enforce authentication	18.06.2026	9.3
CVE-2026-48616		17.06.2026	9.3
CVE-2026-48745	Traccar Client: silent configuration hijack via unverified deep link redirects all GPS telemetry	17.06.2026	9.3
CVE-2025-69108	WordPress Hot Coffee theme <= 1.7 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2025-69122	WordPress SeaFood Company theme <= 1.4 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-25470	WordPress ACPT (Pro) - Custom Post Types plugin for WordPress plugin <= 2.0.47 - Remote Code Execution (RCE) vulnerability	17.06.2026	10
CVE-2026-27395	WordPress Support Board plugin < 3.8.9 - Privilege Escalation vulnerability	17.06.2026	9.8
CVE-2026-27429	WordPress Nifty theme <= 1.4.1 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-39438	WordPress ListingPro plugin <= 2.9.10 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-39529	WordPress Elementra theme <= 1.0.9 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-48055	Streambert: Arbitrary File Write (Zip Slip) via Subtitle Extraction	17.06.2026	10
CVE-2026-48781	Postiz has cross-tenant SUPERADMIN takeover via Skool-provider JWT forgery	18.06.2026	9.9
CVE-2026-49080	WordPress wpDataTables plugin <= 7.3.6 - SQL Injection vulnerability	17.06.2026	9.3
CVE-2026-54194	WordPress Fusion Builder plugin <= 3.15.4 - PHP Object Injection vulnerability	17.06.2026	9.8
CVE-2026-35263		18.06.2026	9.9
CVE-2026-35268		18.06.2026	9.9
CVE-2026-35270		18.06.2026	9.1
CVE-2026-35278		18.06.2026	9.8
CVE-2026-35280		17.06.2026	9.9
CVE-2026-35281		17.06.2026	9.9
CVE-2026-35282		17.06.2026	9.9
CVE-2026-35283		17.06.2026	9.9
CVE-2026-35284		17.06.2026	9.9
CVE-2026-35285		17.06.2026	9.9
CVE-2026-35286		18.06.2026	9.8
CVE-2026-35292		18.06.2026	10
CVE-2026-35293		17.06.2026	9.8
CVE-2026-35294		17.06.2026	9.9
CVE-2026-35296		17.06.2026	9.8
CVE-2026-35298		18.06.2026	9.1
CVE-2026-35300		18.06.2026	9.8
CVE-2026-35301		18.06.2026	10
CVE-2026-35304		19.06.2026	9.8
CVE-2026-35305		17.06.2026	9.3
CVE-2026-35306		17.06.2026	9.3
CVE-2026-35307		19.06.2026	10
CVE-2026-35308		19.06.2026	10
CVE-2026-35309		19.06.2026	9.8
CVE-2026-35310		19.06.2026	9.8
CVE-2026-35312		19.06.2026	9.8
CVE-2026-35313		17.06.2026	9.9
CVE-2026-35316		19.06.2026	9.9
CVE-2026-35319		19.06.2026	9.8
CVE-2026-35320		19.06.2026	9
CVE-2026-35321		19.06.2026	9.9
CVE-2026-35323		19.06.2026	9.9
CVE-2026-46765		19.06.2026	9.9
CVE-2026-46766		19.06.2026	9.8
CVE-2026-46767		19.06.2026	9.9
CVE-2026-46773		19.06.2026	9.8
CVE-2026-46774		19.06.2026	9.8
CVE-2026-46777		19.06.2026	9.1
CVE-2026-46778		17.06.2026	10
CVE-2026-46779		17.06.2026	9.9
CVE-2026-46781		17.06.2026	10
CVE-2026-46782		17.06.2026	9.9
CVE-2026-46783		17.06.2026	9.8
CVE-2026-46784		17.06.2026	9.1
CVE-2026-46785		19.06.2026	9.3
CVE-2026-46786		19.06.2026	9.6
CVE-2026-46789		19.06.2026	9.6
CVE-2026-46792		17.06.2026	9.9
CVE-2026-46793		17.06.2026	9.9
CVE-2026-46794		17.06.2026	9.9
CVE-2026-46795		19.06.2026	9.3
CVE-2026-46797		17.06.2026	9.8
CVE-2026-46798		17.06.2026	10
CVE-2026-46799		17.06.2026	9.8
CVE-2026-46800		17.06.2026	10
CVE-2026-46801		17.06.2026	9.8
CVE-2026-46802		19.06.2026	9.9
CVE-2026-46803		19.06.2026	10
CVE-2026-46805		19.06.2026	9.3
CVE-2026-46807		19.06.2026	9.8
CVE-2026-46809		17.06.2026	9.1
CVE-2026-46813		17.06.2026	9.8
CVE-2026-46814		17.06.2026	9.9
CVE-2026-46832		18.06.2026	9.9
CVE-2026-46838		23.06.2026	9.9
CVE-2026-46844		23.06.2026	9.9
CVE-2026-46845		23.06.2026	9.8
CVE-2026-46846		23.06.2026	10
CVE-2026-46847		23.06.2026	9.9
CVE-2026-46850		18.06.2026	9.9
CVE-2026-46852		18.06.2026	9.9
CVE-2026-46853		18.06.2026	9.6
CVE-2026-46854		18.06.2026	9.9
CVE-2026-46855		18.06.2026	9.9
CVE-2026-46856		18.06.2026	9.6
CVE-2026-46857		18.06.2026	9.8
CVE-2026-46858		17.06.2026	9.1
CVE-2026-46859		18.06.2026	9.8
CVE-2026-46860		18.06.2026	9.8
CVE-2026-46861		18.06.2026	9.6
CVE-2026-46872		17.06.2026	9
CVE-2026-46875		18.06.2026	9.1
CVE-2026-46878		18.06.2026	9.8
CVE-2026-46879		18.06.2026	9.8
CVE-2026-46880		18.06.2026	9.8
CVE-2026-46881		18.06.2026	9.8
CVE-2026-46882		18.06.2026	9.8
CVE-2026-46883		18.06.2026	9.8
CVE-2026-46884		18.06.2026	9.8
CVE-2026-46887		18.06.2026	9.8
CVE-2026-46889		18.06.2026	9.8
CVE-2026-46890		18.06.2026	9.8
CVE-2026-46892		18.06.2026	9.1
CVE-2026-46893		18.06.2026	9.9
CVE-2026-46895		18.06.2026	9.9
CVE-2026-46896		18.06.2026	9.1
CVE-2026-46897		18.06.2026	9.9
CVE-2026-46899		18.06.2026	9.6
CVE-2026-46900		18.06.2026	9.9
CVE-2026-46901		18.06.2026	9.9
CVE-2026-46902		18.06.2026	9.8
CVE-2026-46904		18.06.2026	9.8
CVE-2026-46905		18.06.2026	9.8
CVE-2026-46906		18.06.2026	9.6
CVE-2026-46907		18.06.2026	9.9
CVE-2026-46908		18.06.2026	9.9
CVE-2026-46909		18.06.2026	9.8
CVE-2026-46910		17.06.2026	9.1
CVE-2026-46911		18.06.2026	9.6
CVE-2026-46912		17.06.2026	9.3
CVE-2026-46913		18.06.2026	9.3
CVE-2026-46918		17.06.2026	9.9
CVE-2026-46919		18.06.2026	9.8
CVE-2026-46930		17.06.2026	9.1
CVE-2026-46933		18.06.2026	9.9
CVE-2026-46944		18.06.2026	9.1
CVE-2026-46945		17.06.2026	9.1
CVE-2026-46946		18.06.2026	9.1
CVE-2026-46949		17.06.2026	9.1
CVE-2026-46963		17.06.2026	9.9
CVE-2026-46964		17.06.2026	9.9
CVE-2026-46978		18.06.2026	10
CVE-2026-22313	OS Commands Executed with Administrative Permissions in Radiflow iSAP Smart Collector	17.06.2026	9.1
CVE-2026-48777	FileBrowser Quantum: Path Traversal in public share PATCH allows file ops outside shared directory	17.06.2026	9.3

Latest Updates

CVE	Title	Updated	Score
CVE-2025-15619	HCL Connections is vulnerable to broken access control	23.06.2026	3.5
CVE-2025-55639		23.06.2026
CVE-2025-62180	Pega Platform versions 8.3.0 through Infinity 25.1.2 are affected by an authorization weakness that may allow authenticated users to access certain additional data via crafted URLs.	23.06.2026
CVE-2026-52673		23.06.2026
CVE-2026-54303	n8n: Reflected XSS via Facebook, WhatsApp, and Microsoft Teams Trigger Webhook Verification Endpoints	23.06.2026
CVE-2026-54309	n8n: n8n MCP Browser HTTP Transport Exposes Unauthenticated Browser-Control Sessions	23.06.2026
CVE-2026-54310	n8n: SQL Injection in Postgres v1/TimesclaeDB Nodes	23.06.2026
CVE-2026-54311	n8n: Merge Node SQL Mode Prototype Pollution	23.06.2026
CVE-2026-54312	n8n: Microsoft SQL Node Prototype Pollution	23.06.2026
CVE-2026-54313	n8n: NoSQL Injection in MongoDB Node Find And Replace Operation	23.06.2026
CVE-2026-54314	n8n: Denial of Service via ZIP decompression in webhook workflow	23.06.2026
CVE-2026-55568	Guzzle: Silent HTTPS-Proxy Downgrade to Cleartext	23.06.2026	5.9
CVE-2026-55766	guzzlehttp/psr7: CRLF Injection in HTTP Start-Line Serialization	23.06.2026	4.8
CVE-2026-55767	Guzzle: Dot-Only Cookie Domains Match All Hosts in guzzlehttp/guzzle	23.06.2026	5.8
CVE-2026-56402	NanoClaw < 2.1.17 - Privilege Escalation via Unverified Approval Response Handler	23.06.2026
CVE-2026-56692	NanoClaw < 2.1.17 - Arbitrary File Read via Symlink Following in forwardAttachedFiles	23.06.2026
CVE-2026-56693	NanoClaw < 2.1.17 - Privilege Escalation via Unauthorized create_agent System Action	23.06.2026
CVE-2026-56694	NanoClaw < 2.1.0 - Privilege Escalation via Forged Channel Approval Callback	23.06.2026
CVE-2026-56695	OpenHarness - Cross-Session Disclosure via /resume and /summary Commands	23.06.2026
CVE-2026-56696	OpenHarness - Prompt Injection via /issue and /pr_comments Slash Commands	23.06.2026
CVE-2026-27604	FOSSBilling: Improper API Role Validation (system) Enables Unauthenticated Access to Privileged Admin Functions	23.06.2026
CVE-2026-28496	FOSSBilling: Server-side template injection in Twig template rendering enables information disclosure and RCE	23.06.2026
CVE-2026-35018	NetComm NF20MESH < R6B032 Authenticated RCE via OS Command Injection	23.06.2026
CVE-2026-35019	NetComm NF20MESH < R6B032 Hardcoded AES Key Authentication Bypass	23.06.2026
CVE-2026-56815		23.06.2026	7.4
CVE-2026-10609	Openshift/cluster-logging-operator: cluster logging operator creates and forwards serviceaccount tokens without verifying clf creator authorization	23.06.2026
CVE-2026-11772	Reflected XSS in DRIMO CMS	23.06.2026
CVE-2026-12969	Dnsmasq: dnsmasq: out-of-bounds read in find_soa() due to missing extrabytes validation	23.06.2026
CVE-2023-54365	Traefik - Denial of Service via HTTP/2 Request Handling	23.06.2026
CVE-2025-71337	Flowise - Unverified Email Change via Account Profile Endpoint	23.06.2026
CVE-2025-71341	picklescan - Remote Code Execution via Undetected profile.Profile.runctx	23.06.2026
CVE-2025-71365	picklescan - Arbitrary Code Execution via numpy.f2py.crackfortran.myeval Detection Bypass	23.06.2026
CVE-2025-71370	picklescan - Remote Code Execution via torch.jit.unsupported_tensor_ops.execWrapper	23.06.2026
CVE-2025-71376	picklescan - Arbitrary Code Execution via Undetected idlelib.autocomplete.AutoComplete.fetch_completions	23.06.2026
CVE-2026-10711	RCE in Akınsoft's CafePlus	23.06.2026	8.8
CVE-2026-10857	Reflected XSS in Akinsoft's e-Commerce	23.06.2026	6.1
CVE-2026-44089	Buffer Overflow in Totolink EX1200L router	23.06.2026
CVE-2026-4610	ProfileGrid <= 5.9.9.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Message Content	23.06.2026	6.4
CVE-2026-54892	Plug: quadratic-time decoding of nested query/body parameters enables denial of service	23.06.2026
CVE-2026-56222	Capgo - Cross-Organization App Takeover via Mismatched org_id and app_id in /private/role_bindings	23.06.2026
CVE-2026-56225	Capgo - Authorization Bypass in API Key Management via App-Limited Keys	23.06.2026
CVE-2026-56234	Capgo - Password Spraying via Public-Key Accessible Credential Validation Endpoint	23.06.2026
CVE-2026-56243	Capgo - Hashed API Key Enforcement Bypass via PostgREST/RLS Plane	23.06.2026
CVE-2026-56248	Capgo - Unauthenticated Denial-of-Service via audit_logs RLS Policy	23.06.2026
CVE-2026-56258	Crawl4AI - Arbitrary File Write via output_path Symlink and TOCTOU	23.06.2026
CVE-2026-56263	Crawl4AI - Stored Cross-Site Scripting in Monitor Dashboard	23.06.2026
CVE-2026-56274	Flowise - Remote Code Execution via MCP Security Bypass in validateCommandFlags and validateArgsForLocalFileAccess	23.06.2026
CVE-2026-56275	Flowise - Server-Side Request Forgery via Execute Flow Base URL	23.06.2026
CVE-2026-56301	Nuxt - Arbitrary File Read via World-Connectable vite-node IPC Socket on Linux	23.06.2026
CVE-2026-56315	picklescan - Remote Code Execution via Unblocked Standard Library Modules	23.06.2026
CVE-2026-56322	Capgo - Information Disclosure via Unauthenticated /updates defaultChannel Parameter	23.06.2026
CVE-2026-56371	ImageMagick - Memory Leak in TXT File Processing via Texture Attribute	23.06.2026
CVE-2026-56376	ImageMagick - Heap Use-After-Free in Meta Coder	23.06.2026
CVE-2026-56379	ImageMagick - Command Injection via SVG Decoder	23.06.2026
CVE-2026-56701	Grav - XML External Entity Injection via SVG Upload	23.06.2026
CVE-2026-56762	Hono - Missing Cookie Name Validation in setCookie()	23.06.2026
CVE-2026-56784	OpenRemote Manager - Cross-Tenant IDOR in Bulk Alarm Deletion	23.06.2026
CVE-2026-4983		23.06.2026	4.1
CVE-2026-11374	Account Takeover via Predictable SSO Ticket Generation	23.06.2026	9
CVE-2026-10521	Authenticated unintended access to critical program parameters	23.06.2026
CVE-2026-9733	Mojolicious::Plugin::Web::Auth::OAuth2 versions through 0.17 for Perl have an insecure default state parameter	23.06.2026
CVE-2026-7842	Infility Global < 2.15.20 - Editor+ SQL Injection via orderby Parameter	23.06.2026
CVE-2026-8163	Infility Global < 2.15.19 - Subscriber+ SQL Injection via order Parameter	23.06.2026
CVE-2026-8172	Simple Basic Contact Form <= 20250114 - Reflected XSS	23.06.2026
CVE-2026-8378	Frontend File Manager Plugin <= 23.6 - Subscriber+ Stored Cross-Site Scripting via File Rename	23.06.2026
CVE-2026-8379	Frontend File Manager Plugin <= 23.6 - Unauthenticated Arbitrary File Download	23.06.2026
CVE-2026-12866		23.06.2026	9.8
CVE-2026-55653	Openssh: double free in red hat enterprise linux versions of openssh dh-gex client path during fips known-group validation leads to client-side denial of service	23.06.2026
CVE-2026-55654	Openssh: heap out-of-bounds read in red hat enterprise linux versions of openssh gssapi indicator cleanup due to missing null sentinel termination	23.06.2026
CVE-2026-55655	Openssh: local mitm of x11 forwarding via abstract unix socket pre-binding in red hat enterprise linux openssh client versions	23.06.2026
CVE-2026-11833		23.06.2026
CVE-2026-10645	fs: ext2: Missing structural validation of directory entries can cause out-of-bounds read and zero-progress directory traversal	23.06.2026	4.9
CVE-2026-10651	Bluetooth Classic SDP parser truncation bug in bt_sdp_parse_attribute() leads to reachable assertion and possible out-of-bounds read	23.06.2026	7.1
CVE-2026-10658	Bluetooth Host ISO RX Missing SDU Header Length Validation in bt_iso_recv() Leads to DoS	23.06.2026	7.1
CVE-2026-41523	vLLM: Security Check Bypass via assert Statement in Activation Function Loading Allows Arbitrary Code Execution	23.06.2026	7.5
CVE-2026-47155	vLLM: Artifact Pin Decay in vLLM allows pinned deployments to load unpinned code, weights, and processors	23.06.2026	6.5
CVE-2026-48746	vLLM: OpenAI auth bypass	23.06.2026	9.1
CVE-2026-53923	vLLM GGUF Kernels: int64_t to int truncation of tensor dimensions causes GPU buffer overflow	23.06.2026
CVE-2026-54232	vLLM: Dependency Confusion Vulnerability in vLLM Dockerfile	23.06.2026	8.8
CVE-2026-54233	vLLM: OOM Denial of Service via Audio Decompression Bomb	23.06.2026	6.5
CVE-2026-54235	vLLM: temperature=NaN and temperature=Infinity bypass validation and propagate to GPU kernels	23.06.2026
CVE-2026-54236	vLLM: incomplete CVE-2026-22778 fix leaks PIL repr addresses via Anthropic router	23.06.2026	5.3
CVE-2025-71339	Picklescan - Arbitrary Code Execution via numpy.f2py.crackfortran._eval_length Gadget	23.06.2026
CVE-2025-71344	picklescan - Arbitrary Code Execution via Undetected ensurepip._run_pip Function	22.06.2026
CVE-2025-71358	picklescan - Remote Code Execution via idlelib.autocomplete.AutoComplete.get_entity	23.06.2026
CVE-2026-44311	Fabric.js: Improper escaping in fabric.Gradient colorStops leads to XSS in SVG serialization	22.06.2026	5.4
CVE-2026-44889	WebOb: Location header normalization during redirect leads to open redirect	23.06.2026	6.1
CVE-2026-48067	Filament: Inconsistent scope enforcement for AttachAction and AssociateAction Select fields	23.06.2026	6.5
CVE-2026-48109	MessagePack-CSharp: LZ4 decompression may fail with AccessViolationException after dereferencing memory from bad input	23.06.2026	8.2
CVE-2026-48166	Filament: Timing-based user enumeration on login page	23.06.2026	5.3
CVE-2026-48167	Filament: Unvalidated ImageColumn and ImageEntry values can be used for XSS	23.06.2026	6.4
CVE-2026-48500	Filament: Unauthenticated temporary file upload on auth pages	23.06.2026	6.5
CVE-2026-48502	MessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflows	23.06.2026
CVE-2026-48505	Filament: Multi-factor authentication (app) recovery codes can still be used multiple times via concurrent submission	23.06.2026	7.4
CVE-2026-48506	MessagePack-CSharp: MessagePackReader.Skip can recurse without enforcing maximum object graph depth	23.06.2026	7.5
CVE-2026-48509	MessagePack-CSharp: ASP.NET Core MessagePackInputFormatter defaults to TrustedData for HTTP request bodies	23.06.2026
CVE-2026-48510	MessagePack-CSharp: LZ4 decompression allocates from unbounded declared output lengths	23.06.2026
CVE-2026-48511	MessagePack-CSharp: ExpandoObject formatter can perform quadratic insertion work on untrusted maps	23.06.2026
CVE-2026-48512	MessagePack-CSharp: JSON conversion APIs can recurse without consistent depth enforcement	23.06.2026
CVE-2026-48513	MessagePack-CSharp: DynamicUnionResolver generated deserializers miss depth enforcement	23.06.2026
CVE-2026-48514	MessagePack-CSharp: Unity unsafe blit formatter allocates from unbounded byte length	23.06.2026
CVE-2026-48515	MessagePack-CSharp: Multi-dimensional array formatters allocate from unchecked dimensions	23.06.2026
CVE-2026-48516	MessagePack-CSharp: InterfaceLookupFormatter bypasses collision-resistant comparer settings	23.06.2026
CVE-2026-48517	MessagePack-CSharp: Typeless deserialization type restrictions do not recurse into arrays or generic arguments	23.06.2026
CVE-2026-54281	Nest: Middleware Bypass on Fastify via Trailing Slash	23.06.2026
CVE-2026-54911	UltraJSON: Malformed/Truncated UTF-8 Accepted and Silently Rewritten in ujson.dumps()	23.06.2026	6.5
CVE-2026-55409	Filament: Disabled RichEditor field state can be used for XSS	23.06.2026	7.6
CVE-2026-56221	Cap-go - SQL Injection in Cloudflare Analytics Engine Queries via cloudflare.ts	23.06.2026
CVE-2026-56255	Capgo - Denial of Service via Unlimited Demo App Creation	23.06.2026
CVE-2026-56266	Crawl4AI - Server-Side Request Forgery via Direct Crawl Endpoints	23.06.2026
CVE-2026-56268	Flowise - Cross-Workspace Information Disclosure via chatflows/apikey Endpoint	23.06.2026
CVE-2026-56280	Cap-go - Privilege Inversion in Build Log Stream via SSE Disconnect	22.06.2026
CVE-2026-56306	Capgo - Subkey Enforcement Bypass via x-limited-key-id Header Parsing	23.06.2026
CVE-2026-56311	Capgo - Unauthenticated Cross-Tenant Disclosure via get_current_plan_max_org RPC	23.06.2026
CVE-2026-56314	Capgo - Deleted Bundle Selection via Missing Deletion Filter in /updates Endpoint	23.06.2026
CVE-2026-56321	Capgo - Missing Authentication Middleware on GET /private/role_bindings Endpoint	23.06.2026
CVE-2026-56323	Capgo - Unauthenticated Channel Enumeration and App Oracle via GET /channel_self	23.06.2026
CVE-2026-56324	Capgo - Rate Limit Bypass via User-Controlled device_id Parameter	22.06.2026
CVE-2026-56326	Nuxt - Server-Side Open Redirect via Path-Normalization Bypass in navigateTo	23.06.2026
CVE-2026-56348	n8n - Credential Exfiltration via Allowed HTTP Request Domains Bypass in Dynamic Node Parameters Endpoint	23.06.2026
CVE-2026-56357	n8n - Webhook Forgery via Missing HMAC-SHA256 Signature Verification in GitHub Webhook Trigger	23.06.2026
CVE-2026-56697	Nuxt - Open Redirect via Protocol-Relative Paths in reloadNuxtApp	23.06.2026
CVE-2026-56698	Nuxt - Cross-Site Scripting via navigateTo open Option	23.06.2026
CVE-2026-39904	Gophish 0.12.1 Denial of Service via Office Document Upload	23.06.2026
CVE-2026-41479	Authlib OAuth 2.0 authorization endpoint open redirects to attacker-controlled redirect_uri on unsupported response_type	23.06.2026	5.4
CVE-2026-44727	Jupyter Server: Stored XSS in `NbconvertFileHandler` / `NbconvertPostHandler` via missing `sandbox` CSP	23.06.2026
CVE-2026-45034	PhpSpreadsheet: File::prohibitWrappers bypass	23.06.2026
CVE-2026-47240	Net::IMAP: Command Injection via non-synchronizing literal in "raw" argument	23.06.2026
CVE-2026-47241	Net::IMAP: Denial of Service via incomplete raw argument validation	23.06.2026
CVE-2026-47242	Net::IMAP: Command Injection via ID command argument	23.06.2026
CVE-2026-49460	pypdf: Inefficient decoding of FlateDecode PNG predictor streams	23.06.2026
CVE-2026-49461	pypdf: Possible large memory usage for form XObjects during text extraction	23.06.2026
CVE-2026-49468	LiteLLM: Authentication Bypass via Host Header Injection	23.06.2026
CVE-2026-54530	pypdf: Possible infinite loop when retrieving fonts for layout-mode text extraction	23.06.2026
CVE-2026-54531	pypdf: Possible infinite loop when processing outlines/bookmarks in writer	23.06.2026
CVE-2026-54651	pypdf: Possible infinite loop when processing threads/articles in writer	23.06.2026
CVE-2026-55599	phpseclib: X.509 certificate validation sends attacker-controlled outbound requests (server-side request forgery) via Authority Information Access	23.06.2026	5.8
CVE-2026-55603	http-proxy-middleware: multipart/form-data field injection via unescaped CRLF in `fixRequestBody`	23.06.2026	7.5
CVE-2026-10852	IBM i is Affected By a Denial of Service in IBM WebSphere Application Server Liberty	23.06.2026	5.9
CVE-2026-44271		23.06.2026	8.1
CVE-2026-44272		23.06.2026	8.8
CVE-2026-44273		22.06.2026	6
CVE-2026-44274		23.06.2026	7.8
CVE-2026-48931		23.06.2026
CVE-2026-11834	Unauthenticated Command Injection via DHCP Option Handling in Multiple TP-Link Routers	23.06.2026
CVE-2026-50146	Astro: Reflected XSS via unescaped slot name	23.06.2026	7.1
CVE-2026-53663	React Router: `handleDocumentRequest` CSRF check covers `POST` only; PUT/PATCH/DELETE bypass	22.06.2026	3.1
CVE-2026-53778		22.06.2026
CVE-2026-53779	WebP Server Go < 0.15.0 Path Traversal via Backslash Encoding on Windows	23.06.2026
CVE-2026-54288	Hono: Body Limit Middleware can be bypassed on AWS Lambda by understating `Content-Length`	23.06.2026	6.5
CVE-2026-54293	NLTK: URL-Encoded Path Traversal in nltk.data.load() Allows Arbitrary Local File Read	22.06.2026	7.5
CVE-2026-54298	Astro: XSS via Unescaped Attribute Names in Spread Props	22.06.2026	4.2
CVE-2026-54299	Astro: Host-header full-read SSRF in core prerendered error-page fetch (prerenderedErrorPageFetch default + unvalidated createRequestFromNodeRequest URL)	23.06.2026	7.5
CVE-2026-54300	@astrojs/netlify broadens Astro image.remotePatterns in Netlify Image CDN config	23.06.2026	5.3
CVE-2026-55443	LangChain: Path traversal and sandbox escape in LangChain file-search middleware and loaders	22.06.2026	5.1
CVE-2026-10789	MCP Extension Code Injection Vulnerability in Autodesk Fusion Desktop	23.06.2026	9.6
CVE-2026-54286	Hono: Path traversal in `serve-static` on Windows via encoded backslash (`%5C`)	23.06.2026	5.9
CVE-2026-54287	Hono: AWS Lambda adapter merges multiple `Set-Cookie` headers into one value, dropping cookies on ALB single-header and Lattice	22.06.2026	5.3
CVE-2026-54289	Hono: Lambda@Edge adapter keeps only the last value of a repeated request header, dropping the rest	22.06.2026	4.8
CVE-2026-54290	Hono: CORS Middleware reflects any Origin with credentials when `origin` defaults to the wildcard	22.06.2026	7.1