CVE Field Guide

Critical CVEs

CVE Title Updated Score
CVE-2018-25412 Delta Sql 1.8.2 Arbitrary File Upload via docs_upload.php 30.05.2026 9.3
CVE-2026-45372 cpp-httplib: HTTP header value percent-decoding in server-side `parse_header` enables CRLF injection 29.05.2026 9.9
CVE-2026-45697 Formie: Pre-authenticated server-side template injection in Hidden fields 29.05.2026 9.8
CVE-2026-44649 SillyTavern: Authentication Bypass via SSO Header Injection 29.05.2026 9.8
CVE-2026-44650 SillyTavern: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 29.05.2026 9.1
CVE-2026-47744 Shopper: Authorization bypass and RBAC privilege escalation in team settings 29.05.2026 9.9
CVE-2026-9051 Authentication Bypass Vulnerability in NI SystemLink Enterprise 29.05.2026 9.3
CVE-2026-45625 Arcane: Missing admin authorization on git repository endpoints allows non-admin users to exfiltrate stored Git credentials and tamper with GitOps configs 29.05.2026 9.9
CVE-2026-45628 Dokploy: Command Injection via Unescaped Branch Fields in Deployment Pipeline 29.05.2026 9.6
CVE-2026-45629 Dokploy: Authenticated Remote Code Execution via Command Injection in /listen-deployment WebSocket Endpoint 29.05.2026 9.9
CVE-2026-45630 Dokploy: Authenticated Remote Code Execution via Command Injection in updateTraefikConfig Echo Statement 29.05.2026 9
CVE-2026-45631 Dokploy: Pre-Auth Admin Takeover via Hardcoded Authentication Secret 29.05.2026 10
CVE-2026-45632 Dokploy: Schedule Authorization Bypass Enables Host/Server Command Execution 29.05.2026 9.9
CVE-2026-45633 Dokploy: Command Injection in /docker-container-logs Endpoint 29.05.2026 9.9
CVE-2026-45661 Dokploy: Remote Code Execution through Path Traversal 29.05.2026 9.9
CVE-2026-45668 Trilium Notes : Note Import to RCE via #docName Path Traversal (Safe Import Enabled) 29.05.2026 9.3
CVE-2026-5386 KMW CCTV Security Cameras Unverified Password Change 29.05.2026 9.1
CVE-2026-7786 Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter Use of Hard-coded Credentials 29.05.2026 9.8
CVE-2026-44962 29.05.2026 10
CVE-2026-45663 Dokploy: Remote Code Execution via destinationPath in Container File Upload 29.05.2026 9.9
CVE-2026-10042 manga-image-translator RCE via Unsafe Pickle Deserialization in Share Model 29.05.2026 9.2
CVE-2026-4290 WP Travel Pro <= 10.6.0 - Missing Authorization to Unauthenticated Arbitrary User Deletion Including Administrators 29.05.2026 9.1
CVE-2026-46376 FreePBX: Unauthenticated Use of Hard-Coded Credentials Vulnerability in FreePBX UCP Interface 29.05.2026 9.3
CVE-2026-10071 Interinfo|DreamMaker - Arbitrary File Upload 29.05.2026 9.3
CVE-2026-45043 RustFS: ImportIam Allows Creation of Backdoor Service Accounts Under Any Parent Including Root 29.05.2026 9.3
CVE-2026-45312 RAGFlow: Server-Side Template Injection in Prompt Generator leads to Remote Code Execution 29.05.2026 9.9
CVE-2026-8326 Remote Spark SparkView Path Traversal in RDP Drive Redirection leading to RCE 29.05.2026 10
CVE-2026-9508 Incorrect Permission Assignment for Critical Resource vulnerability in Suprema's BioStar 29.05.2026 10
CVE-2025-41269 29.05.2026 9.3
CVE-2025-41270 29.05.2026 9.3
CVE-2025-41272 29.05.2026 9.3
CVE-2025-41273 29.05.2026 9.3
CVE-2025-41274 29.05.2026 9.3
CVE-2025-41275 29.05.2026 9.3
CVE-2025-41276 29.05.2026 9.3
CVE-2025-41277 29.05.2026 9.3
CVE-2026-9559 29.05.2026 9.9
CVE-2026-49201 Acer Wave 7 router: Hardcoded Cryptographic Key 29.05.2026 10
CVE-2026-9558 29.05.2026 9.9
CVE-2026-49197 Predator Connect W6x: Improper Authentication 29.05.2026 10
CVE-2026-49199 Predator Connect W6x: RCE via MQTT 29.05.2026 10
CVE-2026-49200 Acer Wave 7 router: Broken Access Control 29.05.2026 10
CVE-2026-3655 OTP Login With Phone Number, OTP Verification <= 1.8.60 - Unauthenticated Authentication Bypass via Firebase OTP Verification 29.05.2026 9.8
CVE-2026-8732 WP Maps Pro <= 6.1.0 - Unauthenticated Privilege Escalation via Administrator Account Creation to wpgmp_temp_access_ajax AJAX Action 29.05.2026 9.8
CVE-2026-8809 Advanced Custom Fields: Extended <= 0.9.2.5 - Unauthenticated Privilege Escalation via Validation Bypass to '_acf_post_id' Parameter 29.05.2026 9.8
CVE-2026-44848 Portainer: Missing authorization on Docker plugin endpoints allows host RCE 28.05.2026 9.4
CVE-2026-44849 Portainer: Endpoint security bypass via Swarm service create/update 29.05.2026 9.4
CVE-2026-34311 29.05.2026 9.8
CVE-2026-45288 Marten has an SQL injection vulnerability in its full-text search regConfig parameter 30.05.2026 9.8
CVE-2026-46775 29.05.2026 9.9
CVE-2026-46817 29.05.2026 9.8
CVE-2026-46819 29.05.2026 9.1
CVE-2026-46822 29.05.2026 9.9
CVE-2026-46824 29.05.2026 9.9
CVE-2026-46833 29.05.2026 9
CVE-2026-46839 29.05.2026 9.9
CVE-2026-46840 29.05.2026 10
CVE-2026-9645 ScadaBR Authenticated Remote Code Execution 29.05.2026 9.9
CVE-2026-9037 Download of code without integrity check in XCharge C6 29.05.2026 9.3
CVE-2026-45039 RustFS: Internode RPC HMAC secret falls back to public default credential, enabling peer impersonation 30.05.2026 9.8
CVE-2026-43898 SandboxJS: Sandbox escape via Function.caller leakage of internal call op 28.05.2026 10
CVE-2026-45058 electerm: Import unsafe bookmark data could lead to unsafe operation when click local type bookmark 30.05.2026 9.4
CVE-2026-45311 CodeWhale: run_tests Tool Enables RCE via Malicious Repository Without Approval 28.05.2026 9.6
CVE-2026-45323 MeshCore Card: XSS vulnerability through meshcore node name 29.05.2026 9.6
CVE-2026-45353 electerm: Local code through electerm's single-instance socket 28.05.2026 9.3
CVE-2026-45374 CodeWhale: task_create Insecure Defaults Enable RCE via Prompt Injection in Project Files 30.05.2026 9.6
CVE-2026-24444 SDMC NE6037 Hardcoded Password via mgmt.php/npcmd.php 28.05.2026 9.3
CVE-2026-44477 CloudNativePG: Metrics exporter allows privilege escalation to PostgreSQL superuser and OS RCE 28.05.2026 9.4
CVE-2026-45261 GitButler: Link injection via forge integration enables arbitrary script execution 30.05.2026 9.3
CVE-2026-44672 mapfish-print: Remote Code Injection (RCE) in Dynamic table 28.05.2026 9.3
CVE-2026-8979 Authentication Bypass 28.05.2026 9.3
CVE-2026-8980 Privilege Escalation 28.05.2026 9.3
CVE-2026-46115 block: add pgmap check to biovec_phys_mergeable 30.05.2026 9.8
CVE-2026-46119 libceph: Fix slab-out-of-bounds access in auth message processing 30.05.2026 9.1
CVE-2026-46135 nvmet-tcp: fix race between ICReq handling and queue teardown 30.05.2026 9.8
CVE-2026-46137 mptcp: pm: ADD_ADDR rtx: fix potential data-race 30.05.2026 9.8
CVE-2026-46155 smb/client: fix out-of-bounds read in smb2_compound_op() 30.05.2026 9.1
CVE-2026-46185 smb/client: fix out-of-bounds read in symlink_data() 30.05.2026 9.1
CVE-2026-46195 smb: client: validate dacloffset before building DACL pointers 30.05.2026 9.8
CVE-2026-4408 Samba: remote code execution in samr 29.05.2026 9
CVE-2026-32998 29.05.2026 9.4
CVE-2026-32999 28.05.2026 9.1
CVE-2026-9739 28.05.2026 9.4
CVE-2026-45083 Goobi viewer: Unauthenticated Solr Streaming Expression Proxy 28.05.2026 9.8
CVE-2026-44590 Sherlock: Command Injection via pull_request_target in validate_modified_targets.yml 28.05.2026 9.3
CVE-2026-8362 Gladinet Triofox Stack-based Buffer Overflow in WOSDefaultHttpModule.dll 28.05.2026 9.8
CVE-2026-8363 Gladinet Triofox Stack-based Buffer Overflow in WOSDeviceDropFolder.dll 28.05.2026 9.8
CVE-2026-8364 Gladinet Triofox Missing Authentication for Critical Functions 28.05.2026 9.8
CVE-2026-44887 Unauthenticated RCE via Python Config File Injection in SaveConfigFile() (Path) 28.05.2026 9.8
CVE-2026-44888 Unauthenticated RCE via Python Config File Injection in SaveConfigFile() (Interger) 28.05.2026 9.8
CVE-2026-45102 OneUptime: RCE due to Node.js' vm module escape via error objects and infinite recursion 30.05.2026 9.9
CVE-2026-45087 Dalfox: Unauthenticated Remote Code Execution via `found-action` in Dalfox Server Mode 28.05.2026 10
CVE-2026-46425 Budibase: SCIM endpoints lack role-based authorization, BASIC users CRUD tenant users 28.05.2026 9.9
CVE-2026-48150 Budibase: Workspace-scoped builder escalates to global admin via /api/public/v1/roles/assign 27.05.2026 9
CVE-2026-44315 free5GC: NEF 3gpp-pfd-management API is unauthenticated; forged bearer tokens can create, read, and delete PFD transactions 27.05.2026 9.4
CVE-2026-44326 free5GC: NEF 3gpp-traffic-influence API is unauthenticated; missing or forged bearer tokens can create, read, patch, and delete subscriptions 27.05.2026 9.4
CVE-2026-44327 free5GC: NEF nnef-oam route group is unauthenticated; no-token requests reach the OAM handler 28.05.2026 10
CVE-2026-44329 free5GC: SMF UPI management interface lacks auth middleware; unauthenticated topology read/write requests reach handlers 28.05.2026 10
CVE-2026-44330 free5GC: NEF nnef-pfdmanagement API is unauthenticated; forged bearer tokens can read PFD data and create/delete PFD subscriptions 27.05.2026 10
CVE-2026-48027 Compromised Nx Console version 18.95.0 28.05.2026 9.3
CVE-2026-49103 27.05.2026 9.4
CVE-2026-35087 Authentication Bypass in Slican telephone exchanges 27.05.2026 9.3
CVE-2026-35090 Authentication Bypass in Slican telephone exchanges 27.05.2026 9.3
CVE-2026-45898 RDMA/iwcm: Fix workqueue list corruption by removing work_list 30.05.2026 9.8
CVE-2026-45972 smb: client: fix potential UAF and double free in smb2_open_file() 30.05.2026 9.8
CVE-2026-45988 rxrpc: Fix re-decryption of RESPONSE packets 30.05.2026 9.8
CVE-2026-46039 rxgk: Fix potential integer overflow in length check 30.05.2026 9.8
CVE-2026-46043 RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv 30.05.2026 9.1
CVE-2026-7524 Path Traversal Vulnerability in File Processing Components Allows Unauthorized File System Access and Potential Remote Code Execution 28.05.2026 9.8
CVE-2026-8175 Multiple vulnerabilities in Aspera applications. 28.05.2026 9.8
CVE-2026-42727 WordPress Active Products Tables for WooCommerce plugin <= 1.0.8 - SQL Injection vulnerability 27.05.2026 9.3
CVE-2026-42731 WordPress miniorange otp verification plugin <= 5.4.9 - Privilege Escalation vulnerability 27.05.2026 9.8
CVE-2026-42740 WordPress Tainacan plugin <= 1.0.3 - SQL Injection vulnerability 27.05.2026 9.3
CVE-2026-42747 WordPress Easy Form Builder plugin <= 4.0.6 - SQL Injection vulnerability 27.05.2026 9.3
CVE-2026-42748 WordPress WPify Woo Czech plugin <= 5.4.1 - Arbitrary File Upload vulnerability 27.05.2026 9.9
CVE-2026-42755 WordPress TableOn plugin <= 1.0.5.1 - SQL Injection vulnerability 27.05.2026 9.3
CVE-2026-42756 WordPress QuickWebP – Compress / Optimize Images & Convert WebP | SEO Friendly plugin <= 3.2.7 - Arbitrary File Deletion vulnerability 27.05.2026 9.9
CVE-2026-42757 WordPress WebinarIgnition plugin < 4.08.253 - Arbitrary File Deletion vulnerability 27.05.2026 9.9
CVE-2026-42758 WordPress WebinarIgnition plugin < 4.08.253 - Privilege Escalation vulnerability 27.05.2026 9.8
CVE-2026-42761 WordPress Active Products Tables for WooCommerce plugin <= 1.0.9 - SQL Injection vulnerability 27.05.2026 9.3
CVE-2026-48906 Extension - tassos.gr - Arbitrary File Deletion in Novarain/Tassos Framework < 6.1.0 for Joomla 27.05.2026 9.3
CVE-2025-12686 27.05.2026 9.8
CVE-2026-49002 Broken Access Control Vulnerabily in ZTE ZXUniPOS NDS-LTE product 28.05.2026 9.1
CVE-2026-8054 Unauthenticated SQL Injection in dotCMS Publish Audit API 27.05.2026 10
CVE-2026-8760 Login with OTP <= 1.6 - Unauthenticated Authentication Bypass via OTP Brute Force 27.05.2026 9.8
CVE-2026-9312 Server-Side Request Forgery vulnerability in GitHub Enterprise Server allowed access to internal services via path traversal in upload endpoint 28.05.2026 9.2
CVE-2026-44895 GitLab MCP Server: SSE transport has no authentication and wildcard CORS, exposing all GitLab tools 27.05.2026 9.2
CVE-2026-44444 Lumiverse: Spindle extension install runs untrusted lifecycle scripts before security scan 27.05.2026 9.1
CVE-2026-44449 Lumiverse: SMB `exists()` basename injection via smbclient `!cmd` escape 27.05.2026 9.1
CVE-2026-44450 Lumiverse: RCE via MCP stdio argument injection 26.05.2026 9.9
CVE-2026-44451 Lumiverse: TSX component sandbox escape via DOM ref and string-split identifier bypass 27.05.2026 9.3
CVE-2026-9642 Delta Electronics DIAView Patch Bypass 26.05.2026 9.8
CVE-2026-3660 IBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to Authentication Bypass 28.05.2026 9.8
CVE-2026-44668 Faction: Unauthenticated Read, Modify, and Delete of Boilerplate Templates 27.05.2026 9.8
CVE-2026-46624 Twenty: SQL Injection via the timeZone field 26.05.2026 9.9
CVE-2026-47202 Kavita: Pre-Auth Account Takeover 27.05.2026 9.3
CVE-2026-7251 Eppendorf BioFlo 320 Use of hard-coded password 26.05.2026 9.3
CVE-2026-8633 IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by multiple vulnerabilities when using when using Web Server Plug-ins 27.05.2026 9.8
CVE-2026-2264 Server-Side Request Forgery and Credential Exfiltration in Google Cloud Apigee via SetIntegrationRequest Policy. 26.05.2026 9.2
CVE-2026-45721 Algernon: handler.lua discovery walks parent directories above the server root 26.05.2026 9
CVE-2026-45247 Mirasvit Cache Warmer for Magento < 1.11.12 PHP Object Injection 26.05.2026 9.3
CVE-2026-7374 Kubevirt: kubevirt virt-handler: privilege escalation and node compromise via symlink following vulnerability 28.05.2026 9.9
CVE-2026-9543 Totolink N300RH Web Management cstecgi.cgi setPasswordCfg os command injection 26.05.2026 9.3
CVE-2026-42773 WordPress eMagicOne Store Manager plugin <= 1.3.2 - SQL Injection vulnerability 26.05.2026 9.3
CVE-2026-42774 WordPress JetEngine plugin <= 3.8.8.1 - SQL Injection vulnerability 26.05.2026 9.3
CVE-2026-9477 Totolink A8000RU Web Management cstecgi.cgi setAccessDeviceCfg os command injection 26.05.2026 9.3
CVE-2026-9478 Totolink A8000RU Web Management cstecgi.cgi setParentalRules os command injection 27.05.2026 9.3
CVE-2026-9475 Totolink A8000RU Web Management cstecgi.cgi setIpQosRules os command injection 26.05.2026 9.3
CVE-2026-9476 Totolink A8000RU Web Management cstecgi.cgi setPasswordCfg os command injection 28.05.2026 9.3
CVE-2026-9058 Improper Certificate Verification in Szafir SDK 26.05.2026 9.3
CVE-2026-9457 Totolink A8000RU Web Management cstecgi.cgi UploadFirmwareFile os command injection 26.05.2026 9.3
CVE-2026-9458 Totolink A8000RU Web Management cstecgi.cgi setWanCfg os command injection 28.05.2026 9.3
CVE-2026-9454 Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCertGenerationCfg os command injection 28.05.2026 9.3
CVE-2026-9455 Totolink A8000RU Web Management cstecgi.cgi UploadOpenVpnCert os command injection 26.05.2026 9.3
CVE-2026-9456 Totolink A8000RU Web Management cstecgi.cgi setOpenVpnCfg os command injection 26.05.2026 9.3
CVE-2026-9435 Totolink A8000RU Web Management cstecgi.cgi setQosCfg os command injection 26.05.2026 9.3
CVE-2026-9436 Totolink A8000RU Web Management cstecgi.cgi setL2tpServerCfg os command injection 28.05.2026 9.3
CVE-2026-2651 Missing Authorization Validation in mlflow/mlflow 27.05.2026 9
CVE-2026-9432 Totolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injection 26.05.2026 9.3
CVE-2026-9433 Totolink A8000RU Web Management cstecgi.cgi setMacFilterRules os command injection 26.05.2026 9.3
CVE-2026-9434 Totolink A8000RU Web Management cstecgi.cgi setWiFiWpsCfg os command injection 28.05.2026 9.3
CVE-2026-9407 Totolink A8000RU Web Management cstecgi.cgi setFirewallType os command injection 26.05.2026 9.3
CVE-2026-9408 Totolink A8000RU Web Management cstecgi.cgi setStaticDhcpRules os command injection 26.05.2026 9.3
CVE-2026-9405 Totolink A8000RU Web Management cstecgi.cgi setGameSpeedCfg os command injection 26.05.2026 9.3
CVE-2026-9406 Totolink A8000RU Web Management cstecgi.cgi setRemoteCfg os command injection 27.05.2026 9.3
CVE-2026-9404 Totolink A8000RU Web Management cstecgi.cgi setDdnsCfg os command injection 29.05.2026 9.3
CVE-2026-9397 Besen BS20 EV Charging Station OTA Update Installation improper authorization 26.05.2026 9.2
CVE-2026-9388 Totolink A8000RU Web Management cstecgi.cgi setScheduleCfg os command injection 26.05.2026 9.3
CVE-2026-9386 Totolink A8000RU Web Management cstecgi.cgi setLanguageCfg os command injection 26.05.2026 9.3
CVE-2026-9387 Totolink A8000RU Web Management cstecgi.cgi setUpgradeFW os command injection 26.05.2026 9.3
CVE-2026-9384 Totolink A8000RU Web Management cstecgi.cgi setDiagnosisCfg os command injection 26.05.2026 9.3
CVE-2026-9385 Totolink A8000RU Web Management cstecgi.cgi setTracerouteCfg os command injection 27.05.2026 9.3
CVE-2018-25350 userSpice 4.3.24 Username Enumeration via existingUsernameCheck.php 26.05.2026 9.3
CVE-2018-25357 Dolibarr ERP CRM 7.0.3 Remote Code Execution via install/step1.php 26.05.2026 9.3

Latest Updates

CVE Title Updated Score
CVE-2026-10123 TRENDnet TEW-432BRP formSetDomainFilter stack-based overflow 30.05.2026
CVE-2026-10124 Shibby Tomato Zserv ripd rip_zebra_read_ipv4 stack-based overflow 30.05.2026
CVE-2026-8594 Text::LineFold versions through 2019.001 for Perl duplicate the output based on the number of special break characters 30.05.2026
CVE-2018-25405 eNdonesia Portal 8.7 SQL Injection via mod.php 30.05.2026
CVE-2018-25406 eNdonesia Portal 8.7 SQL Injection via mod.php 30.05.2026
CVE-2018-25407 eNdonesia Portal 8.7 SQL Injection via mod.php 30.05.2026
CVE-2018-25408 The Open ISES Project 3.30A Path Traversal Arbitrary File Download 30.05.2026
CVE-2018-25409 SIM-PKH 2.4.1 Arbitrary File Upload via aksi_pengurus.php 30.05.2026
CVE-2018-25410 SIM-PKH 2.4.1 SQL Injection via media.php id Parameter 30.05.2026
CVE-2018-25411 MGB OpenSource Guestbook 0.7.0.2 SQL Injection via email.php 30.05.2026
CVE-2018-25412 Delta Sql 1.8.2 Arbitrary File Upload via docs_upload.php 30.05.2026
CVE-2018-25413 AiOPMSD Final 1.0.0 SQL Injection via search.php 30.05.2026
CVE-2018-25414 AiOPMSD Final 1.0.0 SQL Injection via actor.php 30.05.2026
CVE-2018-25415 AiOPMSD Final 1.0.0 SQL Injection via director Parameter 30.05.2026
CVE-2018-25416 AiOPMSD Final 1.0.0 SQL Injection via country.php 30.05.2026
CVE-2018-25417 AiOPMSD Final 1.0.0 SQL Injection via quality.php 30.05.2026
CVE-2018-25418 AiOPMSD Final 1.0.0 SQL Injection via year.php 30.05.2026
CVE-2018-25419 AiOPMSD Final 1.0.0 SQL Injection via genre.php 30.05.2026
CVE-2018-25420 AiOPMSD Final 1.0.0 SQL Injection via watch.php 30.05.2026
CVE-2018-25421 Open STA Manager 2.3 Arbitrary File Download via Path Traversal 30.05.2026
CVE-2018-25422 MOGG web simulator Script All Version SQL Injection via play.php 30.05.2026
CVE-2018-25423 Arm Whois 3.11 Denial of Service via Buffer Overflow 30.05.2026
CVE-2018-25424 Gate Pass Management System 2.1 SQL Injection via login-exec.php 30.05.2026
CVE-2018-25425 Yot CMS 3.3.1 SQL Injection via aid and cid Parameters 30.05.2026
CVE-2018-25426 WinMTR 0.91 Denial of Service via Buffer Overflow 30.05.2026
CVE-2026-10121 TRENDnet TEW-432BRP formSetUrlFilter stack-based overflow 30.05.2026
CVE-2026-10122 TRENDnet TEW-432BRP formSetProtocolFilter stack-based overflow 30.05.2026
CVE-2026-10120 TRENDnet TEW-432BRP formSetFirewallRule stack-based overflow 30.05.2026
CVE-2026-10119 TRENDnet TEW-432BRP formSetMACFilter stack-based overflow 30.05.2026
CVE-2026-10117 Open5GS nghttp2-server.c ogs_pool_id_calloc denial of service 30.05.2026
CVE-2026-46242 eventpoll: fix ep_remove struct eventpoll / struct file UAF 30.05.2026
CVE-2026-10116 Open5GS ue-authentications Endpoint ogs-timer.c ogs_sbi_xact_add denial of service 30.05.2026
CVE-2026-10114 Open5GS Shared NF-profile nnrf-handler.c handle_scp_info out-of-bounds write 30.05.2026
CVE-2026-10115 Open5GS Shared NF-profile nnrf-handler.c denial of service 30.05.2026
CVE-2026-7459 Simple History – Track, Log, and Audit WordPress Changes <= 5.26.0 - Authenticated (Subscriber+) Account Takeover via Missing Authorization on Event Reaction Endpoint 30.05.2026 7.5
CVE-2026-7465 Spectra Gutenberg Blocks <= 2.19.25 - Authenticated (Contributor+) Remote Code Execution via Arbitrary PHP Function Call via Block Attributes 30.05.2026 8.8
CVE-2026-9757 GEO my WP <= 4.5.5 - Unauthenticated SQL Injection via 'swlatlng' / 'nelatlng' Parameters 30.05.2026 7.5
CVE-2026-10113 Open5GS Shared NF-profile nnrf-handler.c denial of service 30.05.2026
CVE-2026-10111 sambitraj STUDENT-MANAGEMENT-SYSTEM Login Page sql injection 30.05.2026
CVE-2026-10112 sambitraj STUDENT-MANAGEMENT-SYSTEM Dashboard cross site scripting 30.05.2026
CVE-2026-5071 can: Local Denial of Service via SocketCAN Send 30.05.2026 6.1
CVE-2026-10110 code-projects Student Details Management System index.php sql injection 30.05.2026
CVE-2026-48840 30.05.2026 5.3
CVE-2026-9831 ExtremeCloud IQ Cross Tenant Data Exposure via Extreme Platform One Authentication Race Condition 29.05.2026 6.3
CVE-2026-44285 FastGPT: SSRF Protection Bypass via `externalFile` in Dataset Preview API 29.05.2026 7.7
CVE-2026-44287 FastGPT: sandbox escape to RCE - code-sandbox regex /\bimport\s*\(/ is bypassable 29.05.2026 6.3
CVE-2026-44420 FreeRDP cliprdr server heap-buffer-overflow via undersized capabilitySetLength in CB_CLIP_CAPS 29.05.2026 8.8
CVE-2026-44421 FreeRDP RDPGFX CacheToSurface heap-buffer-overflow via clamped-rectangle validation bypass 29.05.2026 8.8
CVE-2026-44422 FreeRDP RDPEAR NDR ref-id aliasing causes client-side UAF/double-free and type confusion 29.05.2026 7.5
CVE-2026-44640 NanoMQ: QUIC Dialer Close Type Confusion 29.05.2026 4.5
CVE-2026-45149 brace-expansion: Large numeric range defeats documented `max` DoS protection 29.05.2026 6.5
CVE-2026-45151 NanoMQ: NULL Pointer Dereference 29.05.2026
CVE-2026-45294 FreeScout: User Account Enumeration via Password Reset Response Differentiation 29.05.2026 5.3
CVE-2026-45372 cpp-httplib: HTTP header value percent-decoding in server-side `parse_header` enables CRLF injection 29.05.2026 9.9
CVE-2026-45700 Heap-buffer-overflow write in planar bitmap decoder 29.05.2026
CVE-2026-46384 iskorotkov/avro: Integer Overflow in Avro Decoder 29.05.2026
CVE-2026-46385 iskorotkov/avro: CPU Exhaustion in Avro Decoder 29.05.2026
CVE-2026-46527 cpp-httplib: Malicious `X-Forwarded-For` Under Trusted-Proxy Configuration Triggers Empty `vector::front()`, Leading to Undefined Behavior and Server Crash 29.05.2026
CVE-2026-46599 Excessive resource consumption in PackBits decompression in golang.org/x/image/tiff 29.05.2026
CVE-2026-47123 FreeScout: Agent Impersonation via Missing HMAC Verification on Notification Reply Message-ID Path 29.05.2026 7.5
CVE-2026-48557 Spatie Laravel Media Library < 11.23.0 File Upload Restriction Bypass via FileAdder.php 29.05.2026
CVE-2026-48810 FreeScout: Thread Edit Authorization Bypass via Missing Mailbox Check 29.05.2026 4.3
CVE-2026-48811 FreeScout: Thread Deletion Bypasses Mailbox Access Revocation 29.05.2026 4.3
CVE-2026-34127 Stored Cross-Site Scripting (XSS) via Configuration File Import on TP-Link's TL-SG108PE 29.05.2026
CVE-2026-42500 Panic when reading out of bound palette index in golang.org/x/image/bmp 29.05.2026
CVE-2026-45324 Rizin: Double free in cmd_search.c 29.05.2026 3.3
CVE-2026-45352 cpp-httplib DoS: Negative chunk-size in chunked Transfer-Encoding 29.05.2026 5.3
CVE-2026-45613 Rizin: Heap-buffer-overflow in OMF parser 29.05.2026 3.3
CVE-2026-45697 Formie: Pre-authenticated server-side template injection in Hidden fields 29.05.2026 9.8
CVE-2026-47266 Formie: Unauthenticated front-end submission editing can overwrite existing submissions 29.05.2026
CVE-2026-48555 Spatie Laravel Media Library < 11.23.0 SSRF via addMediaFromUrl() 29.05.2026
CVE-2026-4387 Unencrypted storage of authentication state in StrongDM Desktop Application state.kv file 29.05.2026
CVE-2026-40425 MacGregor Voyage Data Recorder (VDR) G4e Files or Directories Accessible to External Parties 29.05.2026 5.7
CVE-2026-42929 MacGregor Voyage Data Recorder (VDR) G4e Use of Hard-coded Credentials 29.05.2026 8.3
CVE-2026-42941 MacGregor Voyage Data Recorder (VDR) G4e Use of Default Credentials 29.05.2026 8.3
CVE-2026-42951 MacGregor Voyage Data Recorder (VDR) G4e Insufficiently Protected Credentials 29.05.2026 5.4
CVE-2026-44518 liboqs: XMSS Buffer Overread Bug 29.05.2026 5.3
CVE-2026-44611 MacGregor Voyage Data Recorder (VDR) G4e Use of Password Hash With Insufficient Computational Effort 29.05.2026 5.4
CVE-2026-44648 SillyTavern: Existing sessions are not invalidated after password change, allowing session reuse and account takeover 29.05.2026 7.5
CVE-2026-44649 SillyTavern: Authentication Bypass via SSO Header Injection 29.05.2026 9.8
CVE-2026-44650 SillyTavern: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 29.05.2026 9.1
CVE-2026-44651 SillyTavern: Reflected XSS vulnerability in the CORS proxy middleware 29.05.2026
CVE-2026-44652 SillyTavern: SSRF vulnerability in the CORS proxy middleware 29.05.2026
CVE-2026-46344 liboqs: Heap-buffer-overflow in XMSS verification path via OID-controlled parameter mismatch (xmss_commons.c:194) 29.05.2026 5.3
CVE-2026-46372 SillyTavern: SSRF in SearXNG Search Proxy via Unvalidated baseUrl 29.05.2026 8.5
CVE-2026-47740 Shopper: Authorization bypass in multiple Livewire admin components 29.05.2026 8.1
CVE-2026-47741 Shopper: Race condition on Discount.usage_limit allows silent over-redemption 29.05.2026 5.9
CVE-2026-47742 Shopper: Missing authorization on Product admin Livewire sub-form components 29.05.2026 6.5
CVE-2026-47744 Shopper: Authorization bypass and RBAC privilege escalation in team settings 29.05.2026 9.9
CVE-2026-47745 Shopper: Missing per-action authorization on PaymentMethods, Currencies and Carriers admin tables 29.05.2026 6.5
CVE-2026-49366 30.05.2026 7.8
CVE-2026-49367 30.05.2026 8
CVE-2026-49368 29.05.2026 8.7
CVE-2026-49369 29.05.2026 4.3
CVE-2026-49370 29.05.2026 3.4
CVE-2026-49371 29.05.2026 7.1
CVE-2026-49372 29.05.2026 7.5
CVE-2026-49373 30.05.2026 7.1
CVE-2026-49374 29.05.2026 7.6
CVE-2026-49375 29.05.2026 6.1
CVE-2026-49376 29.05.2026 6.5
CVE-2026-49377 29.05.2026 4.3
CVE-2026-49378 29.05.2026 4.3
CVE-2026-49379 29.05.2026 6.5
CVE-2026-49380 29.05.2026 3.1
CVE-2026-49381 29.05.2026 3.4
CVE-2026-49382 29.05.2026 4.5
CVE-2026-49383 29.05.2026 3.3
CVE-2026-49384 29.05.2026 6.1
CVE-2026-49385 29.05.2026 6.5
CVE-2026-49386 29.05.2026 6.5
CVE-2026-9051 Authentication Bypass Vulnerability in NI SystemLink Enterprise 29.05.2026 9.1
CVE-2026-10107 MoviePilot v2 SSRF via /api/v1/system/img/{proxy} Endpoint 29.05.2026 7.7
CVE-2026-10108 xiaomusic 0.5.7 Path Traversal via GET /music endpoint 29.05.2026 7.5
CVE-2026-43917 Dokploy: Cross-Organization IDOR - Multiple tRPC endpoints missing activeOrganizationId validation 29.05.2026
CVE-2026-44697 Klever-Go MultiDataInterceptor: remote OOM via crafted compressed P2P payload 29.05.2026 8.6
CVE-2026-45577 Neotoma: Unauthenticated Inspector/API access via reverse-proxy loopback auth bypass 29.05.2026
CVE-2026-45625 Arcane: Missing admin authorization on git repository endpoints allows non-admin users to exfiltrate stored Git credentials and tamper with GitOps configs 29.05.2026 9.9
CVE-2026-45626 Arcane: OS Command Injection in Volume Browser ListDirectory via path query parameter 29.05.2026 6.3
CVE-2026-45627 Arcane: Unauthenticated reflected XSS via SVG color parameter in /api/app-images/logo enables admin account takeover 29.05.2026 8.2
CVE-2026-45629 Dokploy: Authenticated Remote Code Execution via Command Injection in /listen-deployment WebSocket Endpoint 29.05.2026 9.9
CVE-2026-45660 Statamic: Server-Side Request Forgery via Glide 29.05.2026 5.4
CVE-2026-45668 Trilium Notes : Note Import to RCE via #docName Path Traversal (Safe Import Enabled) 29.05.2026
CVE-2026-47125 Arcane: Missing admin authorization on global variables endpoint 29.05.2026 8.8
CVE-2026-47179 Arcane: Authenticated Arbitrary Host File Read via Docker Compose Include Directives in Arcane 29.05.2026 7.7
CVE-2026-5768 Fourth Frontier Frontier X Mobile Application, Frontier X2 Missing Authentication for Critical Function 29.05.2026 8.8
CVE-2026-6824 CP Plus 8 Ch. Network Video Recorder Cross-site Scripting 29.05.2026 8.4
CVE-2026-7786 Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter Use of Hard-coded Credentials 29.05.2026 9.8