CVE Field Guide

Critical CVEs

CVE Title Updated Score
CVE-2026-29014 MetInfo CMS Unauthenticated PHP Code Injection RCE 01.04.2026 9.3
CVE-2026-4370 Improper TLS Client/Server authentication and certificate verification on Database Cluster 01.04.2026 10
CVE-2025-71279 XenForo Passkey Security Bypass 01.04.2026 9.3
CVE-2026-34448 SiYuan: Stored XSS in Attribute View gallery/kanban cover rendering allows arbitrary command execution in the desktop client 31.03.2026 9.1
CVE-2026-34449 SiYuan: Cross-Origin RCE via Permissive CORS Policy and JavaScript Snippet Injection 31.03.2026 9.7
CVE-2026-34406 APTRS: Privilege Escalation via Mass Assignment of is_superuser in User Edit Endpoint 31.03.2026 9.4
CVE-2026-1579 PX4 Autopilot Missing authentication for critical function 31.03.2026 9.3
CVE-2026-3356 Missing Authentication for Critical Function vulnerability in Anritsu Remote Spectrum Monitor 01.04.2026 9.3
CVE-2026-34361 HAPI FHIR: Unauthenticated SSRF via /loadIG Chains with startsWith() Credential Leak for Authentication Token Theft 31.03.2026 9.3
CVE-2026-34243 wenxian: Command Injection in GitHub Actions Workflow via `issue_comment.body` 31.03.2026 9.8
CVE-2026-34220 MikroORM is vulnerable to SQL Injection via specially crafted object 31.03.2026 9.3
CVE-2026-0596 Command Injection in mlflow/mlflow 01.04.2026 9.6
CVE-2026-34532 Parse Server: Cloud function validator bypass via prototype chain traversal 31.03.2026 9.1
CVE-2026-34162 FastGPT: Unauthenticated SSRF via httpTools Endpoint Leads to Internal API Key Theft 31.03.2026 10
CVE-2026-34202 Zebra node crash — V5 transaction hash panic (P2P reachable) 31.03.2026 9.2
CVE-2026-34156 NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node 31.03.2026 10
CVE-2026-32916 OpenClaw 2026.3.7 < 2026.3.11 - Authorization Bypass in Plugin Subagent Routes via Synthetic Admin Scopes 31.03.2026 9.2
CVE-2026-32917 OpenClaw < 2026.3.13 - Remote Command Injection via Unsanitized iMessage Attachment Paths in SCP 31.03.2026 9.2
CVE-2026-4317 SQL inyection in Umami Software application 31.03.2026 9.3
CVE-2026-3106 Multiple vulnerabilities in Teampass 31.03.2026 9.3
CVE-2026-3107 Multiple vulnerabilities in Teampass 31.03.2026 9.3
CVE-2026-32714 SciTokens vulnerable to SQL Injection in KeyCache 31.03.2026 9.8
CVE-2026-3300 Everest Forms Pro <= 1.9.12 - Unauthenticated Remote Code Execution via Calculation Field 31.03.2026 9.8
CVE-2026-21861 baserCMS: OS Command Injection Leading to Remote Code Execution (RCE) 31.03.2026 9.1
CVE-2026-30877 baserCMS: OS Command Injection in the baserCMS Update Functionality 31.03.2026 9.1
CVE-2026-30880 baserCMS: OS command injection vulnerability in installer 31.03.2026 9.2
CVE-2026-4257 Contact Form by Supsystic <= 1.7.36 - Unauthenticated Server-Side Template Injection via Prefill Functionality 31.03.2026 9.8
CVE-2026-31946 OpenOLAT: Authentication bypass via forged JWT in OIDC implicit flow 31.03.2026 9.8
CVE-2026-34557 CI4MS: Permissions Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS 31.03.2026 9.1
CVE-2026-34558 CI4MS: Methods Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS 31.03.2026 9.1
CVE-2026-33026 nginx-ui Backup Restore Allows Tampering with Encrypted Backups 31.03.2026 9.4
CVE-2026-34714 31.03.2026 9.2
CVE-2026-33032 Nginx UI: Unauthenticated MCP Endpoint Allows Remote Nginx Takeover 30.03.2026 9.8
CVE-2026-4415 GIGABYTE|Gigabyte Control Center - Arbitrary File Write 31.03.2026 9.2
CVE-2025-15379 Command Injection in mlflow/mlflow 31.03.2026 10
CVE-2025-15036 Path Traversal Vulnerability in mlflow/mlflow 31.03.2026 9.6
CVE-2026-32915 OpenClaw < 2026.3.11 - Sandbox Boundary Bypass via Subagent Control Surface 30.03.2026 9.3
CVE-2026-32918 OpenClaw < 2026.3.11 - Session Sandbox Escape via session_status Tool 30.03.2026 9.2
CVE-2026-32922 OpenClaw < 2026.3.11 - Privilege Escalation via Unvalidated Scope in device.token.rotate 30.03.2026 9.4
CVE-2026-32978 OpenClaw < 2026.3.11 - Approval Bypass via Unrecognized Script Runners 30.03.2026 9.4
CVE-2026-32987 OpenClaw < 2026.3.13 - Bootstrap Setup Code Replay via Device Pairing 30.03.2026 9.3
CVE-2016-20049 JAD 1.5.8e-1kali1 Stack-Based Buffer Overflow Remote Code Execution 30.03.2026 9.3
CVE-2017-20225 TiEmu 2.08 Stack-Based Buffer Overflow Vulnerability 30.03.2026 9.3
CVE-2017-20227 JAD 1.5.8e-1kali1 Stack-Based Buffer Overflow 01.04.2026 9.3
CVE-2017-20229 MAWK 1.3.3-17 Stack-Based Buffer Overflow 30.03.2026 9.3
CVE-2018-25220 Bochs 2.6-5 Buffer Overflow Remote Code Execution 30.03.2026 9.3
CVE-2018-25221 EChat Server 3.1 Buffer Overflow via chat.ghp username Parameter 30.03.2026 9.3
CVE-2018-25223 Crashmail 1.6 Stack-based Buffer Overflow Remote Code Execution 01.04.2026 9.3
CVE-2026-33992 pyLoad: Server-Side Request Forgery via Download Link Submission Enables Cloud Metadata Exfiltration 30.03.2026 9.3
CVE-2026-33976 Notesnook vulnerable to RCE via stored XSS in Web Clipper rendering 01.04.2026 9.7
CVE-2026-33937 Handlebars.js has JavaScript Injection via AST Type Confusion 01.04.2026 9.8
CVE-2026-33875 Authenticator Vulnerable to Authentication Flow Hijack 30.03.2026 9.3
CVE-2026-33873 Langflow has Authenticated Code Execution in Agentic Assistant Validation 01.04.2026 9.3
CVE-2026-34205 Home Assistant: Unauthenticated App (Add-on) Endpoints Exposed to Local Network via Host Network Mode 01.04.2026 9.7
CVE-2026-34374 AVideo has SQL Injection in Live_schedule::keyExists() via Unparameterized Stream Key 27.03.2026 9.1
CVE-2026-33867 AVideo has Plaintext Video Password Storage 27.03.2026 9.1
CVE-2026-27876 RCE on Grafana via sqlExpressions 28.03.2026 9.1
CVE-2026-1496 Coverity CLI Authentication Bypass 27.03.2026 9.3
CVE-2026-33757 OpenBao lacks user confirmation for OIDC direct callback mode 01.04.2026 9.6
CVE-2026-33758 OpenBao has Reflected XSS in its OIDC authentication error message 27.03.2026 9.4
CVE-2026-22738 SpEL Injection via Unescaped Filter Key in SimpleVectorStore Leads to Remote Code Execution 28.03.2026 9.8
CVE-2026-33701 OpenTelemetry: Unsafe Deserialization in RMI Instrumentation may Lead to Remote Code Execution 27.03.2026 9.3
CVE-2026-33728 dd-trace-java: Unsafe deserialization in RMI instrumentation may lead to remote code execution 27.03.2026 9.3
CVE-2026-33945 Abitrary file write through systemd-creds option 27.03.2026 10
CVE-2026-33897 Incus vulnerable to arbitrary file read and write through pongo templates 27.03.2026 10
CVE-2026-33669 SiYuan has Arbitrary Document Reading within the Publishing Service 27.03.2026 9.8
CVE-2026-33670 SiYuan has directory traversal within its publishing service 30.03.2026 9.8
CVE-2026-33640 Outline has a rate limit bypass that allows brute force of email login OTP 01.04.2026 9.1
CVE-2026-33152 Tandoor Recipes Vulnerable to Unrestricted Brute-Force via BasicAuthentication 26.03.2026 9.1
CVE-2026-33494 Ory Oathkeeper has a path traversal authorization bypass 27.03.2026 10
CVE-2026-33396 OneUptime has sandbox escape in Synthetic Monitor Playwright runtime allows project members to execute arbitrary commands on Probe 26.03.2026 10
CVE-2026-4809 Unsafe Client MIME Type Handling Can Enable Arbitrary File Upload in plank/laravel-mediable 26.03.2026 9.3
CVE-2026-4484 Masteriyo LMS <= 2.1.6 - Missing Authorization to Authenticated (Student+) Privilege Escalation to Administrator 26.03.2026 9.8
CVE-2026-33526 Squid vulnerable to Denial of Service in ICP Request handling 26.03.2026 9.2

Latest Updates

CVE Title Updated Score
CVE-2025-67807 01.04.2026
CVE-2026-31027 01.04.2026
CVE-2026-34510 OpenClaw < 2026.3.22 - Remote File URL Acceptance in Windows Media Loaders 01.04.2026
CVE-2026-35099 01.04.2026 7.4
CVE-2025-67805 01.04.2026 5.9
CVE-2025-67806 01.04.2026 3.7
CVE-2026-4828 01.04.2026
CVE-2026-4829 01.04.2026
CVE-2026-4924 01.04.2026
CVE-2026-4925 01.04.2026
CVE-2026-4927 01.04.2026
CVE-2026-4989 01.04.2026
CVE-2026-5175 01.04.2026
CVE-2025-13535 King Addons for Elementor <= 51.1.38 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Multiple Widgets 01.04.2026 6.4
CVE-2026-29598 01.04.2026
CVE-2026-30291 01.04.2026
CVE-2026-30292 01.04.2026
CVE-2026-30523 01.04.2026
CVE-2026-30526 01.04.2026
CVE-2026-30573 01.04.2026
CVE-2026-30287 01.04.2026
CVE-2026-30289 01.04.2026
CVE-2026-30522 01.04.2026
CVE-2026-34430 ByteDance DeerFlow LocalSandboxProvider Host Bash Escape 01.04.2026
CVE-2026-34999 OpenViking 0.2.5 < 0.2.14 Bot Proxy Endpoints Allow Unauthenticated Access 01.04.2026
CVE-2026-35093 Libinput: libinput: unauthorized code execution and information disclosure through lua bytecode plugins 01.04.2026
CVE-2026-35094 Libinput: libinput: information disclosure via dangling pointer in lua plugin handling 01.04.2026
CVE-2026-5271 Possible to hijack modules in current working directory 01.04.2026
CVE-2026-0522 Local File Inclusion in the File Upload/Download Process 01.04.2026
CVE-2026-35091 Corosync: corosync: denial of service and information disclosure via crafted udp packet 01.04.2026
CVE-2026-35092 Corosync: corosync: denial of service via integer overflow in join message validation 01.04.2026
CVE-2026-3877 Reflected Cross-Site Scripting in Dashboard Search 01.04.2026
CVE-2026-22767 01.04.2026 7.3
CVE-2026-22768 01.04.2026 7.3
CVE-2026-29014 MetInfo CMS Unauthenticated PHP Code Injection RCE 01.04.2026
CVE-2026-25601 Credential Exposure vulnerability in MEPIS RM 01.04.2026 6.4
CVE-2026-0932 01.04.2026
CVE-2026-24096 Insufficient permission validation on multiple REST API Quick Setup endpoints 01.04.2026
CVE-2024-53828 Ericsson Packet Core Controller (PCC) - Improper Handling of Syntactically Invalid Structure Vulnerability 01.04.2026 5.3
CVE-2026-1879 Harvard University IQSS Dataverse Theme Customization ThemeAndWidgets.xhtml unrestricted upload 01.04.2026
CVE-2026-21629 Joomla! Core - [20260301] - ACL hardening in com_ajax 01.04.2026
CVE-2026-21630 Joomla! Core - [20260302] - SQL injection in com_content articles webservice endpoint 01.04.2026
CVE-2026-21631 Joomla! Core - [20260303] - XSS vector in com_associations comparison view 01.04.2026
CVE-2026-21632 Joomla! Core - [20260304] - XSS vectors in various article title outputs 01.04.2026
CVE-2026-23898 Joomla! Core - [20260305] - Arbitrary file deletion in com_joomlaupdate 01.04.2026
CVE-2026-23899 Joomla! Core - [20260306] - Improper access check in webservice endpoints 01.04.2026
CVE-2026-23401 KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE 01.04.2026
CVE-2026-23402 KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE 01.04.2026
CVE-2026-23403 apparmor: fix memory leak in verify_header 01.04.2026
CVE-2026-23404 apparmor: replace recursive profile removal with iterative approach 01.04.2026
CVE-2026-23405 apparmor: fix: limit the number of levels of policy namespaces 01.04.2026
CVE-2026-23406 apparmor: fix side-effect bug in match_char() macro usage 01.04.2026
CVE-2026-23407 apparmor: fix missing bounds check on DEFAULT table in verify_dfa() 01.04.2026
CVE-2026-23408 apparmor: Fix double free of ns_name in aa_replace_profiles() 01.04.2026
CVE-2026-23409 apparmor: fix differential encoding verification 01.04.2026
CVE-2026-23410 apparmor: fix race on rawdata dereference 01.04.2026
CVE-2026-23411 apparmor: fix race between freeing data and fs accessing it 01.04.2026
CVE-2026-34889 WordPress Ultimate Addons for WPBakery Page Builder plugin < 3.21.4 - Cross Site Scripting (XSS) vulnerability 01.04.2026 6.5
CVE-2026-4370 Improper TLS Client/Server authentication and certificate verification on Database Cluster 01.04.2026 10
CVE-2026-5261 Shandong Hoteam InforCenter PLM BaseHandler.ashx uploadFileToIIS unrestricted upload 01.04.2026
CVE-2026-27101 01.04.2026 4.7
CVE-2026-28265 01.04.2026 4.4
CVE-2026-5259 AutohomeCorp frostmourne Alarm Preview AlarmController.java server-side request forgery 01.04.2026
CVE-2026-4748 pf silently ignores certain rules 01.04.2026
CVE-2026-5258 Sanster IOPaint File Manager file_manager.py _get_file path traversal 01.04.2026
CVE-2025-15484 Order Notification for WooCommerce < 3.6.3 - Unauthenticated WooCommerce REST Permission Bypass 01.04.2026
CVE-2026-2696 Export All URLs < 5.1 - Unauthenticated Sensitive Data Exposure 01.04.2026
CVE-2026-5256 code-projects Simple Laundry System Parameter modify.php sql injection 01.04.2026
CVE-2026-5257 code-projects Simple Laundry System Parameter delstaffinfo.php sql injection 01.04.2026
CVE-2026-5255 code-projects Simple Laundry System Parameter delstaffinfo.php cross site scripting 01.04.2026
CVE-2026-5254 welovemedia FFmate Webhook AppJsonTreeView.vue cross site scripting 01.04.2026
CVE-2026-5272 01.04.2026
CVE-2026-5273 01.04.2026
CVE-2026-5274 01.04.2026
CVE-2026-5275 01.04.2026
CVE-2026-5276 01.04.2026
CVE-2026-5277 01.04.2026
CVE-2026-5278 01.04.2026
CVE-2026-5279 01.04.2026
CVE-2026-5280 01.04.2026
CVE-2026-5281 01.04.2026
CVE-2026-5282 01.04.2026
CVE-2026-5283 01.04.2026
CVE-2026-5284 01.04.2026
CVE-2026-5285 01.04.2026
CVE-2026-5286 01.04.2026
CVE-2026-5287 01.04.2026
CVE-2026-5288 01.04.2026
CVE-2026-5289 01.04.2026
CVE-2026-5290 01.04.2026
CVE-2026-5291 01.04.2026
CVE-2026-5292 01.04.2026
CVE-2026-5252 z-9527 admin Message Create Endpoint message.js cross site scripting 01.04.2026
CVE-2026-5253 bufanyun HotGo editNotice Endpoint MessageList.vue cross site scripting 01.04.2026
CVE-2026-5251 z-9527 admin User Update Endpoint user.js dynamically-determined object attributes 01.04.2026
CVE-2026-3774 Self-Modifications Affecting Altered Printing and Redaction in Foxit PDF Editor 01.04.2026 4.7
CVE-2026-3775 Foxit PDF Editor/Reader Update Service Uncontrolled Search Path Element Local Privilege Escalation Vulnerability 01.04.2026 7.8
CVE-2026-3776 Null pointer dereference in Foxit PDF Editor/Reader when accessing stamp annotation 01.04.2026 5.5
CVE-2026-3777 Use after free of view cache in Foxit PDF Editor/Reader 01.04.2026 5.5
CVE-2026-3778 Stack exhaustion caused by cyclic references in Foxit PDF Editor/Reader 01.04.2026 6.2
CVE-2026-3779 Foxit PDF Editor/Reader List Box Calculate Array Use-After-Free Vulnerability 01.04.2026 7.8
CVE-2026-3780 Foxit PDF Editor/Reader Installer Uncontrolled Search Path Privilege Escalation 01.04.2026 7.3
CVE-2026-3831 Database for Contact Form 7, WPforms, Elementor forms <= 1.4.9 - Missing Authorization to Authenticated (Contributor+) Sensitive Information Exposure via Shortcode 01.04.2026 4.3
CVE-2026-4374 Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Routing Service,Observability Collector,Recording Service,Queueing Service,Cloud Discovery Service) allows Serialized Data External Linking, Data Serializat... 01.04.2026
CVE-2026-4947 Insecure Direct Object Reference (IDOR) Leading to Signature Forgery in Foxit eSign 01.04.2026 7.1
CVE-2026-5249 gougucms Record Endpoint record.html cross site scripting 01.04.2026
CVE-2024-58342 XenForo Open Redirect via getDynamicRedirect 01.04.2026
CVE-2025-13855 IBM Storage Protect Server is affected by a vulnerability that could allow authenticated users to access administrative metadata through the JSON-RPC endpoint . 01.04.2026 7.6
CVE-2025-71278 XenForo OAuth2 Unauthorized Scope Request 01.04.2026
CVE-2025-71279 XenForo Passkey Security Bypass 01.04.2026
CVE-2025-71280 XenForo Local Account Page Caching Information Disclosure 01.04.2026
CVE-2025-71281 XenForo Template Method Call Restriction Bypass 01.04.2026
CVE-2025-71282 XenForo Path Disclosure via open_basedir Exceptions 01.04.2026
CVE-2026-2394 Buffer Over-read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers. 01.04.2026
CVE-2026-35054 XenForo Stored Cross-Site Scripting via BB Code Rendering 01.04.2026
CVE-2026-35055 XenForo Cross-Site Scripting via Lightbox in Posts 01.04.2026
CVE-2026-35056 XenForo Remote Code Execution via Authenticated Admin 01.04.2026
CVE-2026-35057 XenForo Stored Cross-Site Scripting via Structured Text Mentions 01.04.2026
CVE-2026-5248 gougucms User Registration Login.php reg_submit dynamically-determined object attributes 01.04.2026
CVE-2026-5238 itsourcecode Payroll Management System Parameter view_employee.php sql injection 31.03.2026
CVE-2026-5240 code-projects BloodBank Managing System admin_state.php cross site scripting 31.03.2026
CVE-2026-4668 Amelia <= 2.1.2 - Authenticated (Manager+) SQL Injection via 'sort' Parameter 01.04.2026 6.5
CVE-2026-5236 Axiomatic Bento4 DSI v1 Ap4Dac4Atom.cpp SkipBits heap-based overflow 31.03.2026
CVE-2026-5237 itsourcecode Payroll Management System Parameter manage_user.php sql injection 01.04.2026
CVE-2026-2480 WP Shortcodes Plugin — Shortcodes Ultimate <= 7.4.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'max_width' Shortcode Attribute 31.03.2026 6.4
CVE-2026-34555 iccDEV: SBO in CIccTagFixedNum::GetValues() 01.04.2026 6.2
CVE-2026-34556 iccDEV: HBO in icAnsiToUtf8() 31.03.2026 6.2
CVE-2026-34546 iccDEV: UB at TiffImg.h 31.03.2026 6.2
CVE-2026-34547 iccDEV: UB at IccUtil.cpp 01.04.2026 6.2
CVE-2026-34548 iccDEV: UB at IccUtilXml.cpp 31.03.2026 6.2
CVE-2026-34549 iccDEV: UB at IccUtil.cpp 31.03.2026 6.2
CVE-2026-34550 iccDEV: UB at IccIO.cpp 31.03.2026 6.2
CVE-2026-34551 iccDEV: NPD in CIccTagLut16::Write() 01.04.2026 6.2
CVE-2026-34552 iccDEV: UB at IccTagLut.cpp 31.03.2026 6.2
CVE-2026-34553 iccDEV: DoS in CIccCLUT::Iterate() & CIccMBB::Describe() 31.03.2026 4
CVE-2026-34554 iccDEV: HBO in CIccApplyCmmSearch::costFunc() 31.03.2026 6.2
CVE-2026-5235 Axiomatic Bento4 MP4 File Ap4Dac4Atom.cpp ReadCache heap-based overflow 01.04.2026
CVE-2026-34533 iccDEV: UB in CIccCalculatorFunc::ApplySequence() 31.03.2026 6.2
CVE-2026-34534 iccDEV: HBO in CIccMpeSpectralMatrix::Describe() 31.03.2026 6.2
CVE-2026-34535 iccDEV: SEGV in CIccTagArray::Cleanup() 01.04.2026 6.2
CVE-2026-34536 iccDEV: SO in SIccCalcOp::ArgsUsed() 31.03.2026 6.2
CVE-2026-34537 iccDEV: UB in CIccOpDefEnvVar::Exec() 31.03.2026 6.2
CVE-2026-34539 iccDEV: HBO in CTiffImg::WriteLine() 31.03.2026 6.2
CVE-2026-34540 iccDEV: HBO in icMemDump() 01.04.2026 6.2
CVE-2026-34541 iccDEV: UB in CIccCombinedConnectionConditions::CIccCombinedConnectionConditions() 31.03.2026 6.2
CVE-2026-34542 iccDEV: SBO in CIccCalculatorFunc::Apply() 31.03.2026 6.2
CVE-2026-34448 SiYuan: Stored XSS in Attribute View gallery/kanban cover rendering allows arbitrary command execution in the desktop client 31.03.2026 9.1
CVE-2026-34449 SiYuan: Cross-Origin RCE via Permissive CORS Policy and JavaScript Snippet Injection 31.03.2026 9.7
CVE-2026-34450 Claude SDK for Python: Insecure Default File Permissions in Local Filesystem Memory Tool 01.04.2026
CVE-2026-34451 Claude SDK for TypeScript: Memory Tool Path Validation Allows Sandbox Escape to Sibling Directories 31.03.2026
CVE-2026-34452 Claude SDK for Python: Memory Tool Path Validation Race Condition Allows Sandbox Escape 31.03.2026
CVE-2026-34453 SiYuan: Broken access control in /api/bookmark/getBookmark allows unauthenticated publish visitors to read password-protected bookmarked content 31.03.2026 7.5
CVE-2026-34585 SiYuan: Stored XSS in imported .sy.zip content leads to arbitrary command execution 01.04.2026 8.6
CVE-2026-34605 SiYuan: Reflected XSS via SVG namespace prefix bypass in SanitizeSVG ( getDynamicIcon, unauthenticated ) 31.03.2026
CVE-2026-34404 Nuxt OG Image vulnerable to DoS via image generation 01.04.2026
CVE-2026-34405 Nuxt OG Image vulnerable to reflected XSS via query parameter injection into HTML attributes 31.03.2026 6.1
CVE-2026-34406 APTRS: Privilege Escalation via Mass Assignment of is_superuser in User Edit Endpoint 31.03.2026
CVE-2026-34441 cpp-httplib: HTTP Request Smuggling via Unconsumed GET Request Body 31.03.2026 4.8
CVE-2026-34442 FreeScout: Host Header Injection Leading to External Resource Loading and Open Redirect in FreeScout 01.04.2026 5.4
CVE-2026-34443 FreeScout: SSRF protection bypass via broken CIDR check in checkIpByMask() 31.03.2026
CVE-2026-34400 alerta-server has potential SQL Injection vulnerability in Query String Syntax (q=) API 31.03.2026
CVE-2026-34401 XML Notepad: XML External Entity (XXE) Injection via Unsafe XmlTextReader in XML Diff and Schema Loading 31.03.2026 6.5
CVE-2026-5214 D-Link DNS-1550-04 account_mgr.cgi cgi_addgroup_get_group_quota_minsize stack-based overflow 31.03.2026
CVE-2026-5215 D-Link DNS-1550-04 network_mgr.cgi cgi_get_ipv6 access control 31.03.2026
CVE-2026-34396 AVideo: Stored XSS via Unescaped Plugin Configuration Values in Admin Panel 31.03.2026 6.1
CVE-2026-34611 AVideo: CSRF on emailAllUsers.json.php Enables Mass Phishing Email to All Users 01.04.2026 6.5
CVE-2026-34613 AVideo: CSRF on Plugin Enable/Disable Endpoint Allows Disabling Security Plugins 31.03.2026 6.5
CVE-2026-34716 AVideo: DOM XSS via Unsanitized Display Name in WebSocket Call Notification 31.03.2026 6.4
CVE-2026-34731 AVideo: Unauthenticated Live Stream Termination via RTMP Callback on_publish_done.php 31.03.2026 7.5
CVE-2026-34732 AVideo: Missing Authentication in CreatePlugin list.json.php Template Affects 21 Endpoints 01.04.2026 5.3
CVE-2026-34733 AVideo: Unauthenticated File Deletion via PHP Operator Precedence Bug in CLI Guard 31.03.2026 6.5
CVE-2026-34737 AVideo: Arbitrary Stripe Subscription Cancellation via Debug Endpoint and retrieveSubscriptions() Bug 31.03.2026 6.5
CVE-2026-34738 AVideo: Video Publishing Workflow Bypass via Unauthorized overrideStatus Request Parameter 31.03.2026 4.3
CVE-2026-34739 AVideo: Reflected XSS via Unescaped ip Parameter in User_Location testIP.php 01.04.2026 6.1
CVE-2026-34740 AVideo: Stored SSRF via Video EPG Link Missing isSSRFSafeURL() Validation 31.03.2026 6.5
CVE-2026-34381 Admidio: Unauthenticated Access to Role-Restricted documents via neutralized .htaccess 01.04.2026 7.5
CVE-2026-34382 Admidio: Missing CSRF Protection on Custom List Deletion in mylist_function.php 31.03.2026 4.6
CVE-2026-34383 Admidio: CSRF and Form Validation Bypass in Inventory Item Save via `imported` Parameter 31.03.2026 4.3
CVE-2026-34384 Admidio: Missing CSRF Protection on Registration Approval Actions 31.03.2026 4.5
CVE-2026-34394 AVideo: CSRF on Admin Plugin Configuration Enables Payment Credential Hijacking 01.04.2026 8.1
CVE-2026-34395 AVideo: Mass User PII Disclosure via Missing Authorization in YPTWallet users.json.php 31.03.2026 6.5
CVE-2026-34586 PdfDing: Shared PDF Expiration, Max Views, and Deletion Bypass via Serve/Download Endpoints 31.03.2026 6.5
CVE-2026-1579 PX4 Autopilot Missing authentication for critical function 31.03.2026
CVE-2026-34366 InvoiceShelf: SSRF in Payment Receipt PDF Rendering via Unsanitised HTML in Notes Field 31.03.2026 7.6
CVE-2026-34367 InvoiceShelf: SSRF in Invoice PDF Rendering via Unsanitised HTML in Notes Field 31.03.2026 7.6
CVE-2026-34372 Sulu checks fix permissions for subentities endpoints 31.03.2026
CVE-2026-3468 31.03.2026
CVE-2026-3469 31.03.2026
CVE-2026-3470 31.03.2026
CVE-2026-5212 D-Link DNS-1550-04 webdav_mgr.cgi Webdav_Upload_File stack-based overflow 31.03.2026
CVE-2026-5213 D-Link DNS-1550-04 account_mgr.cgi cgi_adduser_to_session stack-based overflow 01.04.2026
CVE-2026-34365 InvoiceShelf: SSRF in Estimate PDF Rendering via Unsanitised HTML in Notes Field 01.04.2026 7.6
CVE-2026-30290 31.03.2026
CVE-2026-34203 Nautobot: Management of users via REST API does not apply configured password validators 31.03.2026 2.7
CVE-2026-34204 MinIO is Vulnerable to SSE Metadata Injection via Replication Headers 01.04.2026
CVE-2026-34206 Captcha Protect: Reflected XSS in challenge page via unsanitized destination rendered with text/template 31.03.2026 6.1
CVE-2026-34215 Parse Server: Auth data exposed via verify password endpoint 31.03.2026
CVE-2026-34784 Parse Server: Streaming file download bypasses afterFind file trigger authorization 31.03.2026
CVE-2026-4800 lodash vulnerable to Code Injection via `_.template` imports key names 31.03.2026 8.1
CVE-2026-5211 D-Link DNS-1550-04 app_mgr.cgi UPnP_AV_Server_Path_Del stack-based overflow 01.04.2026
CVE-2026-2950 lodash vulnerable to Prototype Pollution via array path bypass in `_.unset` and `_.omit` 01.04.2026 6.5
CVE-2026-30280 01.04.2026
CVE-2026-30285 31.03.2026
CVE-2026-3356 Missing Authentication for Critical Function vulnerability in Anritsu Remote Spectrum Monitor 01.04.2026
CVE-2026-5209 SourceCodester Leave Application System User Management cross site scripting 31.03.2026
CVE-2026-5210 SourceCodester Leave Application System file inclusion 31.03.2026