Critical vulnerabilities, curated daily for security professionals
🎯 SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
📊
Today's Security Brief
Saturday's security landscape reveals 22 critical vulnerabilities, a 24% decrease from Friday's 29 critical disclosures. High-priority vulnerabilities held steady at 100 issues requiring attention. Five actively exploited vulnerabilities demand immediate focus, including CVE-2025-14847 affecting MongoDB, CVE-2026-20805 targeting Microsoft Windows, and CVE-2025-37164 impacting HPE OneView. Canon printer firmware vulnerabilities dominate today's critical disclosures with multiple buffer overflow issues (CVE-2025-14231, CVE-2025-14232, CVE-2025-14234, CVE-2025-14235, CVE-2025-14236, CVE-2025-14237) affecting Small Office Multifunction Printers. Current patch availability stands at 0%, requiring organizations to implement compensating controls until vendor remediation becomes available.
22 critical vulnerabilities disclosed, down 24% from prior day's 29
100 high-priority vulnerabilities, unchanged from previous day
5 actively exploited CVEs affecting MongoDB, Microsoft Windows, HPE OneView, and Gogs
0% patch availability requires compensating controls and enhanced monitoring
Immediate action: Organizations using MongoDB, Microsoft Windows, HPE OneView, Gogs, or Canon multifunction printers should prioritize threat hunting and implement network segmentation for affected systems. With no patches currently available, deploy compensating controls including enhanced logging, access restrictions, and intrusion detection signatures for the actively exploited vulnerabilities.
💡 Tip: Swipe CVE cards left to ⭐ star, right to ❌ remove
Section Navigation
⚠️
CISA Known Exploited Vulnerabilities
⚠️ CISA KEVURGENT
CVE-2025-14847
9.5
MongoDBMongoDB and MongoDB Server
⏰ Federal Deadline:January 18, 2026(2 days remaining)
MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
→
CRSSelect profile
⚠️ CISA KEV
CVE-2009-0556
9.5
MicrosoftOffice
⏰ Federal Deadline:January 27, 2026(11 days remaining)
Microsoft Office PowerPoint Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
→
CRSSelect profile
⚠️ CISA KEV
CVE-2025-37164
9.5📝
Hewlett Packard Enterprise (HPE)OneView
⏰ Federal Deadline:January 27, 2026(11 days remaining)
Hewlett Packard Enterprise (HPE) OneView Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
→
CRSSelect profile
⚠️ CISA KEV
CVE-2025-8110
9.5
GogsGogs
⏰ Federal Deadline:February 1, 2026(16 days remaining)
Gogs Path Traversal Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
→
CRSSelect profile
⚠️ CISA KEV
CVE-2026-20805
9.5
MicrosoftWindows
⏰ Federal Deadline:February 2, 2026(17 days remaining)
Microsoft Windows Information Disclosure Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
→
CRSSelect profile
🚨
Critical Vulnerabilities
CVE-2025-10484
9.8📝
The RegistrationMultiple Products
The Registration & Login with Mobile Phone Number for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.3.1. This is due to the plugin not properly verifying a users identity prior to authenticating them via the fma_lwp_set_session_php_fun() function. This makes it possible for unauthenticated attackers to authenticate as any user on the site, including administrators, without a valid password.
CVSS Base9.8
→
CRSSelect profile
CVE-2026-23722
9.1📝
WeGIA is a Web Manager for CharitableMultiple Products
WeGIA is a Web Manager for Charitable Institutions. Prior to 3.6.2, a Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the WeGIA system, specifically within the html/memorando/insere_despacho.php file. The application fails to properly sanitize or encode user-supplied input via the id_memorando GET parameter before reflecting it into the HTML source (likely inside a <script> block or an attribute). This allows unauthenticated attackers to inject arbitrary JavaScript or HTML into the context of the user's browser session. This vulnerability is fixed in 3.6.2.
CVSS Base9.1
→
CRSSelect profile
CVE-2025-60021
9.8📝
Remote command injection vulnerability in heap profiler builtin service in Apache bRPCMultiple Products
Remote command injection vulnerability in heap profiler builtin service in Apache bRPC ((all versions < 1.15.0)) on all platforms allows attacker to inject remote command.
Root Cause: The bRPC heap profiler built-in service (/pprof/heap) does not validate the user-provided extra_options parameter and executes it as a command-line argument. Attackers can execute remote commands using the extra_options parameter..
Affected scenarios: Use the built-in bRPC heap profiler service to perform jemalloc memory profiling.
How to Fix: we provide two methods, you can choose one of them:
1. Upgrade bRPC to version 1.15.0.
2. Apply this patch ( https://github.com/apache/brpc/pull/3101 ) manually.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-14231
9.8📝
Buffer overflow in print job processing by WSD on Small Office Multifunction Printers and LaserMultiple Products
Buffer overflow in print job processing by WSD on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-14232
9.8📝
Buffer overflow in XML processing of XPS file in Small Office Multifunction Printers and LaserMultiple Products
Buffer overflow in XML processing of XPS file in Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-14234
9.8📝
Buffer overflow in CPCA list processing on Small Office Multifunction Printers and LaserMultiple Products
Buffer overflow in CPCA list processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-14235
9.8📝
Buffer overflow in XPS font fpgm data processing on Small Office Multifunction Printers and LaserMultiple Products
Buffer overflow in XPS font fpgm data processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-14236
9.8📝
Buffer overflow in Address Book attribute tag processing on Small Office MultifunctionMultiple Products
Buffer overflow in Address Book attribute tag processing on Small Office Multifunction Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-14237
9.8📝
Buffer overflow in XPS font parse processing on Small Office Multifunction Printers and LaserMultiple Products
Buffer overflow in XPS font parse processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-14233
9.8📝
Invalid free in CPCA file deletion processing on Small Office Multifunction Printers and LaserMultiple Products
Invalid free in CPCA file deletion processing on Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. *: Satera LBP670C Series/Satera MF750C Series firmware v06.02 and earlier sold in Japan.Color imageCLASS LBP630C/Color imageCLASS MF650C Series/imageCLASS LBP230 Series/imageCLASS X LBP1238 II/imageCLASS MF450 Series/imageCLASS X MF1238 II/imageCLASS X MF1643i II/imageCLASS X MF1643iF II firmware v06.02 and earlier sold in US.i-SENSYS LBP630C Series/i-SENSYS MF650C Series/i-SENSYS LBP230 Series/1238P II/1238Pr II/i-SENSYS MF450 Series/i-SENSYS MF550 Series/1238i II/1238iF II/imageRUNNER 1643i II/imageRUNNER 1643iF II firmware v06.02 and earlier sold in Europe.
CVSS Base9.8
→
CRSSelect profile
CVE-2026-1019
9.8📝
Police Statistics Database System developed by Gotac has a Missing AuthenticationMultiple Products
Police Statistics Database System developed by Gotac has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents by using a specific functionality.
CVSS Base9.8
→
CRSSelect profile
CVE-2026-1021
9.8📝
Police Statistics Database System developed by Gotac has an Arbitrary File UploadMultiple Products
Police Statistics Database System developed by Gotac has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attacker to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-15403
9.8📝
The RegistrationMagic plugin for WordPress is vulnerable to Privilege Escalation in all versions upMultiple Products
The RegistrationMagic plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.0.7.1. This is due to the 'add_menu' function is accessible via the 'rm_user_exists' AJAX action and allows arbitrary updates to the 'admin_order' setting. This makes it possible for unauthenticated attackers to injecting an empty slug into the order parameter, and manipulate the plugin's menu generation logic, and when the admin menu is subsequently built, the plugin adds 'manage_options' capability for the target role. Note: The vulnerability can only be exploited unauthenticated, but further privilege escalation requires at least a subscriber user.
CVSS Base9.8
→
CRSSelect profile
CVE-2021-47785
9.8📝
EtherMultiple Products
Ether MP3 CD Burner 1.3.8 contains a buffer overflow vulnerability in the registration name field that allows remote code execution. Attackers can craft a malicious payload to overwrite SEH handlers and execute a bind shell on port 3110 by exploiting improper input validation.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-61937
10📝
TheMultiple Products
The vulnerability, if exploited, could allow an unauthenticated
miscreant to achieve remote code execution under OS system privileges of
“taoimr” service, potentially resulting in complete compromise of the model application server.
CVSS Base10
→
CRSSelect profile
CVE-2026-23744
9.8
MCPJam inspector is theMultiple Products
MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam inspector by default listens on 0.0.0.0 instead of 127.0.0.1, an attacker can trigger the RCE remotely via a simple HTTP request. Version 1.4.3 contains a patch.
CVSS Base9.8
→
CRSSelect profile
CVE-2026-23800
10
Incorrect Privilege Assignment vulnerability in Modular DSMultiple Products
Incorrect Privilege Assignment vulnerability in Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from 2.5.2 before 2.6.0.
CVSS Base10
→
CRSSelect profile
CVE-2021-47798
9.8
NoteBurnerMultiple Products
NoteBurner 2.35 contains a buffer overflow vulnerability in the license code input field that allows attackers to crash the application. Attackers can generate a 6000-byte payload and paste it into the 'Name' and 'Code' fields to trigger an application crash.
CVSS Base9.8
→
CRSSelect profile
CVE-2021-47796
9.8
DenverMultiple Products
Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-62581
9.8
Delta Electronics DIAView has multipleMultiple Products
Delta Electronics DIAView has multiple vulnerabilities.
CVSS Base9.8
→
CRSSelect profile
CVE-2025-62582
9.8
Delta Electronics DIAView has multipleMultiple Products
Delta Electronics DIAView has multiple vulnerabilities.
CVSS Base9.8
→
CRSSelect profile
CVE-2026-23523
9.6
Dive is anMultiple Products
Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation and can lead to arbitrary local command execution on the victim’s machine. This vulnerability is fixed in 0.13.0.
CVSS Base9.6
→
CRSSelect profile
⚠️
High Priority Updates
CVE-2026-23529
7.7📝
GoogleMultiple Products
Kafka Connect BigQuery Connector is an implementation of a sink connector from Apache Kafka to Google BigQuery
CVSS Base7.7
→
CRSSelect profile
CVE-2025-61973
8.8📝
MicrosoftMultiple Products
A local privilege escalation vulnerability exists during the installation of Epic Games Store via the Microsoft Store
CVSS Base8.8
→
CRSSelect profile
CVE-2025-70893
8.8📝
AMultiple Products
A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1
CVSS Base8.8
→
CRSSelect profile
CVE-2025-13062
8.8📝
WordPressMultiple Products
The Supreme Modules Lite plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 2
CVSS Base8.8
→
CRSSelect profile
CVE-2025-12957
8.8📝
WordPressMultiple Products
The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 4
CVSS Base8.8
→
CRSSelect profile
CVE-2026-23493
8.6📝
PimcoreMultiple Products
Pimcore is an Open Source Data & Experience Management Platform
CVSS Base8.6
→
CRSSelect profile
CVE-2025-14844
8.2📝
WordPressMultiple Products
The Membership Plugin – Restrict Content plugin for WordPress is vulnerable to Missing Authentication in all versions up to, and including, 3
CVSS Base8.2
→
CRSSelect profile
CVE-2026-22864
8.1📝
DenoMultiple Products
Deno is a JavaScript, TypeScript, and WebAssembly runtime
CVSS Base8.1
→
CRSSelect profile
CVE-2026-20960
8📝
MicrosoftMultiple Products
Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a network
CVSS Base8
→
CRSSelect profile
CVE-2021-47773
7.8📝
PowerMultiple Products
Dynojet Power Core 2
CVSS Base7.8
→
CRSSelect profile
CVE-2025-48647
7.8📝
googleMultiple Products
In cpm_fwtp_msg_handler of cpm/google/lib/tracepoint/cpm_fwtp_ipc
CVSS Base7.8
→
CRSSelect profile
CVE-2026-22774
7.5📝
SvelteMultiple Products
Svelte devalue is a JavaScript library that serializes values into strings when JSON
CVSS Base7.5
→
CRSSelect profile
CVE-2026-22775
7.5📝
SvelteMultiple Products
Svelte devalue is a JavaScript library that serializes values into strings when JSON
CVSS Base7.5
→
CRSSelect profile
CVE-2026-22265
7.5📝
KeepalivedMultiple Products
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers
CVSS Base7.5
→
CRSSelect profile
CVE-2026-21905
7.5📝
layerMultiple Products
A Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the SIP application layer gateway (ALG) of Juniper Networks Junos OS on SRX Series and MX Series with MX-SPC3 or MS-MPC allows an unauthenticated network-based attacker sending specific SIP messages over TCP to crash the flow management process, leading to a Denial of Service (DoS)
CVSS Base7.5
→
CRSSelect profile
CVE-2025-60003
7.5
routing protocolMultiple Products
A Buffer Over-read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS)
CVSS Base7.5
→
CRSSelect profile
CVE-2026-21906
7.5
forwardingMultiple Products
An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated network-based attacker sending a specific ICMP packet through a GRE tunnel to cause the PFE to crash and restart
CVSS Base7.5
→
CRSSelect profile
CVE-2026-21913
7.5
DeviceMultiple Products
An Incorrect Initialization of Resource vulnerability in the Internal Device Manager (IDM) of Juniper Networks Junos OS on EX4000 models allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS)
CVSS Base7.5
→
CRSSelect profile
CVE-2026-21914
7.5
GTPMultiple Products
An Improper Locking vulnerability in the GTP plugin of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (Dos)
CVSS Base7.5
→
CRSSelect profile
CVE-2026-21917
7.5
An ImproperMultiple Products
An Improper Validation of Syntactic Correctness of Input vulnerability in the Web-Filtering module of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS)
CVSS Base7.5
→
CRSSelect profile
CVE-2026-21918
7.5
flow processingMultiple Products
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX and MX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS)
CVSS Base7.5
→
CRSSelect profile
CVE-2026-23742
8.8
SkipperMultiple Products
Skipper is an HTTP router and reverse proxy for service composition
CVSS Base8.8
→
CRSSelect profile
CVE-2026-0713
8.3
A securityMultiple Products
A security vulnerability in the /apis/dashboard
CVSS Base8.3
→
CRSSelect profile
CVE-2026-1010
8
WorkflowMultiple Products
A stored cross-site scripting (XSS) vulnerability exists in the Altium Workflow Engine due to missing server-side input sanitization in workflow form submission APIs
CVSS Base8
→
CRSSelect profile
CVE-2026-23535
8
lineMultiple Products
wlc is a Weblate command-line client using Weblate's REST API
CVSS Base8
→
CRSSelect profile
CVE-2021-47792
7.8
RemoteMultiple Products
Remote Mouse 4
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47752
7.5
theMultiple Products
AWebServer GhostBuilding 18 contains a denial of service vulnerability that allows remote attackers to overwhelm the server by sending multiple concurrent HTTP requests
CVSS Base7.5
→
CRSSelect profile
CVE-2021-47801
8.2
VianeosMultiple Products
Vianeos OctoPUS 5 contains a time-based blind SQL injection vulnerability in the 'login_user' parameter during authentication requests
CVSS Base8.2
→
CRSSelect profile
CVE-2025-70304
7.5
bufferMultiple Products
A buffer overflow in the vobsub_get_subpic_duration() function of GPAC v2
CVSS Base7.5
→
CRSSelect profile
CVE-2026-23527
8.9
UnknownMultiple Products
H3 is a minimal H(TTP) framework built for high performance and portability
CVSS Base8.9
→
CRSSelect profile
CVE-2021-47757
8.8
ManagementMultiple Products
Chikitsa Patient Management System 2
CVSS Base8.8
→
CRSSelect profile
CVE-2021-47758
8.8
ManagementMultiple Products
Chikitsa Patient Management System 2
CVSS Base8.8
→
CRSSelect profile
CVE-2025-67077
8.8
Omnispace AgoraMultiple Products
File upload vulnerability in Omnispace Agora Project before 25
CVSS Base8.8
→
CRSSelect profile
CVE-2021-47788
8.8
WebsiteBakerMultiple Products
WebsiteBaker 2
CVSS Base8.8
→
CRSSelect profile
CVE-2021-47794
8.8
ZesleCPMultiple Products
ZesleCP 3
CVSS Base8.8
→
CRSSelect profile
CVE-2025-64691
8.8
applicationMultiple Products
The vulnerability, if exploited, could allow an authenticated miscreant
(OS standard user) to tamper with TCL Macro scripts and escalate
privileges to OS system, potentially resulting in complete compromise of
the model application server
CVSS Base8.8
→
CRSSelect profile
CVE-2025-65118
8.8
ApplicationMultiple Products
The vulnerability, if exploited, could allow an authenticated miscreant
(OS Standard User) to trick Process Optimization services into loading
arbitrary code and escalate privileges to OS System, potentially
resulting in complete compromise of the Model Application Server
CVSS Base8.8
→
CRSSelect profile
CVE-2026-20759
8.8
CamerasMultiple Products
OS Command Injection vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation, which may allow a logged-in user with the low("monitoring user") or higher privilege to execute an arbitrary OS command
CVSS Base8.8
→
CRSSelect profile
CVE-2021-47816
8.8
NASMultiple Products
Thecus N4800Eco NAS Server Control Panel contains a command injection vulnerability that allows authenticated attackers to execute arbitrary system commands through user management endpoints
CVSS Base8.8
→
CRSSelect profile
CVE-2026-22867
8.7
LaSuiteMultiple Products
LaSuite Doc is a collaborative note taking, wiki and documentation platform
CVSS Base8.7
→
CRSSelect profile
CVE-2026-0695
8.7
olderMultiple Products
In ConnectWise PSA versions older than 2026
CVSS Base8.7
→
CRSSelect profile
CVE-2021-47775
8.4
YouTubeMultiple Products
YouTube Video Grabber, now referred to as YouTube Downloader, 1
CVSS Base8.4
→
CRSSelect profile
CVE-2021-47756
8.4
ValetMultiple Products
Laravel Valet versions 1
CVSS Base8.4
→
CRSSelect profile
CVE-2025-61943
8.4
SQLMultiple Products
The vulnerability, if exploited, could allow an authenticated miscreant
(Process Optimization Standard User) to tamper with queries in Captive
Historian and achieve code execution under SQL Server administrative
privileges, potentially resulting in complete compromise of the SQL
Server
CVSS Base8.4
→
CRSSelect profile
CVE-2026-22638
8.3
AMultiple Products
A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path traversal and open redirect
CVSS Base8.3
→
CRSSelect profile
CVE-2026-22643
8.3
InMultiple Products
In Grafana, an excessively long dashboard title or panel name will cause Chromium browsers to become unresponsive due to Improper Input Validation vulnerability in Grafana
CVSS Base8.3
→
CRSSelect profile
CVE-2021-47763
8.2
AimeosMultiple Products
Aimeos 2021
CVSS Base8.2
→
CRSSelect profile
CVE-2021-47777
8.2
SmartMultiple Products
Build Smart ERP 21
CVSS Base8.2
→
CRSSelect profile
CVE-2025-70298
8.2
GPACMultiple Products
GPAC v2
CVSS Base8.2
→
CRSSelect profile
CVE-2025-67823
8.2
Multimedia EmailMultiple Products
A vulnerability in the Multimedia Email component of Mitel MiContact Center Business through 10
CVSS Base8.2
→
CRSSelect profile
CVE-2021-47782
8.2
SolutionsMultiple Products
Odine Solutions GateKeeper 1
CVSS Base8.2
→
CRSSelect profile
CVE-2021-47811
8.2
GroceryMultiple Products
Grocery Crud 1
CVSS Base8.2
→
CRSSelect profile
CVE-2025-66292
8.1
sourceMultiple Products
DPanel is an open source server management panel written in Go
CVSS Base8.1
→
CRSSelect profile
CVE-2025-64729
8.1
TheMultiple Products
The vulnerability, if exploited, could allow an authenticated miscreant
(OS Standard User) to tamper with Process Optimization project files,
embed code, and escalate their privileges to the identity of a victim
user who subsequently interacts with the project files
CVSS Base8.1
→
CRSSelect profile
CVE-2025-14510
8.1
ABB ABB AbilityMultiple Products
Incorrect Implementation of Authentication Algorithm vulnerability in ABB ABB Ability OPTIMAX
CVSS Base8.1
→
CRSSelect profile
CVE-2025-62291
8.1
strongSwanMultiple Products
In the eap-mschapv2 plugin (client-side) in strongSwan before 6
CVSS Base8.1
→
CRSSelect profile
CVE-2021-47761
7.8
UnknownMultiple Products
MilleGPG5 5
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47762
7.8
HTTPDebuggerProMultiple Products
HTTPDebuggerPro 9
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47767
7.8
ExplorerMultiple Products
10-Strike Network Inventory Explorer Pro 9
CVSS Base7.8
→
CRSSelect profile
CVE-2020-36927
7.8
DiskPulseMultiple Products
DiskPulse Enterprise 13
CVSS Base7.8
→
CRSSelect profile
CVE-2020-36928
7.8
BrotherMultiple Products
Brother BRAgent 1
CVSS Base7.8
→
CRSSelect profile
CVE-2020-36929
7.8
BRPrintMultiple Products
Brother BRPrint Auditor 3
CVSS Base7.8
→
CRSSelect profile
CVE-2020-36930
7.8
SysGaugeMultiple Products
SysGauge Server 7
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47780
7.8
MacroMultiple Products
Macro Expert 4
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47787
7.8
TotalAVMultiple Products
TotalAV 5
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47790
7.8
ActiveMultiple Products
Active WebCam 11
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47803
7.8
iFunboxMultiple Products
iFunbox 4
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47804
7.8
WiseMultiple Products
Wise Care 365 5
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47805
7.8
DiskMultiple Products
Disk Savvy 13
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47806
7.8
DupMultiple Products
Dup Scout 13
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47807
7.8
SyncMultiple Products
Sync Breeze 13
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47809
7.8
SorterMultiple Products
Disk Sorter Enterprise 13
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47810
7.8
WibuKeyMultiple Products
WibuKey Runtime 6
CVSS Base7.8
→
CRSSelect profile
CVE-2026-0975
7.8
DeltaMultiple Products
Delta Electronics DIAView has Command Injection vulnerability
CVSS Base7.8
→
CRSSelect profile
CVE-2025-68921
7.8
SteelSeriesMultiple Products
SteelSeries Nahimic 3 1
CVSS Base7.8
→
CRSSelect profile
CVE-2024-44238
7.8
issueMultiple Products
The issue was addressed with improved bounds checks
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47822
7.8
DiskBossMultiple Products
DiskBoss Service 12
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47823
7.8
AcerMultiple Products
Acer ePowerSvc 6
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47825
7.8
UpdaterMultiple Products
Acer Updater Service 1
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47826
7.8
BackupMultiple Products
Acer Backup Manager 3
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47828
7.8
BOOTPMultiple Products
BOOTP Turbo 2
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47829
7.8
DHCPMultiple Products
DHCP Broadband 4
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47832
7.8
SandboxieMultiple Products
Sandboxie Plus 0
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47833
7.8
WifiHotSpotMultiple Products
WifiHotSpot 1
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47845
7.8
SpyMultiple Products
Spy Emergency 25
CVSS Base7.8
→
CRSSelect profile
CVE-2021-47847
7.8
SorterMultiple Products
Disk Sorter Server 13
CVSS Base7.8
→
CRSSelect profile
CVE-2026-0712
7.6
openMultiple Products
An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks
CVSS Base7.6
→
CRSSelect profile
CVE-2026-1008
7.6
storedMultiple Products
A stored cross-site scripting (XSS) vulnerability exists in the user profile text fields of Altium 365
CVSS Base7.6
→
CRSSelect profile
CVE-2026-22909
7.5
CertainMultiple Products
Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupting system operations
CVSS Base7.5
→
CRSSelect profile
CVE-2026-22910
7.5
deviceMultiple Products
The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access
CVSS Base7.5
→
CRSSelect profile
CVE-2025-70744
7.5
TendaMultiple Products
Tenda AX-1806 v1
CVSS Base7.5
→
CRSSelect profile
CVE-2025-71019
7.5
TendaMultiple Products
Tenda AX-1806 v1
CVSS Base7.5
→
CRSSelect profile
CVE-2021-47784
7.5
WebMultiple Products
Cyberfox Web Browser 52
CVSS Base7.5
→
CRSSelect profile
CVE-2025-64516
7.5
GLPIMultiple Products
GLPI is a free asset and IT management software package
CVSS Base7.5
→
CRSSelect profile
CVE-2025-67076
7.5
Omnispace AgoraMultiple Products
Directory traversal vulnerability in Omnispace Agora Project before 25
CVSS Base7.5
→
CRSSelect profile
CVE-2025-66417
7.5
GLPIMultiple Products
GLPI is a free asset and IT management software package
CVSS Base7.5
→
CRSSelect profile
CVE-2025-70308
7.5
AnMultiple Products
An out-of-bounds read in the GSF demuxer filter component of GPAC v2
CVSS Base7.5
→
CRSSelect profile
CVE-2025-70656
7.5
TendaMultiple Products
Tenda AX-1806 v1
CVSS Base7.5
→
CRSSelect profile
CVE-2025-70307
7.5
stackMultiple Products
A stack overflow in the dump_ttxt_sample function of GPAC v2