Critical vulnerabilities, curated daily for security professionals
đ¯ SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
đ
Archived Security Brief
Yesterday's vulnerability disclosures included 18 critical-severity CVEs, representing a 29% increase from the prior day's 14 critical findings. High-priority vulnerabilities (CVSS 7.0-8.9) totaled 97, a 10% increase from 88 previously tracked. Four actively exploited vulnerabilities were added to CISA's Known Exploited Vulnerabilities catalog, including CVE-2023-52163 affecting Digiever DS-2105 Pro, CVE-2025-14847 in MongoDB Server, CVE-2009-0556 targeting Microsoft Office, and CVE-2025-37164 in HP OneView. Notable critical CVEs include CVE-2019-25296 enabling arbitrary file uploads in the WP Cost Estimation WordPress plugin, CVE-2025-15018 allowing privilege escalation in the Optional Email WordPress plugin, and CVE-2025-12543 affecting the Undertow HTTP server. Patch availability currently stands at 0%, requiring organizations to implement compensating controls until vendor remediation is released.
18 critical CVEs disclosed (29% increase from prior day's 14)
97 high-priority CVEs tracked (10% increase from 88)
4 actively exploited vulnerabilities added to KEV catalog affecting Digiever, MongoDB, Microsoft Office, and HP OneView
0% patch availability for newly disclosed vulnerabilities
WordPress plugins WP Cost Estimation and Optional Email contain critical authentication bypass and file upload flaws
Immediate action: Organizations using MongoDB Server, HP OneView, Microsoft Office, and Digiever surveillance systems should prioritize reviewing exposure to actively exploited vulnerabilities. With no patches currently available for newly disclosed critical CVEs, implement network segmentation and enhanced monitoring for affected WordPress installations and Undertow HTTP server deployments.
đĄ Tip: Swipe CVE cards left to â star, right to â remove
Section Navigation
â ī¸
CISA Known Exploited Vulnerabilities
â ī¸ CISA KEVURGENT
CVE-2023-52163 (reserved 2023, disclosed 2025)
9.5
DigieverDS-2105 Pro
â° Federal Deadline:January 11, 2026(4 days remaining)
Digiever DS-2105 Pro Missing Authorization Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-14847
9.5
MongoDBMongoDB and MongoDB Server
â° Federal Deadline:January 18, 2026(11 days remaining)
MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2009-0556 (reserved 2009, disclosed 2026)
9.5
MicrosoftOffice
â° Federal Deadline:January 27, 2026(20 days remaining)
Microsoft Office PowerPoint Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-37164 (reserved 2025, disclosed 2026)
9.5đ
Hewlett Packard (HP)OneView
â° Federal Deadline:January 27, 2026(20 days remaining)
Hewlett Packard Enterprise OneView Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
đ¨
Critical Vulnerabilities
CVE-2019-25296 (reserved 2019, disclosed 2026)
9.8đ
The WP Cost Estimation plugin for WordPress is vulnerable to arbitrary file uploads and deletion due to missing file type validation in theMultiple Products
The WP Cost Estimation plugin for WordPress is vulnerable to arbitrary file uploads and deletion due to missing file type validation in the lfb_upload_form and lfb_removeFile AJAX actions in versions up to, and including, 9.642. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible. Additionally, the attacker can also delete files on the server such as database configuration files, subsequently uploading their own database files.
CVSS Base9.8
â
CRSSelect profile
CVE-2017-20216 (reserved 2017, disclosed 2026)
9.8đ
FLIR Thermal CameraMultiple Products
FLIR Thermal Camera PT-Series firmware version 8.0.0.64 contains multiple unauthenticated remote command injection vulnerabilities in the controllerFlirSystem.php script. Attackers can execute arbitrary system commands as root by exploiting unsanitized POST parameters in the execFlirSystem() function through shell_exec() calls. Exploitation evidence was observed by the Shadowserver Foundation on 2026-01-06 (UTC).
CVSS Base9.8
â
CRSSelect profile
CVE-2025-15018 (reserved 2025, disclosed 2026)
9.8đ
The Optional Email plugin for WordPress is vulnerable to Privilege Escalation via Account Takeover in all versions upMultiple Products
The Optional Email plugin for WordPress is vulnerable to Privilege Escalation via Account Takeover in all versions up to, and including, 1.3.11. This is due to the plugin not restricting its 'random_password' filter to registration contexts, allowing the filter to affect password reset key generation. This makes it possible for unauthenticated attackers to set a known password reset key when initiating a password reset, reset the password of any user including administrators, and gain access to their accounts.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-21854
9.8đ
The Tarkov Data Manager is a tool to manage the Tarkov itemMultiple Products
The Tarkov Data Manager is a tool to manage the Tarkov item data. Prior to 02 January 2025, an authentication bypass vulnerability in the login endpoint allows any unauthenticated user to gain full admin access to the Tarkov Data Manager admin panel by exploiting a JavaScript prototype property access vulnerability, combined with loose equality type coercion. A series of fix commits on 02 January 2025 fixed this and other vulnerabilities.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-21875
9.8đ
ClipBucketMultiple Products
ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-#187 and below allow an attacker to perform Blind SQL Injection through the add comment section within a channel. When adding a comment within a channel, there is a POST request to the /actions/ajax.php endpoint. The obj_id parameter within the POST request to /actions/ajax.php is then used within the user_exists function of the upload/includes/classes/user.class. php file as the $id parameter. It is then used within the count function of the upload/includes/classes/db.class. php file. The $id parameter is concatenated into the query without validation or sanitization, and a user-supplied input like 1' or 1=1-- - can be used to trigger the injection. This issue does not have a fix at the time of publication.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-12543 (reserved 2025, disclosed 2026)
9.6đ
A flaw was found in the Undertow HTTP serverMultiple Products
A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applications. The Undertow library fails to properly validate the Host header in incoming HTTP requests.As a result, requests containing malformed or malicious Host headers are processed without rejection, enabling attackers to poison caches, perform internal network scans, or hijack user sessions.
CVSS Base9.6
â
CRSSelect profile
CVE-2026-21855
9.3đ
The Tarkov Data Manager is a tool to manage the Tarkov itemMultiple Products
The Tarkov Data Manager is a tool to manage the Tarkov item data. Prior to 02 January 2025, a reflected Cross Site Scripting (XSS) vulnerability in the toast notification system allows any attacker to execute arbitrary JavaScript in the context of a victim's browser session by crafting a malicious URL. A series of fix commits on 02 January 2025 fixed this and other vulnerabilities.
CVSS Base9.3
â
CRSSelect profile
CVE-2025-69222 (reserved 2025, disclosed 2026)
9.1đ
LibreChat is a ChatGPT clone with additionalMultiple Products
LibreChat is a ChatGPT clone with additional features. Version 0.8.1-rc2 is prone to a server-side request forgery (SSRF)
vulnerability due to missing restrictions of the Actions feature in the default configuration. LibreChat enables users to configure agents with predefined instructions and actions that can interact with remote services via OpenAPI specifications, supporting various HTTP methods, parameters, and authentication methods including custom headers. By default, there are no restrictions on accessible services, which means agents can also access internal components like the RAG API included in the default Docker Compose setup. This issue is fixed in version 0.8.1-rc2.
CVSS Base9.1
â
CRSSelect profile
CVE-2025-68637 (reserved 2025, disclosed 2026)
9.1đ
The Uniffle HTTP client is configured to trust all SSL certificates and
disables hostname verification byMultiple Products
The Uniffle HTTP client is configured to trust all SSL certificates and
disables hostname verification by default. This insecure configuration
exposes all REST API communication between the Uniffle CLI/client and the
Uniffle Coordinator service to potential Man-in-the-Middle (MITM) attacks.
This issue affects all versions from before 0.10.0.
Users are recommended to upgrade to version 0.10.0, which fixes the issue.
CVSS Base9.1
â
CRSSelect profile
CVE-2026-21881
9.1đ
Kanboard is project management software focused on KanbanMultiple Products
Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is vulnerable to a critical authentication bypass when REVERSE_PROXY_AUTH is enabled. The application blindly trusts HTTP headers for user authentication without verifying the request originated from a trusted reverse proxy. An attacker can impersonate any user, including administrators, by simply sending a spoofed HTTP header. This issue is fixed in version 1.2.49.
CVSS Base9.1
â
CRSSelect profile
CVE-2026-21858
10đ
UnknownMultiple Products
n8n is an open source workflow automation platform. Versions below 1.121.0 enable an attacker to access files on the underlying server through execution of certain form-based workflows. A vulnerable workflow could grant access to an unauthenticated remote attacker, resulting in exposure of sensitive information stored on the system and may enable further compromise depending on deployment configuration and workflow usage. This issue is fixed in version 1.121.0.
CVSS Base10
â
CRSSelect profile
CVE-2025-15471 (reserved 2025, disclosed 2026)
9.8đ
A vulnerability was detected in TRENDnetMultiple Products
A vulnerability was detected in TRENDnet TEW-713RE 1.02. The impacted element is an unknown function of the file /goformX/formFSrvX. The manipulation of the argument SZCMD results in os command injection. It is possible to launch the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Base9.8
â
CRSSelect profile
CVE-2019-25268 (reserved 2019, disclosed 2026)
9.8đ
NREL BEoptMultiple Products
NREL BEopt 2.8.0.0 contains a DLL hijacking vulnerability that allows attackers to load arbitrary libraries by tricking users into opening application files from remote shares. Attackers can exploit insecure library loading of sdl2.dll and libegl.dll by placing malicious libraries on WebDAV or SMB shares to execute unauthorized code.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-47552 (reserved 2025, disclosed 2026)
9.8đ
Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows ObjectMultiple Products
Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.37.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-32303 (reserved 2025, disclosed 2026)
9.3đ
Improper Neutralization of Special Elements used in an SQL CommandMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mojoomla WPCHURCH allows Blind SQL Injection.This issue affects WPCHURCH: from n/a through 2.7.0.
CVSS Base9.3
â
CRSSelect profile
CVE-2025-61492 (reserved 2025, disclosed 2026)
10
A command injection vulnerability in theMultiple Products
A command injection vulnerability in the execute_command function of terminal-controller-mcp 0.1.7 allows attackers to execute arbitrary commands via a crafted input.
CVSS Base10
â
CRSSelect profile
CVE-2026-21877
9.9
UnknownMultiple Products
n8n is an open source workflow automation platform. In versions 0.121.2 and below, an authenticated attacker may be able to execute malicious code using the n8n service. This could result in full compromise and can impact both self-hosted and n8n Cloud instances. This issue is fixed in version 1.121.3. Administrators can reduce exposure by disabling the Git node and limiting access for untrusted users, but upgrading to the latest version is recommended.
CVSS Base9.9
â
CRSSelect profile
CVE-2019-25282 (reserved 2019, disclosed 2026)
9.8
UnknownMultiple Products
V-SOL GPON/EPON OLT Platform v2.03 contains an open redirect vulnerability in the script that allows attackers to manipulate the 'parent' GET parameter. Attackers can craft malicious links that redirect logged-in users to arbitrary websites by exploiting improper input validation in the redirect mechanism.
CVSS Base9.8
â
CRSSelect profile
â ī¸
High Priority Updates
CVE-2026-0656
8.2đ
WordPressMultiple Products
The iPaymu Payment Gateway for WooCommerce plugin for WordPress is vulnerable to Missing Authentication in all versions up to, and including, 2
CVSS Base8.2
â
CRSSelect profile
CVE-2025-69083 (reserved 2025, disclosed 2026)
8.1đ
ImproperMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes FrappÊ allows PHP Local File Inclusion
CVSS Base8.1
â
CRSSelect profile
CVE-2025-69086 (reserved 2025, disclosed 2026)
8.1đ
Jwsthemes IssabellaMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Jwsthemes Issabella allows PHP Local File Inclusion
CVSS Base8.1
â
CRSSelect profile
CVE-2025-32304 (reserved 2025, disclosed 2026)
8.1đ
Mojoomla WPCHURCHMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mojoomla WPCHURCH allows PHP Local File Inclusion
CVSS Base8.1
â
CRSSelect profile
CVE-2025-69080 (reserved 2025, disclosed 2026)
8.1đ
JanStudio GeckoMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in JanStudio Gecko allows PHP Local File Inclusion
CVSS Base8.1
â
CRSSelect profile
CVE-2025-69081 (reserved 2025, disclosed 2026)
8.1đ
ThemeREX Group HopeMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Group Hope charity-is-hope allows PHP Local File Inclusion
CVSS Base8.1
â
CRSSelect profile
CVE-2025-29004 (reserved 2025, disclosed 2026)
8.8đ
WordPressMultiple Products
Incorrect Privilege Assignment vulnerability in AA-Team Premium Age Verification / Restriction for WordPress, AA-Team Responsive Coming Soon Landing Page / Holding Page for WordPress allows Privilege Escalation
CVSS Base8.8
â
CRSSelect profile
CVE-2025-69342 (reserved 2025, disclosed 2026)
7.5đ
VanKarWai CalafateMultiple Products
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in VanKarWai Calafate calafate allows PHP Local File Inclusion
CVSS Base7.5
â
CRSSelect profile
CVE-2025-15158 (reserved 2025, disclosed 2026)
8.8đ
WordPressMultiple Products
The WP Enable WebP plugin for WordPress is vulnerable to arbitrary file uploads due to improper file type validation in the 'wpse_file_and_ext_webp' function in all versions up to, and including, 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-0628
8.8đ
GoogleMultiple Products
Insufficient policy enforcement in WebView tag in Google Chrome prior to 143
CVSS Base8.8
â
CRSSelect profile
CVE-2025-13371 (reserved 2025, disclosed 2026)
8.6đ
WordPressMultiple Products
The MoneySpace plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2
CVSS Base8.6
â
CRSSelect profile
CVE-2025-14804 (reserved 2025, disclosed 2026)
7.7đ
WordPressMultiple Products
The Frontend File Manager Plugin WordPress plugin before 23
CVSS Base7.7
â
CRSSelect profile
CVE-2026-22035
7.7đ
GreenshotMultiple Products
Greenshot is an open source Windows screenshot utility
CVSS Base7.7
â
CRSSelect profile
CVE-2025-13493 (reserved 2025, disclosed 2026)
7.5đ
WordPressMultiple Products
The Latest Registered Users plugin for WordPress is vulnerable to unauthorized user data export in all versions up to, and including, 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-13801 (reserved 2025, disclosed 2026)
7.5đ
WordPressMultiple Products
The Yoco Payments plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 3
CVSS Base7.5
â
CRSSelect profile
CVE-2025-14070 (reserved 2025, disclosed 2026)
7.5
WordPressMultiple Products
The Reviewify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'send_test_email' AJAX action in all versions up to, and including, 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-14835 (reserved 2025, disclosed 2026)
7.1
WordPressMultiple Products
The WP Photo Album Plus plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the âshortcodeâ parameter in all versions up to, and including, 9
CVSS Base7.1
â
CRSSelect profile
CVE-2025-36589 (reserved 2025, disclosed 2026)
7.6đ
DellMultiple Products
Dell Unisphere for PowerMax, version(s) 9
CVSS Base7.6
â
CRSSelect profile
CVE-2025-61939 (reserved 2025, disclosed 2026)
8.8
unusedMultiple Products
An unused function in MicroServer can start a reverse SSH connection to a vendor registered domain, without mutual authentication
CVSS Base8.8
â
CRSSelect profile
CVE-2025-47380 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption while preprocessing IOCTLs in sensors
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47553 (reserved 2025, disclosed 2026)
8.8đ
zoomMultiple Products
Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection
CVSS Base8.8
â
CRSSelect profile
CVE-2025-31643 (reserved 2025, disclosed 2026)
8.8
Dasinfomedia WPCHURCHMultiple Products
Incorrect Privilege Assignment vulnerability in Dasinfomedia WPCHURCH allows Privilege Escalation
CVSS Base8.8
â
CRSSelect profile
CVE-2025-30631 (reserved 2025, disclosed 2026)
7.1
ImproperMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AA-Team Woocommerce Sales Funnel Builder, AA-Team Amazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-59379 (reserved 2025, disclosed 2026)
7.5
DwyerOmegaMultiple Products
DwyerOmega Isensix Advanced Remote Monitoring System (ARMS) 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-13151 (reserved 2025, disclosed 2026)
7.5
UnknownMultiple Products
Stack-based buffer overflow in libtasn1 version: v4
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36910 (reserved 2020, disclosed 2026)
8.8
MediaMultiple Products
Cayin Signage Media Player 3
CVSS Base8.8
â
CRSSelect profile
CVE-2020-36916 (reserved 2020, disclosed 2026)
8.8
TDMMultiple Products
TDM Digital Signage PC Player 4
CVSS Base8.8
â
CRSSelect profile
CVE-2020-36920 (reserved 2020, disclosed 2026)
8.8
SignageMultiple Products
iDS6 DSSPro Digital Signage System 6
CVSS Base8.8
â
CRSSelect profile
CVE-2026-0640
8.8
weaknessMultiple Products
A weakness has been identified in Tenda AC23 16
CVSS Base8.8
â
CRSSelect profile
CVE-2025-4676 (reserved 2025, disclosed 2026)
8.8
ABB WebPro SNMP CardMultiple Products
Incorrect Implementation of Authentication Algorithm vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21679
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21682
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2025-69264 (reserved 2025, disclosed 2026)
8.8
packageMultiple Products
pnpm is a package manager
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21683
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21688
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21692
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21693
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2026-22046
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2026-22047
8.8
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base8.8
â
CRSSelect profile
CVE-2017-20215 (reserved 2017, disclosed 2026)
8.8
firmwareMultiple Products
FLIR Thermal Camera FC-S/PT firmware version 8
CVSS Base8.8
â
CRSSelect profile
CVE-2019-25289 (reserved 2019, disclosed 2026)
8.8
SmartLivingMultiple Products
SmartLiving SmartLAN <=6
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21869
8.8
UnknownMultiple Products
llama
CVSS Base8.8
â
CRSSelect profile
CVE-2025-47345 (reserved 2025, disclosed 2026)
8.4
CryptographicMultiple Products
Cryptographic issue may occur while encrypting license data
CVSS Base8.4
â
CRSSelect profile
CVE-2019-25231 (reserved 2019, disclosed 2026)
8.4
dLANMultiple Products
devolo dLAN Cockpit 4
CVSS Base8.4
â
CRSSelect profile
CVE-2019-25279 (reserved 2019, disclosed 2026)
8.2
ControlMultiple Products
FaceSentry Access Control System 6
CVSS Base8.2
â
CRSSelect profile
CVE-2025-66620 (reserved 2025, disclosed 2026)
8
unusedMultiple Products
An unused webshell in MicroServer allows unlimited login attempts, with sudo rights on certain files and directories
CVSS Base8
â
CRSSelect profile
CVE-2025-14026 (reserved 2025, disclosed 2026)
7.8
DLPMultiple Products
Forcepoint One DLP Client, version 23
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47339 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption while deinitializing a HDCP session
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47343 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption while processing a video session to set video parameters
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47346 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption while processing a secure logging command in the trusted application
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47348 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption while processing identity credential operations in the trusted application
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47356 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory Corruption when multiple threads concurrently access and modify shared resources
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47388 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption while passing pages to DSP with an unaligned starting address
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47393 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption when accessing resources in kernel driver
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47394 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations
CVSS Base7.8
â
CRSSelect profile
CVE-2025-47396 (reserved 2025, disclosed 2026)
7.8
MemoryMultiple Products
Memory corruption occurs when a secure application is launched on a device with insufficient memory
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles
CVSS Base7.8
â
CRSSelect profile
CVE-2026-21427
7.8
installersMultiple Products
The installers for multiple products provided by PIONEER CORPORATION contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries
CVSS Base7.8
â
CRSSelect profile
CVE-2020-36905 (reserved 2020, disclosed 2026)
7.5
HomeMultiple Products
FIBARO System Home Center 5
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36907 (reserved 2020, disclosed 2026)
7.5
NetConfig UI thatMultiple Products
Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36914 (reserved 2020, disclosed 2026)
7.5
DigitalMultiple Products
QiHang Media Web Digital Signage 3
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36915 (reserved 2020, disclosed 2026)
7.5
AdtecMultiple Products
Adtec Digital SignEdje Digital Signage Player v2
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36917 (reserved 2020, disclosed 2026)
7.5
SignageMultiple Products
iDS6 DSSPro Digital Signage System 6
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36921 (reserved 2020, disclosed 2026)
7.5
SignageMultiple Products
RED-V Super Digital Signage System 5
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36922 (reserved 2020, disclosed 2026)
7.5
DigitalMultiple Products
Sony BRAVIA Digital Signage 1
CVSS Base7.5
â
CRSSelect profile
CVE-2020-36924 (reserved 2020, disclosed 2026)
7.5
DigitalMultiple Products
Sony BRAVIA Digital Signage 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-11877 (reserved 2025, disclosed 2026)
7.5
UserMultiple Products
The User Activity Log plugin is vulnerable to a limited options update in versions up to, and including, 2
CVSS Base7.5
â
CRSSelect profile
CVE-2025-65805 (reserved 2025, disclosed 2026)
7.5
OpenAirInterfaceMultiple Products
OpenAirInterface CN5G AMF<=v2
CVSS Base7.5
â
CRSSelect profile
CVE-2025-66786 (reserved 2025, disclosed 2026)
7.5
OpenAirInterfaceMultiple Products
OpenAirInterface CN5G AMF<=v2
CVSS Base7.5
â
CRSSelect profile
CVE-2025-67364 (reserved 2025, disclosed 2026)
7.5
mcpMultiple Products
fast-filesystem-mcp version 3
CVSS Base7.5
â
CRSSelect profile
CVE-2025-67366 (reserved 2025, disclosed 2026)
7.5
UnknownMultiple Products
@sylphxltd/filesystem-mcp v0
CVSS Base7.5
â
CRSSelect profile
CVE-2026-0669
7.5
Wikimedia FoundationMultiple Products
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Wikimedia Foundation MediaWiki - CSS extension allows Path Traversal
CVSS Base7.5
â
CRSSelect profile
CVE-2025-69263 (reserved 2025, disclosed 2026)
7.5
packageMultiple Products
pnpm is a package manager
CVSS Base7.5
â
CRSSelect profile
CVE-2025-69262 (reserved 2025, disclosed 2026)
7.5
packageMultiple Products
pnpm is a package manager
CVSS Base7.5
â
CRSSelect profile
CVE-2017-20213 (reserved 2017, disclosed 2026)
7.5
firmwareMultiple Products
FLIR Thermal Camera F/FC/PT/D Stream firmware version 8
CVSS Base7.5
â
CRSSelect profile
CVE-2017-20214 (reserved 2017, disclosed 2026)
7.5
firmwareMultiple Products
FLIR Thermal Camera F/FC/PT/D firmware version 8
CVSS Base7.5
â
CRSSelect profile
CVE-2019-25278 (reserved 2019, disclosed 2026)
7.5
ControlMultiple Products
FaceSentry Access Control System 6
CVSS Base7.5
â
CRSSelect profile
CVE-2019-25291 (reserved 2019, disclosed 2026)
7.5
INIMMultiple Products
INIM Electronics Smartliving SmartLAN/G/SI <=6
CVSS Base7.5
â
CRSSelect profile
CVE-2026-21868
7.5
FlagMultiple Products
Flag Forge is a Capture The Flag (CTF) platform
CVSS Base7.5
â
CRSSelect profile
CVE-2026-0643
7.3
PropertyMultiple Products
A flaw has been found in projectworlds House Rental and Property Listing 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-0700
7.3
ManagementMultiple Products
A vulnerability was determined in code-projects Intern Membership Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15472 (reserved 2025, disclosed 2026)
7.2
flawMultiple Products
A flaw has been found in TRENDnet TEW-811DRU 1
CVSS Base7.2
â
CRSSelect profile
CVE-2026-21856
7.2
DataMultiple Products
The Tarkov Data Manager is a tool to manage the Tarkov item data
CVSS Base7.2
â
CRSSelect profile
CVE-2024-30547 (reserved 2024, disclosed 2026)
7.1
Shazdeh Header ImageMultiple Products
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Shazdeh Header Image Slider header-image-slider allows DOM-Based XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-69084 (reserved 2025, disclosed 2026)
7.1
ImproperMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GT3 themes Photo Gallery allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-69085 (reserved 2025, disclosed 2026)
7.1
ImproperMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e-plugins JobBank allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-31642 (reserved 2025, disclosed 2026)
7.1
Dasinfomedia WPCHURCHMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dasinfomedia WPCHURCH allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-32300 (reserved 2025, disclosed 2026)
7.1
zoomMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Digital zoom studio DZS Video Gallery allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-69082 (reserved 2025, disclosed 2026)
7.1
Frenify Arlo arloMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Frenify Arlo arlo allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-46494 (reserved 2025, disclosed 2026)
7.1
Themesgrove WidgetKitMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themesgrove WidgetKit Pro allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-69220 (reserved 2025, disclosed 2026)
7.1
LibreChatMultiple Products
LibreChat is a ChatGPT clone with additional features
CVSS Base7.1
â
CRSSelect profile
CVE-2026-21681
7.1
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base7.1
â
CRSSelect profile
CVE-2026-21684
7.1
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base7.1
â
CRSSelect profile
CVE-2026-21685
7.1
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base7.1
â
CRSSelect profile
CVE-2026-21686
7.1
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles
CVSS Base7.1
â
CRSSelect profile
CVE-2026-21687
7.1
iccDEVMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles