17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 451-500 of 17426 CVEs Page 10 of 349
CVE-2026-7674
Analyzed
8.8
Unknown LBT-T300-HW1

A flaw has been found in Shenzhen Libituo Technology LBT-T300-HW1 up to 1

2026-05-03
CVE-2026-7670
7.3
Jinher Multiple Products

A flaw has been found in Jinher OA 1

2026-05-03
CVE-2026-7668
7.3
MikroTik RouterOS

A vulnerability was identified in MikroTik RouterOS 6

2026-05-03
CVE-2026-7664
Analyzed
9.8
IBM Langflow OSS

IBM Langflow OSS suffers from improper authorization enforcement in the Streamable MCP transport endpoint, enabling unauthenticated access to protecte...

2026-06-23
CVE-2026-7663
Analyzed
9.1
IBM Langflow OSS

An improper authorization vulnerability in the IBM Langflow OSS Streamable MCP transport endpoint allows unauthenticated attackers to access and execu...

2026-07-01
CVE-2026-7656
Analyzed
8.1
Zephyr Project Zephyr RTOS

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr

2026-06-30
CVE-2026-7654
Analyzed
8.8
HP Admin Columns Plugin

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7

2026-06-07
CVE-2026-7649
7.5
WordPress is vulnerable

The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup plugin for WordPress is vulnerable to time-based blin...

2026-05-02
CVE-2026-7647
8.1
HP is vulnerable

The Profile Builder Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to and including 3

2026-05-02
CVE-2026-7644
7.3
Infor Multiple Products

A vulnerability has been found in ChatGPTNextWeb NextChat up to 2

2026-05-03
CVE-2026-7641
8.8
WordPress is vulnerable

The Import and export users and customers plugin for WordPress is vulnerable to Privilege Escalation in all versions up to and including 2

2026-05-02
CVE-2026-7637
Analyzed
9.8
HP is vulnerable

The Boost plugin for WordPress is vulnerable to PHP Object Injection via an untrusted cookie, which may lead to remote code execution if a POP chain e...

2026-05-20
CVE-2026-7632
7.3
HP Multiple Products

A vulnerability was determined in code-projects Online Hospital Management System 1

2026-05-03
CVE-2026-7630
7.3
HP of the

A vulnerability has been found in innocommerce InnoShop up to 0

2026-05-03
CVE-2026-7613
Analyzed
7.2
Google is vulnerable

The Cost of Goods by PixelYourSite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'csvdata[0][cost_of_goods_value]' paramet...

2026-05-22
CVE-2026-7607
Analyzed
8.8
Unknown Multiple Products

A security vulnerability has been detected in TRENDnet TEW-821DAP 1

2026-05-02
CVE-2026-7598
Analyzed
7.3
Unknown Multiple Products

A security vulnerability has been detected in libssh2 up to 1

2026-05-02
CVE-2026-7594
7.3
Infor Multiple Products

A vulnerability was detected in Flux159 mcp-game-asset-gen 0

2026-05-02
CVE-2026-7593
7.3
Infor Multiple Products

A security vulnerability has been detected in Sunwood-ai-labs command-executor-mcp-server up to 0

2026-05-02
CVE-2026-7592
7.3
HP Multiple Products

A weakness has been identified in itsourcecode Courier Management System 1

2026-05-02
CVE-2026-7590
7.3
Infor Multiple Products

A vulnerability was identified in eyal-gor p_69_branch_monkey_mcp up to 69bc71874ce40050ef45fde5a435855f18af3373

2026-05-02
CVE-2026-7584
7.8
Unknown Multiple Products

The LabOne Q serialization framework uses a class-loading mechanism (import_cls) to dynamically import and instantiate Python classes during deseriali...

2026-05-01
CVE-2026-7579
7.3
Unknown Multiple Products

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4

2026-05-02
CVE-2026-7574
Analyzed
8.7
Anthropic Claude Desktop Cowork

Anthropic Claude Desktop Cowork VM image handling (confirmed across v1

2026-06-24
CVE-2026-7571
Analyzed
7.1
Infor Multiple Products

A flaw was found in Keycloak

2026-05-20
CVE-2026-7570
Analyzed
8.8
Quest NetVault Backup

Quest NetVault Backup NVBUDashboard SQL Injection Remote Code Execution Vulnerability

2026-06-25
CVE-2026-7569
Analyzed
8.8
Quest NetVault Backup

Quest NetVault Backup viewclient Cross-Site Scripting Authentication Bypass Vulnerability

2026-06-25
CVE-2026-7567
Analyzed
9.8
WordPress is vulnerable

The Temporary Login plugin for WordPress is vulnerable to authentication bypass, allowing unauthenticated attackers to log in as any temporary user.

2026-05-02
CVE-2026-7555
7.3
HP Multiple Products

A vulnerability was identified in itsourcecode Electronic Judging System 1

2026-05-01
CVE-2026-7551
8.8
Unknown Multiple Products

HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted by configuration to...

2026-05-01
CVE-2026-7550
7.3
HP Multiple Products

A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1

2026-05-01
CVE-2026-7549
7.3
HP Multiple Products

A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1

2026-05-01
CVE-2026-7548
8.8
TOTOLINK Multiple Products

A vulnerability was detected in Totolink NR1800X 9

2026-05-01
CVE-2026-7546
Analyzed
9.8
TOTOLINK NR1800X

A stack-based buffer overflow exists in the Totolink NR1800X lighttpd component, allowing remote attackers to trigger a crash or execute code via the...

2026-05-01
CVE-2026-7545
7.3
HP of the

A weakness has been identified in SourceCodester Advanced School Management System 1

2026-05-01
CVE-2026-7538
Analyzed
9.8
TOTOLINK A8000RU

The Totolink A8000RU router is vulnerable to remote OS command injection via the proto parameter in the CGI handler, allowing unauthenticated attacker...

2026-05-01
CVE-2026-7524
Analyzed
9.8
IBM Langflow OSS

IBM Langflow OSS is vulnerable to remote code execution during archive extraction due to improper validation of symbolic links.

2026-05-28
CVE-2026-7522
Analyzed
8.8
WordPress is vulnerable

The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4

2026-05-20
CVE-2026-7519
7.3
Unknown Multiple Products

A vulnerability has been found in Fujian Apex LiveBOS up to 2

2026-05-01
CVE-2026-7515
Analyzed
9.8
HP BetterDocs Pro

The BetterDocs Pro plugin for WordPress contains a Local File Inclusion vulnerability in the doc_style parameter, allowing unauthenticated attackers t...

2026-06-20
CVE-2026-7513
8.8
UTT Multiple Products

A vulnerability has been found in UTT HiPER 1200GW up to 2

2026-05-01
CVE-2026-7512
8.8
UTT Multiple Products

A flaw has been found in UTT HiPER 1200GW up to 2

2026-05-01
CVE-2026-7507
Analyzed
7.5
Unknown Multiple Products

A session fixation vulnerability was found in Keycloak's login-actions endpoints

2026-05-20
CVE-2026-7506
7.3
HP Multiple Products

A vulnerability has been found in SourceCodester Hotel Management System 1

2026-05-01
CVE-2026-7505
7.3
Unknown Multiple Products

A flaw has been found in nextlevelbuilder GoClaw and GoClaw Lite up to 3

2026-05-01
CVE-2026-7504
Analyzed
8.1
Infor Multiple Products

A flaw was found in Keycloak's URL validation logic during redirect operations

2026-05-20
CVE-2026-7503
8.8
Unknown Multiple Products

A vulnerability was detected in code-projects for Plugin 4

2026-05-01
CVE-2026-7498
Analyzed
8.8
Unknown Multiple Products

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Basamak Information Technology Consulting and Or...

2026-05-19
CVE-2026-7491
8.1
School Multiple Products

School App developed by Zyosoft has an Insecure Direct Object Reference vulnerability, allowing authenticated remote attackers to modify a specific pa...

2026-05-03
CVE-2026-7490
7.2
Unknown Multiple Products

CTMS and CPAS developed by Sunnet has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell bac...

2026-05-04