17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 5151-5200 of 17426 CVEs Page 104 of 349
CVE-2026-30289
8.4
Tinybeans Private Multiple Products

An arbitrary file overwrite vulnerability in Tinybeans Private Family Album App v5

2026-04-02
CVE-2026-30287
8.4
Deep Thought Multiple Products

An arbitrary file overwrite vulnerability in Deep Thought Industries ACE Scanner PDF Scanner v1

2026-04-02
CVE-2026-30284
8.6
UXGROUP LLC Voice Multiple Products

An arbitrary file overwrite vulnerability in UXGROUP LLC Voice Recorder v10

2026-04-02
CVE-2026-30282
Analyzed
9
Infor Cast to TV Screen Mirroring

UXGROUP LLC Cast to TV Screen Mirroring v2.2.77 is vulnerable to an arbitrary file overwrite during the import process, leading to code execution or d...

2026-04-01
CVE-2026-30269
Analyzed
9.9
Unknown Multiple Products

Improper access control in Doorman v0.1.0 and v1.0.2 allows any authenticated user to update their own account role to a non-admin privileged role via...

2026-04-21
CVE-2026-30266
7.8
DeepCool DeepCreative Multiple Products

Insecure Permissions vulnerability in DeepCool DeepCreative v

2026-04-21
CVE-2026-3026
7.3
Unknown Multiple Products

A vulnerability has been found in erzhongxmu JEEWMS 3

2026-02-24
CVE-2026-3025
7.3
Unknown Multiple Products

A flaw has been found in ShuoRen Smart Heating Integrated Management Platform 1

2026-02-24
CVE-2026-30244
7.5
Infor Multiple Products

Plane is an an open-source project management tool

2026-03-08
CVE-2026-30242
Analyzed
8.5
Unknown Multiple Products

Plane is an an open-source project management tool

2026-03-07
CVE-2026-30240
Analyzed
9.6
Progress Budibase (PWA Component)

A path traversal vulnerability in Budibase's PWA ZIP processing allows authenticated builders to exfiltrate sensitive server files, including environm...

2026-03-10
CVE-2026-30223
Analyzed
8.8
Unknown Multiple Products

OliveTin gives access to predefined shell commands from a web interface

2026-03-07
CVE-2026-3017
7.2
HP is vulnerable

The Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts plugin for WordPress is vulnerable to PHP Object Injection in all ver...

2026-04-14
CVE-2026-3016
8.8
UTT Multiple Products

A vulnerability was identified in UTT HiPER 810G up to 1

2026-02-24
CVE-2026-3015
8.8
UTT Multiple Products

A vulnerability was determined in UTT HiPER 810G up to 1

2026-02-24
CVE-2026-30141
Analyzed
9.8
Unknown AnimatedGIF

The bitbank2 AnimatedGIF library contains a buffer overflow in the DecodeLZW function that can lead to remote code execution or denial of service via...

2026-06-10
CVE-2026-3012
Analyzed
8
Linux Samba

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling

2026-06-16
CVE-2026-3009
8.1
Unknown Multiple Products

A security flaw in the IdentityBrokerService

2026-03-06
CVE-2026-30080
7.5
Unknown Multiple Products

OpenAirInterface v2

2026-04-10
CVE-2026-30078
7.5
Unknown Multiple Products

OpenAirInterface V2

2026-04-07
CVE-2026-30077
7.5
Unknown Multiple Products

OpenAirInterface V2

2026-03-31
CVE-2026-30075
7.5
OpenAirInterface Multiple Products

OpenAirInterface Version 2

2026-04-10
CVE-2026-3006
7
Successful Multiple Products

Successful exploitation of the race condition vulnerability could allow an attacker to trigger a kernel heap overflow, potentially leading to local pr...

2026-04-27
CVE-2026-3003
7.2
WordPress is vulnerable

The Vagaro Booking Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘vagaro_code’ parameter in all versions up to, and...

2026-03-22
CVE-2026-3000
Analyzed
9.8
Microsoft IDExpert Windows Logon Agent

IDExpert Windows Logon Agent is vulnerable to unauthenticated remote code execution via unauthorized remote DLL downloads and execution.

2026-03-02
CVE-2026-2999
Analyzed
9.8
Microsoft IDExpert Windows Logon Agent

A remote code execution vulnerability in IDExpert Windows Logon Agent allows unauthenticated attackers to force arbitrary file downloads and execution...

2026-03-02
CVE-2026-2998
Analyzed
7.8
Unknown ERP

ERP developed by eAI Technologies has a DLL Hijacking vulnerability, allowing authenticated local attackers to place a crafted DLL file in the same di...

2026-02-23
CVE-2026-29975
7.5
Unknown Multiple Products

lwjson 1

2026-05-09
CVE-2026-29974
7.5
Unknown Multiple Products

An issue was discovered in kosma minmea 0

2026-05-09
CVE-2026-29972
8.2
Unknown Multiple Products

nanoMODBUS through v1

2026-05-09
CVE-2026-29963
Analyzed
7.5
HP endpoint

HSC MailInspector 5

2026-05-20
CVE-2026-29962
Analyzed
7.5
HP processes user

HSC MailInspector v5

2026-05-20
CVE-2026-29954
7.6
Unknown Multiple Products

In KubePlus 4

2026-03-31
CVE-2026-29953
7.4
SchemaHero Multiple Products

SQL Injection vulnerability in SchemaHero 0

2026-03-31
CVE-2026-2995
7.7
GitLab has remediated

GitLab has remediated an issue in GitLab EE affecting all versions from 15

2026-03-26
CVE-2026-29925
7.7
HP Multiple Products

Invoice Ninja v5

2026-03-31
CVE-2026-29924
7.6
Grav Multiple Products

Grav CMS v1

2026-03-31
CVE-2026-2992
8.2
WordPress is vulnerable

The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization on the...

2026-03-19
CVE-2026-2991
Analyzed
9.8
WordPress is vulnerable

The KiviCare EHR plugin for WordPress suffers from an authentication bypass in its social login function, allowing unauthenticated attackers to log in...

2026-03-19
CVE-2026-29872
8.2
GitHub MCP Agent

A cross-session information disclosure vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 (2026-0...

2026-03-31
CVE-2026-29871
7.5
Infor Multiple Products

A path traversal vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab8251 (2026-01-19) in the Beifong A...

2026-03-29
CVE-2026-29870
7.6
Unknown Multiple Products

A directory traversal vulnerability in the agentic-context-engine project versions up to 0

2026-04-01
CVE-2026-29858
7.5
Infor Multiple Products

A lack of path validation in aaPanel v7

2026-03-20
CVE-2026-29856
7.5
Unknown Multiple Products

An issue in the VirtualHost configuration handling/parser component of aaPanel v7

2026-03-20
CVE-2026-29839
8.8
HP Multiple Products

DedeCMS v5

2026-03-25
CVE-2026-2983
7.3
HP of the

A vulnerability was determined in SourceCodester Student Result Management System 1

2026-02-24
CVE-2026-2981
8.8
UTT Multiple Products

A vulnerability was found in UTT HiPER 810G up to 1

2026-02-23
CVE-2026-2980
7.2
UTT Multiple Products

A vulnerability has been found in UTT HiPER 810G up to 1

2026-02-23
CVE-2026-29796
Analyzed
9.4
OCPP Infrastructure WebSocket Endpoint

A critical authentication flaw in OCPP WebSocket endpoints allows unauthenticated attackers to impersonate charging stations and manipulate backend co...

2026-03-21
CVE-2026-29789
Analyzed
9.9
HP applications into

Vito versions prior to 3.20.3 contain a missing authorization check in workflow site-creation actions, allowing authenticated attackers to manage site...

2026-03-07