17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 5201-5250 of 17426 CVEs Page 105 of 349
CVE-2026-29784
Analyzed
7.5
Unknown Multiple Products

Ghost is a Node

2026-03-08
CVE-2026-29779
Analyzed
7.5
Cloudflare Workers

UptimeFlare is a serverless uptime monitoring & status page solution, powered by Cloudflare Workers

2026-03-08
CVE-2026-29778
7.1
Unknown Multiple Products

pyLoad is a free and open-source download manager written in Python

2026-03-08
CVE-2026-29648
8.8
Unknown Multiple Products

In OpenXiangShan NEMU, when Smstateen is enabled, clearing mstateen0

2026-04-22
CVE-2026-29645
7.5
Arch Multiple Products

NEMU (OpenXiangShan/NEMU) before v2025

2026-04-22
CVE-2026-29642
7.8
Unknown Multiple Products

A local attacker who can execute privileged CSR operations (or can induce firmware to do so) performs carefully crafted reads/writes to menvcfg (e

2026-04-22
CVE-2026-2962
8.8
D-Link DWR

A vulnerability was found in D-Link DWR-M960 1

2026-02-23
CVE-2026-29611
7.5
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-29610
8.8
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-2961
8.8
D-Link DWR

A vulnerability has been found in D-Link DWR-M960 1

2026-02-23
CVE-2026-29609
7.5
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-2960
8.8
D-Link DWR

A flaw has been found in D-Link DWR-M960 1

2026-02-23
CVE-2026-2959
8.8
D-Link DWR

A vulnerability was detected in D-Link DWR-M960 1

2026-02-23
CVE-2026-2958
8.8
D-Link DWR

A security vulnerability has been detected in D-Link DWR-M960 1

2026-02-23
CVE-2026-2952
7.3
HP of the

A flaw has been found in Vaelsys 4

2026-02-23
CVE-2026-29514
8.8
NetBox Multiple Products

NetBox versions 4

2026-05-05
CVE-2026-2944
7.3
HP of the

A security flaw has been discovered in Tosei Online Store Management System ネット店舗管理システム 1

2026-02-23
CVE-2026-2942
Analyzed
9.8
WordPress is vulnerable

The ProSolution WP Client plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation, enabling potential Remote...

2026-04-09
CVE-2026-2941
8.8
WordPress is vulnerable

The Linksy Search and Replace plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'linksy...

2026-03-21
CVE-2026-2940
7.3
Infor Multiple Products

A vulnerability was determined in Zaher1307 tiny_web_server up to 8d77b1044a0ca3a5297d8726ac8aa2cf944d481b

2026-02-23
CVE-2026-2938
Analyzed
7.3
HP Multiple Products

A vulnerability has been found in SourceCodester Student Result Management System 1

2026-02-22
CVE-2026-2936
Analyzed
7.2
WordPress is vulnerable

The Visitor Traffic Real Time Statistics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'page_title' parameter in all versi...

2026-04-05
CVE-2026-2935
7.2
UTT Multiple Products

A weakness has been identified in UTT HiPER 810G up to 1

2026-02-23
CVE-2026-2931
8.8
WordPress is vulnerable

The Amelia Booking plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 9

2026-03-26
CVE-2026-2929
8.8
D-Link DWR

A vulnerability was determined in D-Link DWR-M960 1

2026-02-22
CVE-2026-2928
8.8
D-Link DWR

A vulnerability was found in D-Link DWR-M960 1

2026-02-22
CVE-2026-2927
8.8
D-Link DWR

A vulnerability has been found in D-Link DWR-M960 1

2026-02-22
CVE-2026-2926
8.8
D-Link DWR

A flaw has been found in D-Link DWR-M960 1

2026-02-22
CVE-2026-2925
8.8
D-Link DWR

A vulnerability was detected in D-Link DWR-M960 1

2026-02-22
CVE-2026-2923
7.8
Unknown Multiple Products

GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability

2026-03-17
CVE-2026-29226
Analyzed
7.3
Apache OFBiz via

Server-Side Request Forgery (SSRF) vulnerability in Apache OFBiz via Content component operations

2026-05-20
CVE-2026-2922
7.8
Unknown Multiple Products

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability

2026-03-17
CVE-2026-2921
7.8
Unknown Multiple Products

GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability

2026-03-17
CVE-2026-29205
8.6
Unknown Multiple Products

Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoint...

2026-05-14
CVE-2026-29204
Analyzed
9.1
HP Multiple Products

Insufficient ownership check in `clientarea.php` allows an authenticated client area user to submit requests using another user’s `addonId` without an...

2026-05-13
CVE-2026-29203
Analyzed
8.8
Unknown Multiple Products

A chmod call in the cPanel Nova plugin's Cpanel::Nova::Connector follows symlinks, allowing setting root permissions on arbitrary system files or dire...

2026-05-09
CVE-2026-29202
Analyzed
8.8
Unknown Multiple Products

Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already auth...

2026-05-09
CVE-2026-2920
7.8
Unknown Multiple Products

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability

2026-03-17
CVE-2026-29199
8.1
HP Multiple Products

phpBB before 3

2026-05-05
CVE-2026-29198
Analyzed
9.8
Rocket.Chat Rocket.Chat

A NoSQL injection vulnerability in Rocket.Chat allows unauthenticated attackers to perform account takeovers of the first user when a specific OAuth c...

2026-04-24
CVE-2026-29193
8.2
Zitadel Multiple Products

ZITADEL is an open source identity management platform

2026-03-08
CVE-2026-29192
7.7
Zitadel Multiple Products

ZITADEL is an open source identity management platform

2026-03-08
CVE-2026-29191
Analyzed
9.3
Zitadel Zitadel Identity Management Platform

A critical XSS vulnerability in the Zitadel login V2 interface's /saml-post endpoint could lead to unauthorized account takeovers.

2026-03-08
CVE-2026-29189
8.1
Unknown Multiple Products

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application

2026-03-20
CVE-2026-29187
8.1
Arch functionality

OpenEMR is a free and open source electronic health records and medical practice management application

2026-03-26
CVE-2026-29186
7.7
Unknown Multiple Products

Backstage is an open framework for building developer portals

2026-03-08
CVE-2026-29183
Analyzed
9.3
SiYuan SiYuan

SiYuan versions prior to 3.5.9 contain an unauthenticated reflected XSS vulnerability in the dynamic icon API endpoint, allowing JavaScript execution...

2026-03-07
CVE-2026-29174
8.8
Craft Multiple Products

Craft Commerce is an ecommerce platform for Craft CMS

2026-03-12
CVE-2026-29172
8.8
Craft Multiple Products

Craft Commerce is an ecommerce platform for Craft CMS

2026-03-12
CVE-2026-29169
7.5
Apache HTTP Server

A NULL pointer dereference in mod_dav_lock in Apache HTTP Server 2

2026-05-05