17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 5301-5350 of 17426 CVEs Page 107 of 349
CVE-2026-28817
8.1
Unknown Multiple Products

A race condition was addressed with improved state handling

2026-03-26
CVE-2026-28815
Analyzed
7.5
HP X-Wing HPKE Implementation

A remote attacker can supply a short X-Wing HPKE encapsulated key and trigger an out-of-bounds read in the C decapsulation path, potentially causing a...

2026-04-04
CVE-2026-2881
8.8
D-Link DWR

A vulnerability has been found in D-Link DWR-M960 1

2026-02-22
CVE-2026-28806
Analyzed
8.8
Unknown Multiple Products

Improper Authorization vulnerability in nerves-hub nerves_hub_web allows cross-organization device control via device bulk actions and device update A...

2026-05-28
CVE-2026-28805
Analyzed
8.8
MySQL database

OpenSTAManager is an open source management software for technical assistance and invoicing

2026-04-03
CVE-2026-28798
Analyzed
9
Cloudflare Tunnel

ZimaOS versions prior to 1.5.3 contain a proxy endpoint vulnerability. When exposed via Cloudflare Tunnel, unauthenticated attackers can access intern...

2026-04-04
CVE-2026-28793
8.4
Unknown Multiple Products

Tina is a headless content management system

2026-03-13
CVE-2026-28792
Analyzed
9.6
TinaCMS TinaCMS CLI

TinaCMS CLI is vulnerable to a browser-based drive-by attack that allows remote attackers to read, write, or delete files on developer machines.

2026-03-13
CVE-2026-28791
7.4
Unknown Multiple Products

Tina is a headless content management system

2026-03-14
CVE-2026-28790
7.5
Unknown Multiple Products

OliveTin gives access to predefined shell commands from a web interface

2026-03-07
CVE-2026-28789
7.5
Unknown Multiple Products

OliveTin gives access to predefined shell commands from a web interface

2026-03-07
CVE-2026-28787
8.2
Unknown Multiple Products

OneUptime is a solution for monitoring and managing online services

2026-03-06
CVE-2026-28779
7.5
Apache Airflow versions

Apache Airflow versions 3

2026-03-18
CVE-2026-2877
8.8
Tenda A18

A vulnerability has been found in Tenda A18 15

2026-02-22
CVE-2026-28766
Analyzed
9.3
Infor Gardyn

A critical vulnerability in a Gardyn endpoint allows unauthenticated access to all registered user account information. This flaw permits total data e...

2026-04-04
CVE-2026-28764
Analyzed
7.8
Unknown Multiple Products

MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability

2026-05-22
CVE-2026-28761
8.1
Infor Multiple Products

Cross-site request forgery vulnerability exists in Musetheque V4 Information Disclosure for IPKNOWLEDGE V4L1 rev2203

2026-05-16
CVE-2026-28760
7.8
Microsoft Multiple Products

The installer of RATOC RAID Monitoring Manager for Windows searches the current directory to load certain DLLs

2026-03-26
CVE-2026-2876
8.8
Tenda A18

A vulnerability was determined in Tenda A18 15

2026-02-22
CVE-2026-28756
7.3
Microsoft Exchange Reporter

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Permissions based on Distribution Groups report

2026-04-05
CVE-2026-28754
7.3
Microsoft Exchange Reporter

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Distribution Lists report

2026-04-05
CVE-2026-28744
Analyzed
8.1
Gitea Gitea Open Source Git Server

Gitea versions up to and including 1

2026-07-04
CVE-2026-28742
Analyzed
9.8
Naxclow Smart Doorbell X3, X Smart Home, V720, and ix cam

Naxclow devices use a hard-coded, platform-wide salt for request signing, allowing unauthenticated attackers to forge requests and impersonate users a...

2026-06-13
CVE-2026-28740
Analyzed
7.1
Intel Gitea Open Source Git Server

Gitea versions up to and including 1

2026-07-05
CVE-2026-2874
8.8
Tenda A21

A flaw has been found in Tenda A21 1

2026-02-22
CVE-2026-28737
Analyzed
8.7
Intel Gitea Open Source Git Server

Gitea versions from 1

2026-07-04
CVE-2026-2873
8.8
Tenda A21

A vulnerability was detected in Tenda A21 1

2026-02-22
CVE-2026-28727
7.8
Acronis Cyber Protect

Local privilege escalation due to insecure Unix socket permissions

2026-03-07
CVE-2026-2872
8.8
Tenda A21

A security vulnerability has been detected in Tenda A21 1

2026-02-22
CVE-2026-28710
8.1
Linux Multiple Products

Sensitive information disclosure and manipulation due to improper authentication

2026-03-06
CVE-2026-2871
8.8
Tenda A21

A weakness has been identified in Tenda A21 1

2026-02-22
CVE-2026-28704
7.8
Unknown Multiple Products

Emocheck insecurely loads Dynamic Link Libraries (DLLs)

2026-04-10
CVE-2026-28703
7.3
Microsoft Exchange Reporter

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Mails Exchanged Between Users report

2026-04-05
CVE-2026-28701
Analyzed
9.8
Daktronics VFC-DMP-5000

Daktronics VFC-DMP-5000 firmware contains a directory traversal vulnerability, allowing remote users to escape intended directories and enumerate arbi...

2026-06-27
CVE-2026-2870
8.8
Tenda A21

A security flaw has been discovered in Tenda A21 1

2026-02-22
CVE-2026-28699
Analyzed
8.1
Intel Gitea Open Source Git Server

Gitea versions up to and including 1

2026-07-04
CVE-2026-28693
Analyzed
8.1
ImageMagick Studio LLC ImageMagick

ImageMagick is free and open-source software used for editing and manipulating digital images

2026-03-10
CVE-2026-28691
7.5
Unknown Multiple Products

ImageMagick is free and open-source software used for editing and manipulating digital images

2026-03-10
CVE-2026-28683
8.7
Unknown Multiple Products

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support

2026-03-06
CVE-2026-28681
8.1
Unknown Multiple Products

Internet Routing Registry daemon version 4 is an IRR database server, processing IRR objects in the RPSL format

2026-03-07
CVE-2026-28680
Analyzed
9.3
Ghostfolio Ghostfolio

Ghostfolio versions prior to 2.245.0 are vulnerable to a full-read SSRF in the manual asset import feature, allowing attackers to exfiltrate cloud met...

2026-03-07
CVE-2026-28679
8.6
Unknown Multiple Products

Home-Gallery

2026-03-06
CVE-2026-28678
Analyzed
8.1
DSA Study Hub DSA Study Hub Web Application

DSA Study Hub is an interactive educational web application

2026-03-08
CVE-2026-28677
8.2
Arch and generative

OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI

2026-03-06
CVE-2026-28676
8.8
Arch and generative

OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI

2026-03-06
CVE-2026-28674
7.2
Unknown Multiple Products

xiaoheiFS is a self-hosted financial and operational system for cloud service businesses

2026-03-19
CVE-2026-28673
7.2
Unknown Multiple Products

xiaoheiFS is a self-hosted financial and operational system for cloud service businesses

2026-03-19
CVE-2026-2867
Analyzed
7.3
HP Multiple Products

A vulnerability was determined in itsourcecode Vehicle Management System 1

2026-02-22
CVE-2026-2865
7.3
HP of the

A vulnerability was found in itsourcecode Agri-Trading Online Shopping System 1

2026-02-21
CVE-2026-2857
8.8
D-Link DWR

A vulnerability was determined in D-Link DWR-M960 1

2026-02-21