17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 5351-5400 of 17426 CVEs Page 108 of 349
CVE-2026-28562
Analyzed
8.2
WordPress database

wpForo 2

2026-03-01
CVE-2026-2856
8.8
D-Link DWR

A vulnerability was found in D-Link DWR-M960 1

2026-02-21
CVE-2026-2855
8.8
D-Link DWR

A vulnerability has been found in D-Link DWR-M960 1

2026-02-21
CVE-2026-28548
7.1
Unknown Multiple Products

Vulnerability of improper verification in the email application

2026-03-05
CVE-2026-28542
7.3
Unknown Multiple Products

Permission bypass vulnerability in the system service framework

2026-03-05
CVE-2026-2854
8.8
D-Link DWR

A flaw has been found in D-Link DWR-M960 1

2026-02-21
CVE-2026-28536
Analyzed
9.6
Intel Device Authentication Module

An authentication bypass vulnerability in a device authentication module allows unauthenticated attackers to compromise the integrity and confidential...

2026-03-05
CVE-2026-2853
8.8
D-Link DWR

A vulnerability was detected in D-Link DWR-M960 1

2026-02-21
CVE-2026-28521
7.7
Unknown Multiple Products

arduino-TuyaOpen before version 1

2026-03-17
CVE-2026-28520
8.4
Unknown Multiple Products

arduino-TuyaOpen before version 1

2026-03-17
CVE-2026-28519
8.8
Unknown Multiple Products

arduino-TuyaOpen before version 1

2026-03-17
CVE-2026-28518
7.8
OpenViking Multiple Products

OpenViking versions 0

2026-03-04
CVE-2026-28513
8.5
Pocket Multiple Products

Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services

2026-03-11
CVE-2026-28501
Analyzed
9.8
HP and objects

WWBN AVideo is an open source video platform. Prior to version 24.0, an unauthenticated SQL Injection vulnerability exists in AVideo within the object...

2026-03-06
CVE-2026-28500
8.6
Microsoft Multiple Products

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability

2026-03-18
CVE-2026-28498
7.5
Connect header parameter

Authlib is a Python library which builds OAuth and OpenID Connect servers

2026-03-18
CVE-2026-28496
Analyzed
9.4
FOSSBilling FOSSBilling

FOSSBilling versions prior to 0.8.0 are susceptible to Server-Side Template Injection (SSTI) in the Twig rendering engine, enabling remote code execut...

2026-06-24
CVE-2026-28495
Analyzed
9.6
HP configuration file

GetSimple CMS is a content management system. The massiveAdmin plugin (v6.0.3) bundled with GetSimpleCMS-CE v3.3.22 allows an authenticated administra...

2026-03-11
CVE-2026-28494
7.1
Unknown Multiple Products

ImageMagick is free and open-source software used for editing and manipulating digital images

2026-03-10
CVE-2026-28485
8.4
OpenClaw Multiple Products

OpenClaw versions 2026

2026-03-06
CVE-2026-28484
Analyzed
9.8
Unknown Multiple Products

OpenClaw versions prior to 2026.2.15 contain an option injection vulnerability in the git-hooks/pre-commit hook that allows attackers to stage ignored...

2026-03-06
CVE-2026-2848
7.3
HP Multiple Products

A flaw has been found in SourceCodester Simple Responsive Tourism Website 1

2026-02-21
CVE-2026-28479
7.5
Docker and browser

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-28478
7.5
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-28476
8.3
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-28474
Analyzed
9.8
OpenClaw Nextcloud Talk plugin

OpenClaw's Nextcloud Talk plugin uses mutable display names for allowlist validation. Attackers can bypass access controls by changing their display n...

2026-03-06
CVE-2026-28473
Analyzed
9.8
Unknown Multiple Products

OpenClaw versions prior to 2026.2.2 contain an authorization bypass vulnerability where clients with operator.write scope can approve or deny exec app...

2026-03-06
CVE-2026-28472
Analyzed
9.8
Unknown Multiple Products

OpenClaw versions prior to 2026.2.2 contain a vulnerability in the gateway WebSocket connect handshake in which it allows skipping device identity che...

2026-03-06
CVE-2026-28470
Analyzed
9.8
Unknown Multiple Products

OpenClaw versions prior to 2026.2.2 contain an exec approvals (must be enabled) allowlist bypass vulnerability that allows attackers to execute arbitr...

2026-03-06
CVE-2026-2847
7.2
UTT Multiple Products

A vulnerability was detected in UTT HiPER 520 1

2026-02-22
CVE-2026-28469
Analyzed
9.8
Google Chat monitor

A webhook routing vulnerability in OpenClaw's Google Chat monitor allows cross-account policy misrouting. Attackers can bypass allowlists by exploitin...

2026-03-06
CVE-2026-28468
7.7
OpenClaw Multiple Products

OpenClaw versions 2026

2026-03-07
CVE-2026-28466
8.8
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-06
CVE-2026-28464
Analyzed
9.8
Unknown Multiple Products

OpenClaw versions prior to 2026.2.12 use non-constant-time string comparison for hook token validation, allowing attackers to infer tokens through tim...

2026-03-06
CVE-2026-28463
8.4
Unknown Multiple Products

OpenClaw exec-approvals allowlist validation checks pre-expansion argv tokens but execution uses real shell expansion, allowing safe bins like head, t...

2026-03-06
CVE-2026-28462
7.5
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-28461
7.5
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-19
CVE-2026-2846
7.2
UTT Multiple Products

A security vulnerability has been detected in UTT HiPER 520 1

2026-02-22
CVE-2026-28458
8.1
OpenClaw Multiple Products

OpenClaw version 2026

2026-03-07
CVE-2026-28456
8.4
OpenClaw Multiple Products

OpenClaw versions 2026

2026-03-06
CVE-2026-28454
Analyzed
9.8
Telegram webhook mode

OpenClaw versions prior to 2026.2.2 fail to validate webhook secrets in Telegram webhook mode (must be enabled), allowing unauthenticated HTTP POST re...

2026-03-06
CVE-2026-28453
7.5
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-28451
8.3
Unknown Multiple Products

OpenClaw versions prior to 2026

2026-03-07
CVE-2026-28447
8.1
OpenClaw Multiple Products

OpenClaw versions 2026

2026-03-07
CVE-2026-28446
Analyzed
9.8
Unknown Multiple Products

OpenClaw versions prior to 2026.2.1 with the voice-call extension installed and enabled contain an authentication bypass vulnerability in inbound allo...

2026-03-06
CVE-2026-28442
8.5
Unknown Multiple Products

ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI

2026-03-06
CVE-2026-28435
7.5
Unknown Multiple Products

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library

2026-03-05
CVE-2026-28429
7.5
HP component can

Talishar is a fan-made Flesh and Blood project

2026-03-07
CVE-2026-28426
8.7
Unknown Multiple Products

Statmatic is a Laravel and Git powered content management system (CMS)

2026-02-28
CVE-2026-28425
Analyzed
8
Unknown Multiple Products

Statmatic is a Laravel and Git powered content management system (CMS)

2026-02-28