17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 5751-5800 of 17426 CVEs Page 116 of 349
CVE-2026-2691
7.3
HP Multiple Products

A vulnerability has been found in itsourcecode Event Management System 1

2026-02-20
CVE-2026-2690
7.3
HP Multiple Products

A flaw has been found in itsourcecode Event Management System 1

2026-02-20
CVE-2026-2689
7.3
HP Multiple Products

A vulnerability was detected in itsourcecode Event Management System 1

2026-02-20
CVE-2026-26862
8.3
SDK Multiple Products

CleverTap Web SDK version 1

2026-02-28
CVE-2026-26861
8.3
SDK Multiple Products

CleverTap Web SDK version 1

2026-02-28
CVE-2026-2686
Analyzed
9.8
SECCN Dingcheng G10

A command injection vulnerability in the SECCN Dingcheng G10 login script allows unauthenticated remote attackers to execute OS commands via the User...

2026-02-19
CVE-2026-2684
7.3
Arch Multiple Products

A vulnerability was determined in Tsinghua Unigroup Electronic Archives System up to 3

2026-02-19
CVE-2026-26832
Analyzed
9.8
Unknown node-tesseract-ocr

The node-tesseract-ocr npm package allows OS command injection in the recognize() function. File path parameters are concatenated into shell commands...

2026-03-26
CVE-2026-26830
Analyzed
9.8
Unknown pdf-image

The pdf-image npm package is vulnerable to OS command injection via the pdfFilePath parameter. This occurs due to improper interpolation of user paths...

2026-03-26
CVE-2026-26829
7.5
Unknown Multiple Products

A NULL pointer dereference in the safe_atou64 function (src/misc

2026-03-24
CVE-2026-26828
7.5
Unknown Multiple Products

A NULL pointer dereference in the daap_reply_playlists function (src/httpd_daap

2026-03-24
CVE-2026-26794
8.8
Unknown Multiple Products

GL-iNet GL-AR300M16 v4

2026-03-14
CVE-2026-26793
Analyzed
9.8
GL-iNet GL-AR300M16

The GL-iNet GL-AR300M16 router contains a command injection vulnerability in the `set_config` function, allowing for arbitrary command execution.

2026-03-13
CVE-2026-26742
8.1
Autopilot Multiple Products

PX4 Autopilot versions 1

2026-03-12
CVE-2026-26741
8.1
Autopilot Multiple Products

PX4 Autopilot versions 1

2026-03-12
CVE-2026-26740
8.2
Unknown Multiple Products

Buffer Overflow vulnerability in giflib v

2026-03-19
CVE-2026-26738
7.8
Uderzo Software Multiple Products

Buffer Overflow vulnerability in Uderzo Software SpaceSniffer v

2026-03-11
CVE-2026-26720
Analyzed
9.8
Twenty CRM Twenty CRM

Twenty CRM is vulnerable to arbitrary code execution via the local.driver.ts module, allowing a remote attacker to compromise the application server.

2026-03-03
CVE-2026-26713
Analyzed
9.8
HP Simple Food Order System

The Simple Food Order System v1.0 contains a critical SQL Injection vulnerability in the cancel-order.php script, posing a risk of unauthorized databa...

2026-03-03
CVE-2026-26712
Analyzed
9.8
HP Simple Food Order System

The Simple Food Order System v1.0 is vulnerable to SQL Injection in the view-ticket-admin.php file, allowing attackers to compromise the administrativ...

2026-03-03
CVE-2026-26711
Analyzed
9.8
HP Simple Food Order System

Simple Food Order System v1.0 is vulnerable to SQL Injection in the view-ticket.php file, allowing unauthenticated attackers to extract sensitive info...

2026-03-03
CVE-2026-26710
Analyzed
9.8
HP Simple Food Order System

The Simple Food Order System v1.0 is vulnerable to a critical SQL Injection in the edit-orders.php router, allowing for full database compromise.

2026-03-03
CVE-2026-2670
7.2
Unknown Multiple Products

A vulnerability was identified in Advantech WISE-6610 1

2026-02-19
CVE-2026-26699
8.8
HP Multiple Products

sourcecodester Personnel Property Equipment System v1

2026-03-03
CVE-2026-26682
7.8
Unknown Multiple Products

An issue in fastCMS before v

2026-02-27
CVE-2026-2668
7.3
Unknown Multiple Products

A vulnerability was found in Rongzhitong Visual Integrated Command and Dispatch Platform up to 20260206

2026-02-19
CVE-2026-26673
7.5
Mini Multiple Products

An issue in DJI Mavic Mini, Spark, Mavic Air, Mini, Mini SE 0

2026-03-05
CVE-2026-2652
8.6
Unknown Multiple Products

A vulnerability in mlflow/mlflow versions 3

2026-05-15
CVE-2026-26514
7.5
Unknown Multiple Products

An Argument Injection vulnerability exists in bird-lg-go before commit 6187a4e

2026-03-05
CVE-2026-2650
8.8
Google Chrome prior

Heap buffer overflow in Media in Google Chrome prior to 145

2026-02-19
CVE-2026-2649
8.8
Google Chrome prior

Integer overflow in V8 in Google Chrome prior to 145

2026-02-19
CVE-2026-2648
8.8
Google Chrome prior

Heap buffer overflow in PDFium in Google Chrome prior to 145

2026-02-20
CVE-2026-26478
Analyzed
9.8
Mobvoi Tichome Tichome Mini

A shell command injection vulnerability in Mobvoi Tichome Mini allows unauthenticated remote attackers to execute arbitrary code as root via specially...

2026-03-05
CVE-2026-26477
Analyzed
7.5
HP file

An issue in Dokuwiki v

2026-04-04
CVE-2026-26462
Analyzed
7.3
Unknown Multiple Products

Offline Hospital Management System 5

2026-05-20
CVE-2026-26422
Analyzed
8.4
Unknown ipc

clash-verge-service-ipc before 2

2026-06-08
CVE-2026-26418
7.5
Recon Multiple Products

Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3

2026-03-07
CVE-2026-26417
8.1
Recon Multiple Products

A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3

2026-03-07
CVE-2026-26416
8.8
Recon Multiple Products

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3

2026-03-07
CVE-2026-26369
Analyzed
9.8
Unknown SMART HOME server

A privilege escalation vulnerability in the setUserGroup JSON-RPC method allows low-privileged users to gain administrative control by sending crafted...

2026-02-16
CVE-2026-26368
Analyzed
8.8
HOME SMART HOME server

eNet SMART HOME server 2

2026-02-16
CVE-2026-26366
Analyzed
9.8
Unknown SMART HOME server

The eNet SMART HOME server utilizes default credentials that remain active post-installation, allowing unauthenticated attackers to gain administrativ...

2026-02-16
CVE-2026-26362
8.1
Dell Unisphere for

Dell Unisphere for PowerMax, version(s) 10

2026-02-20
CVE-2026-26360
8.1
Dell Unisphere for

Dell Unisphere for PowerMax, version(s) 10

2026-02-20
CVE-2026-26359
8.8
Dell Unisphere for

Dell Unisphere for PowerMax, version(s) 10

2026-02-20
CVE-2026-26358
8.8
Dell Unisphere for

Dell Unisphere for PowerMax, version(s) 10

2026-02-20
CVE-2026-26354
8.1
Dell PowerProtect Data

Dell PowerProtect Data Domain with Domain Operating System (DD OS) of Feature Release versions 7

2026-04-23
CVE-2026-2635
Analyzed
9.8
MLflow MLflow

MLflow contains a critical authentication bypass vulnerability due to hard-coded default credentials in the basic_auth.ini file, allowing remote attac...

2026-02-21
CVE-2026-26339
Analyzed
9.8
Hyland Alfresco Multiple Products

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve remote code execution through the argument injection vulnerability,...

2026-02-20
CVE-2026-26337
8.2
Unknown Multiple Products

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through th...

2026-02-20