17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 6251-6300 of 17426 CVEs Page 126 of 349
CVE-2026-24750
7.6
Unknown Multiple Products

Kiteworks is a private data network (PDN)

2026-03-26
CVE-2026-24747
8.8
PyTorch Multiple Products

PyTorch is a Python package that provides tensor computation

2026-01-28
CVE-2026-24741
8.1
ConvertXis Multiple Products

ConvertXis a self-hosted online file converter

2026-01-28
CVE-2026-2474
7.5
Unknown Multiple Products

Crypt::URandom versions from 0

2026-02-18
CVE-2026-24737
Analyzed
8.1
Unknown Multiple Products

jsPDF is a library to generate PDFs in JavaScript

2026-02-03
CVE-2026-24736
Analyzed
9.1
Unknown Multiple Products

Squidex is an open source headless content management system and content management hub. Versions of the application up to and including 7.21.0 allow...

2026-01-28
CVE-2026-24735
Analyzed
7.5
Apache Answer

Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer

2026-02-05
CVE-2026-24731
Analyzed
9.4
OCPP Implementations OCPP WebSocket Endpoint

Unauthenticated attackers can impersonate EV charging stations due to missing authentication mechanisms in OCPP WebSocket endpoints, enabling data man...

2026-02-27
CVE-2026-24724
Analyzed
8.1
QNAP File Station 6

An incorrect authorization vulnerability has been reported to affect File Station 6

2026-06-14
CVE-2026-24714
7.5
Netgear Multiple Products

Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box

2026-01-30
CVE-2026-2471
Analyzed
7.5
HP is vulnerable

The WP Mail Logging plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1

2026-02-28
CVE-2026-24708
8.2
Nova Multiple Products

An issue was discovered in OpenStack Nova before 30

2026-02-19
CVE-2026-24696
7.5
Unknown Multiple Products

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests

2026-03-08
CVE-2026-24695
8
Pro Multiple Products

An OS command injection vulnerability exists in XWEB Pro version 1

2026-02-27
CVE-2026-24694
Analyzed
7.8
Cloud Multiple Products

The installer for Roland Cloud Manager ver

2026-02-03
CVE-2026-2469
7.6
HP due to

Versions of the package directorytree/imapengine before 1

2026-02-14
CVE-2026-24689
8
Pro Multiple Products

An OS command injection vulnerability exists in XWEB Pro version 1

2026-02-27
CVE-2026-2468
7.5
WordPress is vulnerable

The Quentn WP plugin for WordPress is vulnerable to SQL Injection via the 'qntn_wp_access' cookie in all versions up to, and including, 1

2026-03-22
CVE-2026-24672
Analyzed
7.3
Unknown Multiple Products

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system

2026-02-04
CVE-2026-24669
Analyzed
7.8
Unknown Multiple Products

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system

2026-02-04
CVE-2026-24665
Analyzed
8.7
Unknown Multiple Products

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system

2026-02-04
CVE-2026-24663
Analyzed
9
Copeland XWEB Pro

An unauthenticated OS command injection vulnerability in Copeland XWEB Pro allows remote code execution via a crafted request to the libraries install...

2026-02-27
CVE-2026-24660
8.1
Unknown Multiple Products

A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d20315b

2026-04-08
CVE-2026-2465
8.8
Hardware Multiple Products

Incorrect Authorization vulnerability in E-Kalite Software Hardware Engineering Design and Internet Services Industry and Trade Ltd

2026-05-13
CVE-2026-24637
Analyzed
8.5
PowerPress PowerPress Podcasting

Contributor SQL Injection in PowerPress Podcasting <= 11

2026-06-16
CVE-2026-24635
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in DevsBlink EduBlink Core edubl...

2026-01-24
CVE-2026-24624
7.2
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in saeros1984 Neoforum neoforum allows Blind SQL In...

2026-01-24
CVE-2026-24609
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Laurent laurent...

2026-01-24
CVE-2026-24608
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Laurent Core la...

2026-01-24
CVE-2026-24572
Analyzed
8.8
Nelio Software Nelio Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nelio Software Nelio Content nelio-content allow...

2026-01-24
CVE-2026-24517
8
Pro Multiple Products

An OS command injection vulnerability exists in XWEB Pro version 1

2026-02-27
CVE-2026-24516
8.8
Agent Droplet Agent

A command injection vulnerability exists in DigitalOcean Droplet Agent through 1

2026-03-25
CVE-2026-24512
Analyzed
8.8
Nginx cthe

A security issue was discovered in ingress-nginx cthe `rules

2026-02-04
CVE-2026-24506
7.2
Dell PowerProtect Data

Dell PowerProtect Data Domain, versions 7

2026-04-21
CVE-2026-24505
7.2
Dell PowerProtect Data

Dell PowerProtect Data Domain, versions 8

2026-04-21
CVE-2026-24504
7.2
Dell PowerProtect Data

Dell PowerProtect Data Domain, versions 7

2026-04-21
CVE-2026-24502
Analyzed
8.8
Dell vPro Out

Dell Command | Intel vPro Out of Band, versions prior to 4

2026-03-04
CVE-2026-24494
Analyzed
9.8
Unknown Online Ordering System

An unauthenticated SQL injection vulnerability exists in the Order Up Online Ordering System 1.0 via the store_id parameter in the /api/integrations/g...

2026-02-23
CVE-2026-24491
7.5
Unknown Multiple Products

FreeRDP is a free implementation of the Remote Desktop Protocol

2026-02-11
CVE-2026-24490
8.1
MobSF Multiple Products

MobSF is a mobile application security testing tool used

2026-01-27
CVE-2026-24486
Analyzed
8.6
Unknown Multiple Products

Python-Multipart is a streaming multipart parser for Python

2026-01-27
CVE-2026-24485
7.5
Arch Multiple Products

ImageMagick is free and open-source software used for editing and manipulating digital images

2026-02-24
CVE-2026-24481
Analyzed
7.5
Adobe Photoshop

ImageMagick is free and open-source software used for editing and manipulating digital images

2026-02-24
CVE-2026-2448
8.8
WordPress is vulnerable

The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2

2026-03-03
CVE-2026-24478
7.2
AnythingLLM Multiple Products

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting

2026-01-27
CVE-2026-24470
Analyzed
8.1
Skipper Multiple Products

Skipper is an HTTP router and reverse proxy for service composition

2026-01-27
CVE-2026-2447
8.8
Unknown Multiple Products

Heap buffer overflow in libvpx

2026-02-18
CVE-2026-24469
7.5
HTTP Multiple Products

C++ HTTP Server is an HTTP/1

2026-01-24
CVE-2026-24467
Analyzed
9
AWS Multiple Products

OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests. Starting in ver...

2026-04-21
CVE-2026-24465
Analyzed
9.8
Unknown Multiple Products

Stack-based buffer overflow vulnerability exists in ELECOM wireless LAN access point devices. A crafted packet may lead to arbitrary code execution.

2026-02-03