17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 7501-7550 of 17426 CVEs Page 151 of 349
CVE-2026-13164
Analyzed
8.8
Mailerup Mailerup

Missing Authentication for Critical Function (CWE-306) in the RegisterView (apps/accounts/views

2026-06-25
CVE-2026-1316
7.2
WordPress is vulnerable

The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'media[]

2026-02-14
CVE-2026-13149
Analyzed
7.7
Julian Gruber brace-expansion

brace-expansion through 5

2026-07-01
CVE-2026-13132
Analyzed
8.3
GeoVision GeoWebPlayer

GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud) is an addon that can be installed with various GeoVi...

2026-07-02
CVE-2026-13131
Analyzed
8.3
GeoVision GeoWebPlayer

GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud) is an addon that can be installed with various GeoVi...

2026-07-02
CVE-2026-1313
8.3
WordPress is vulnerable

The MimeTypes Link Icons plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3

2026-03-21
CVE-2026-13125
Analyzed
8.8
GeoVision GeoWebPlayer

GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud) is an addon that can be installed with various GeoVi...

2026-07-02
CVE-2026-1311
8.8
WordPress is vulnerable

The Worry Proof Backup plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 0

2026-02-26
CVE-2026-13084
Analyzed
8.7
WatchGuard Fireware OS

A null pointer dereference vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to create a denial-of-service (DoS) con...

2026-07-03
CVE-2026-1306
Analyzed
9.8
WordPress is vulnerable

The midi-Synth WordPress plugin allows unauthenticated arbitrary file uploads via the 'export' AJAX action, potentially leading to remote code executi...

2026-02-14
CVE-2026-13054
Analyzed
8.6
WatchGuard Fireware OS

A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticated attacker to write arbitrary files on...

2026-07-03
CVE-2026-13053
Analyzed
8.6
WatchGuard Fireware OS

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via a spec...

2026-07-03
CVE-2026-13050
Analyzed
8.6
WatchGuard Fireware OS

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS networkd process could allow an authenticated privileged user to execute arbitrary code...

2026-07-03
CVE-2026-13038
Analyzed
8.8
Microsoft Chrome

Use after free in Autofill in Google Chrome on Windows prior to 149

2026-06-25
CVE-2026-13036
Analyzed
8.8
Google Chrome

Use after free in Blink in Google Chrome prior to 149

2026-06-25
CVE-2026-13035
Analyzed
8.8
Google Chrome

Use after free in Bluetooth in Google Chrome on Mac prior to 149

2026-06-25
CVE-2026-13033
Analyzed
8.8
Google Chrome

Out of bounds read and write in Blink>InterestGroups in Google Chrome prior to 149

2026-06-25
CVE-2026-13032
Analyzed
9.6
Google Chrome

A critical use-after-free vulnerability in Google Chrome's WebGL component on Android allows remote attackers to perform a sandbox escape via crafted...

2026-06-25
CVE-2026-13031
Analyzed
8.8
Google Chrome

Use after free in Blink in Google Chrome prior to 149

2026-06-25
CVE-2026-13028
Analyzed
9.6
Google Chrome

A use-after-free vulnerability in the WebGL component of Google Chrome on Android allows remote attackers to execute a sandbox escape via a malicious...

2026-06-25
CVE-2026-13027
Analyzed
8.8
Google Chrome

Use after free in FileSystem in Google Chrome prior to 149

2026-06-25
CVE-2026-13026
Analyzed
8.8
Google Chrome

Use after free in Digital Credentials in Google Chrome on Mac prior to 149

2026-06-25
CVE-2026-13025
Analyzed
8.3
Google Chrome

Race in DevTools in Google Chrome prior to 149

2026-06-25
CVE-2026-12975
Analyzed
8.5
Red Hat Apicurio Registry

A flaw was found in Apicurio Registry

2026-06-26
CVE-2026-12958
Analyzed
7.8
AWS Language Servers for AWS

Missing symlink validation in Language Servers for AWS may allow an arbitrary file write outside of the workspace trust boundary

2026-06-24
CVE-2026-12957
Analyzed
7.8
Intel Language Servers for AWS

Improper trust boundary enforcement in Language Servers for AWS before version 1

2026-06-24
CVE-2026-1294
7.2
WordPress is vulnerable

The All In One Image Viewer Block plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1

2026-02-06
CVE-2026-12923
Analyzed
7.5
WordPress Youtube Showcase

The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and including 4

2026-07-01
CVE-2026-12921
Analyzed
8.4
AzeoTech DAQFactory

In AzeoTech DAQFactory versions 21

2026-06-26
CVE-2026-12912
Analyzed
7.3
Red Hat Red Hat Enterprise Linux 10

A flaw was found in libtiff

2026-06-30
CVE-2026-12897
Analyzed
8.4
Horner Automation Cscape

Horner Automation Cscape versions prior to 10

2026-06-26
CVE-2026-12866
Analyzed
9.8
Unknown expr-eval

The expr-eval package is vulnerable to arbitrary code execution via the toJSFunction() API due to insufficient sandboxing of user-supplied expressions...

2026-06-23
CVE-2026-12856
Analyzed
8.8
Red Hat OpenShift Dev Spaces

A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code

2026-06-30
CVE-2026-12851
Analyzed
9.1
GeoVision GV-I/O Box 4E

An unauthenticated OS command injection vulnerability in the libNetSetObj.so library of GeoVision GV-I/O Box 4E allows remote code execution via a cra...

2026-06-24
CVE-2026-12850
Analyzed
9.1
GeoVision GV-I/O Box 4E

An unauthenticated OS command injection vulnerability in the libNetSetObj.so library of GeoVision GV-I/O Box 4E allows remote code execution via a cra...

2026-06-24
CVE-2026-1285
Analyzed
7.5
Unknown Multiple Products

An issue was discovered in 6

2026-02-04
CVE-2026-12849
Analyzed
9.1
GeoVision GV-I/O Box 4E

An unauthenticated OS command injection vulnerability in the libNetSetObj.so library of GeoVision GV-I/O Box 4E allows remote code execution via a cra...

2026-06-24
CVE-2026-12848
Analyzed
10
GeoVision GV-I/O Box 4E

The GeoVision GV-I/O Box 4E contains a stack-based buffer overflow vulnerability in the DVRSearch service, allowing remote code execution via crafted...

2026-06-24
CVE-2026-12847
Analyzed
10
GeoVision GV-I/O Box 4E

A stack-based buffer overflow vulnerability in the GeoVision GV-I/O Box 4E DVRSearch service allows unauthenticated remote attackers to execute arbitr...

2026-06-24
CVE-2026-12846
Analyzed
10
GeoVision GV-I/O Box 4E

A stack-based buffer overflow in the DVRSearch service allows unauthenticated remote attackers to execute arbitrary code via crafted UDP packets.

2026-06-24
CVE-2026-1284
7.8
Release Multiple Products

An Out-Of-Bounds Write vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS 2025 through Release SO...

2026-01-27
CVE-2026-1283
Analyzed
7.8
Intel Multiple Products

A Heap-based Buffer Overflow vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS 2025 through Rele...

2026-01-27
CVE-2026-12819
Analyzed
9.3
Delta Electronics DVP-12SE PLC

The Delta Electronics DVP-12SE Modbus TCP service lacks authentication, allowing unauthenticated attackers to interact with security-sensitive functio...

2026-06-30
CVE-2026-12818
Analyzed
9.3
Delta Electronics DVP-12SE PLC

A resource allocation vulnerability in the Delta Electronics DVP-12SE PLC Modbus TCP service allows for potential denial-of-service conditions.

2026-06-30
CVE-2026-1281
KEV
9.8
Unknown Multiple Products

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

2026-01-30
CVE-2026-12806
Analyzed
8.8
Edimax BR-6478AC V2

A vulnerability has been found in Edimax BR-6478AC V2 1

2026-06-22
CVE-2026-1280
Analyzed
7.5
WordPress Multiple Products

The Frontend File Manager Plugin for WordPress is vulnerable to unauthorized file sharing due to a missing capability check on the 'wpfm_send_file_in_...

2026-01-29
CVE-2026-12795
Analyzed
7.3
BerriAI litellm

A vulnerability was determined in BerriAI litellm up to 1

2026-06-22
CVE-2026-12786
Analyzed
7.8
Ezbsystems UltraISO Premium Edition

A vulnerability has been found in Ezbsystems UltraISO Premium Edition up to 9

2026-06-21
CVE-2026-12784
Analyzed
7.8
IM-Magic Partition Resizer

A weakness has been identified in IM-Magic Partition Resizer up to 7

2026-06-21