17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 851-900 of 17426 CVEs Page 18 of 349
CVE-2026-6350
Analyzed
9.8
LG Multiple Products

MailGates/MailAudit developed by Openfind has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the pr...

2026-04-16
CVE-2026-6348
8.8
Unknown Multiple Products

WinMatrix agent developed by Simopro Technology has a Missing Authentication vulnerability, allowing authenticated local attackers to execute arbitrar...

2026-04-16
CVE-2026-6347
Analyzed
7.6
Mattermost Multiple Products

Mattermost versions 11

2026-05-19
CVE-2026-6346
Analyzed
8.7
Mattermost Multiple Products

Mattermost versions 11

2026-05-19
CVE-2026-6322
Analyzed
7.5
Fastify fast-uri

fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitted them as raw delimiters during serializ...

2026-05-06
CVE-2026-6321
Analyzed
7.5
Unknown Multiple Products

fast-uri decoded percent-encoded path separators and dot segments before applying dot-segment removal in its normalize() and equal() functions

2026-05-05
CVE-2026-6320
7.5
WordPress is vulnerable

The Salon Booking System – Free Version plugin for WordPress is vulnerable to Arbitrary File Read in versions up to, and including, 10

2026-05-03
CVE-2026-6319
7.5
Google Chrome on

Use after free in Payments in Google Chrome on Android prior to 147

2026-04-17
CVE-2026-6318
Analyzed
8.8
Google Chrome prior

Use after free in Codecs in Google Chrome prior to 147

2026-04-17
CVE-2026-6317
Analyzed
8.8
Google Chrome prior

Use after free in Cast in Google Chrome prior to 147

2026-04-16
CVE-2026-6316
Analyzed
8.8
Google Chrome prior

Use after free in Forms in Google Chrome prior to 147

2026-04-16
CVE-2026-6315
Analyzed
8.8
Google Chrome on

Use after free in Permissions in Google Chrome on Android prior to 147

2026-04-16
CVE-2026-6314
8.3
Google Chrome prior

Out of bounds write in GPU in Google Chrome prior to 147

2026-04-16
CVE-2026-6311
Analyzed
8.3
Microsoft Chrome on

Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147

2026-04-16
CVE-2026-6310
Analyzed
8.3
Google Chrome prior

Use after free in Dawn in Google Chrome prior to 147

2026-04-16
CVE-2026-6309
8.3
Google Chrome prior

Use after free in Viz in Google Chrome prior to 147

2026-04-16
CVE-2026-6308
7.5
Google Chrome prior

Out of bounds read in Media in Google Chrome prior to 147

2026-04-17
CVE-2026-6307
8.8
Google Chrome prior

Type Confusion in Turbofan in Google Chrome prior to 147

2026-04-16
CVE-2026-6306
Analyzed
8.8
Google Chrome prior

Heap buffer overflow in PDFium in Google Chrome prior to 147

2026-04-17
CVE-2026-6305
Analyzed
8.8
Google Chrome prior

Heap buffer overflow in PDFium in Google Chrome prior to 147

2026-04-16
CVE-2026-6304
8.3
Google Chrome prior

Use after free in Graphite in Google Chrome prior to 147

2026-04-16
CVE-2026-6303
Analyzed
8.8
Google Chrome prior

Use after free in Codecs in Google Chrome prior to 147

2026-04-17
CVE-2026-6302
Analyzed
8.8
Google Chrome prior

Use after free in Video in Google Chrome prior to 147

2026-04-16
CVE-2026-6301
Analyzed
8.8
Google Chrome prior

Type Confusion in Turbofan in Google Chrome prior to 147

2026-04-16
CVE-2026-6300
Analyzed
8.8
Google Chrome prior

Use after free in CSS in Google Chrome prior to 147

2026-04-16
CVE-2026-6299
Analyzed
8.8
Google Chrome prior

Use after free in Prerender in Google Chrome prior to 147

2026-04-16
CVE-2026-6297
Analyzed
8.3
Google Chrome prior

Use after free in Proxy in Google Chrome prior to 147

2026-04-16
CVE-2026-6296
Analyzed
9.6
Google Chrome prior

Heap buffer overflow in ANGLE in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform a sandbox escape via a crafted...

2026-04-16
CVE-2026-6290
8
Unknown Multiple Products

Velociraptor versions prior to 0

2026-04-16
CVE-2026-6284
Analyzed
9.1
Unknown Multiple Products

An attacker with network access to the PLC is able to brute force discover passwords to gain unauthorized access to systems and services. The limited...

2026-04-18
CVE-2026-6281
8.8
Lenovo Personal Cloud

A potential vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user on the local network...

2026-05-14
CVE-2026-6279
Analyzed
9.8
HP is vulnerable

The Avada Builder plugin for WordPress is vulnerable to unauthenticated remote code execution via PHP function injection in the `fusion_get_widget_mar...

2026-05-21
CVE-2026-6274
Analyzed
9.8
DTS Electronics Redline WR3200

A critical authentication bypass vulnerability in DTS Electronics Redline WR3200 allows unauthenticated attackers to access restricted functions due t...

2026-06-06
CVE-2026-6271
Analyzed
9.8
WordPress is vulnerable

The Career Section WordPress plugin is vulnerable to arbitrary file upload due to missing file type validation, enabling remote code execution.

2026-05-14
CVE-2026-6270
Analyzed
9.1
Fastify @fastify/middie

The @fastify/middie package fails to inherit middleware in child plugin scopes, leading to an authentication bypass for unauthenticated requests.

2026-04-17
CVE-2026-6266
8.3
AAP Multiple Products

A flaw was found in the AAP gateway

2026-05-05
CVE-2026-6264
Analyzed
9.8
Unknown Multiple Products

A critical vulnerability in the Talend JobServer and Talend Runtime allows unauthenticated remote code execution via the JMX monitoring port. The atta...

2026-04-14
CVE-2026-6261
Analyzed
8.8
WordPress is vulnerable

The Betheme theme for WordPress is vulnerable to Arbitrary File Upload in versions up to, and including, 28

2026-05-06
CVE-2026-6257
Analyzed
9.1
HP directives that

Vvveb CMS v1.0.8 contains a remote code execution vulnerability in its media management functionality where a missing return statement in the file ren...

2026-04-21
CVE-2026-6249
8.8
HP webshell with

Vvveb CMS 1

2026-04-21
CVE-2026-6248
8.1
WordPress is vulnerable

The wpForo Forum plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to and including 3

2026-04-21
CVE-2026-6235
Analyzed
9.8
WordPress plugin for

The Sendmachine for WordPress plugin is vulnerable to an authorization bypass, allowing unauthenticated attackers to modify SMTP configurations.

2026-04-23
CVE-2026-6229
Analyzed
7.2
Google Royal Elementor Addons for WordPress

The Royal Elementor Addons plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 1

2026-05-02
CVE-2026-6228
8.8
WordPress is vulnerable

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to Privilege Escalation in versions up to and including 3

2026-05-15
CVE-2026-6227
7.2
WordPress is vulnerable

The BackWPup plugin for WordPress is vulnerable to Local File Inclusion via the `block_name` parameter of the `/wp-json/backwpup/v1/getblock` REST end...

2026-04-14
CVE-2026-6226
Analyzed
8.8
WordPress is vulnerable

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to unauthenticated privilege escalation in versions up to and including 3

2026-05-29
CVE-2026-6224
7.3
Unknown Multiple Products

A security flaw has been discovered in nocobase plugin-workflow-javascript up to 2

2026-04-14
CVE-2026-6211
Analyzed
8.7
HP WEOLL

Unrestricted upload of file with dangerous type vulnerability in Global IT Informatics Services Inc

2026-06-13
CVE-2026-6200
8.8
Tenda F456

A vulnerability was determined in Tenda F456 1

2026-04-14
CVE-2026-6199
8.8
Tenda F456

A vulnerability was found in Tenda F456 1

2026-04-14