17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 951-1000 of 17426 CVEs Page 20 of 349
CVE-2026-6114
Analyzed
9.8
TOTOLINK A7100RU

A remote OS command injection vulnerability exists in the Totolink A7100RU CGI handler via the proto argument.

2026-04-12
CVE-2026-6113
Analyzed
9.8
TOTOLINK A7100RU

A remote OS command injection vulnerability exists in the Totolink A7100RU CGI handler via the ttyEnable argument.

2026-04-12
CVE-2026-6112
Analyzed
9.8
TOTOLINK A7100RU

A remote OS command injection vulnerability exists in the Totolink A7100RU CGI handler via the maxRtrAdvInterval argument.

2026-04-12
CVE-2026-6110
7.3
Infor Multiple Products

A vulnerability was identified in FoundationAgents MetaGPT up to 0

2026-04-12
CVE-2026-6105
Analyzed
7.3
Unknown Multiple Products

A security vulnerability has been detected in perfree go-fastdfs-web up to 1

2026-04-12
CVE-2026-6073
8.7
GitLab has remediated

GitLab has remediated an issue in GitLab EE affecting all versions from 18

2026-05-14
CVE-2026-6070
Analyzed
9.1
WordPress WP-BusinessDirectory

The WP-BusinessDirectory plugin for WordPress contains an unauthenticated arbitrary file deletion vulnerability due to insufficient path validation in...

2026-07-01
CVE-2026-6069
Analyzed
7.5
Netwide Assembler NASM

NASM’s disasm() function contains a stack based buffer overflow when formatting disassembly output, allowing an attacker triggered out-of-bounds write...

2026-04-12
CVE-2026-6067
Analyzed
7.5
Netwide Assembler NASM

A heap buffer overflow vulnerability exists in the Netwide Assembler (NASM) due to a lack of bounds checking in the obj_directive() function

2026-04-12
CVE-2026-6066
7.1
Unknown has released

ConnectWise has released a security update for ConnectWise Automate™ that addresses a behavior in the ConnectWise Automate Solution Center where certa...

2026-04-21
CVE-2026-6057
Analyzed
9.8
Unknown Browser

FalkorDB Browser 1.9.3 contains an unauthenticated path traversal vulnerability in the file upload API, leading to remote code execution.

2026-04-11
CVE-2026-6038
7.3
HP Multiple Products

A vulnerability was identified in code-projects Vehicle Showroom Management System 1

2026-04-12
CVE-2026-6037
7.3
HP Multiple Products

A vulnerability was determined in code-projects Vehicle Showroom Management System 1

2026-04-12
CVE-2026-6036
7.3
HP Multiple Products

A vulnerability was found in code-projects Vehicle Showroom Management System 1

2026-04-12
CVE-2026-6029
Analyzed
9.8
TOTOLINK Multiple Products

A vulnerability was detected in Totolink A7100RU 7.4cu.2313_b20191024. The affected element is the function setVpnAccountCfg of the file /cgi-bin/cste...

2026-04-10
CVE-2026-6028
Analyzed
9.8
TOTOLINK Multiple Products

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Impacted is the function setPptpServerCfg of the file /cgi-bin/cs...

2026-04-10
CVE-2026-6027
Analyzed
9.8
TOTOLINK A7100RU

A remote OS command injection vulnerability in the Totolink A7100RU CGI handler allows unauthenticated remote attackers to execute commands via the en...

2026-04-10
CVE-2026-6026
Analyzed
9.8
TOTOLINK A7100RU

A remote OS command injection vulnerability exists in the Totolink A7100RU CGI handler, allowing unauthenticated attackers to execute commands via the...

2026-04-10
CVE-2026-6025
Analyzed
9.8
TOTOLINK A7100RU

An OS command injection vulnerability in the Totolink A7100RU CGI handler allows unauthenticated remote attackers to execute arbitrary commands via th...

2026-04-10
CVE-2026-6023
8.1
AJAX Multiple Products

In Progress® Telerik® UI for AJAX versions 2024

2026-04-22
CVE-2026-6016
8.8
Tenda AC9

A vulnerability was found in Tenda AC9 15

2026-04-10
CVE-2026-6015
8.8
Tenda AC9

A vulnerability has been found in Tenda AC9 15

2026-04-10
CVE-2026-6014
8.8
D-Link DIR

A flaw has been found in D-Link DIR-513 1

2026-04-10
CVE-2026-6013
8.8
D-Link DIR

A vulnerability was detected in D-Link DIR-513 1

2026-04-10
CVE-2026-6012
8.8
D-Link DIR

A security vulnerability has been detected in D-Link DIR-513 1

2026-04-10
CVE-2026-6002
8.8
DivvyDrive Multiple Products

Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in DivvyDrive Information Technologies Inc

2026-05-08
CVE-2026-6001
8.8
ABIS Technology Multiple Products

Authorization bypass through User-Controlled key vulnerability in ABIS Technology Ltd

2026-05-13
CVE-2026-5997
Analyzed
9.8
TOTOLINK A7100RU

A remote OS command injection vulnerability in the Totolink A7100RU CGI handler allows unauthenticated attackers to execute arbitrary system commands...

2026-04-10
CVE-2026-5996
Analyzed
9.8
TOTOLINK A7100RU

A remote OS command injection vulnerability exists in the Totolink A7100RU CGI handler, allowing unauthenticated attackers to execute arbitrary system...

2026-04-10
CVE-2026-5995
Analyzed
9.8
TOTOLINK A7100RU

The Totolink A7100RU CGI Handler contains an OS command injection vulnerability in the setMiniuiHomeInfoShow function, allowing remote attackers to ex...

2026-04-10
CVE-2026-5994
Analyzed
9.8
TOTOLINK A7100RU

The Totolink A7100RU CGI Handler contains an OS command injection vulnerability in the setTelnetCfg function, allowing remote attackers to execute arb...

2026-04-10
CVE-2026-5993
Analyzed
9.8
TOTOLINK A7100RU

The Totolink A7100RU CGI Handler contains an OS command injection vulnerability in the setWiFiGuestCfg function, allowing remote attackers to execute...

2026-04-10
CVE-2026-5992
8.8
Tenda F451

A vulnerability was determined in Tenda F451 1

2026-04-10
CVE-2026-5991
8.8
Tenda F451

A vulnerability was found in Tenda F451 1

2026-04-10
CVE-2026-5990
8.8
Tenda F451

A vulnerability has been found in Tenda F451 1

2026-04-10
CVE-2026-5989
8.8
Tenda F451

A flaw has been found in Tenda F451 1

2026-04-10
CVE-2026-5988
8.8
Tenda F451

A vulnerability was detected in Tenda F451 1

2026-04-10
CVE-2026-5984
8.8
D-Link DIR

A vulnerability was identified in D-Link DIR-605L 2

2026-04-10
CVE-2026-5983
8.8
D-Link DIR

A vulnerability was determined in D-Link DIR-605L 2

2026-04-10
CVE-2026-5982
8.8
D-Link DIR

A vulnerability was found in D-Link DIR-605L 2

2026-04-10
CVE-2026-5981
8.8
D-Link DIR

A vulnerability has been found in D-Link DIR-605L 2

2026-04-10
CVE-2026-5980
8.8
D-Link DIR

A flaw has been found in D-Link DIR-605L 2

2026-04-10
CVE-2026-5979
8.8
D-Link DIR

A vulnerability was detected in D-Link DIR-605L 2

2026-04-10
CVE-2026-5978
Analyzed
9.8
TOTOLINK A7100RU

The Totolink A7100RU CGI Handler contains an OS command injection vulnerability in the setWiFiAclRules function, allowing remote attackers to execute...

2026-04-10
CVE-2026-5977
Analyzed
9.8
TOTOLINK A7100RU

The Totolink A7100RU CGI Handler contains an OS command injection vulnerability in the setWiFiBasicCfg function, allowing remote attackers to execute...

2026-04-10
CVE-2026-5976
Analyzed
9.8
TOTOLINK A7100RU

The Totolink A7100RU CGI Handler contains an OS command injection vulnerability in the setStorageCfg function, allowing remote attackers to execute ar...

2026-04-10
CVE-2026-5975
Analyzed
9.8
TOTOLINK A7100RU

The Totolink A7100RU CGI Handler contains an OS command injection vulnerability in the setDmzCfg function, allowing remote attackers to execute arbitr...

2026-04-10
CVE-2026-59713
Analyzed
8.1
Leantime Leantime

Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that unconditionally returns true without validating state parameters

2026-07-07
CVE-2026-59712
Analyzed
8.1
Leantime Leantime

Leantime's Users::getUser method in the JSON-RPC API lacks proper authorization checks, allowing authenticated users to retrieve full user credential...

2026-07-07
CVE-2026-5967
8.8
Unknown Multiple Products

ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability

2026-04-21