17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 1301-1350 of 17426 CVEs Page 27 of 349
CVE-2026-56237
Analyzed
9.1
Capgo Capgo

A broken authentication vulnerability in Capgo allows attackers to generate arbitrary, unauthorized API keys, leading to unauthorized access to protec...

2026-06-25
CVE-2026-56233
Analyzed
8.3
Capgo Capgo

Capgo before 12

2026-07-01
CVE-2026-56232
Analyzed
8.8
Capgo Capgo

Capgo before 12

2026-06-25
CVE-2026-56230
Analyzed
8.8
Intel Capgo

Capgo before 12

2026-07-01
CVE-2026-56225
Analyzed
8.3
Capgo Capgo

Capgo before 12

2026-06-24
CVE-2026-56223
Analyzed
8.7
Capgo Capgo

Capgo before 12

2026-06-25
CVE-2026-56219
Analyzed
7.5
Capgo Capgo

Capgo before 12

2026-07-01
CVE-2026-56216
Analyzed
8.8
Capgo Capgo

Capgo before 12

2026-06-20
CVE-2026-56215
Analyzed
8.3
Capgo Capgo

Capgo before 12

2026-06-20
CVE-2026-5617
8.8
WordPress is vulnerable

The Login as User plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1

2026-04-16
CVE-2026-5616
Analyzed
7.3
Jeecg JeecgBoot

A security vulnerability has been detected in JeecgBoot 3

2026-04-06
CVE-2026-56142
Analyzed
9.9
JetBrains Hub

JetBrains Hub is susceptible to privilege escalation by allowing the attachment of unauthorized authentication details to user accounts.

2026-06-20
CVE-2026-56140
Analyzed
9.8
Apache Apache Camel AWS2 SNS

A defense-in-depth hardening change was applied to the Apache Camel AWS2 SNS component to align header filtering strategies, despite no known exploit...

2026-07-07
CVE-2026-5614
Analyzed
8.8
Belkin F9K1015

A security flaw has been discovered in Belkin F9K1015 1

2026-04-06
CVE-2026-56137
Analyzed
8.4
Intel RPG MAKER MV and MZ

RPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc

2026-06-30
CVE-2026-5613
Analyzed
8.8
Belkin F9K1015

A vulnerability was identified in Belkin F9K1015 1

2026-04-06
CVE-2026-56124
Analyzed
7.5
HP phpUploader

phpUploader before 2

2026-06-30
CVE-2026-56123
Analyzed
8.1
Unknown socat

socat versions 1

2026-06-27
CVE-2026-56121
Analyzed
9.8
Feast Feast

Feast contains an unsafe deserialization vulnerability that allows remote code execution via crafted gRPC requests to the registry server.

2026-06-25
CVE-2026-5612
Analyzed
8.8
Belkin F9K1015

A vulnerability was determined in Belkin F9K1015 1

2026-04-06
CVE-2026-56111
Analyzed
9.1
MarlinFirmware Marlin

Marlin firmware contains an out-of-bounds write vulnerability in the M421 G-code handler, allowing attackers to corrupt memory and cause a denial of s...

2026-06-25
CVE-2026-5611
Analyzed
8.8
Belkin F9K1015

A vulnerability was found in Belkin F9K1015 1

2026-04-06
CVE-2026-56104
Analyzed
7.4
Chainlit Chainlit

Chainlit before 2

2026-06-23
CVE-2026-5610
Analyzed
8.8
Belkin F9K1015

A vulnerability has been found in Belkin F9K1015 1

2026-04-06
CVE-2026-56091
Analyzed
8.2
Apache Apache Shiro

When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass

2026-06-26
CVE-2026-5609
8.8
Tenda i12

A flaw has been found in Tenda i12 1

2026-04-06
CVE-2026-5608
Analyzed
8.8
Belkin F9K1122

A vulnerability was detected in Belkin F9K1122 1

2026-04-06
CVE-2026-56078
Analyzed
8.8
PraisonAI MultiAgentMonitor

PraisonAI before 1

2026-06-19
CVE-2026-56075
Analyzed
8.8
PraisonAI PraisonAI

PraisonAI before 4

2026-06-19
CVE-2026-56070
Analyzed
9.3
WordPress Advance Product Search

The Advance Product Search plugin for WordPress is susceptible to an unauthenticated SQL injection vulnerability in versions 1.4.4 and earlier.

2026-06-27
CVE-2026-56069
Analyzed
7.5
Toolset Toolset Forms

Unauthenticated Insecure Direct Object References (IDOR) in Toolset Forms <= 2

2026-06-28
CVE-2026-56068
Analyzed
9.3
WordPress JetEngine

JetEngine versions 3.8.10.2 and earlier are vulnerable to an unauthenticated SQL injection, potentially allowing remote attackers to manipulate databa...

2026-06-27
CVE-2026-56067
Analyzed
9.3
Crocoblock JetSmartFilters

An unauthenticated SQL injection vulnerability in the Crocoblock JetSmartFilters plugin allows remote attackers to execute arbitrary SQL commands.

2026-06-27
CVE-2026-56064
Analyzed
8.5
Themefic Tourfic

Subscriber SQL Injection in Tourfic <= 2

2026-06-27
CVE-2026-56063
Analyzed
8.3
WordPress MailChimp Block

Unauthenticated Broken Access Control in MailChimp Block <= 1

2026-06-27
CVE-2026-56062
Analyzed
9.3
Oooorgle Quotes llama

An unauthenticated SQL injection vulnerability in the Oooorgle Quotes llama plugin allows remote attackers to execute arbitrary SQL commands via unsan...

2026-06-27
CVE-2026-56061
Analyzed
7.5
Swings Subscriptions for WooCommerce

Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1

2026-06-28
CVE-2026-56060
Analyzed
7.5
Tyche Softwares Print Invoice & Delivery Notes for WooCommerce

Unauthenticated Sensitive Data Exposure in Print Invoice & Delivery Notes for WooCommerce <= 7

2026-06-28
CVE-2026-56059
Analyzed
9.9
WordPress Travel Booking

The Travel Booking WordPress plugin contains an arbitrary file upload vulnerability exploitable by authenticated subscribers.

2026-06-27
CVE-2026-56058
Analyzed
9.9
WordPress Quform

The Quform WordPress plugin is susceptible to an arbitrary file upload vulnerability exploitable by authenticated subscribers.

2026-06-27
CVE-2026-56057
Analyzed
9.8
HP Uncanny Automator Pro

A PHP Object Injection vulnerability in Uncanny Automator Pro allows attackers to execute arbitrary code via malicious serialized input.

2026-06-27
CVE-2026-56055
Analyzed
8.8
HP RealHomes

Subscriber PHP Object Injection in RealHomes <= 4

2026-06-27
CVE-2026-56053
Analyzed
8.8
HP EventPrime

Subscriber PHP Object Injection in EventPrime <= 4

2026-06-26
CVE-2026-5605
8.8
Tenda CH22

A weakness has been identified in Tenda CH22 1

2026-04-06
CVE-2026-56049
Analyzed
8.5
WordPress Post Snippets

Contributor Remote Code Execution (RCE) in Post Snippets <= 4

2026-06-26
CVE-2026-5604
8.8
Tenda CH22

A security flaw has been discovered in Tenda CH22 1

2026-04-06
CVE-2026-56038
Analyzed
8.8
Frisbii Frisbii Pay

Contributor Privilege Escalation in Frisbii Pay <= 1

2026-06-27
CVE-2026-56037
Analyzed
8.8
WordPress Themify Popup

Deserialization of Untrusted Data vulnerability in Themify Themify Popup allows Object Injection

2026-07-03
CVE-2026-56036
Analyzed
9.3
WordPress 워드프레스 결제 심플페이 (WordPress Simple Pay)

An unauthenticated SQL injection vulnerability exists in the Codemstory 워드프레스 결제 심플페이 plugin, allowing remote attackers to execute arbitrary database...

2026-06-27
CVE-2026-56035
Analyzed
8.6
Cory BitFire Security

Unauthenticated Multiple Vulnerabilities in BitFire Security <= 5

2026-06-27