17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 1501-1550 of 17426 CVEs Page 31 of 349
CVE-2026-54350
Analyzed
10
Budibase Budibase

An unauthenticated injection vulnerability in Budibase allows remote attackers to read or modify arbitrary documents in connected databases via malici...

2026-06-27
CVE-2026-5435
7.3
Library Multiple Products

The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2

2026-04-30
CVE-2026-54341
Analyzed
7.5
DragonflyDB Dragonfly

Dragonfly is an in-memory data store built for modern application workloads

2026-06-28
CVE-2026-5433
Analyzed
9.1
Honeywell Control Network Module

A command injection vulnerability in the Honeywell Control Network Module web interface allows unauthenticated remote code execution via command delim...

2026-05-22
CVE-2026-54322
Analyzed
7.7
Daytona Daytona

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows

2026-06-24
CVE-2026-54320
Analyzed
8.4
Daytona Daytona

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows

2026-06-24
CVE-2026-54309
Analyzed
8.8
Unknown n8n

n8n is an open source workflow automation platform

2026-06-24
CVE-2026-54307
Analyzed
8.5
Unknown n8n

n8n is an open source workflow automation platform

2026-06-24
CVE-2026-54305
Analyzed
8.9
Unknown n8n

n8n is an open source workflow automation platform

2026-06-24
CVE-2026-54299
Analyzed
7.5
Unknown astro

Astro is a web framework

2026-06-23
CVE-2026-54293
Analyzed
7.5
NLTK Project NLTK (Natural Language Toolkit)

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Lang...

2026-06-23
CVE-2026-54291
Analyzed
8.2
Unknown pgjdbc

pgjdbc is an open source postgresql JDBC Driver

2026-07-07
CVE-2026-54290
Analyzed
7.1
Hono Hono

Hono is a Web application framework that provides support for any JavaScript runtime

2026-06-23
CVE-2026-5429
Analyzed
7.8
Unknown Multiple Products

Unsanitized input during web page generation in the Kiro Agent webview in Kiro IDE before version 0

2026-04-03
CVE-2026-54283
Analyzed
7.5
Kludex Starlette

Starlette is a lightweight ASGI framework/toolkit

2026-06-23
CVE-2026-54281
Analyzed
8.7
NestJS Nest Framework

Nest is a framework for building scalable Node

2026-06-23
CVE-2026-54271
Analyzed
8.2
Unknown protobufjs-cli

protobufjs-cli is the command line add-on for protobuf

2026-06-23
CVE-2026-54268
Analyzed
8.2
Google Angular

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages

2026-06-23
CVE-2026-54267
Analyzed
8.6
Google Angular

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages

2026-06-23
CVE-2026-54266
Analyzed
8.8
Google Angular

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages

2026-06-23
CVE-2026-54264
Analyzed
8.3
Google Angular

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages

2026-06-23
CVE-2026-5426
7.5
Unknown Multiple Products

Hard-coded ASP

2026-04-18
CVE-2026-54257
Analyzed
9.3
Electron Electron Framework

Electron versions 42.3.1 through 42.3.3 are vulnerable to heap buffer underflow and overflow due to incorrect byte length calculations in the Node.js...

2026-06-24
CVE-2026-5425
Analyzed
7.2
WordPress is vulnerable

The Widgets for Social Photo Feed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'feed_data' parameter keys in all versions...

2026-04-05
CVE-2026-54234
Analyzed
7.5
HP vLLM

vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs

2026-07-07
CVE-2026-54232
Analyzed
8.8
Unknown vLLM Inference Engine

vLLM is an inference and serving engine for large language models (LLMs)

2026-06-23
CVE-2026-54185
Analyzed
8.5
Cornerstone Cornerstone Page Builder

Subscriber SQL Injection in Cornerstone < 7

2026-06-18
CVE-2026-5416
Analyzed
8.8
Managed Ethernet Managed Ethernet Switch

Due to the improper neutralization of special elements used in a name parameter a low privileged remote attacker can exploit a command injection vulne...

2026-06-17
CVE-2026-54158
Analyzed
9.9
SiYuan SiYuan

A critical XSS vulnerability in SiYuan's attribute-view cell renderer allows attackers to inject malicious scripts, leading to remote code execution o...

2026-06-25
CVE-2026-54157
Analyzed
9
LobeHub LobeHub

LobeHub prior to 2.1.57 contains an unauthenticated Server-Side Request Forgery (SSRF) vulnerability in the /webapi/proxy endpoint, allowing arbitrary...

2026-06-24
CVE-2026-5415
Analyzed
8.8
Google Advanced Google reCAPTCHA (WP Captcha PRO)

The WP Captcha PRO (the premium version of the Advanced Google reCAPTCHA plugin, both have the same slug) plugin for WordPress is vulnerable to Authen...

2026-06-07
CVE-2026-54133
Analyzed
9.8
HP jmespath.php

The jmespath.php library fails to sanitize input when using the compiler runtime, allowing for remote code execution via crafted JMESPath expressions.

2026-06-13
CVE-2026-5412
Analyzed
9.9
Unknown Juju

Juju contains an authorization flaw in the Controller facade that allows authenticated users to extract sensitive cloud credentials.

2026-04-11
CVE-2026-5411
Analyzed
8.8
Google Advanced Google reCAPTCHA (WP Captcha PRO)

The WP Captcha PRO (the premium version of the Advanced Google reCAPTCHA plugin, both have the same slug) plugin for WordPress is vulnerable to arbitr...

2026-06-07
CVE-2026-54104
Analyzed
8.8
Microsoft EPDS & CBCA EDS

The U.S. Government Accountability Office (GAO) Electronic Protest Docketing System (EPDS) and Civilian Board of Contract Appeals (CBCA) Electronic Do...

2026-06-19 Patch
CVE-2026-54100
Analyzed
8.3
Microsoft OpenShift Container Platform (Windows Machine Config Operator)

A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform

2026-06-23
CVE-2026-54099
Analyzed
8.8
Microsoft OpenShift Container Platform (Windows Machine Config Operator)

A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform

2026-06-23
CVE-2026-54096
Analyzed
8.4
File Browser File Browser

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory

2026-06-26
CVE-2026-54090
Analyzed
8.7
File Browser File Browser

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory

2026-06-26
CVE-2026-54089
Analyzed
9.1
File Browser File Browser

File Browser is vulnerable to an authentication bypass via forged HTTP headers when configured with proxy authentication, allowing unauthenticated att...

2026-06-26
CVE-2026-54088
Analyzed
9.3
Unknown filebrowser

File Browser contains a pre-authentication command injection vulnerability in the Hook Authentication feature, allowing unauthenticated remote code ex...

2026-06-26
CVE-2026-54074
Analyzed
7.8
TinaCMS TinaCMS

Tina is a headless content management system

2026-07-03
CVE-2026-54069
Analyzed
9.2
SiYuan SiYuan Note

The SiYuan kernel HTTP server improperly trusts browser extension origins, allowing unauthenticated administrative API access and potential data exfil...

2026-06-25
CVE-2026-54067
Analyzed
9.9
SiYuan SiYuan

A cross-site scripting (XSS) vulnerability in SiYuan's CSS snippet rendering allows attackers to execute arbitrary JavaScript, leading to remote code...

2026-06-25
CVE-2026-54060
Analyzed
7.5
Python Pillow Pillow

Pillow is a Python imaging library

2026-07-07
CVE-2026-54059
Analyzed
7.5
Python-Pillow Pillow

Pillow is a Python imaging library

2026-07-07
CVE-2026-5405
7.8
Unknown Multiple Products

RDP protocol dissector crash in Wireshark 4

2026-05-01
CVE-2026-54030
Analyzed
8
Unknown LibreChat

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers

2026-06-27
CVE-2026-5403
7.8
Unknown Multiple Products

SBC codec crash in Wireshark 4

2026-05-01
CVE-2026-5402
8.8
Unknown Multiple Products

TLS protocol dissector heap overflow in Wireshark 4

2026-04-30