17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 1751-1800 of 17426 CVEs Page 36 of 349
CVE-2026-5055
7.8
Arch Path Element

NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

2026-04-11
CVE-2026-50549
Analyzed
9.3
Intel Cursor

A path canonicalization flaw in the Cursor AI code editor allows malicious agents to bypass sandbox restrictions and write arbitrary files, facilitati...

2026-06-26
CVE-2026-50548
Analyzed
9.3
Cursor Cursor

A sandbox escape vulnerability in the Cursor AI code editor allows malicious agents to write arbitrary files outside the workspace, leading to non-san...

2026-06-26
CVE-2026-50545
Analyzed
9.9
Kubernetes Fission Framework

A validation flaw in Fission’s pod specification handling allows for the propagation of dangerous fields, leading to unauthorized control over generat...

2026-06-11
CVE-2026-5054
Analyzed
7.8
Unknown Multiple Products

NoMachine External Control of File Path Local Privilege Escalation Vulnerability

2026-04-11
CVE-2026-5053
7.1
Unknown Multiple Products

NoMachine External Control of File Path Arbitrary File Deletion Vulnerability

2026-04-12
CVE-2026-50521
Analyzed
8.3
Microsoft Edge (Chromium-based)

Use after free in Microsoft Edge (Chromium-based) allows an authorized attacker to execute code over a network

2026-07-03
CVE-2026-5050
7.5
Google Pay gateway

The Payment Gateway for Redsys & WooCommerce Lite plugin for WordPress is vulnerable to Improper Verification of Cryptographic Signature in versions u...

2026-04-17
CVE-2026-5046
8.8
Tenda FH1201

A flaw has been found in Tenda FH1201 1

2026-03-30
CVE-2026-5045
8.8
Tenda FH1201

A vulnerability was detected in Tenda FH1201 1

2026-03-30
CVE-2026-5044
Analyzed
8.8
Belkin F9K1122

A security vulnerability has been detected in Belkin F9K1122 1

2026-03-30
CVE-2026-5043
Analyzed
8.8
Belkin F9K1122

A weakness has been identified in Belkin F9K1122 1

2026-03-30
CVE-2026-5042
Analyzed
8.8
Belkin F9K1122

A security flaw has been discovered in Belkin F9K1122 1

2026-03-30
CVE-2026-5036
8.8
Tenda Multiple Products

A vulnerability was found in Tenda 4G06 04

2026-03-29
CVE-2026-5035
7.3
HP of the

A vulnerability has been found in code-projects Accounting System 1

2026-03-29
CVE-2026-5034
7.3
HP of the

A flaw has been found in code-projects Accounting System 1

2026-03-29
CVE-2026-5033
7.3
HP of the

A vulnerability was detected in code-projects Accounting System 1

2026-03-29
CVE-2026-5032
7.5
WordPress is vulnerable

The W3 Total Cache plugin for WordPress is vulnerable to information exposure in all versions up to, and including, 2

2026-04-03
CVE-2026-5027
Analyzed
8.8
Unknown Multiple Products

The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter from the multipart form data, allowing an attacker to write files to arbi...

2026-03-28
CVE-2026-50242
Analyzed
10
JetBrains Hub

JetBrains Hub contains an authentication bypass vulnerability via direct database access that allows unauthorized administrative control.

2026-06-20
CVE-2026-5024
8.8
D-Link DIR

A vulnerability was found in D-Link DIR-513 1

2026-03-29
CVE-2026-50223
Analyzed
8.8
Apache OFBiz

Improper Control of Generation of Code ('Code Injection') vulnerability in Apache OFBiz allows a low-privileged authenticated user with Content/DataRe...

2026-06-12
CVE-2026-50211
Analyzed
9.8
Acer Connect M6E 5G

Exposed diagnostic software on retail builds of Acer Connect M6E 5G allows malicious applications to write to internal NVRAM registers.

2026-06-05
CVE-2026-5021
8.8
Tenda F453

A flaw has been found in Tenda F453 1

2026-03-29
CVE-2026-5019
7.3
HP of the

A security vulnerability has been detected in code-projects Simple Food Order System 1

2026-03-29
CVE-2026-50189
Analyzed
8.9
Appsmith Appsmith

Appsmith is a platform to build admin panels, internal tools, and dashboards

2026-06-25
CVE-2026-5018
7.3
HP of the

A weakness has been identified in code-projects Simple Food Order System 1

2026-03-29
CVE-2026-50178
Analyzed
8.7
Google Angular Language Service VS Code Extension

The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates

2026-06-23
CVE-2026-50171
Analyzed
8.2
Google Angular

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages

2026-06-23
CVE-2026-50170
Analyzed
8.2
Google Angular

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages

2026-06-23
CVE-2026-5017
7.3
HP of the

A security flaw has been discovered in code-projects Simple Food Order System 1

2026-03-29
CVE-2026-50168
Analyzed
8.8
Google Angular

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages

2026-06-23
CVE-2026-50160
Analyzed
10
Hoppscotch Hoppscotch

An unauthenticated mass assignment vulnerability in the Hoppscotch backend allows attackers to overwrite critical configuration secrets and forge admi...

2026-07-02
CVE-2026-5016
7.3
Infor Multiple Products

A vulnerability was identified in elecV2 elecV2P up to 3

2026-03-29
CVE-2026-50146
Analyzed
7.1
WithAstro Astro

Astro is a web framework

2026-06-23
CVE-2026-50137
Analyzed
8.2
Budibase Budibase

Budibase is an open-source low-code platform

2026-06-27
CVE-2026-50136
Analyzed
7.4
Budibase Budibase

Budibase is an open-source low-code platform

2026-06-28
CVE-2026-50132
Analyzed
7.3
Budibase Budibase

Budibase is an open-source low-code platform

2026-06-28
CVE-2026-50131
Analyzed
8.6
Fedify Fedify (TypeScript library)

Fedify is a TypeScript library for building federated server apps powered by ActivityPub

2026-06-11
CVE-2026-5012
7.3
Infor Multiple Products

A flaw has been found in elecV2 elecV2P up to 3

2026-03-29
CVE-2026-50110
Analyzed
9.2
StoneFly Storage Concentrator

StoneFly Storage Concentrator stores hardcoded, reversible credentials for internal services within a configuration file, enabling potential unauthori...

2026-07-01
CVE-2026-50101
Analyzed
8.1
Naxclow Smart Home Devices

Naxclow devices use a server-side, per-device relay credential that never rotates and is re-issued to the device on each boot

2026-06-14
CVE-2026-50090
Analyzed
9.3
Aqara Cloud OAuth

A redirect bypass vulnerability in the Aqara Cloud OAuth endpoint allows attackers to perform credential theft and phishing by exploiting weak domain...

2026-06-13
CVE-2026-50088
Analyzed
8.2
Aqara Aqara Developer Portal

The Aqara Developer Portal (developer

2026-06-13
CVE-2026-50087
Analyzed
8.2
Aqara IAM/SSO Gateway

The Aqara IAM/SSO gateway (gw-builder

2026-06-13
CVE-2026-50086
Analyzed
10
GitHub IAM/SSO gateway

The Aqara IAM/SSO gateway contains a critical flaw that exposes cryptographic signing keys, allowing unauthenticated attackers to perform unauthorized...

2026-06-13
CVE-2026-50085
Analyzed
8.6
Aqara Board service (op-test)

The Aqara Board service (op-test

2026-06-13
CVE-2026-50084
Analyzed
9.6
Aqara Cloud Production API

The Aqara Cloud Production API suffers from a missing authorization vulnerability, allowing any valid developer token to access any user account.

2026-06-13
CVE-2026-50043
Analyzed
8.6
Seiko SkyBridge MB-A100/MB-A110

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in SkyBridge MB-A100/MB-A110

2026-07-01
CVE-2026-5004
Analyzed
8.8
Wavlink WL-WN579X3-C

A vulnerability was determined in Wavlink WL-WN579X3-C 231124

2026-03-29