17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 3051-3100 of 17426 CVEs Page 62 of 349
CVE-2026-42200
Analyzed
8.8
CoolLabs Coolify

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

2026-07-07
CVE-2026-4220
7.3
Unknown Multiple Products

A vulnerability has been found in Technologies Integrated Management Platform 7

2026-03-17
CVE-2026-42198
7.5
PostgreSQL JDBC Driver

pgjdbc is an open source postgresql JDBC Driver

2026-04-30
CVE-2026-42197
Analyzed
8.7
Unknown Multiple Products

RELATE is a web-based courseware package

2026-05-29
CVE-2026-42193
Analyzed
9.1
AWS SES

The Plunk email platform fails to verify SNS signatures, allowing unauthenticated attackers to forge webhook requests.

2026-05-09
CVE-2026-42189
7.5
SSH Multiple Products

Russh is a Rust SSH client & server library

2026-05-09
CVE-2026-42184
Analyzed
8.8
Tauri Tauri Framework

Tauri is a framework for building binaries for all major desktop platforms

2026-06-02
CVE-2026-42171
Analyzed
7.8
Unknown Multiple Products

NSIS (Nullsoft Scriptable Install System) 3

2026-04-25
CVE-2026-42167
8.1
ProFTPD Multiple Products

mod_sql in ProFTPD before 1

2026-04-29
CVE-2026-42154
Analyzed
7.5
Unknown Multiple Products

Prometheus is an open-source monitoring system and time series database

2026-05-05
CVE-2026-42153
Analyzed
8.8
CoolLabs Coolify

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

2026-07-07
CVE-2026-42151
Analyzed
7.5
Microsoft AD remote

Prometheus is an open-source monitoring system and time series database

2026-05-05
CVE-2026-42143
Analyzed
8.8
CoolLabs Coolify

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

2026-07-07
CVE-2026-4214
8.8
D-Link DNS

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR...

2026-03-17
CVE-2026-4213
8.8
D-Link DNS

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-32...

2026-03-17
CVE-2026-42129
Analyzed
7.7
Grafana Loki Datasource Plugin

The Loki datasource plugin's callResource handler contains a path traversal vulnerability

2026-06-23
CVE-2026-42127
Analyzed
7.5
Grafana Grafana Enterprise

The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticated attackers to trigger excessive memory...

2026-06-23
CVE-2026-4212
8.8
D-Link DNS

A security vulnerability has been detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, D...

2026-03-17
CVE-2026-4211
8.8
D-Link DNS

A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-...

2026-03-17
CVE-2026-42097
Analyzed
8.8
Sparx Systems Pro Cloud Server

Sparx Pro Cloud Server requires authentication based on requested URL

2026-06-03
CVE-2026-42096
Analyzed
8.8
Sparx Systems Pro Cloud Server

Sparx Pro Cloud Server is vulnerable to Broken Access Control within communication with the database

2026-06-03
CVE-2026-42090
Analyzed
9.6
Apple Multiple Products

Notesnook is a note-taking app focused on user privacy & ease of use. Prior to Notesnook Web/Desktop version 3.3.15 and prior to Notesnook iOS/Android...

2026-05-05
CVE-2026-42089
Analyzed
8.6
Yeoman Environment

Yeoman Environment provides an API to discover, create, and run generators, and to configure where and how a generator is resolved

2026-06-17
CVE-2026-42088
Analyzed
9.6
Docker database

A vulnerability in the OpenC3 COSMOS Script Runner widget allows authenticated users to bypass permissions and perform administrative actions on Redis...

2026-05-05
CVE-2026-42087
Analyzed
9.6
OpenC3 COSMOS

A SQL injection vulnerability in the OpenC3 COSMOS Time-Series Database component allows unauthenticated attackers to execute arbitrary SQL commands.

2026-05-05
CVE-2026-42084
Analyzed
8.1
Unknown Multiple Products

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems

2026-05-05
CVE-2026-42083
Analyzed
8.2
Unknown Multiple Products

free5GC is an open-source implementation of the 5G core network

2026-05-29
CVE-2026-42079
Analyzed
8.6
Unknown Multiple Products

PPTAgent is an agentic framework for reflective PowerPoint generation

2026-05-05
CVE-2026-42076
Analyzed
9.8
Unknown Multiple Products

Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a command injection vulnerability in the _extractLLM() function...

2026-05-05
CVE-2026-42075
8.1
Unknown Multiple Products

Evolver is a GEP-powered self-evolving engine for AI agents

2026-05-05
CVE-2026-42072
Analyzed
9.8
Arch Nornicdb

Nornicdb fails to bind the Bolt server to the configured host, defaulting to all interfaces and exposing the database with default credentials to the...

2026-05-09
CVE-2026-42062
Analyzed
9.8
ELECOM Wireless LAN Access Point

ELECOM wireless LAN access points are vulnerable to OS command injection via the username parameter, allowing unauthenticated remote code execution.

2026-05-14
CVE-2026-42048
Analyzed
9.6
Unknown Multiple Products

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Traversal in the Knowled...

2026-05-13
CVE-2026-42047
8.6
Infor Multiple Products

Inngest is a platform for running event-driven and scheduled background functions with queueing, retries, and step orchestration

2026-05-08
CVE-2026-42046
7.8
Unknown Multiple Products

libcaca is a colour ASCII art library

2026-05-12
CVE-2026-42043
7.2
HTTP Multiple Products

Axios is a promise based HTTP client for the browser and Node

2026-04-25
CVE-2026-42035
7.4
HTTP Multiple Products

Axios is a promise based HTTP client for the browser and Node

2026-04-25
CVE-2026-42033
7.4
HTTP Multiple Products

Axios is a promise based HTTP client for the browser and Node

2026-04-25
CVE-2026-4201
7.3
Infor Multiple Products

A weakness has been identified in glowxq glowxq-oj up to 6f7c723090472057252040fd2bbbdaa1b5ed2393

2026-03-17
CVE-2026-42009
Analyzed
7.5
GnuTLS GnuTLS

A flaw was found in gnutls

2026-05-19
CVE-2026-42001
Analyzed
7.5
Insufficient Multiple Products

Insufficient Validation of Autoprimary SOA Queries

2026-05-22
CVE-2026-4200
7.3
Unknown Multiple Products

A security flaw has been discovered in glowxq glowxq-oj up to 6f7c723090472057252040fd2bbbdaa1b5ed2393

2026-03-17
CVE-2026-41964
8.4
Unknown Multiple Products

Permission control vulnerability in the web

2026-05-15
CVE-2026-41957
8.8
Unknown Multiple Products

An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP and BIG-IQ Configuration utility

2026-05-14
CVE-2026-41953
8.7
Unknown Multiple Products

A vulnerability exists in BIG-IP systems where a highly privileged, authenticated attacker with at least the Resource Administrator role can modify co...

2026-05-14
CVE-2026-41952
7.8
Acronis DeviceLock DLP

Local privilege escalation due to improper input validation

2026-04-30
CVE-2026-41951
7.2
Path Multiple Products

Path traversal vulnerability exists in GROWI v7

2026-05-12
CVE-2026-41948
Analyzed
7.7
Dify Multiple Products

Dify version 1

2026-05-19
CVE-2026-41947
Analyzed
7.4
Dify Multiple Products

Dify version 1

2026-05-19
CVE-2026-41940
KEV Analyzed
9.8
Unknown cPanel and WHM

An authentication bypass vulnerability in the cPanel and WHM login flow allows unauthenticated remote attackers to gain unauthorized access to the con...

2026-04-30