17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 3101-3150 of 17426 CVEs Page 63 of 349
CVE-2026-4194
7.3
D-Link DNS

A vulnerability was detected in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-32...

2026-03-17
CVE-2026-41938
Analyzed
8.8
HP handler

Vvveb before version 1

2026-05-07
CVE-2026-41936
8.1
HP to inject

Vvveb before version 1

2026-05-07
CVE-2026-41934
Analyzed
8.8
HP handler

Vvveb before version 1

2026-05-07
CVE-2026-41930
Analyzed
9.8
HP Vvveb

Vvveb contains hard-coded credentials in its docker-compose-apache.yaml configuration, allowing unauthenticated remote access to the bundled phpMyAdmi...

2026-05-07
CVE-2026-4193
7.3
D-Link DIR

A security vulnerability has been detected in D-Link DIR-823G 1

2026-03-17
CVE-2026-41919
Analyzed
9.1
Apache OFBiz

Apache OFBiz is susceptible to LDAP injection, enabling attackers to manipulate LDAP queries through unsanitized user input.

2026-05-20
CVE-2026-41914
8.5
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41912
7.6
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-4191
7.3
Unknown Multiple Products

A flaw has been found in JawherKl node-api-postgres up to 2

2026-03-17
CVE-2026-41905
7.7
HP Multiple Products

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework

2026-05-09
CVE-2026-41904
7.6
HP Multiple Products

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework

2026-05-09
CVE-2026-41902
Analyzed
9.1
HP FreeScout

FreeScout contains a flaw in the user-setup endpoint where invite hashes do not expire, allowing unauthenticated attackers to perform permanent accoun...

2026-05-08
CVE-2026-41901
Analyzed
9
Unknown Multiple Products

Thymeleaf is a server-side Java template engine for web and standalone environments. Prior to 3.1.5.RELEASE, a security bypass vulnerability exists in...

2026-05-13
CVE-2026-41900
Analyzed
8.8
Unknown Multiple Products

OpenLearnX is an open-source, decentralized learning and assessment platform

2026-05-08
CVE-2026-4190
7.3
Unknown Multiple Products

A vulnerability was detected in JawherKl node-api-postgres up to 2

2026-03-17
CVE-2026-41896
Analyzed
7.5
Coolify Coolify

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

2026-06-30
CVE-2026-41886
7.5
Unknown Multiple Products

locize is a localization platform that connects code and i18n setup

2026-05-09
CVE-2026-41883
8.1
Unknown Multiple Products

OmniFaces is a utility library for Faces

2026-05-09
CVE-2026-41882
Analyzed
7.4
Intel IntelliJ IDEA

In JetBrains IntelliJ IDEA before 2024

2026-05-01
CVE-2026-4188
8.8
D-Link DIR

A security flaw has been discovered in D-Link DIR-619L 2

2026-03-17
CVE-2026-41873
Analyzed
9.8
Pony Mail Pony Mail (Lua Implementation)

A request smuggling vulnerability in the retired Lua version of Pony Mail allows for unauthorized administrative account takeover.

2026-04-29
CVE-2026-41872
7.4
Unknown Multiple Products

"Kura Sushi Official App" provided by EPG, Inc

2026-05-12
CVE-2026-41862
Analyzed
8.8
Spring Spring Statemachine

Spring Statemachine's Kryo-based persistence backends (JPA, MongoDB, Redis and ZooKeeper) deserialise persisted state-machine contexts without enforci...

2026-06-24
CVE-2026-41860
Analyzed
8.8
BOSH BOSH

CWE-326 in BOSH allows a local attacker to steal Basic-auth credentials or redirect UAA token requests via MITM

2026-06-04
CVE-2026-41855
Analyzed
8.1
Apache ActiveMQ (JMS)

In an untrusted JMS environment, org

2026-06-09
CVE-2026-4184
Analyzed
9.8
D-Link DIR

A vulnerability was detected in D-Link DIR-816 1.10CNB05. Affected by this vulnerability is an unknown functionality of the file /goform/form2Wl5Basic...

2026-03-17
CVE-2026-4183
Analyzed
9.8
D-Link DIR

A security vulnerability has been detected in D-Link DIR-816 1.10CNB05. Affected is an unknown function of the file /goform/form2WlanBasicSetup.cgi of...

2026-03-17
CVE-2026-4182
Analyzed
9.8
D-Link DIR

A weakness has been identified in D-Link DIR-816 1.10CNB05. This impacts an unknown function of the file /goform/form2Wl5RepeaterStep2.cgi of the comp...

2026-03-17
CVE-2026-4181
Analyzed
9.8
D-Link DIR

A security flaw has been discovered in D-Link DIR-816 1.10CNB05. This affects an unknown function of the file /goform/form2RepeaterStep2.cgi of the co...

2026-03-17
CVE-2026-4180
7.3
D-Link DIR

A vulnerability was identified in D-Link DIR-816 1

2026-03-17
CVE-2026-4172
7.2
Unknown Multiple Products

A vulnerability was detected in TRENDnet TEW-632BRP 1

2026-03-17
CVE-2026-41713
8.2
Unknown Multiple Products

A malicious user could craft input that is stored in conversation memory and later interpreted by the model in an unintended way

2026-05-13
CVE-2026-41705
8.6
Spring Multiple Products

Spring AI's MilvusVectorStore#doDelete(List) implementation is vulnerable to filter-expression injection via unsanitized document IDs

2026-05-09
CVE-2026-41702
7.8
VMware Fusion contains

VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an operation performed by a SETUID binary

2026-05-16
CVE-2026-41700
Analyzed
8.1
Spring GraphQL

Spring for GraphQL applications that have enabled the WebSocket transport are vulnerable to Cross-Site WebSocket Hijacking

2026-06-14
CVE-2026-4170
Analyzed
9.8
HP of the

A weakness has been identified in Topsec TopACM 3.0. Affected by this vulnerability is an unknown functionality of the file /view/systemConfig/managem...

2026-03-17
CVE-2026-41699
Analyzed
8.1
Spring Spring for GraphQL

Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL queries

2026-06-14
CVE-2026-41693
8.2
Unknown Multiple Products

i18next-fs-backend is a backend layer for i18next using in Node

2026-05-09
CVE-2026-41690
8.6
Unknown Multiple Products

18next-http-middleware is a middleware to be used with Node

2026-05-09
CVE-2026-41688
7.7
Unknown Multiple Products

Wallos is an open-source, self-hostable personal subscription tracker

2026-05-09
CVE-2026-41683
8.6
Unknown Multiple Products

i18next-http-middleware is a middleware to be used with Node

2026-05-09
CVE-2026-41679
Analyzed
10
Paperclip Paperclip

An unauthenticated remote code execution vulnerability exists in Paperclip due to improper handling of API calls in default configurations.

2026-04-23
CVE-2026-41670
8.2
Unknown Multiple Products

Admidio is an open-source user management solution

2026-05-07
CVE-2026-4167
8.8
Unknown Multiple Products

A vulnerability was determined in Belkin F9K1122 1

2026-03-17
CVE-2026-41669
8.2
Unknown Multiple Products

Admidio is an open-source user management solution

2026-05-07
CVE-2026-41651
8.8
Arch Multiple Products

PackageKit is a a D-Bus abstraction layer that allows the user to manage packages in a secure way using a cross-distro, cross-architecture API

2026-04-23
CVE-2026-41649
7.7
Unknown Multiple Products

Outline is a service that allows for collaborative documentation

2026-04-29
CVE-2026-41643
7.5
Border Multiple Products

GoBGP is an open source Border Gateway Protocol (BGP) implementation in the Go Programming Language

2026-05-09
CVE-2026-41642
7.5
Border Multiple Products

GoBGP is an open source Border Gateway Protocol (BGP) implementation in the Go Programming Language

2026-05-09