17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 3201-3250 of 17426 CVEs Page 65 of 349
CVE-2026-41463
8.8
ProjeQtor Multiple Products

ProjeQtor versions 7

2026-04-28
CVE-2026-41462
Analyzed
9.8
ProjeQtor Multiple Products

ProjeQtor versions 7.0 through 12.4.3 contain an unauthenticated SQL injection vulnerability in the login functionality where the login variable is di...

2026-04-28
CVE-2026-41461
8.5
SocialEngine Multiple Products

SocialEngine versions 7

2026-04-24
CVE-2026-41460
Analyzed
9.8
SocialEngine Multiple Products

SocialEngine versions 7.8.0 and prior contain a SQL injection vulnerability in the /activity/index/get-memberall endpoint where user-supplied input pa...

2026-04-24
CVE-2026-41455
8.5
WeKan Multiple Products

WeKan before 8

2026-04-23
CVE-2026-41454
8.3
WeKan Multiple Products

WeKan before 8

2026-04-23
CVE-2026-4145
7.8
Lenovo Software Fix

During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix that could allow a local authenticated user to...

2026-04-17
CVE-2026-41445
8.8
Unknown Multiple Products

KissFFT before commit 8a8e66e contains an integer overflow vulnerability in the kiss_fftndr_alloc() function in kiss_fftndr

2026-04-21
CVE-2026-41433
Analyzed
8.4
Unknown Multiple Products

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard

2026-04-25
CVE-2026-41432
Analyzed
7.1
Intel New API

New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system

2026-05-10
CVE-2026-41431
8
GitHub release pipeline

Zen is a firefox-based browser

2026-05-12
CVE-2026-41429
Analyzed
8.8
Unknown Multiple Products

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers

2026-04-25
CVE-2026-41428
Analyzed
9.1
Arch Budibase

Budibase contains an authentication bypass vulnerability where unanchored regular expressions allow attackers to access protected endpoints via crafte...

2026-04-25
CVE-2026-41422
8.3
Unknown Multiple Products

Daptin is a GraphQL/JSON-API headless CMS

2026-05-08
CVE-2026-41421
Analyzed
8.8
Unknown Multiple Products

SiYuan is an open-source personal knowledge management system

2026-04-25
CVE-2026-41419
7.6
Arch Multiple Products

4ga Boards is a boards system for realtime project management

2026-04-25
CVE-2026-41414
7.4
GitHub user can

Skim is a fuzzy finder designed to through files, lines, and commands

2026-04-25
CVE-2026-41409
Analyzed
9.8
Apache MINA AbstractIoBuffer

The fix for CVE-2024-52046 in Apache MINA AbstractIoBuffer.getObject() was incomplete. The classname allowlist of classes allowed to be deserialized w...

2026-04-28
CVE-2026-41405
7.5
Microsoft webhook request

OpenClaw before 2026

2026-04-29
CVE-2026-41404
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41399
7.5
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41396
7.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41395
7.5
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41394
8.2
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41387
7.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41386
Analyzed
9.1
OpenClaw OpenClaw

A privilege escalation vulnerability in OpenClaw during device pairing allows attackers to gain unauthorized access by manipulating device roles.

2026-04-29
CVE-2026-41384
7.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41383
8.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41378
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-29
CVE-2026-41371
8.5
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-28
CVE-2026-4137
Analyzed
7
Unknown Multiple Products

In mlflow/mlflow versions prior to 3

2026-05-19
CVE-2026-41364
8.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-28
CVE-2026-41361
7.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-24
CVE-2026-41359
7.1
OpenClaw configuration and

OpenClaw before 2026

2026-04-24
CVE-2026-41355
7.3
OpenShell Multiple Products

OpenShell before 2026

2026-04-24
CVE-2026-41353
8.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-24
CVE-2026-41352
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-24
CVE-2026-41349
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-24
CVE-2026-41347
7.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-24
CVE-2026-41342
7.3
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-24
CVE-2026-4134
7.3
Lenovo Software Fix

During an internal security assessment, a potential vulnerability was discovered in Lenovo Software Fix, that during installation could allow a local...

2026-04-17
CVE-2026-41336
7.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-24
CVE-2026-41329
Analyzed
9.9
OpenClaw Multiple Products

OpenClaw before 2026.3.31 contains a sandbox bypass vulnerability allowing attackers to escalate privileges via heartbeat context inheritance and send...

2026-04-21
CVE-2026-41328
Analyzed
9.1
Unknown Multiple Products

Dgraph is an open source distributed GraphQL database. Prior to 25.3.3, a vulnerability has been found in Dgraph that gives an unauthenticated attacke...

2026-04-25
CVE-2026-41327
Analyzed
9.1
Unknown Multiple Products

Dgraph is an open source distributed GraphQL database. Prior to 25.3.3, a vulnerability has been found in Dgraph that gives an unauthenticated attacke...

2026-04-25
CVE-2026-41324
7.5
FTP Multiple Products

basic-ftp is an FTP client for Node

2026-04-24
CVE-2026-41323
8.1
Microsoft Multiple Products

Kyverno is a policy engine designed for cloud native platform engineering teams

2026-04-24
CVE-2026-4132
7.2
WordPress is vulnerable

The HTTP Headers plugin for WordPress is vulnerable to External Control of File Name or Path leading to Remote Code Execution in all versions up to an...

2026-04-24
CVE-2026-41316
8.1
Unknown Multiple Products

ERB is a templating system for Ruby

2026-04-24
CVE-2026-41311
7.5
GitHub Pages compatible

LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript

2026-05-10