17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 3801-3850 of 17426 CVEs Page 77 of 349
CVE-2026-3730
Analyzed
7.3
HP Free Hotel Reservation System

A security flaw has been discovered in itsourcecode Free Hotel Reservation System 1

2026-03-09
CVE-2026-3729
8.8
Tenda F453

A vulnerability was identified in Tenda F453 1

2026-03-09
CVE-2026-3728
8.8
Tenda F453

A vulnerability was determined in Tenda F453 1

2026-03-09
CVE-2026-3727
8.8
Tenda F453

A vulnerability was found in Tenda F453 1

2026-03-09
CVE-2026-3726
8.8
Tenda F453

A vulnerability has been found in Tenda F453 1

2026-03-09
CVE-2026-37232
Analyzed
8.6
OpenAirInterface OpenAirInterface5G (nr-softmodem)

An issue was discovered in OpenAirInterface5G 2

2026-06-04
CVE-2026-3723
Analyzed
7.3
HP Simple Flight Ticket Booking System

A security flaw has been discovered in code-projects Simple Flight Ticket Booking System 1

2026-03-09
CVE-2026-3715
Analyzed
8.8
Wavlink WL-WN579X3-C

A vulnerability was found in Wavlink WL-WN579X3-C 231124

2026-03-08
CVE-2026-3709
Analyzed
7.3
HP Multiple Products

A weakness has been identified in code-projects Simple Flight Ticket Booking System 1

2026-03-08
CVE-2026-3708
Analyzed
7.3
HP Multiple Products

A security flaw has been discovered in code-projects Simple Flight Ticket Booking System 1

2026-03-08
CVE-2026-3705
7.3
Unknown Multiple Products

A vulnerability was found in code-projects Simple Flight Ticket Booking System 1

2026-03-08
CVE-2026-3703
Analyzed
9.8
Wavlink NU516U1 Router

A remote out-of-bounds write vulnerability in the Wavlink NU516U1 router allows attackers to manipulate the ipaddr argument in /cgi-bin/login.cgi, pot...

2026-03-08
CVE-2026-3701
Analyzed
8.8
H3C Magic B1 Router

A security vulnerability has been detected in H3C Magic B1 up to 100R004

2026-03-08
CVE-2026-3700
8.8
UTT Multiple Products

A weakness has been identified in UTT HiPER 810G up to 1

2026-03-08
CVE-2026-3699
8.8
UTT Multiple Products

A security flaw has been discovered in UTT HiPER 810G up to 1

2026-03-08
CVE-2026-3698
8.8
UTT Multiple Products

A vulnerability was identified in UTT HiPER 810G up to 1

2026-03-08
CVE-2026-36960
8.8
Unknown Multiple Products

A Cross-Site Request Forgery (CSRF) vulnerability exists in the web management interface of the U-SPEED N300 Rounter V1

2026-05-01
CVE-2026-3696
7.3
TOTOLINK Multiple Products

A vulnerability was found in Totolink N300RH 6

2026-03-08
CVE-2026-36959
7.5
Unknown Multiple Products

U-SPEED N300 router V1

2026-05-01
CVE-2026-36958
7.5
Unknown Multiple Products

A denial-of-service vulnerability exists in the U-SPEED N300 V1

2026-05-01
CVE-2026-36957
7.5
Dbit Multiple Products

Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1

2026-05-01
CVE-2026-36956
8.8
Unknown Multiple Products

A Cross-Site Request Forgery (CSRF) vulnerability exists in the web management interface of the Dbit N300 T1 Pro wireless router V1

2026-05-01
CVE-2026-3693
Analyzed
7.3
Unknown Multiple Products

A flaw has been found in Shy2593666979 AgentChat up to 2

2026-03-08
CVE-2026-3690
Analyzed
7.4
OpenClaw Canvas

OpenClaw Canvas Authentication Bypass Vulnerability

2026-04-12
CVE-2026-36848
Analyzed
7.5
Gigamon GVOS

Gigamon GVOS v5

2026-06-30
CVE-2026-36841
Analyzed
9.8
TOTOLINK N200RE V5

A command injection vulnerability in the TOTOLINK N200RE V5 router allows remote code execution via specifically crafted parameters in the formMapDelD...

2026-04-30
CVE-2026-36837
7.5
TOTOLINK Multiple Products

TOTOLINK A3002RU V3 <= V3

2026-04-30
CVE-2026-36829
Analyzed
9.8
Panabit PAP-XM320

An authentication bypass vulnerability in the Panabit PAP-XM320 embedded HTTP server allows attackers to bypass login requirements via directory trave...

2026-05-20
CVE-2026-36828
Analyzed
8.8
Unknown Multiple Products

A command injection vulnerability exists in the /cgi-bin/tools/ajax_cmd endpoint of Panabit PAP-XM320 up to and including v7

2026-05-20
CVE-2026-3679
8.8
Tenda FH451

A vulnerability was identified in Tenda FH451 1

2026-03-08
CVE-2026-3678
8.8
Tenda FH451

A vulnerability was determined in Tenda FH451 1

2026-03-08
CVE-2026-3677
8.8
Tenda FH451

A vulnerability was found in Tenda FH451 1

2026-03-08
CVE-2026-36767
Analyzed
10
Unknown Shopizer

A path traversal vulnerability in Shopizer v3.2.5 allows remote attackers to write arbitrary files to any writable path via the image upload endpoint.

2026-05-01
CVE-2026-36760
Analyzed
9.6
JeeSite JeeSite

Authenticated attackers with file upload permissions can exploit a path traversal vulnerability in JeeSite v5.15.1 to upload arbitrary files to the fi...

2026-05-01
CVE-2026-36734
8.8
Unknown Multiple Products

EDIMAX BR-6428nS V3 1

2026-05-13
CVE-2026-36723
Analyzed
8.8
Bookcars Bookcars

An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8

2026-06-11
CVE-2026-36670
Analyzed
8.8
OpenSIPS Control Panel (opensips-cp)

A Time-Based Blind SQL Injection vulnerability in the alias_management module of OpenSIPS Control Panel (opensips-cp) prior to version 9

2026-06-17
CVE-2026-3666
Analyzed
8.8
WordPress is vulnerable

The wpForo Forum plugin for WordPress is vulnerable to arbitrary file deletion in all versions up to, and including, 2

2026-04-05
CVE-2026-36608
Analyzed
8.8
Mercusys AC12G (EU) V1 Router

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddPortMapping to forward external ports to the router's own admin interfa...

2026-06-04
CVE-2026-36607
Analyzed
8.8
Mercusys AC12G (EU) V1 Router

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthenticated brute-force attacks via the TDDP password change endpoint (code...

2026-06-04
CVE-2026-3660
Analyzed
9.8
IBM Engineering Lifecycle Management

IBM Engineering Lifecycle Management allows unauthenticated remote attackers to update server property files, potentially resulting in unauthorized ac...

2026-05-27
CVE-2026-3658
7.5
WordPress is vulnerable

The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to SQL Injection via the 'fields' pa...

2026-03-20
CVE-2026-36576
Analyzed
9.8
F5 docker-wkhtmltopdf-aas

An OS command injection vulnerability in the app.py component allows unauthenticated attackers to execute arbitrary commands via a crafted POST reques...

2026-06-04
CVE-2026-3655
Analyzed
9.8
WordPress OTP Login With Phone Number, OTP Verification Plugin

The OTP Login With Phone Number plugin for WordPress is vulnerable to authentication bypass, allowing unauthenticated attackers to hijack user account...

2026-05-29
CVE-2026-3643
7.2
WordPress is vulnerable

The Accessibly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the REST API in all versions up to, and including, 3

2026-04-17
CVE-2026-36365
7.8
Unknown Multiple Products

An issue in Lymphatus caesium-image-compressor All versions up to and including commit 02da2c6 allows a local attacker to execute arbitrary code via t...

2026-05-06
CVE-2026-36356
Analyzed
9.1
MeiG Smart FORGE_SLT711

The GoAhead web server on MeiG Smart FORGE_SLT711 devices allows unauthenticated remote attackers to perform OS command injection via the /action/SetR...

2026-05-06
CVE-2026-36355
Analyzed
7.7
F5 rtl819x Jungle SDK

The rtl8192cd Wi-Fi kernel driver in the Realtek rtl819x Jungle SDK (all known versions through v3

2026-05-06
CVE-2026-36340
8.1
Unknown Multiple Products

An issue in Krayin CRM v

2026-05-01
CVE-2026-3631
7.5
Delta Electronics COMMGR2

Delta Electronics COMMGR2 has Buffer Over-read DoS vulnerability

2026-03-09