17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 3851-3900 of 17426 CVEs Page 78 of 349
CVE-2026-3630
Analyzed
9.8
Delta Electronics COMMGR2

Delta Electronics COMMGR2 is affected by a stack-based buffer overflow vulnerability that could lead to arbitrary code execution or system crashes.

2026-03-09
CVE-2026-3629
Analyzed
8.1
WordPress is vulnerable

The Import and export users and customers plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1

2026-03-22
CVE-2026-3621
7.5
IBM WebSphere Application

IBM WebSphere Application Server - Liberty 17

2026-04-24
CVE-2026-3614
8.8
WordPress is vulnerable

The AcyMailing plugin for WordPress is vulnerable to privilege escalation in all versions From 9

2026-04-16
CVE-2026-3611
Analyzed
10
Honeywell IQ4x building

Honeywell IQ4x controllers allow unauthenticated remote attackers to create administrative accounts and take full control of building management syste...

2026-03-13
CVE-2026-3605
8.1
Unknown Multiple Products

An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secrets they were not authorized to read or...

2026-04-17
CVE-2026-36044
Analyzed
8.8
Unknown Multiple Products

@pensar/apex <= 0

2026-05-28
CVE-2026-3599
7.5
WordPress is vulnerable

The Riaxe Product Customizer plugin for WordPress is vulnerable to SQL Injection via the 'options' parameter keys within 'product_data' of the /wp-jso...

2026-04-17
CVE-2026-3596
Analyzed
9.8
WordPress is vulnerable

The Riaxe Product Customizer plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.1.2. The plugin regist...

2026-04-16
CVE-2026-3593
Analyzed
7.4
Unknown Multiple Products

A use-after-free vulnerability exists within the DNS-over-HTTPS implementation

2026-05-22
CVE-2026-3589
7.5
WordPress plugin from

The WooCommerce WordPress plugin from versions 5

2026-03-07
CVE-2026-3588
7.5
IKEA Dirigera Multiple Products

A server-side request forgery (SSRF) vulnerability in IKEA Dirigera v2

2026-03-10
CVE-2026-3587
Analyzed
10
Linux based OS

An unauthenticated remote attacker can escape a restricted CLI interface in certain Linux-based operating systems to gain root access.

2026-03-23
CVE-2026-3584
Analyzed
9.8
WordPress is vulnerable

The Kali Forms WordPress plugin is vulnerable to Remote Code Execution (RCE) via the form_process function, allowing unauthenticated attackers to exec...

2026-03-21
CVE-2026-35682
8.8
Anviz Multiple Products

Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution (e

2026-04-18
CVE-2026-35676
Analyzed
8.2
HP Multiple Products

phpMyFAQ before 4

2026-05-29
CVE-2026-35675
Analyzed
8.2
HP Multiple Products

phpMyFAQ before 4

2026-05-29
CVE-2026-35674
Analyzed
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-05-30
CVE-2026-35671
Analyzed
8.8
HP Multiple Products

phpMyFAQ before 4

2026-05-29
CVE-2026-35669
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-35668
7.7
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-35666
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-35663
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-35660
8.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-35653
8.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-35650
7.5
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-12
CVE-2026-35645
8.1
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-10
CVE-2026-35643
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-35641
7.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-11
CVE-2026-3564
Analyzed
9
ConnectWise ScreenConnect

A critical flaw in ScreenConnect allows attackers with access to server-level cryptographic material to obtain unauthorized access and elevated privil...

2026-03-18
CVE-2026-35639
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-10
CVE-2026-35638
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-10
CVE-2026-35625
7.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-10
CVE-2026-35616
KEV Analyzed
9.8
Fortinet FortiClientEMS

Fortinet FortiClientEMS versions 7.4.5 and 7.4.6 contain an improper access control vulnerability. Unauthenticated attackers can execute unauthorized...

2026-04-04
CVE-2026-35611
7.5
Unknown Multiple Products

Addressable is an alternative implementation to the URI implementation that is part of Ruby's standard library

2026-04-09
CVE-2026-35610
8.8
Unknown Multiple Products

PolarLearn is a free and open-source learning program

2026-04-08
CVE-2026-3561
8
Philips Hue Bridge

Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability

2026-03-17
CVE-2026-35607
8.1
File Multiple Products

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory

2026-04-08
CVE-2026-3560
8.8
Philips Hue Bridge

Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code Execution Vulnerability

2026-03-17
CVE-2026-35595
8.3
Arch Multiple Products

Vikunja is an open-source self-hosted task management platform

2026-04-11
CVE-2026-3559
8.1
Philips Hue Bridge

Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability

2026-03-17
CVE-2026-35589
8
SAP Multiple Products

nanobot is a personal AI assistant

2026-04-15
CVE-2026-35582
8.8
Unknown Multiple Products

Emissary is a P2P based data-driven workflow engine

2026-04-18
CVE-2026-35580
Analyzed
9.1
GitHub Actions workflow

Emissary is a P2P based data-driven workflow engine. Prior to 8.39.0, GitHub Actions workflow files contained shell injection points where user-contro...

2026-04-08
CVE-2026-3558
8.1
Philips Hue Bridge

Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass Vulnerability

2026-03-17
CVE-2026-35576
8.7
Unknown Multiple Products

ChurchCRM is an open-source church management system

2026-04-08
CVE-2026-35575
8
Unknown Multiple Products

ChurchCRM is an open-source church management system

2026-04-08
CVE-2026-35573
Analyzed
9.1
Apache ChurchCRM

ChurchCRM's backup restore functionality is vulnerable to path traversal, allowing authenticated administrators to overwrite configuration files and a...

2026-04-08
CVE-2026-35570
8.4
HP Multiple Products

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers

2026-04-21
CVE-2026-3557
8
Philips Hue Bridge

Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

2026-03-17