17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 4651-4700 of 17426 CVEs Page 94 of 349
CVE-2026-32944
7.5
Parse Multiple Products

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node

2026-03-20
CVE-2026-32940
Analyzed
9.3
SiYuan SiYuan

SiYuan versions 3.6.0 and below contain a click-through XSS vulnerability in the dynamic icon API due to incomplete SVG sanitization.

2026-03-20
CVE-2026-3294
Analyzed
8.8
TP-Link Range Extenders

An authentication logic vulnerability in multiple TP-Link range extenders allows an unauthenticated attacker on an adjacent network to manipulate a lo...

2026-06-02
CVE-2026-32938
Analyzed
9.9
SiYuan SiYuan

SiYuan versions 3.6.0 and below are vulnerable to path traversal and sensitive file exfiltration via improper validation of file:// links in pasted HT...

2026-03-20
CVE-2026-32933
7.5
Unknown Multiple Products

AutoMapper is a convention-based object-object mapper in

2026-03-20
CVE-2026-32931
7.5
HP webshell by

Chamilo LMS is a learning management system

2026-04-12
CVE-2026-32930
7.1
Unknown Multiple Products

Chamilo LMS is a learning management system

2026-04-12
CVE-2026-32929
7.8
SFT Multiple Products

V-SFT versions 6

2026-04-02
CVE-2026-32928
7.8
SFT Multiple Products

V-SFT versions 6

2026-04-02
CVE-2026-32927
7.8
SFT Multiple Products

V-SFT versions 6

2026-04-02
CVE-2026-32926
7.8
SFT Multiple Products

V-SFT versions 6

2026-04-02
CVE-2026-32925
7.8
SFT Multiple Products

V-SFT versions 6

2026-04-02
CVE-2026-32924
Analyzed
9.8
OpenClaw OpenClaw

An authorization bypass in OpenClaw's Feishu integration misclassifies group chat reaction events as private conversations, allowing attackers to circ...

2026-03-30
CVE-2026-32922
Analyzed
9.9
OpenClaw OpenClaw

A privilege escalation vulnerability in OpenClaw's token rotation mechanism allows users with limited pairing scopes to mint high-privilege administra...

2026-03-30
CVE-2026-32920
8.4
OpenClaw Multiple Products

OpenClaw before 2026

2026-04-01
CVE-2026-32918
8.4
OpenClaw Multiple Products

OpenClaw before 2026

2026-03-30
CVE-2026-32917
Analyzed
9.8
OpenClaw OpenClaw

OpenClaw contains a remote command injection vulnerability in the iMessage attachment staging flow. Unsanitized SCP paths allow attackers to execute c...

2026-04-01
CVE-2026-32916
Analyzed
9.4
OpenClaw OpenClaw

OpenClaw versions before 2026.3.11 contain an unauthenticated authorization bypass allowing remote attackers to execute privileged gateway actions via...

2026-04-01
CVE-2026-32915
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-03-30
CVE-2026-32914
8.8
OpenClaw Multiple Products

OpenClaw before 2026

2026-03-30
CVE-2026-32913
Analyzed
9.3
OpenClaw OpenClaw

OpenClaw fails to properly validate headers during cross-origin redirects, leading to the leakage of sensitive authorization headers like API keys to...

2026-03-24
CVE-2026-32894
7.1
Unknown Multiple Products

Chamilo LMS is a learning management system

2026-04-12
CVE-2026-32892
Analyzed
9.1
HP passes user

Chamilo LMS contains an OS Command Injection vulnerability in its file move function, allowing authenticated users to execute arbitrary commands on th...

2026-04-11
CVE-2026-32891
Analyzed
9
Discord bot for

Anchorr is a Discord bot for requesting movies and TV shows and receiving notifications when items are added to a media server. Versions 1.4.1 and bel...

2026-03-20
CVE-2026-32890
Analyzed
9.6
Discord bot for

Anchorr is a Discord bot for requesting movies and TV shows and receiving notifications when items are added to a media server. In versions 1.4.1 and...

2026-03-20
CVE-2026-32888
8.8
HP functionality

Open Source Point of Sale is a web based point-of-sale application written in PHP using CodeIgniter framework

2026-03-20
CVE-2026-32887
7.4
Unknown Multiple Products

Effect is a TypeScript framework that consists of several packages that work together to help build TypeScript applications

2026-03-22
CVE-2026-32886
7.5
Parse Multiple Products

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node

2026-03-20
CVE-2026-32882
Analyzed
7.1
Unknown Multiple Products

libheif is a HEIF and AVIF file format decoder and encoder

2026-05-20
CVE-2026-3288
8.8
Nginx where the

A security issue was discovered in ingress-nginx where the `nginx

2026-03-10
CVE-2026-32878
7.5
Parse Multiple Products

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node

2026-03-20
CVE-2026-32877
8.2
Unknown Multiple Products

Botan is a C++ cryptography library

2026-03-31
CVE-2026-32875
7.5
Unknown Multiple Products

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3

2026-03-20
CVE-2026-32874
7.5
Unknown Multiple Products

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3

2026-03-20
CVE-2026-32873
7.5
Unknown Multiple Products

ewe is a Gleam web server

2026-03-20
CVE-2026-32865
Analyzed
9.8
OPEXUS eComplaint and eCASE

OPEXUS eComplaint and eCASE expose secret verification codes in HTTP responses during password resets. Attackers can use this to hijack accounts and r...

2026-03-20
CVE-2026-32864
7.8
Infor Multiple Products

There is a memory corruption vulnerability due to an out-of-bounds read in mgcore_SH_25_3!aligned_free() in NI LabVIEW

2026-04-09
CVE-2026-32863
7.8
Infor Multiple Products

There is a memory corruption vulnerability due to an out-of-bounds read in sentry_transaction_context_set_operation() in NI LabVIEW

2026-04-09
CVE-2026-32862
7.8
Infor Multiple Products

There is a memory corruption vulnerability due to an out-of-bounds write in ResFileFactory::InitResourceMgr() in NI LabVIEW

2026-04-09
CVE-2026-32861
7.8
Infor Multiple Products

There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file in NI LabVIEW

2026-04-09
CVE-2026-32860
7.8
Infor Multiple Products

There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVLIB file in NI LabVIEW

2026-04-08
CVE-2026-32857
8.6
Firecrawl Multiple Products

Firecrawl version 2

2026-03-28
CVE-2026-32853
8.1
LibVNCServer Multiple Products

LibVNCServer versions 0

2026-03-26
CVE-2026-32845
8.4
Unknown Multiple Products

cgltf version 1

2026-03-24
CVE-2026-32841
8.1
Unknown Multiple Products

Edimax GS-5008PL firmware version 1

2026-03-18
CVE-2026-32838
7.5
Unknown Multiple Products

Edimax GS-5008PL firmware version 1

2026-03-19
CVE-2026-32834
7.5
WordPress version

Easy PayPal Events & Tickets plugin for WordPress version 1

2026-05-05
CVE-2026-32833
Analyzed
8.8
Cudy LT300

Cudy LT300 3

2026-06-27
CVE-2026-32817
Analyzed
9.1
HP only perform

Admidio is an open-source user management solution. In versions 5.0.0 through 5.0.6, the documents and files module does not verify whether the curren...

2026-03-20
CVE-2026-32813
8
Unknown Multiple Products

Admidio is an open-source user management solution

2026-03-20