17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 4751-4800 of 17426 CVEs Page 96 of 349
CVE-2026-32633
Analyzed
9.1
Glances Glances

The Glances monitoring tool exposes sensitive HTTP Basic credentials for downstream servers via an unauthenticated API endpoint when the central brows...

2026-03-19
CVE-2026-32631
7.4
Microsoft Multiple Products

Git for Windows is the Windows port of Git

2026-04-17
CVE-2026-32628
Analyzed
8.8
PostgreSQL Multiple Products

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting

2026-03-17
CVE-2026-32627
8.7
Unknown Multiple Products

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library

2026-03-17
CVE-2026-32626
Analyzed
9.6
Unknown AnythingLLM Desktop

A Streaming Phase XSS in AnythingLLM Desktop's chat pipeline escalates to Remote Code Execution (RCE) on the host OS due to insecure Electron configur...

2026-03-17
CVE-2026-32621
Analyzed
9.9
Arch Federation

A prototype pollution vulnerability in Apollo Federation's query plan execution allows attackers to pollute Object.prototype, potentially leading to r...

2026-03-17
CVE-2026-32617
7.1
Unknown Multiple Products

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting

2026-03-17
CVE-2026-32616
8.2
Unknown Multiple Products

Pigeon is a message board/notepad/social system/blog

2026-03-17
CVE-2026-32614
7.5
LG Multiple Products

Go ShangMi (Commercial Cryptography) Library (GMSM) is a cryptographic library that covers the Chinese commercial cryptographic public algorithms SM2/...

2026-03-17
CVE-2026-32613
Analyzed
9.9
Infor Multiple Products

Spinnaker is an open source, multi-cloud continuous delivery platform. Echo like some other services, uses SPeL (Spring Expression Language) to proces...

2026-04-21
CVE-2026-32611
7
Unknown Multiple Products

Glances is an open-source system cross-platform monitoring tool

2026-03-19
CVE-2026-32610
8.1
Infor Multiple Products

Glances is an open-source system cross-platform monitoring tool

2026-03-19
CVE-2026-3261
7.3
HP of the

A flaw has been found in itsourcecode School Management System 1

2026-02-27
CVE-2026-32609
7.5
Unknown Multiple Products

Glances is an open-source system cross-platform monitoring tool

2026-03-19
CVE-2026-32608
7
Unknown Multiple Products

Glances is an open-source system cross-platform monitoring tool

2026-03-19
CVE-2026-32606
7.6
Unknown Multiple Products

IncusOS is an immutable OS image dedicated to running Incus

2026-03-18
CVE-2026-32605
7.5
LG Multiple Products

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm

2026-04-14
CVE-2026-32604
Analyzed
9.9
Unknown Multiple Products

Spinnaker is an open source, multi-cloud continuous delivery platform. In versions prior to 2026.1.0, 2026.0.1, 2025.4.2, and 2025.3.2, a bad actor ca...

2026-04-21
CVE-2026-32600
8.2
Unknown Multiple Products

xml-security is a library that implements XML signatures and encryption

2026-03-17
CVE-2026-32597
Analyzed
7.5
Unknown Multiple Products

PyJWT is a JSON Web Token implementation in Python

2026-03-14
CVE-2026-32596
7.5
Infor Multiple Products

Glances is an open-source system cross-platform monitoring tool

2026-03-19
CVE-2026-32573
Analyzed
9.1
WordPress Nelio AB Testing

Nelio AB Testing plugin for WordPress contains a code injection vulnerability. This allows remote attackers to execute arbitrary code by exploiting im...

2026-03-26
CVE-2026-3257
Analyzed
9.8
Unknown Multiple Products

UnQLite versions through 0.06 for Perl uses a potentially insecure version of the UnQLite library. UnQLite for Perl embeds the UnQLite library. Vers...

2026-03-06
CVE-2026-32539
Analyzed
9.3
HP PublishPress Revisions

PublishPress Revisions is vulnerable to Blind SQL Injection due to improper neutralization of special elements in SQL commands. This affects versions...

2026-03-26
CVE-2026-32536
Analyzed
9.9
HP Green Downloads

Green Downloads allows unrestricted upload of files with dangerous types, enabling the use of malicious files. This affects versions up to 2.08.

2026-03-26
CVE-2026-32534
8.5
JoomSky JS Help Desk Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JoomSky JS Help Desk js-support-ticket allows Bl...

2026-03-26
CVE-2026-32531
8.1
HP Program

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in gavias Kunco kunco allows PHP...

2026-03-26
CVE-2026-32530
8.8
WPFunnels Creator LMS Multiple Products

Incorrect Privilege Assignment vulnerability in WPFunnels Creator LMS creatorlms allows Privilege Escalation

2026-03-27
CVE-2026-32525
Analyzed
9.9
HP JetFormBuilder

JetFormBuilder is vulnerable to Code Injection due to improper control of code generation. This affects versions up to and including 3.5.6.1.

2026-03-26
CVE-2026-32522
8.6
Unknown Multiple Products

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in vanquish WooCommerce Support Ticket System woocommerce...

2026-03-27
CVE-2026-32516
8.5
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kamleshyadav Miraculous Core Plugin miraculousco...

2026-03-27
CVE-2026-32513
8.8
Miguel Useche JS Multiple Products

Deserialization of Untrusted Data vulnerability in Miguel Useche JS Archive List jquery-archive-list-widget allows Object Injection

2026-03-26
CVE-2026-32484
8.8
BoldGrid weForms Multiple Products

Deserialization of Untrusted Data vulnerability in BoldGrid weForms weforms allows Object Injection

2026-03-27
CVE-2026-32459
Analyzed
8.5
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in flycart UpsellWP checkout-upsell-and-order-bumps...

2026-03-14
CVE-2026-32458
7.6
RealMag777 Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 WOLF bulk-editor allows Blind SQL Inj...

2026-03-14
CVE-2026-32433
Analyzed
8.5
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in codepeople CP Contact Form with Paypal cp-contac...

2026-03-14
CVE-2026-3243
8.8
WordPress is vulnerable

The Advanced Members for ACF plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the create_crop...

2026-04-09
CVE-2026-32426
7.5
HP Program

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themelexus Medilazar Core med...

2026-03-14
CVE-2026-32422
Analyzed
8.5
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in levelfourdevelopment WP EasyCart wp-easycart all...

2026-03-14
CVE-2026-32418
7.6
Jordy Meow Meow Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Jordy Meow Meow Gallery meow-gallery allows Blin...

2026-03-14
CVE-2026-32414
7.2
ILLID Advanced Woo Multiple Products

Improper Control of Generation of Code ('Code Injection') vulnerability in ILLID Advanced Woo Labels advanced-woo-labels allows Remote Code Inclusion

2026-03-15
CVE-2026-32400
7.5
HP Program

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemetechMount Boldman boldma...

2026-03-14
CVE-2026-32399
Analyzed
8.5
David Lingren Media Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David Lingren Media LIbrary Assistant media-libr...

2026-03-14
CVE-2026-32368
Analyzed
8.5
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in delphiknight Geo to Lat geo-to-lat allows Blind...

2026-03-14
CVE-2026-32366
Analyzed
8.5
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in robfelty Collapsing Categories collapsing-catego...

2026-03-14
CVE-2026-32358
7.6
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in wpdevelop Booking Calendar booking allows Blind...

2026-03-14
CVE-2026-32324
7.7
Anviz Multiple Products

Anviz CX7 Firmware is  vulnerable because the application embeds reusable certificate/key material, enabling decryption of MQTT traffic and potential...

2026-04-18
CVE-2026-32323
Analyzed
7.3
VPN Multiple Products

Mullvad VPN is a VPN client app for desktop and mobile

2026-05-19
CVE-2026-32321
8.8
HP Multiple Products

ClipBucket v5 is an open source video sharing platform

2026-03-19
CVE-2026-32319
Analyzed
7.5
Ella Multiple Products

Ella Core is a 5G core designed for private networks

2026-03-14