CVE Database

108042+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-9547
7.4 HIGH

When a libcurl-based application performs transfers via `SCP://` or `SFTP://` and utilizes the `CURLOPT_SSH_KEYFUNCTION` callback, it may silently accept an untrusted server. This vulnerability occurs …

Jul 3, 2026
CVE-2026-9546
7.5 HIGH

A vulnerability in libcurl caused the HTTP `Referer:` header to persist even when explicitly cleared. While the documentation states that passing NULL to `CURLOPT_REFERER` suppresses …

Jul 3, 2026
CVE-2026-9545
7.5 HIGH

In this scenario, libcurl first uses a proper HTTP/3 server for the initial transfers, and when it makes a second transfer to the same site …

Jul 3, 2026
CVE-2026-9080
7.3 HIGH

Calling `curl_easy_pause()` within the event-based `CURLMOPT_SOCKETFUNCTION` callback triggers a use-after-free vulnerability, where libcurl attempts to store a flag using a dangling struct pointer immediately after …

Jul 3, 2026
CVE-2026-9079
9.8 CRITICAL

libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get …

Jul 3, 2026
CVE-2026-8932
7.5 HIGH

libcurl would reuse a previously created connection even when some mTLS config related option had been changed that should have prohibited reuse. libcurl keeps previously …

Jul 3, 2026
CVE-2026-8927
9.1 CRITICAL

When reusing a libcurl handle for sequential transfers driven by environment-variable proxy configuration, libcurl fails to clear the proxy authentication state between requests. Specifically, if …

Jul 3, 2026
CVE-2026-8926
9.1 CRITICAL

When asking curl to use a `.netrc` file to find credentials and at the same time specifying a URL with a username(without a password), like …

Jul 3, 2026
CVE-2026-8925
9.8 CRITICAL

The curl logic that works with SASL authentication could end up cleaning up the GSASL context *twice* without clearing the pointer in between, making it …

Jul 3, 2026
CVE-2026-8924
9.1 CRITICAL

A flaw in curl’s cookie parsing logic allows a malicious HTTP server to set 'super cookies' that bypass the Public Suffix List check. This enables …

Jul 3, 2026
CVE-2026-8458
6.5 MEDIUM

libcurl might in some circumstances reuse the wrong connection when asked to do Negotiate-authenticated ones, even when they are set to use different 'services'. libcurl …

Jul 3, 2026
CVE-2026-8286
8.1 HIGH

A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration …

Jul 3, 2026
CVE-2026-4967
7.5 HIGH

In IMS, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with …

Jul 3, 2026
CVE-2026-12064
7.5 HIGH

When a user invokes curl using a schemeless URL combined with `--proto-default` sftp (or scp), a disconnect occurs between the tool layer and libcurl. The …

Jul 3, 2026
CVE-2026-11856
9.8 CRITICAL

Successfully using libcurl to do a transfer to a specific HTTP origin (`hostA`) with **Digest** authentication and then changing the origin to a different one …

Jul 3, 2026
CVE-2026-11586
7.5 HIGH

By default, curl automatically responds to WebSocket PING frames. Because curl lacks an upper bound on memory allocation for unacknowledged frames, a malicious server can …

Jul 3, 2026
CVE-2026-11564
9.1 CRITICAL

libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. An easy handle that …

Jul 3, 2026
CVE-2026-11352
7.5 HIGH

An issue in curl’s QUIC UDP receive function allows a malicious HTTP/3 server to trigger a remote denial of service against a curl or libcurl …

Jul 3, 2026
CVE-2026-10536
9.8 CRITICAL

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via `CURLOPT_STREAM_DEPENDS` or `CURLOPT_STREAM_DEPENDS_E`, subsequently invokes `curl_easy_reset()`, and finally terminates the …

Jul 3, 2026
CVE-2026-9725
9.1 CRITICAL

The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 2.5.2 …

Jul 3, 2026
CVE-2026-9626
6.4 MEDIUM

The JSON API User plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'content' parameter of the post_comment API endpoint in versions up …

Jul 3, 2026
CVE-2026-9180
5.3 MEDIUM

The MotoPress Appointment Booking plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to, and including, 2.4.4. This is …

Jul 3, 2026
CVE-2026-8892
6.4 MEDIUM

The CM Business Directory – Optimise and showcase local business plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Business Address Meta Fields in …

Jul 3, 2026
CVE-2026-8489
6.4 MEDIUM

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via …

Jul 3, 2026
CVE-2026-14352
7.5 HIGH

The AR for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. …

Jul 3, 2026
CVE-2026-13040
7.2 HIGH

The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'real_val__' parameter in all versions up …

Jul 3, 2026
CVE-2026-12557
5.3 MEDIUM

The Ninja Forms - File Uploads plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.3.29. This is due …

Jul 3, 2026
CVE-2026-11397
5.5 MEDIUM

The WP Import Export Lite plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to and including 3.9.30 via the wpie_import_upload_file_from_url …

Jul 3, 2026
CVE-2026-8921

External Control of File Name or Path vulnerability in ASUS Business Manager allows a local user to execute arbitrary code with SYSTEM privileges via a …

Jul 3, 2026
CVE-2026-12960

An Improper Export of Android Application Components vulnerability in ASUS Router App allows a third-party application on the same device to send a crafted Intent …

Jul 3, 2026
CVE-2022-4990

** UNSUPPORTED WHEN ASSIGNED ** Improper Validation of Specified Quantity in Input in the ASUS AI Suite 3 driver allows a local user to bypass …

Jul 3, 2026
CVE-2022-4989

** UNSUPPORTED WHEN ASSIGNED ** Improper Validation of Specified Quantity in Input in the ASUS AI Suite 3 driver allows a local user to access …

Jul 3, 2026
CVE-2026-14327
7.5 HIGH

The AR for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. …

Jul 3, 2026
CVE-2026-12920
4.9 MEDIUM

The Cookie Banner for GDPR / CCPA – WPLP Cookie Consent plugin for WordPress is vulnerable to generic SQL Injection via the 's' parameter in …

Jul 3, 2026
CVE-2026-12734
6.4 MEDIUM

The weDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'connectorWidth' Block Attribute …

Jul 3, 2026
CVE-2026-12731
6.4 MEDIUM

The weDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'sectionTitleTag' and 'articleTitleTag' …

Jul 3, 2026
CVE-2026-12729
4.3 MEDIUM

The weDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot plugin for WordPress is vulnerable to Missing Authorization in versions up to and …

Jul 3, 2026
CVE-2026-8247

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker on the same local network segment to execute arbitrary code. This vulnerability …

Jul 3, 2026
CVE-2026-55726
5.3 MEDIUM

The Azure Blob Storage container used for Gardyn device logs is publicly listable without authentication. A malicious user would be able to access any device …

Jul 3, 2026
CVE-2026-54477
5.4 MEDIUM

The admin panel lacks standard security headers, enabling clickjacking and cross-site scripting attacks.

Jul 3, 2026
CVE-2026-13768
10.0 CRITICAL

Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager function which returns …

Jul 3, 2026
CVE-2026-13728

In exception circumstances, WatchGuard Fireware OS on a FireCluster may use a hard-coded encryption key to encrypt saved credentials for Access Portal resources. This vulnerability …

Jul 3, 2026
CVE-2026-13722

WatchGuard Fireware OS contains a firmware validation bypass when processing a backup image via the backup/restore feature. An authenticated administrator can exploit this vulnerability to …

Jul 3, 2026
CVE-2026-13384

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated privileged user to execute arbitrary code via a specially crafted requests …

Jul 3, 2026
CVE-2026-13383

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated privileged user to execute arbitrary code via a specially crafted requests …

Jul 3, 2026
CVE-2026-13377

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS SIP Proxy module allows Stored XSS. This vulnerability …

Jul 3, 2026
CVE-2026-13376

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS spamBlocker module allows Stored XSS. This vulnerability is …

Jul 3, 2026
CVE-2026-13375

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Autotask Technology Integration module) allows Stored XSS. This …

Jul 3, 2026
CVE-2026-13374

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (ConnectWise Technology Integration module) allows Stored XSS. This …

Jul 3, 2026
CVE-2026-13373

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Tigerpaw Technology Integration module) allows Stored XSS. This …

Jul 3, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.