CVE Database

36709+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-40066
8.8 HIGH

Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded. The device unpacks and executes a script resulting in unauthenticated …

Apr 17, 2026
CVE-2026-35682
8.8 HIGH

Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that enables arbitrary command execution (e.g., starting telnetd), resulting in root‑level …

Apr 17, 2026
CVE-2026-35215
7.5 HIGH

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the sdl_desc() function does not validate the length of …

Apr 17, 2026
CVE-2026-34232
7.5 HIGH

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the xdr_status_vector() function does not handle the isc_arg_cstring type …

Apr 17, 2026
CVE-2026-32650
7.5 HIGH

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling …

Apr 17, 2026
CVE-2026-32623
8.1 HIGH

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in the NeutrinoRDP module. When proxying RDP sessions from …

Apr 17, 2026
CVE-2026-32324
7.7 HIGH

Anviz CX7 Firmware is vulnerable because the application embeds reusable certificate/key material, enabling decryption of MQTT traffic and potential interaction with device messaging channels at …

Apr 17, 2026
CVE-2026-32107
8.8 HIGH

xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop …

Apr 17, 2026
CVE-2026-32105
7.7 HIGH

xrdp is an open source RDP server. In versions through 0.10.5, xrdp does not implement verification for the Message Authentication Code (MAC) signature of encrypted …

Apr 17, 2026
CVE-2026-33337
7.5 HIGH

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when deserializing a slice packet, the xdr_datum() function does …

Apr 17, 2026
CVE-2026-28224
8.2 HIGH

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when the server receives an op_crypt_key_callback packet without prior …

Apr 17, 2026
CVE-2026-28212
7.5 HIGH

Firebird is an open-source relational database management system. In versions prior to 6.0.0, 5.0.4, 4.0.7 and 3.0.14, when processing an op_slice network packet, the server …

Apr 17, 2026
CVE-2026-27890
8.2 HIGH

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when processing CNCT_specific_data segments during authentication, the server assumes …

Apr 17, 2026
CVE-2026-5718
8.1 HIGH

The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file upload in versions up to, and …

Apr 17, 2026
CVE-2026-5710
7.5 HIGH

The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to Path Traversal leading to Arbitrary File Read in …

Apr 17, 2026
CVE-2026-40320
7.8 HIGH

Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the ConformityCheck class rendered the rule parameter through Jinja2's default Template() …

Apr 17, 2026
CVE-2025-65104
7.9 HIGH

Firebird is an open-source relational database management system. In versions FB3 of the client library placed incorrect data length values into XSQLDA fields when communicating …

Apr 17, 2026
CVE-2026-40518
7.1 HIGH

ByteDance DeerFlow before commit 2176b2b contains a path traversal and arbitrary file write vulnerability in bootstrap-mode custom-agent creation where the agent name validation is bypassed. …

Apr 17, 2026
CVE-2026-40516
8.3 HIGH

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_fetch and web_search tools that allows attackers to access private and localhost HTTP …

Apr 17, 2026
CVE-2026-40515
7.5 HIGH

OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. …

Apr 17, 2026
CVE-2026-3464
8.8 HIGH

The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation in the 'ajax_attach_file' function …

Apr 17, 2026
CVE-2026-21733
7.3 HIGH

Vulnerability in Imagination Technologies Graphics DDK on Linux, Android -- RESERVED

Apr 17, 2026
CVE-2026-6490
7.3 HIGH

A weakness has been identified in QueryMine sms up to 7ab5a9ea196209611134525ffc18de25c57d9593. Impacted is an unknown function of the file admin/deletecourse.php of the component GET Request …

Apr 17, 2026
CVE-2026-40459
8.8 HIGH

PAC4J is vulnerable to LDAP Injection in multiple methods. A low-privileged remote attacker can inject crafted LDAP syntax into ID-based search parameters, potentially resulting in …

Apr 17, 2026
CVE-2026-31317
7.5 HIGH

Craftql v1.3.7 and before is vulnerable to Server-Side Request Forgery (SSRF) which allows an attacker to execute arbitrary code via the vendor/markhuot/craftql/src/Listeners/GetAssetsFieldSchema.php file

Apr 17, 2026
CVE-2026-6507
7.5 HIGH

A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY (Bootstrap Protocol Reply) packet …

Apr 17, 2026
CVE-2026-6483
7.2 HIGH

A vulnerability was found in Wavlink WL-WN530H4 20220721. This vulnerability affects the function strcat/snprintf of the file /cgi-bin/internet.cgi. The manipulation results in os command injection. …

Apr 17, 2026
CVE-2026-23776
7.2 HIGH

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 …

Apr 17, 2026
CVE-2026-23778
7.2 HIGH

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 …

Apr 17, 2026
CVE-2026-23775
7.6 HIGH

Dell PowerProtect Data Domain appliances with Data Domain Operating System (DD OS) of Feature Release versions 8.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.10 …

Apr 17, 2026
CVE-2025-36568
7.8 HIGH

Dell PowerProtect Data Domain BoostFS for client of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through …

Apr 17, 2026
CVE-2026-33392
7.2 HIGH

In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE via sandbox bypass

Apr 17, 2026
CVE-2026-23853
8.4 HIGH

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 …

Apr 17, 2026
CVE-2026-4659
7.5 HIGH

The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Arbitrary File Read via the Repeater JSON/CSV URL parameter in versions up to, and …

Apr 17, 2026
CVE-2026-6482
7.8 HIGH

The Rapid7 Insight Agent (versions > 4.1.0.2) is vulnerable to a local privilege escalation attack that allows users to gain SYSTEM level control of a …

Apr 17, 2026
CVE-2026-6421
7.0 HIGH

A vulnerability has been found in Mobatek MobaXterm Home Edition up to 26.1. This affects an unknown part in the library msimg32.dll. The manipulation leads …

Apr 17, 2026
CVE-2026-21719
7.2 HIGH

An OS command injection vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to execute an arbitrary OS …

Apr 17, 2026
CVE-2026-5807
7.5 HIGH

Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate or cancel root token generation or rekey operations, occupying the single …

Apr 17, 2026
CVE-2026-4525
7.5 HIGH

If a Vault auth mount is configured to pass through the "Authorization" header, and the "Authorization" header is used to authenticate to Vault, Vault forwarded …

Apr 17, 2026
CVE-2026-3605
8.1 HIGH

An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secrets they were not authorized …

Apr 17, 2026
CVE-2026-5231
7.2 HIGH

The WP Statistics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'utm_source' parameter in all versions up to, and including, 14.16.4. This …

Apr 17, 2026
CVE-2026-40262
8.7 HIGH

Note Mark is an open-source note-taking application. In versions 0.19.1 and prior, the asset delivery handler serves uploaded files inline and relies on magic-byte detection …

Apr 17, 2026
CVE-2026-22734
8.6 HIGH

Cloud Foundry UUA is vulnerable to a bypass that allows an attacker to obtain a token for any user and gain access to UAA-protected systems. …

Apr 17, 2026
CVE-2026-40318
8.5 HIGH

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and prior, the /api/av/removeUnusedAttributeView endpoint constructs a filesystem path using the user-controlled id parameter …

Apr 16, 2026
CVE-2026-40259
8.1 HIGH

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and below, the /api/av/removeUnusedAttributeView endpoint is protected only by generic authentication that accepts publish-service …

Apr 16, 2026
CVE-2026-41113
8.1 HIGH

sagredo qmail before 2026.04.07 allows tls_quit remote code execution because of popen in notlshosts_auto in qmail-remote.c.

Apr 16, 2026
CVE-2026-40248
7.5 HIGH

free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the handler for creating or updating …

Apr 16, 2026
CVE-2026-40247
7.5 HIGH

free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the handler for reading Traffic Influence …

Apr 16, 2026
CVE-2026-40246
7.5 HIGH

free5GC is an open-source implementation of the 5G core network. In versions 1.4.2 and below of the UDR service, the handler for deleting Traffic Influence …

Apr 16, 2026
CVE-2026-40170
7.5 HIGH

ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack …

Apr 16, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.