CVE Database

9215+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-41274
9.8 CRITICAL

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the GraphCypherQAChain node forwards user-provided input …

Apr 23, 2026
CVE-2026-35431
10.0 CRITICAL

Server-side request forgery (ssrf) in Microsoft Entra ID Entitlement Management allows an unauthorized attacker to perform spoofing over a network.

Apr 23, 2026
CVE-2026-33819
10.0 CRITICAL

Deserialization of untrusted data in Microsoft Bing allows an unauthorized attacker to execute code over a network.

Apr 23, 2026
CVE-2026-33102
9.3 CRITICAL

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

Apr 23, 2026
CVE-2026-32210
9.3 CRITICAL

Server-side request forgery (ssrf) in Microsoft Dynamics 365 (Online) allows an unauthorized attacker to perform spoofing over a network.

Apr 23, 2026
CVE-2026-26210
9.8 CRITICAL

KTransformers through 0.5.3 contains an unsafe deserialization vulnerability in the balance_serve backend mode where the scheduler RPC server binds a ZMQ ROUTER socket to all …

Apr 23, 2026
CVE-2026-24303
9.6 CRITICAL

Improper access control in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.

Apr 23, 2026
CVE-2026-6942
9.8 CRITICAL

radare2-mcp version 1.6.0 and earlier contains an os command injection vulnerability that allows remote attackers to execute arbitrary commands by bypassing the command filter through …

Apr 23, 2026
CVE-2026-41276
9.8 CRITICAL

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, this vulnerability allows remote attackers to …

Apr 23, 2026
CVE-2026-41268
9.8 CRITICAL

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, Flowise is vulnerable to a critical …

Apr 23, 2026
CVE-2026-41265
9.8 CRITICAL

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the specific flaw exists within the …

Apr 23, 2026
CVE-2026-41264
9.8 CRITICAL

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the specific flaw exists within the …

Apr 23, 2026
CVE-2026-25874
9.8 CRITICAL

LeRobot through 0.5.1 contains an unsafe deserialization vulnerability in the async inference pipeline where pickle.loads() is used to deserialize data received over unauthenticated gRPC channels …

Apr 23, 2026
CVE-2026-41247
9.8 CRITICAL

elFinder is an open-source file manager for web, written in JavaScript using jQuery UI. Prior to 2.1.67, elFinder contains a command injection vulnerability in the …

Apr 23, 2026
CVE-2026-6920
9.6 CRITICAL

Out of bounds read in GPU in Google Chrome on Android prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to …

Apr 23, 2026
CVE-2026-6919
9.6 CRITICAL

Use after free in DevTools in Google Chrome prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Apr 23, 2026
CVE-2026-31533
9.8 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption The -EBUSY handling in tls_do_encryption(), introduced …

Apr 23, 2026
CVE-2026-31181
9.8 CRITICAL

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the stunServerAddr parameter to /cgi-bin/cstecgi.cgi.

Apr 23, 2026
CVE-2026-31178
9.8 CRITICAL

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the stunMaxAlive parameter to /cgi-bin/cstecgi.cgi.

Apr 23, 2026
CVE-2026-31177
9.8 CRITICAL

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the stunMinAlive parameter to /cgi-bin/cstecgi.cgi.

Apr 23, 2026
CVE-2026-31175
9.8 CRITICAL

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the stunEnable parameter to /cgi-bin/cstecgi.cgi.

Apr 23, 2026
CVE-2026-40472
9.9 CRITICAL

In hackage-server, user-controlled metadata from .cabal files are rendered into HTML href attributes without proper sanitization, enabling stored Cross-Site Scripting (XSS) attacks.

Apr 23, 2026
CVE-2026-40471
9.6 CRITICAL

hackage-server lacked Cross-Site Request Forgery (CSRF) protection across its endpoints. Scripts on foreign sites could trigger requests to hackage server, possibly abusing latent credentials to …

Apr 23, 2026
CVE-2026-40470
9.9 CRITICAL

A critical XSS vulnerability affected hackage-server and hackage.haskell.org. HTML and JavaScript files provided in source packages or via the documentation upload facility were served as-is …

Apr 23, 2026
CVE-2026-39087
9.8 CRITICAL

ntfy before 2.22.0 allows SSRF because of an unanchored regular expression.

Apr 23, 2026
CVE-2026-23751
9.8 CRITICAL

Kofax Capture, now referred to as Tungsten Capture, version 6.0.0.0 (other versions may be affected) exposes a deprecated .NET Remoting HTTP channel on port 2424 …

Apr 23, 2026
CVE-2025-62373
9.8 CRITICAL

Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. Versions 0.0.41 through 0.0.93 have a vulnerability in `LivekitFrameSerializer` – an …

Apr 23, 2026
CVE-2025-50229
9.8 CRITICAL

Jizhicms v2.5.4 is vulnerable to SQL injection in the product editing module.

Apr 23, 2026
CVE-2026-41460
9.8 CRITICAL

SocialEngine versions 7.8.0 and prior contain a SQL injection vulnerability in the /activity/index/get-memberall endpoint where user-supplied input passed via the text parameter is not sanitized …

Apr 23, 2026
CVE-2026-39440
9.9 CRITICAL

Improper Control of Generation of Code ('Code Injection') vulnerability in Funnelforms LLC FunnelFormsPro allows Remote Code Inclusion.This issue affects FunnelFormsPro: from n/a through 3.8.1.

Apr 23, 2026
CVE-2026-6887
9.8 CRITICAL

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL …

Apr 23, 2026
CVE-2026-6886
9.8 CRITICAL

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthenticated remote attackers to log into the …

Apr 23, 2026
CVE-2026-6885
9.8 CRITICAL

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and …

Apr 23, 2026
CVE-2026-41229
9.1 CRITICAL

Froxlor is open source server administration software. Prior to version 2.3.6, `PhpHelper::parseArrayToString()` writes string values into single-quoted PHP string literals without escaping single quotes. When …

Apr 23, 2026
CVE-2026-41228
9.9 CRITICAL

Froxlor is open source server administration software. Prior to version 2.3.6, the Froxlor API endpoint `Customers.update` (and `Admins.update`) does not validate the `def_language` parameter against …

Apr 23, 2026
CVE-2026-3844
9.8 CRITICAL

The Breeze Cache plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'fetch_gravatar_from_remote' function in all versions …

Apr 23, 2026
CVE-2026-41679
10.0 CRITICAL

Paperclip is a Node.js server and React UI that orchestrates a team of AI agents to run a business. Prior to version 2026.416.0, an unauthenticated …

Apr 23, 2026
CVE-2026-41211
10.0 CRITICAL

Vite+ is a unified toolchain and entry point for web development. Prior to version 0.1.17, `downloadPackageManager()` accepts an untrusted `version` string and uses it directly …

Apr 23, 2026
CVE-2026-41196
10.0 CRITICAL

Luanti (formerly Minetest) is an open source voxel game-creation platform. Starting in version 5.0.0 and prior to version 5.15.2, a malicious mod can trivially escape …

Apr 23, 2026
CVE-2026-41179
9.8 CRITICAL

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Starting in version 1.48.0 and prior to version …

Apr 23, 2026
CVE-2026-41176
9.8 CRITICAL

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. The RC endpoint `options/set` is exposed without `AuthRequired: …

Apr 23, 2026
CVE-2026-29198
9.8 CRITICAL

In Rocket.Chat <8.3.0, <8.2.1, <8.1.2, <8.0.3, <7.13.5, <7.12.6, <7.11.6, and <7.10.9, a NoSQL injection vulnerability can lead to account takeover of the first user with …

Apr 23, 2026
CVE-2026-41167
9.1 CRITICAL

Jellystat is a free and open source Statistics App for Jellyfin. Prior to version 1.1.10, multiple API endpoints in Jellystat build SQL queries by interpolating …

Apr 22, 2026
CVE-2026-33656
9.1 CRITICAL

EspoCRM is an open source customer relationship management application. Prior to version 9.3.4, EspoCRM's built-in formula scripting engine allowing updating attachment's sourceId thus allowing an …

Apr 22, 2026
CVE-2026-33471
9.6 CRITICAL

nimiq-block contains block primitives to be used in Nimiq's Rust implementation. `SkipBlockProof::verify` computes its quorum check using `BitSet.len()`, then iterates `BitSet` indices and casts each …

Apr 22, 2026
CVE-2026-34415
9.8 CRITICAL

Xerte Online Toolkits versions 3.15 and earlier contain an incomplete input validation vulnerability in the elFinder connector endpoint that fails to block PHP-executable extensions .php4 …

Apr 22, 2026
CVE-2018-25272
9.8 CRITICAL

ELBA5 5.8.0 contains a remote code execution vulnerability that allows attackers to obtain database credentials and execute arbitrary commands with SYSTEM level permissions. Attackers can …

Apr 22, 2026
CVE-2018-25270
9.8 CRITICAL

ThinkPHP 5.0.23 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary PHP code by invoking functions through the routing parameter. Attackers …

Apr 22, 2026
CVE-2026-6356
9.6 CRITICAL

A vulnerability in the web application allows standard users to escalate their privileges to those of a super administrator through parameter manipulation, enabling them to …

Apr 22, 2026
CVE-2026-31501
9.8 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix use-after-free of CPPI descriptor in RX path cppi5_hdesc_get_psdata() returns a pointer …

Apr 22, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.