CVE Database

9215+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-31478
9.8 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2_len with offsetof() in smb2_calc_max_out_buf_len() After this commit (e2b76ab8b5c9 "ksmbd: add support …

Apr 22, 2026
CVE-2026-31463
9.8 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: iomap: fix invalid folio access when i_blkbits differs from I/O granularity Commit aa35dd5cbc06 ("iomap: fix …

Apr 22, 2026
CVE-2026-31448
9.4 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical …

Apr 22, 2026
CVE-2026-31444
9.8 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free and NULL deref in smb_grant_oplock() smb_grant_oplock() has two issues in the oplock …

Apr 22, 2026
CVE-2026-31436
9.8 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() At the end of this function, …

Apr 22, 2026
CVE-2026-6235
9.8 CRITICAL

The Sendmachine for WordPress plugin for WordPress is vulnerable to authorization bypass via the 'manage_admin_requests' function in all versions up to, and including, 1.0.20. This …

Apr 22, 2026
CVE-2026-4119
9.1 CRITICAL

The Create DB Tables plugin for WordPress is vulnerable to authorization bypass in all versions up to and including 1.2.1. The plugin registers admin_post action …

Apr 22, 2026
CVE-2026-41304
9.8 CRITICAL

WWBN AVideo is an open source video platform. In versions 29.0 and below, the `cloneServer.json.php` endpoint in the CloneSite plugin constructs shell commands using user-controlled …

Apr 22, 2026
CVE-2026-41064
9.3 CRITICAL

WWBN AVideo is an open source video platform. In versions up to and including 29.0, an incomplete fix for AVideo's `test.php` adds `escapeshellarg` for wget …

Apr 22, 2026
CVE-2026-40575
9.1 CRITICAL

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 may trust a client-supplied `X-Forwarded-Uri` header when `--reverse-proxy` is …

Apr 22, 2026
CVE-2026-5845
9.6 CRITICAL

An improper authorization vulnerability in scoped user-to-server (ghu_) token authorization in GitHub Enterprise Server allows an authenticated attacker to access private repositories outside the intended …

Apr 21, 2026
CVE-2026-40933
9.9 CRITICAL

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, due to unsafe serialization of stdio …

Apr 21, 2026
CVE-2026-40911
10.0 CRITICAL

WWBN AVideo is an open source video platform. In versions 29.0 and prior, the YPTSocket plugin's WebSocket server relays attacker-supplied JSON message bodies to every …

Apr 21, 2026
CVE-2026-40906
9.9 CRITICAL

Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1/shape API is vulnerable to error-based SQL injection, …

Apr 21, 2026
CVE-2026-40892
9.8 CRITICAL

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, a stack buffer overflow exists in pjsip_auth_create_digest2() in …

Apr 21, 2026
CVE-2026-34287
9.1 CRITICAL

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Core). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability …

Apr 21, 2026
CVE-2026-34286
9.1 CRITICAL

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Core). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability …

Apr 21, 2026
CVE-2026-34285
9.1 CRITICAL

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Core). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability …

Apr 21, 2026
CVE-2026-34279
9.1 CRITICAL

Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Event Management). Supported versions that are affected are 13.5 and 24.1. …

Apr 21, 2026
CVE-2026-34275
9.8 CRITICAL

Vulnerability in the Oracle Advanced Inbound Telephony product of Oracle E-Business Suite (component: Setup and Administration). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable …

Apr 21, 2026
CVE-2026-33519
9.8 CRITICAL

An incorrect authorization vulnerability exists in Esri Portal for ArcGIS 11.4, 11.5 and 12.0 on Windows, Linux and Kubernetes that did not correctly check permissions …

Apr 21, 2026
CVE-2026-33518
9.8 CRITICAL

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials …

Apr 21, 2026
CVE-2026-40903
9.1 CRITICAL

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs has an ArtiPACKED vulnerability. ArtiPACKED can lead to leakage of the GITHUB_TOKEN through workflow …

Apr 21, 2026
CVE-2026-40887
9.1 CRITICAL

Vendure is an open-source headless commerce platform. Starting in version 1.7.4 and prior to versions 2.3.4, 3.5.7, and 3.6.2, an unauthenticated SQL injection vulnerability exists …

Apr 21, 2026
CVE-2026-40884
9.8 CRITICAL

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs contains an SFTP authentication bypass when the documented empty-username basic-auth syntax is used. If …

Apr 21, 2026
CVE-2026-40372
9.1 CRITICAL

Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network.

Apr 21, 2026
CVE-2026-41193
9.1 CRITICAL

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, FreeScout's module installation feature extracts ZIP archives without validating file paths, …

Apr 21, 2026
CVE-2026-5652
9.0 CRITICAL

An insecure direct object reference vulnerability in the Users API component of Crafty Controller allows a remote, authenticated attacker to perform user modification actions via …

Apr 21, 2026
CVE-2026-40576
9.4 CRITICAL

excel-mcp-server is a Model Context Protocol server for Excel file manipulation. A path traversal vulnerability exists in excel-mcp-server versions up to and including 0.1.7. When …

Apr 21, 2026
CVE-2026-40569
9.0 CRITICAL

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a mass assignment vulnerability in the mailbox connection settings endpoints …

Apr 21, 2026
CVE-2026-40050
9.8 CRITICAL

CrowdStrike has released security updates to address a critical unauthenticated path traversal vulnerability (CVE-2026-40050) in LogScale. This vulnerability only requires mitigation by customers that host …

Apr 21, 2026
CVE-2026-38835
9.8 CRITICAL

Tenda W30E V2.0 V16.01.0.21 was found to contain a command injection vulnerability in the formSetUSBPartitionUmount function via the usbPartitionName parameter. This vulnerability allows attackers to …

Apr 21, 2026
CVE-2026-40498
9.8 CRITICAL

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, an unauthenticated attacker can access diagnostic and system tools that should …

Apr 21, 2026
CVE-2025-15638
10.0 CRITICAL

Net::Dropbear versions before 0.14 for Perl contains a vulnerable version of libtomcrypt. Net::Dropbear versions before 0.14 includes versions of Dropbear 2019.78 or earlier. These include …

Apr 21, 2026
CVE-2017-20230
10.0 CRITICAL

Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but …

Apr 21, 2026
CVE-2026-6771
9.8 CRITICAL

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Apr 21, 2026
CVE-2026-6768
9.8 CRITICAL

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Apr 21, 2026
CVE-2026-6760
9.8 CRITICAL

Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.

Apr 21, 2026
CVE-2026-6748
9.8 CRITICAL

Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.

Apr 21, 2026
CVE-2026-5965
9.8 CRITICAL

NewSoftOA developed by NewSoft has an OS Command Injection vulnerability, allowing unauthenticated local attackers to inject arbitrary OS commands and execute them on the server.

Apr 21, 2026
CVE-2026-40496
9.1 CRITICAL

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, attachment download tokens are generated using a weak and predictable formula: …

Apr 21, 2026
CVE-2026-39861
10.0 CRITICAL

Claude Code is an agentic coding tool. Prior to version 2.1.64, Claude Code's sandbox did not prevent sandboxed processes from creating symlinks pointing to locations …

Apr 21, 2026
CVE-2026-41329
9.9 CRITICAL

OpenClaw before 2026.3.31 contains a sandbox bypass vulnerability allowing attackers to escalate privileges via heartbeat context inheritance and senderIsOwner parameter manipulation. Attackers can exploit improper …

Apr 21, 2026
CVE-2026-5450
9.8 CRITICAL

Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library version 2.7 to version 2.43 with a format …

Apr 20, 2026
CVE-2026-33432
9.1 CRITICAL

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions up to and including 8.2.8.2, when LDAP authentication is enabled, …

Apr 20, 2026
CVE-2026-32613
9.9 CRITICAL

Spinnaker is an open source, multi-cloud continuous delivery platform. Echo like some other services, uses SPeL (Spring Expression Language) to process information - specifically around …

Apr 20, 2026
CVE-2026-32604
9.9 CRITICAL

Spinnaker is an open source, multi-cloud continuous delivery platform. In versions prior to 2026.1.0, 2026.0.1, 2025.4.2, and 2025.3.2, a bad actor can execute arbitrary commands …

Apr 20, 2026
CVE-2026-29646
9.8 CRITICAL

In OpenXiangShan NEMU prior to 55295c4, when running with RVH (Hypervisor extension) enabled, a VS-mode guest write to the supervisor interrupt-enable CSR (sie) may be …

Apr 20, 2026
CVE-2026-6257
9.1 CRITICAL

Vvveb CMS prior to v1.0.8.2 contains a remote code execution vulnerability in its media management functionality where a missing return statement in the file rename …

Apr 20, 2026
CVE-2026-32311
9.8 CRITICAL

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Flowsint allows a user to create investigations, which are used …

Apr 20, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.