CVE Database

110968+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-40472
9.9 CRITICAL

In hackage-server, user-controlled metadata from .cabal files are rendered into HTML href attributes without proper sanitization, enabling stored Cross-Site Scripting (XSS) attacks.

Apr 23, 2026
CVE-2026-40471
9.6 CRITICAL

hackage-server lacked Cross-Site Request Forgery (CSRF) protection across its endpoints. Scripts on foreign sites could trigger requests to hackage server, possibly abusing latent credentials to …

Apr 23, 2026
CVE-2026-40470
9.9 CRITICAL

A critical XSS vulnerability affected hackage-server and hackage.haskell.org. HTML and JavaScript files provided in source packages or via the documentation upload facility were served as-is …

Apr 23, 2026
CVE-2026-39087
9.8 CRITICAL

ntfy before 2.22.0 allows SSRF because of an unanchored regular expression.

Apr 23, 2026
CVE-2026-34003
7.8 HIGH

A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the …

Apr 23, 2026
CVE-2026-34001
7.8 HIGH

A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence() function. An …

Apr 23, 2026
CVE-2026-33999
7.8 HIGH

A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local …

Apr 23, 2026
CVE-2026-23751
9.8 CRITICAL

Kofax Capture, now referred to as Tungsten Capture, version 6.0.0.0 (other versions may be affected) exposes a deprecated .NET Remoting HTTP channel on port 2424 …

Apr 23, 2026
CVE-2025-62373
9.8 CRITICAL

Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. Versions 0.0.41 through 0.0.93 have a vulnerability in `LivekitFrameSerializer` – an …

Apr 23, 2026
CVE-2025-50229
9.8 CRITICAL

Jizhicms v2.5.4 is vulnerable to SQL injection in the product editing module.

Apr 23, 2026
CVE-2026-41461
8.5 HIGH

SocialEngine versions 7.8.0 and prior contain a blind server-side request forgery vulnerability in the /core/link/preview endpoint where user-supplied input passed via the uri request parameter …

Apr 23, 2026
CVE-2026-41460
9.8 CRITICAL

SocialEngine versions 7.8.0 and prior contain a SQL injection vulnerability in the /activity/index/get-memberall endpoint where user-supplied input passed via the text parameter is not sanitized …

Apr 23, 2026
CVE-2026-35225

An unauthenticated remote attacker is able to exhaust all available TCP connections in the CODESYS EtherNet/IP adapter stack, preventing legitimate clients from establishing new connections.

Apr 23, 2026
CVE-2025-70994
7.3 HIGH

Yadea T5 Electric Bicycles (models manufactured in/after 2024) have a weak authentication mechanism in their keyless entry system. The system utilizes the EV1527 fixed-code RF …

Apr 23, 2026
CVE-2026-39440
9.9 CRITICAL

Improper Control of Generation of Code ('Code Injection') vulnerability in Funnelforms LLC FunnelFormsPro allows Remote Code Inclusion.This issue affects FunnelFormsPro: from n/a through 3.8.1.

Apr 23, 2026
CVE-2025-66286
4.7 MEDIUM

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect …

Apr 23, 2026
CVE-2025-13763
5.7 MEDIUM

Multiple uses of uninitialized variables were found in libopensc that may lead to information disclosure or application crash. An attack requires a crafted USB device …

Apr 23, 2026
CVE-2026-31532
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro->uniq use-after-free in raw_rcv() raw_release() unregisters raw CAN receive filters via can_rx_unregister(), …

Apr 23, 2026
CVE-2026-31531
5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: ipv4: nexthop: allocate skb dynamically in rtm_get_nexthop() When querying a nexthop object via RTM_GETNEXTHOP, the …

Apr 23, 2026
CVE-2026-28040
6.5 MEDIUM

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Magepeople inc. Taxi Booking Manager for WooCommerce allows Stored XSS.This issue affects Taxi …

Apr 23, 2026
CVE-2025-62110
6.5 MEDIUM

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rescue Themes Rescue Shortcodes allows Stored XSS.This issue affects Rescue Shortcodes: from n/a …

Apr 23, 2026
CVE-2025-62104
4.3 MEDIUM

Missing Authorization vulnerability in Navneil Naicker ACF Galerie 4 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ACF Galerie 4: from n/a through …

Apr 23, 2026
CVE-2026-6903
7.5 HIGH

The LabOne Web Server, backing the LabOne User Interface, contains insufficient input validation in its file access functionality. An unauthenticated attacker could exploit this vulnerability …

Apr 23, 2026
CVE-2026-6887
9.8 CRITICAL

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL …

Apr 23, 2026
CVE-2026-6886
9.8 CRITICAL

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has a Authentication Bypass vulnerability, allowing unauthenticated remote attackers to log into the …

Apr 23, 2026
CVE-2026-6885
9.8 CRITICAL

Borg SPM 2007 (Sales Ended in 2008) developed by BorG Technology Corporation has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and …

Apr 23, 2026
CVE-2026-5464
7.2 HIGH

The ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin) plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation and activation in all …

Apr 23, 2026
CVE-2026-3960
5.9 MEDIUM

A critical remote code execution vulnerability exists in the unauthenticated REST API endpoint /99/ImportSQLTable in H2O-3 version 3.46.0.9 and prior. The vulnerability arises due to …

Apr 23, 2026
CVE-2026-3259

A Generation of Error Message Containing Sensitive Information vulnerability in the Materialized View Refresh mechanism in Google BigQuery on Google Cloud Platform allows an authenticated …

Apr 23, 2026
CVE-2026-41564
7.5 HIGH

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed …

Apr 23, 2026
CVE-2026-4512
3.5 LOW

The reCaptcha by WebDesignBy WordPress plugin before 2.0 does not sanitize or escape the Site Key setting before outputting it in a JavaScript string context …

Apr 23, 2026
CVE-2026-4106
5.3 MEDIUM

The HT Mega Addons for Elementor WordPress plugin before 3.0.7 contains an unauthenticated AJAX action returning some PII (such as full name, city, state and …

Apr 23, 2026
CVE-2026-41040
7.5 HIGH

GROWI provided by GROWI, Inc. is vulnerable to a regular expression denial of service (ReDoS) via a crafted input string.

Apr 23, 2026
CVE-2026-34488
7.3 HIGH

IP Setting Software contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. As a result, arbitrary code …

Apr 23, 2026
CVE-2025-10549
5.1 MEDIUM

EfficientLab Controlio before v1.3.95 contains a DLL hijacking vulnerability caused by weak folder permissions in the installation directory. A local attacker can place a specially …

Apr 23, 2026
CVE-2026-41990
4.0 MEDIUM

Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data.

Apr 23, 2026
CVE-2026-41989
6.7 MEDIUM

Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcry_pk_decrypt.

Apr 23, 2026
CVE-2026-41988
3.2 LOW

uuid before 14.0.0 can make unexpected writes when external output buffers are used, and the UUID version is 3, 5, or 6. In particular, UUID …

Apr 23, 2026
CVE-2026-41233
5.4 MEDIUM

Froxlor is open source server administration software. Prior to version 2.3.6, in `Domains.add()`, the `adminid` parameter is accepted from user input and used without validation …

Apr 23, 2026
CVE-2026-41232
5.0 MEDIUM

Froxlor is open source server administration software. Prior to version 2.3.6, in `EmailSender::add()`, the domain ownership validation for full email sender aliases uses the wrong …

Apr 23, 2026
CVE-2026-40529
4.7 MEDIUM

CMS ALAYA provided by KANATA Limited contains an SQL injection vulnerability. Information stored in the database may be obtained or altered by an attacker with …

Apr 23, 2026
CVE-2026-41231
7.5 HIGH

Froxlor is open source server administration software. Prior to version 2.3.6, `DataDump.add()` constructs the export destination path from user-supplied input without passing the `$fixed_homedir` parameter …

Apr 23, 2026
CVE-2026-41230
8.5 HIGH

Froxlor is open source server administration software. Prior to version 2.3.6, `DomainZones::add()` accepts arbitrary DNS record types without a whitelist and does not sanitize newline …

Apr 23, 2026
CVE-2026-41229
9.1 CRITICAL

Froxlor is open source server administration software. Prior to version 2.3.6, `PhpHelper::parseArrayToString()` writes string values into single-quoted PHP string literals without escaping single quotes. When …

Apr 23, 2026
CVE-2026-41228
9.9 CRITICAL

Froxlor is open source server administration software. Prior to version 2.3.6, the Froxlor API endpoint `Customers.update` (and `Admins.update`) does not validate the `def_language` parameter against …

Apr 23, 2026
CVE-2026-3361
6.4 MEDIUM

The WP Store Locator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpsl_address' post meta value in versions up to, and including, …

Apr 23, 2026
CVE-2026-3007
5.4 MEDIUM

Successful exploitation of the stored cross-site scripting (XSS) vulnerability could allow an attacker to execute arbitrary JavaScript on any user account that has access to …

Apr 23, 2026
CVE-2026-3844
9.8 CRITICAL

The Breeze Cache plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'fetch_gravatar_from_remote' function in all versions …

Apr 23, 2026
CVE-2026-2951
5.4 MEDIUM

The Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and …

Apr 23, 2026
CVE-2026-41679
10.0 CRITICAL

Paperclip is a Node.js server and React UI that orchestrates a team of AI agents to run a business. Prior to version 2026.416.0, an unauthenticated …

Apr 23, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.