CVE Database

36304+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-24240
7.8 HIGH

NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead …

Jul 1, 2026
CVE-2026-6688
7.6 HIGH

FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename handling. With LFN enabled, fno.fname can be up to 255 characters; …

Jul 1, 2026
CVE-2026-6687
7.6 HIGH

FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabel) is trusted without enforcing spec maximums. This maps to …

Jul 1, 2026
CVE-2026-6682
7.6 HIGH

In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume() where fasize *= fs->n_fats can wrap, leading to attacker-controlled file-size metadata and …

Jul 1, 2026
CVE-2026-5136
8.8 HIGH

A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments against the calling user's permissions. This allows an …

Jul 1, 2026
CVE-2026-5120
8.1 HIGH

A Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026 could allow a user to access unauthorized data from another user.

Jul 1, 2026
CVE-2026-53906
8.2 HIGH

MCO is vulnerable to Path Disclosure and Path Traversal in file handling functionality related to data export and upload. Improper validation of the filename parameter …

Jul 1, 2026
CVE-2026-53905
7.1 HIGH

MCO does not properly enforce authorization checks in the /customer/servlet/mco/webapi/admin-view-hierarchy/get-acl-tree-structure endpoint. An authenticated, low-privileged user can retrieve administrator access control structures without proper authorization checks. …

Jul 1, 2026
CVE-2026-53904
7.1 HIGH

MCO is vulnerable to Account Denial of Service due to improper implementation of password reset functionality. Each password reset request invalidates previously set password as …

Jul 1, 2026
CVE-2026-53903
8.1 HIGH

MCO is vulnerable to an Insecure Direct Object Reference (IDOR) vulnerability in the /customer/servlet/mco/webapi/trading-document/fetchPdfStatement endpoint. The application does not properly validate whether an authenticated user …

Jul 1, 2026
CVE-2026-14181
7.5 HIGH

@fastify/middie versions 9.1.0 through 9.3.2 fail to guard the URL normalization step used by the standalone engine when incoming request paths contain malformed percent-encoded sequences. …

Jul 1, 2026
CVE-2026-13228
8.8 HIGH

The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Privilege Escalation to Administrator in versions up to, and …

Jul 1, 2026
CVE-2026-12142
7.2 HIGH

The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via '_name[]' Array Parameter in all versions up …

Jul 1, 2026
CVE-2026-50043
7.2 HIGH

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in SkyBridge MB-A100/MB-A110. If this vulnerability is exploited, an arbitrary …

Jul 1, 2026
CVE-2026-12576
7.5 HIGH

DVP80ES3 with Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability.

Jul 1, 2026
CVE-2026-12575
7.5 HIGH

DVP80ES3 with Improper Resource Shutdown or Release vulnerability.

Jul 1, 2026
CVE-2026-12224
8.8 HIGH

The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via update_capabilities REST Endpoint in all versions up to, and including, 5.0.4. This is …

Jul 1, 2026
CVE-2026-12158
8.8 HIGH

The RegistrationMagic – User Registration Forms Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.0.9.1. This …

Jul 1, 2026
CVE-2026-10538
8.0 HIGH

Messaging consumer functionality allows deserialization of user-controlled data without sufficient restriction of allowed object types in the out of support Control-M/Server and Control-M/Enterprise Manager versions …

Jul 1, 2026
CVE-2026-1239
7.5 HIGH

The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to unauthorized access of data due to a …

Jul 1, 2026
CVE-2026-14193
7.5 HIGH

DVP80ES300T with Improper Validation of Array Index Vulnerability

Jul 1, 2026
CVE-2026-12579
7.4 HIGH

AS228T with Authentication Bypass Vulnerability

Jul 1, 2026
CVE-2026-11883
7.2 HIGH

The WebAuthn Provider for Two Factor WordPress plugin before 2.5.6 does not correctly validate the second-factor authentication response, allowing an attacker who already knows a …

Jul 1, 2026
CVE-2026-11823
7.5 HIGH

The BookingPress Appointment Booking Pro plugin for WordPress is vulnerable to SQL Injection via the 'store_service_date' parameter of the bpa_assign_staffmember_to_slots() function in versions up to …

Jul 1, 2026
CVE-2026-11794
8.1 HIGH

The Advanced Form Integration — Connect Forms to 200+ Apps WordPress plugin before 2.1.1 does not restrict the WordPress role assigned when it creates a …

Jul 1, 2026
CVE-2026-11568
7.5 HIGH

The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or post-status check before returning WooCommerce product data through a public …

Jul 1, 2026
CVE-2026-10750
8.1 HIGH

The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP tools after token authentication, allowing authenticated users …

Jul 1, 2026
CVE-2026-7838
8.8 HIGH

UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB protocol failure-response parsing path. In vncviewer/ClientConnection.cpp, the 4-byte …

Jul 1, 2026
CVE-2026-7831
7.6 HIGH

UltraVNC viewer through 1.8.2.2 contains an off-by-one stack buffer overflow in the RFB ServerInit message handler. In vncviewer/ClientConnection.cpp, when the server-supplied nameLength equals exactly 2024 …

Jul 1, 2026
CVE-2026-7830
7.4 HIGH

UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_MsLogonIIAuth). In rfb/dh.cpp the Diffie-Hellman key exchange is performed with parameters that fit …

Jul 1, 2026
CVE-2026-7829
7.2 HIGH

UltraVNC repeater through 1.8.2.2 contains a post-authentication out-of-bounds write in the allow/deny rule parser. In repeater/webgui/settings.c:225-272, after strncpy_s copies a rule token into temp1[rule1] (25-byte …

Jul 1, 2026
CVE-2026-7517
7.2 HIGH

The Custom Payment Gateways for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'alg_wc_cpg_input_fields' parameter in all versions up to, and …

Jul 1, 2026
CVE-2026-13731
7.2 HIGH

The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'conversation' parameter …

Jul 1, 2026
CVE-2026-13468
7.5 HIGH

The Visualizer – Tables & Charts Manager with Built-in AI Generator plugin for WordPress is vulnerable to authorization bypass in all versions up to, and …

Jul 1, 2026
CVE-2026-12923
7.5 HIGH

The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and including 4.0.3. This is due to insufficient validation …

Jul 1, 2026
CVE-2026-20458
7.5 HIGH

In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote escalation of privilege, if a UE …

Jul 1, 2026
CVE-2026-14191
7.8 HIGH

An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5::ReadHeader in recvol5.cpp). The RecItems vector is sized only when …

Jul 1, 2026
CVE-2026-53488
8.8 HIGH

containerd is an open-source container runtime. In versions prior to 1.7.33, 2.3.2, 2.2.5, 2.1.9, and 2.0.10 the CRI plugin propagates labels from an image config …

Jul 1, 2026
CVE-2026-54592
7.5 HIGH

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.3, Oj::Doc#each_child, when invoked recursively over …

Jul 1, 2026
CVE-2026-57995
8.8 HIGH

phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that allows GROUP_EDIT administrators to grant arbitrary rights to groups without verifying they hold those …

Jun 30, 2026
CVE-2026-56320
7.1 HIGH

Capgo before 12.128.2 contains an authorization flaw in POST /private/create_device that accepts a caller-supplied org_id parameter without validating it matches the target app's owner organization. …

Jun 30, 2026
CVE-2026-56300
7.5 HIGH

Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and get_org_perm_for_apikey that expose API key validity oracles and user UUID disclosure. Unauthenticated attackers using …

Jun 30, 2026
CVE-2026-56286
8.1 HIGH

Capgo before 12.128.2 contains an authentication bypass vulnerability in the account deletion endpoint that allows deletion without password re-authentication or secondary verification. Attackers can delete …

Jun 30, 2026
CVE-2026-56264
8.1 HIGH

Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /execute_js endpoint, which accepts and executes arbitrary user-supplied JavaScript in the …

Jun 30, 2026
CVE-2026-56249
7.6 HIGH

Capgo before 12.128.2 contains an authorization bypass vulnerability in the channel creation endpoint that allows authenticated users to overwrite existing channels by reusing their names. …

Jun 30, 2026
CVE-2026-56247
8.8 HIGH

Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validating role scope compatibility, including to pending invitees. Attackers can …

Jun 30, 2026
CVE-2026-56233
8.3 HIGH

Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allows authenticated users with build permissions to bypass upload restrictions. Attackers …

Jun 30, 2026
CVE-2026-56230
8.8 HIGH

Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accepts the client-controlled x-limited-key-id header without validating ownership, allowing authenticated users to …

Jun 30, 2026
CVE-2026-56219
7.5 HIGH

Capgo before 12.128.2 contains a NULL-auth bypass vulnerability in the public.get_org_user_access_rbac function that allows unauthenticated attackers to retrieve RBAC role bindings and member email addresses. …

Jun 30, 2026
CVE-2026-54672
7.8 HIGH

electron-updater allows for automatic updates for Electron apps. Prior to 26.15.0, AppImage targets built by app-builder-lib could use an empty path component when setting the …

Jun 30, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.