CVE search

363,648 results
CVE-2026-46752CRITICALApache Kvrocks: Stack buffer overflow in Lua bit.tohex()EPSS 0.4%CVE-2026-54226MEDIUMApache Kvrocks: RESTORE IntSet Integer Overflow Leads to Remote DoSEPSS 0.3%CVE-2026-56129MEDIUMGeneric IO & Memory Access driver for PCs provided by TOSHIBA CORPORATION and Dynabook Inc. exposes its IOCTL with insufficient access contrEPSS 0.1%CVE-2026-12937HIGHTourfic <= 2.22.7 - Unauthenticated SQL Injection via 'post_id' ParameterEPSS 0.3%CVE-2026-9702HIGHInPost PL < 1.9.1 - Unauthenticated WooCommerce Order Parcel-Locker HijackingEPSS 0.2%CVE-2026-5305HIGHEmail Address Encoder (Free < 1.0.25, Premium < 0.3.12) - Unauthenticated Stored XSSEPSS 0.3%CVE-2026-10824MEDIUMMasteriyo LMS < 2.2.1 - Unauthenticated Course Progress Disclosure and DeletionEPSS 0.2%CVE-2026-12490HIGHBypass of client certificate verification with transfer over TLSEPSS 0.1%CVE-2026-12246HIGHOut of bounds stack write with crafted APL RREPSS 0.3%CVE-2026-12245HIGHDenial of DNS over TLS service by any DoT clientEPSS 0.3%CVE-2026-12244HIGHHeap overflow and crash with crafted SVCB RREPSS 0.3%CVE-2026-10086HIGHImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLabEPSS 0.2%CVE-2026-13311HIGHshell-quote parse() is quadratic in token count, enabling denial of serviceEPSS 0.4%CVE-2026-0934LOWIncorrect Authorization in GitLabEPSS 0.2%CVE-2026-1606MEDIUMImproper Control of Generation of Code ('Code Injection') in GitLabEPSS 0.2%CVE-2026-2238MEDIUMMissing Authorization in GitLabEPSS 0.3%CVE-2026-3176LOWMissing Authorization in GitLabEPSS 0.2%CVE-2026-5309MEDIUMAuthorization Bypass Through User-Controlled Key in GitLabEPSS 0.2%CVE-2026-5796MEDIUMIncorrect Authorization in GitLabEPSS 0.2%CVE-2026-5952MEDIUMIncorrect Authorization in GitLabEPSS 0.2%