CVE search
361,595 resultsCVE-2026-56772MEDIUMNewsBlur < 14.5.0 - Insecure Direct Object Reference in Social Interactions EndpointEPSS 0.2%CVE-2026-56771MEDIUMNewsBlur < 14.5.0 - Server-Side Request Forgery via add_url EndpointEPSS 0.2%CVE-2026-56770HIGHlibais 0.15 - Out-of-bounds Vector Access in VdmStream::AddLine via Invalid Sequential Message IDEPSS 0.3%CVE-2026-46608HIGHGlances: XML-RPC Multi-Origin CORS Configuration Silently Falls Back to Wildcard (Incomplete Fix for CVE-2026-33533)EPSS 0.4%CVE-2026-56769MEDIUMHuly Platform - Server-Side Request Forgery via /import EndpointEPSS 0.2%CVE-2026-56768HIGHSeahub < 13.0.23 - Authentication Bypass in ShareLinkZipTaskView GET MethodEPSS 0.4%CVE-2026-46607HIGHGlances: Insecure Pickle Deserialization in Version Cache Leads to Arbitrary Code ExecutionEPSS 0.3%CVE-2026-53925HIGHGlances: Arbitrary file write and command execution via `secure_popen` redirection and chaining operators in AMP command configurationEPSS 0.2%CVE-2026-56767HIGHMaxun < 0.0.42 - Cross-Tenant IDOR in Storage and Webhook API HandlersEPSS 0.3%CVE-2026-46606HIGHGlances: Command Injection via KVM/QEMU VM Domain Names in glances/plugins/vms/engines/virsh.pyEPSS 0.2%CVE-2026-56766HIGHHydra - Stack Buffer Overflow in NTLM Authentication HandlerEPSS 0.5%CVE-2026-46611MEDIUMGlances: XML-RPC Server Missing Host Header Validation Enables DNS Rebinding AttackEPSS 0.2%CVE-2026-12921HIGHUse after free in AzeoTech DAQFactoryEPSS 0.1%CVE-2026-54250MEDIUMK3s: ZIP Archive Path Traversal Vulnerability in etcd Snapshot DecompressionEPSS 0.1%CVE-2026-54090HIGHFile Browser: Command Allowlist Bypass via Shell Metacharacter InjectionEPSS 0.3%CVE-2026-54088CRITICALFile Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)EPSS 0.5%CVE-2026-12897HIGHOut-of-bounds read in Horner Automation CscapeEPSS 0.1%CVE-2026-54089CRITICALFile Browser: Authentication Bypass via Proxy Auth Header ForgeryEPSS 0.3%CVE-2026-54091HIGHFile Browser: Incorrect access control in public directory shares via rule path rebasingEPSS 0.5%CVE-2026-54092MEDIUMFile Browser: DoS Vulnerability on Public Login APIEPSS 0.5%