CVE search
367,085 resultsCVE-2026-56115HIGHBootimus 0.1.70 Broken Access Control via JWTMiddleware Authorization BypassEPSS 0.3%CVE-2026-50023HIGHyt-dlp: Dangerous file type creation via insufficient filename sanitization (Bypass of CVE-2024-38519)EPSS 0.6%CVE-2026-56114MEDIUMdhcpcd Stack Out-of-Bounds Write in dhcp6_makemessage()EPSS 0.2%CVE-2026-56113MEDIUMdhcpcd Heap Use-After-Free in dhcp6_deprecateaddrs via DHCPv6 RENEWEPSS 0.2%CVE-2026-11940HIGHtarfile extraction filter bypass allows escaping the destination directoryEPSS 0.6%CVE-2026-12958HIGHArbitrary file write in Language Servers for AWSEPSS 0.1%CVE-2026-12957HIGHArbitrary Code Execution in Language Servers for AWSEPSS 0.1%CVE-2026-13007HIGHInsecure Public Caching on REST API Endpoints in Tenable Identity ExposureEPSS 0.4%CVE-2026-44792HIGHn8n: Source Control Pull SQL InjectionEPSS 0.3%CVE-2026-44791CRITICALn8n: XML Node Prototype Pollution Patch BypassEPSS 0.6%CVE-2026-44790CRITICALn8n: Arbitrary File Read via Git NodeEPSS 0.6%CVE-2026-44789CRITICALn8n: HTTP Request Node Pagination Prototype Pollution to RCEEPSS 0.6%CVE-2026-45732HIGHn8n: Cross-user Authorization Bypass in Dynamic Credential OAuth EndpointsEPSS 0.3%CVE-2026-49444HIGHn8n: Python sandbox escapeEPSS 0.4%CVE-2026-49465MEDIUMn8n: Git Node Clone and Push Operations Bypass File SandboxEPSS 0.5%CVE-2026-54304HIGHn8n: SecurityScorecard Node Leaks API Token to User-Controlled HostEPSS 0.4%CVE-2026-54307HIGHn8n: Credential Exfiltration via Permission BypassEPSS 0.3%CVE-2026-54302HIGHn8n: Stored XSS in Chat Trigger NodeEPSS 0.2%CVE-2026-54305HIGHn8n: Cross-Tenant Credential Takeover via Dynamic Credentials EE EndpointsEPSS 0.3%CVE-2026-54301HIGHn8n: Same-Origin XSS in Respond to Webhook NodeEPSS 0.2%