CVE search
361,904 resultsCVE-2026-55892MEDIUMVim: Out-of-bounds Write in Spell File Prefix DumpEPSS 0.1%CVE-2026-55895MEDIUMVim: Vimscript Code Injection in netrw NetrwLocalRmFile() via crafted filenameEPSS 0.2%CVE-2026-57451MEDIUMVim: Out-of-bounds Read in Text Property CountEPSS 0.1%CVE-2026-57452MEDIUMVim: Out-of-bounds Read with libsodium-encrypted FilesEPSS 0.1%CVE-2026-48945MEDIUMJoomla Extension - getk2.org - Privileged RCE vulnerability in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-57453MEDIUMVim: PowerShell Command Injection via Unescaped Filename in zip.vim ExtractionEPSS 0.1%CVE-2026-48940LOWJoomla Extension - getk2.org - Stored-XSS in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-12844HIGHList::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise functionEPSS 0.4%CVE-2026-48941MEDIUMJoomla Extension - getk2.org - Unauthenticated folder delete in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-48946MEDIUMJoomla Extension - getk2.org - Privileged RCE vulnerability in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-57454MEDIUMVim: Out-of-bounds Read with Text PropertiesEPSS 0.1%CVE-2026-48944MEDIUMJoomla Extension - getk2.org - Exposure of sensitive files via attachment copy in K2 extension for Joomla < 2.26EPSS 0.3%CVE-2026-48942MEDIUMJoomla Extension - getk2.org - Stored-XSS in K2 extension for Joomla < 2.26EPSS 0.1%CVE-2026-48943MEDIUMJoomla Extension - getk2.org - Authenticated user property mass-assignment in K2 extension for Joomla < 2.26EPSS 0.2%CVE-2026-57455MEDIUMVim: Stack out-of-bounds write in `spell_soundfold_sofo()` via an over-length `soundfold()` argumentEPSS 0.1%CVE-2026-57456HIGHVim: Arbitrary Code Execution via Python Omni-Completion DocstringsEPSS 0.1%CVE-2026-9718MEDIUMCWE-617 Reachable Assertion vulnerability exists that could allow an authenticated attacker to trigger a denial-of-service condition, impactEPSS 0.2%CVE-2026-9717HIGHCWE-78 Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow unauthorized EPSS 1.0%CVE-2026-9716HIGHCWE-476 NULL Pointer Dereference vulnerability exists that could cause a denial-of-service condition, rendering the device’s HMI and configuEPSS 0.3%CVE-2026-55477HIGHAuthenticated Arbitrary File Write via Database Import and Xray Log Path ManipulationEPSS 0.3%