Búsqueda de CVEs

363.349 resultados
CVE-2026-9711CRITICALEventON - WordPress Virtual Event Calendar Plugin <= 5.0.11 - Unauthenticated Blind SQL Injection via Search ParameterEPSS 0.4%CVE-2026-12076CRITICALSQL Injection in Raytha CMSEPSS 0.4%CVE-2025-7406HIGHA Sudo Privilege Escalation Vulnerability in Nokia MantaRay NMEPSS 0.1%CVE-2025-24816MEDIUMAn Improper Access Control vulnerability in Nokia MantaRay NMEPSS 0.3%CVE-2025-24815HIGHAn unrestricted file upload vulnerability in Nokia MantaRay NMEPSS 0.2%CVE-2026-6954MEDIUMMultiple vulnerabilities in Intermark IT's WebControl CMSEPSS 0.4%CVE-2026-6953MEDIUMMultiple vulnerabilities in Intermark IT's WebControl CMSEPSS 0.4%CVE-2026-13149HIGHbrace-expansion through 5.0.6 is vulnerable to denial of service. The expand() function exhibits exponential-time complexity in the number oEPSS 0.4%CVE-2026-12610MEDIUMSssd: use-after-free crash in sssd' 'sssd_pam' processEPSS 0.2%CVE-2026-45822MEDIUMdecode-uri-component through 0.4.1 is vulnerable to denial of service. The decode() function splits input on '%' producing N tokens and callEPSS 0.3%CVE-2026-12578HIGHDTMSoft - Deserialization of Untrusted Data VulnerabilityEPSS 0.4%CVE-2026-12240HIGHExport User Data <= 2.2.6 - Authenticated (Subscriber+) PHP Object Injection to Arbitrary File Deletion via display_name FieldEPSS 0.3%CVE-2026-14164HIGHLibarchive: double-free vulnerability in rar5 decompression logic via dangling filtered_buf pointer in init_unpack()EPSS 0.4%CVE-2026-12819CRITICALDVP-12SE Missing Authentication and Unauthorized Write access VulnerabilityEPSS 0.3%CVE-2026-12818CRITICALDVP-12SE Exposure of Sensitive Information VulnerabilityEPSS 0.3%CVE-2026-56137HIGHRPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc. contain an OS command injection vulnerability. If a user loads a specially crafted EPSS 0.7%CVE-2026-56809MEDIUMMultiple laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vEPSS 0.2%CVE-2026-56808HIGHDGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may lead to arbitrary command execuEPSS 1.6%CVE-2026-9576MEDIUMFluent Booking < 2.1.2 - Calendar Manager+ Sensitive Information Disclosure via Attendee ExportEPSS 0.2%CVE-2026-11590HIGHWP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated SQL Injection via filter[elements] Array KeysEPSS 0.3%