Total CVEs

143,768

Critical Severity

4,091

High Severity

14,768

Last 7 Days

1,527
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 20,601 - 20,620 of 40,173 CVEs
CVE-2026-40478 CRITICAL - 9.1

Thymeleaf is a server-side Java template engine for web and standalone environments. Versions 3.1.3.RELEASE and prior contain a security bypass vulnerability in the the expression execution mechanisms. Although the library provides mechanisms to prevent expression injection, it fails to properly neu...

Vendor: maven
Product: org.thymeleaf:thymeleaf
Published: Apr 15, 2026
Source: GitHub
CVE-2026-40477 CRITICAL - 9.1

Thymeleaf is a server-side Java template engine for web and standalone environments. Versions 3.1.3.RELEASE and prior contain a security bypass vulnerability in the expression execution mechanisms. Although the library provides mechanisms to prevent expression injection, it fails to properly restric...

Vendor: maven
Product: org.thymeleaf:thymeleaf
Published: Apr 15, 2026
Source: GitHub
CVE-2026-40347 MEDIUM - 5.3

Python-Multipart is a streaming multipart parser for Python. Versions prior to 0.0.26 have a denial of service vulnerability when parsing crafted `multipart/form-data` requests with large preamble or epilogue sections. Upgrade to version 0.0.26 or later, which skips ahead to the next boundary candid...

Vendor: pip
Product: python-multipart
Published: Apr 15, 2026
Source: GitHub

NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.37, NocoBase's workflow HTTP request plugin and custom request action plugin make server-side HTTP requests to user-provided URLs without any SSRF protection. An...

Vendor: npm
Product: @nocobase/plugin-workflow-request
Published: Apr 15, 2026
Source: GitHub
CVE-2026-40882 HIGH - 7.6

OpenRemote is an open-source internet-of-things platform. Prior to version 1.22.0, the Velbus asset import path parses attacker-controlled XML without explicit XXE hardening. An authenticated user who can call the import endpoint may trigger XML external entity processing, which can lead to server-s...

Vendor: maven
Product: io.openremote:openremote-manager
Published: Apr 15, 2026
Source: GitHub
CVE-2026-40574 MEDIUM - 6.8

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Prior to 7.15.2, an authorization bypass exists in OAuth2 Proxy as part of the email_domain enforcement option. An attacker may be able to authenticate with an email claim such as attacker@evil.com@company.com and s...

Vendor: go
Product: github.com/oauth2-proxy/oauth2-proxy/v7
Published: Apr 15, 2026
Source: GitHub
CVE-2026-40575 CRITICAL - 9.1

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 may trust a client-supplied `X-Forwarded-Uri` header when `--reverse-proxy` is enabled and `--skip-auth-regex` or `--skip-auth-route` is configured. An attacker can spoof this header so...

Vendor: go
Product: github.com/oauth2-proxy/oauth2-proxy/v7
Published: Apr 15, 2026
Source: GitHub
CVE-2026-6383 MEDIUM - 5.4

A flaw was found in KubeVirt's Role-Based Access Control (RBAC) evaluation logic. The authorization mechanism improperly truncates subresource names, leading to incorrect permission evaluations. This allows authenticated users with specific custom roles to gain unauthorized access to subresourc...

Published: Apr 15, 2026
Source: NVD
CVE-2026-6245 MEDIUM - 5.5

A flaw was found in the System Security Services Daemon (SSSD). The pam_passkey_child_read_data() function within the PAM passkey responder fails to properly handle raw bytes received from a pipe. Because the data is treated as a NUL-terminated C string without explicit termination, it results in an...

Published: Apr 15, 2026
Source: NVD

CWE-798: Use of Hard-coded Credentials in Sonatype Nexus Repository Manager versions 3.0.0 through 3.70.5 allows an unauthenticated attacker with network access to gain unauthorized read/write access to the internal database and execute arbitrary OS commands as the Nexus process user. Exploitation r...

Published: Apr 15, 2026
Source: NVD
CVE-2026-4857 HIGH - 8.4

IdentityIQ 8.5, all IdentityIQ 8.5 patch levels prior to 8.5p2, IdentityIQ 8.4, and all IdentityIQ 8.4 patch levels prior to 8.4p4 allow authenticated users assigned the Debug Pages Read Only capability or any custom capability with the ViewAccessDebugPage SPRight to incorrectly create new IdentityI...

Published: Apr 15, 2026
Source: NVD
CVE-2026-40256 MEDIUM - 5.0

Weblate is a web based localization tool. In versions prior to 5.17, repository-boundary validation relies on string prefix checks on resolved absolute paths. In multiple code paths, the check uses startswith against the repository root path. This is not path-segment aware and can be bypassed when t...

Vendor: WeblateOrg
Product: weblate
Published: Apr 15, 2026
Source: NVD
CVE-2026-39845 MEDIUM - 4.1

Weblate is a web based localization tool. In versions prior to 5.17, the webhook add-on did not utilize existing SSRF protections. This issue has been fixed in version 5.17. If developers are unable to update immediately, they can disable the webhook add-on as a workaround.

Vendor: WeblateOrg
Product: weblate
Published: Apr 15, 2026
Source: NVD
CVE-2026-34632 HIGH - 8.2

Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have resulted in arbitrary code execution in the context of the current user. A low-privileged local attacker could have exploited this vulnerability by manipulating the search path used by the app...

Vendor: Adobe
Product: Adobe Photoshop Installer
Published: Apr 15, 2026
Source: NVD
CVE-2026-34393 HIGH - 8.8

Weblate is a web based localization tool. In versions prior to 5.17, the user patching API endpoint didn't properly limit the scope of edits. This issue has been fixed in version 5.17.

Vendor: WeblateOrg
Product: weblate
Published: Apr 15, 2026
Source: NVD
CVE-2026-34244 MEDIUM - 5.0

Weblate is a web based localization tool. In versions prior to 5.17, a user with the project.edit permission (granted by the per-project "Administration" role) can configure machine translation service URLs pointing to arbitrary internal network addresses. During configuration validation, ...

Vendor: WeblateOrg
Product: weblate
Published: Apr 15, 2026
Source: NVD
CVE-2026-34242 HIGH - 7.7

Weblate is a web based localization tool. In versions prior to 5.17, the ZIP download feature didn't verify downloaded files, potentially following symlinks outside the repository. This issue has been fixed in version 5.17.

Vendor: WeblateOrg
Product: weblate
Published: Apr 15, 2026
Source: NVD
CVE-2026-33667 HIGH - 7.4

OpenProject is an open-source project management application. In versions prior to 17.3.0, 2FA OTP verification in the confirm_otp action of the two_factor_authentication module has no rate limiting, lockout mechanism, or failed-attempt tracking. The existing brute_force_block_after_failed_logins se...

Vendor: opf
Product: openproject
Published: Apr 15, 2026
Source: NVD
CVE-2026-33440 MEDIUM - 5.0

Weblate is a web based localization tool. In versions prior to 5.17, the ALLOWED_ASSET_DOMAINS setting applied only to the first issued requests and didn't restrict possible redirects. This issue has been fixed in version 5.17.

Vendor: WeblateOrg
Product: weblate
Published: Apr 15, 2026
Source: NVD
CVE-2026-33435 HIGH - 8.0

Weblate is a web based localization tool. In versions prior to 5.17, the project backup didn't filter Git and Mercurial configuration files which could lead to remote code execution under certain circumstances. This issue has been fixed in version 5.17. If developers are unable to update immedi...

Vendor: WeblateOrg
Product: weblate
Published: Apr 15, 2026
Source: NVD