Total CVEs

143,793

Critical Severity

4,093

High Severity

14,778

Last 7 Days

1,528
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 20,781 - 20,800 of 40,198 CVEs
CVE-2026-27295 HIGH - 7.8

Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: Adobe Framemaker
Published: Apr 14, 2026
Source: NVD
CVE-2026-27294 HIGH - 7.8

Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. ...

Vendor: Adobe
Product: Adobe Framemaker
Published: Apr 14, 2026
Source: NVD
CVE-2026-27293 HIGH - 7.8

Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: Adobe Framemaker
Published: Apr 14, 2026
Source: NVD
CVE-2026-27292 HIGH - 7.8

Adobe Framemaker versions 2022.8 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Vendor: Adobe
Product: Adobe Framemaker
Published: Apr 14, 2026
Source: NVD
CVE-2026-27290 HIGH - 8.6

Adobe Framemaker versions 2022.8 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. If the application uses a search path to locate critical resources such as programs, then an attacker could mod...

Vendor: Adobe
Product: Adobe Framemaker
Published: Apr 14, 2026
Source: NVD
CVE-2026-40320 MEDIUM - 7.8

Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the ConformityCheck class rendered the rule parameter through Jinja2's default Template() constructor, silently interpreting template expressions at runtime. If check definitions are loaded from an untruste...

Vendor: pip
Product: giskard-checks
Published: Apr 14, 2026
Source: GitHub

Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout or complexity guard. A crafted regex pattern can trigger catastrophic backtrack...

Vendor: pip
Product: giskard-checks
Published: Apr 14, 2026
Source: GitHub
CVE-2026-40890 HIGH - 7.5

The package `github.com/gomarkdown/markdown` is a Go library for parsing Markdown text and rendering as HTML. Processing a malformed input containing a < character that is not followed by a > character anywhere in the remaining text with a SmartypantsRenderer will lead to Out of Bounds read or...

Vendor: go
Product: github.com/gomarkdown/markdown
Published: Apr 14, 2026
Source: GitHub
CVE-2026-40887 CRITICAL - 9.1

Vendure is an open-source headless commerce platform. Starting in version 1.7.4 and prior to versions 2.3.4, 3.5.7, and 3.6.2, an unauthenticated SQL injection vulnerability exists in the Vendure Shop API. A user-controlled query string parameter is interpolated directly into a raw SQL expression wi...

Vendor: npm
Product: @vendure/core
Published: Apr 14, 2026
Source: GitHub
CVE-2026-40104 MEDIUM - 8.2

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Versions 1.8-rc-1, 17.0.0-rc-1 and 17.5.0-rc-1 and prior include a resource exhaustion vulnerability in REST API endpoints such as /xwiki/rest/wikis/xwiki/spaces/AnnotationCode/pages/AnnotationCo...

Vendor: maven
Product: org.xwiki.platform:xwiki-platform-oldcore
Published: Apr 14, 2026
Source: GitHub

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Versions 10.4-rc-1, through 16.10.15, 17.0.0-rc-1, through 17.4.7 and 17.5.0-rc-1 through 17.10.0 contain a reflected cross-site scripting vulnerability (XSS) in the comparison view between revi...

Vendor: maven
Product: org.xwiki.platform:xwiki-platform-web-templates
Published: Apr 14, 2026
Source: GitHub
CVE-2026-40091 MEDIUM - 6.0

SpiceDB is an open source database system for creating and managing security-critical application permissions. In versions 1.49.0 through 1.51.0, when SpiceDB starts with log level info, the startup "configuration" log will include the full datastore DSN, including the plaintext password, ...

Vendor: go
Product: github.com/authzed/spicedb
Published: Apr 14, 2026
Source: GitHub
CVE-2026-40090 HIGH - 7.1

Zarf is an Airgap Native Packager Manager for Kubernetes. Versions 0.23.0 through 0.74.1 contain an arbitrary file write vulnerability in the zarf package inspect sbom and zarf package inspect documentation subcommands. These subcommands output file paths are constructed by joining a user-controlled...

Vendor: go
Product: github.com/zarf-dev/zarf
Published: Apr 14, 2026
Source: GitHub
CVE-2026-39971 HIGH - 7.2

Serendipity is a PHP-powered weblog engine. In versions 2.6-beta2 and below, the email sending functionality in include/functions.inc.php inserts $_SERVER['HTTP_HOST'] directly into the Message-ID SMTP header without validation, and the existing sanitization function serendipity_isResponse...

Vendor: composer
Product: s9y/serendipity
Published: Apr 14, 2026
Source: GitHub
CVE-2026-39963 MEDIUM - 6.9

Serendipity is a PHP-powered weblog engine. In versions 2.6-beta2 and below, the serendipity_setCookie() function in include/functions_config.inc.php uses $_SERVER['HTTP_HOST'] without validation as the domain parameter of setcookie(). An attacker who can influence the Host header at logi...

Vendor: composer
Product: s9y/serendipity
Published: Apr 14, 2026
Source: GitHub
CVE-2026-39884 HIGH - 8.3

mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Versions 3.4.0 and prior contain an argument injection vulnerability in the port_forward tool in src/tools/port_forward.ts, where a kubectl command is constructed via string concatenation with user-controlled...

Vendor: npm
Product: mcp-server-kubernetes
Published: Apr 14, 2026
Source: GitHub
CVE-2026-39842 CRITICAL - 10.0

OpenRemote is an open-source IoT platform. Versions 1.21.0 and below contain two interrelated expression injection vulnerabilities in the rules engine that allow arbitrary code execution on the server. The JavaScript rules engine executes user-supplied scripts via Nashorn's ScriptEngine.eval() ...

Vendor: maven
Product: io.openremote:openremote-manager
Published: Apr 14, 2026
Source: GitHub
CVE-2026-34457 CRITICAL - 9.1

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions prior to 7.15.2 contain a configuration-dependent authentication bypass in deployments where OAuth2 Proxy is used with an auth_request-style integration (such as nginx auth_request) and either --ping-user-a...

Vendor: go
Product: github.com/oauth2-proxy/oauth2-proxy/v7
Published: Apr 14, 2026
Source: GitHub

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. A regression introduced in 7.11.0 prevents OAuth2 Proxy from clearing the session cookie when rendering the sign-in page. In deployments that rely on the sign-in page as part of their logout flow, a user may be show...

Vendor: go
Product: github.com/oauth2-proxy/oauth2-proxy/v7
Published: Apr 14, 2026
Source: GitHub

Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV machine backend in pkg/machine/hyperv/stubber.go, where the VM image path is inserted into a PowerShell double-quoted string without sanitization, allowing $() ...

Vendor: go
Product: github.com/containers/podman/v4
Published: Apr 14, 2026
Source: GitHub