Total CVEs

144,278

Critical Severity

4,164

High Severity

14,985

Last 7 Days

1,648
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 20,901 - 20,920 of 40,683 CVEs
CVE-2026-5807 HIGH - 7.5

Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate or cancel root token generation or rekey operations, occupying the single in-progress operation slot. This prevents legitimate operators from completing these workflows. This vulnerability,...

Vendor: go
Product: github.com/hashicorp/vault
Published: Apr 17, 2026
Source: NVD
CVE-2026-5502 MEDIUM - 5.3

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthorized course content manipulation in versions up to and including 3.9.8. This is due to a missing authorization check in the tutor_update_course_content_order() function. The function only validates the...

Published: Apr 17, 2026
Source: NVD
CVE-2026-5427 MEDIUM - 5.3

The Kubio plugin for WordPress is vulnerable to Arbitrary File Upload in versions up to and including 2.7.2. This is due to insufficient capability checks in the kubio_rest_pre_insert_import_assets() function, which is hooked to the rest_pre_insert_{post_type} filter for posts, pages, templates, and...

Published: Apr 17, 2026
Source: NVD
CVE-2026-5234 MEDIUM - 5.3

The LatePoint plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.3.2. The vulnerability exists because the OsStripeConnectController::create_payment_intent_for_transaction action is registered as a public action (no authentication required)...

Published: Apr 17, 2026
Source: NVD
CVE-2026-4853 MEDIUM - 4.9

The JetBackup – Backup, Restore & Migrate plugin for WordPress is vulnerable to Path Traversal leading to Arbitrary Directory Deletion in versions up to and including 3.1.19.8. This is due to insufficient input validation on the fileName parameter in the file upload handler. The plugin sanitizes...

Published: Apr 17, 2026
Source: NVD
CVE-2026-3330 MEDIUM - 4.9

The Form Maker by 10Web plugin for WordPress is vulnerable to SQL Injection via the 'ip_search', 'startdate', 'enddate', 'username_search', and 'useremail_search' parameters in all versions up to, and including, 1.15.40. This is due to the `WDW_FM_Li...

Published: Apr 17, 2026
Source: NVD
CVE-2026-5052 MEDIUM - 5.3

Vault’s PKI engine’s ACME validation did not reject local targets when issuing http-01 and tls-alpn-01 challenges. This may lead to these requests being sent to local network targets, potentially leading to information disclosure. Fixed in Vault Community Edition 2.0.0 and Vault Enterprise 2.0.0, 1....

Vendor: go
Product: github.com/hashicorp/vault
Published: Apr 17, 2026
Source: NVD
CVE-2026-4666 MEDIUM - 6.5

The wpForo Forum plugin for WordPress is vulnerable to unauthorized modification of data due to the use of `extract($args, EXTR_OVERWRITE)` on user-controlled input in the `edit()` method of `classes/Posts.php` in all versions up to, and including, 2.4.16. The `post_edit` action handler in `Actions....

Published: Apr 17, 2026
Source: NVD
CVE-2026-4525 HIGH - 7.5

If a Vault auth mount is configured to pass through the "Authorization" header, and the "Authorization" header is used to authenticate to Vault, Vault forwarded the Vault token to the auth plugin backend. Fixed in 2.0.0, 1.21.5, 1.20.10, and 1.19.16.

Vendor: go
Product: github.com/hashicorp/vault
Published: Apr 17, 2026
Source: NVD
CVE-2026-3605 HIGH - 8.1

An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secrets they were not authorized to read or write, resulting in denial-of-service. This vulnerability did not allow a malicious user to delete secrets across namespaces, nor read any secret data...

Vendor: go
Product: github.com/hashicorp/vault
Published: Apr 17, 2026
Source: NVD
CVE-2026-5231 HIGH - 7.2

The WP Statistics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'utm_source' parameter in all versions up to, and including, 14.16.4. This is due to insufficient input sanitization and output escaping. The plugin's referral parser copies the raw utm_source ...

Published: Apr 17, 2026
Source: NVD
CVE-2026-5162 MEDIUM - 6.4

The Royal Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Instagram Feed widget's 'instagram_follow_text' setting in all versions up to, and including, 1.7.1056 due to insufficient input sanitization and output escaping. This makes it pos...

Published: Apr 17, 2026
Source: NVD
CVE-2026-4817 MEDIUM - 6.5

The MasterStudy LMS WordPress Plugin for Online Courses and Education plugin for WordPress is vulnerable to Time-based Blind SQL Injection via the 'order' and 'orderby' parameters in the /lms/stm-lms/order/items REST API endpoint in versions up to and including 3.7.25. This is du...

Published: Apr 17, 2026
Source: NVD
CVE-2026-3488 MEDIUM - 6.5

The WP Statistics plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 14.16.4. This is due to missing capability checks on multiple AJAX handlers including `wp_statistics_get_filters`, `wp_statistics_getPrivacyStatus`, `wp_statistics_updatePrivacyStatus`...

Published: Apr 17, 2026
Source: NVD
CVE-2026-40922 MEDIUM - 5.4

SiYuan is an open-source personal knowledge management system. In versions 3.6.1 through 3.6.3, a prior fix for XSS in bazaar README rendering (incomplete fix for CVE-2026-33066) enabled the Lute HTML sanitizer, but the sanitizer does not block iframe tags, and its URL-prefix blocklist does not effe...

Vendor: siyuan-note
Product: siyuan
Published: Apr 17, 2026
Source: NVD
CVE-2026-22734 HIGH - 8.6

Cloud Foundry UUA is vulnerable to a bypass that allows an attacker to obtain a token for any user and gain access to UAA-protected systems. This vulnerability exists when SAML 2.0 bearer assertions are enabled for a client, as the UAA accepts SAML 2.0 bearer assertions that are neither signed nor e...

Vendor: Cloud Foundry
Product: UUA
Published: Apr 17, 2026
Source: NVD
CVE-2026-40322 CRITICAL - 9.0

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and below, Mermaid diagrams are rendered with securityLevel set to "loose", and the resulting SVG is injected into the DOM via innerHTML. This allows attacker-controlled javascript: URLs in Mermaid code blocks...

Vendor: siyuan-note
Product: siyuan
Published: Apr 16, 2026
Source: NVD
CVE-2026-40318 HIGH - 8.5

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and prior, the /api/av/removeUnusedAttributeView endpoint constructs a filesystem path using the user-controlled id parameter without validation or path boundary enforcement. An attacker can inject path traversal sequen...

Vendor: siyuan-note
Product: siyuan
Published: Apr 16, 2026
Source: NVD
CVE-2026-40253 MEDIUM - 6.8

openCryptoki is a PKCS#11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library (asn1.c) accept a raw pointer but no buffer length parameter, and trust attacker-controlled BER length fields without validating them ag...

Vendor: opencryptoki
Product: opencryptoki
Published: Apr 16, 2026
Source: NVD
CVE-2024-58343 MEDIUM - 4.3

Vision Helpdesk before 5.7.0 (patched in 5.6.10) allows attackers to read user profiles via modified serialized cookie data to vis_client_id.

Vendor: Vision
Product: Helpdesk
Published: Apr 16, 2026
Source: NVD