Total CVEs

143,793

Critical Severity

4,093

High Severity

14,778

Last 7 Days

1,529
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 2,221 - 2,240 of 40,198 CVEs
CVE-2026-36910 MEDIUM - 5.5

An access violation in the BaseSplitterFile::Read function of Aleksoid1978 MPC-BE before commit 4341cb3 allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file.

Published: Jul 01, 2026
Source: NVD
CVE-2026-36909 MEDIUM - 6.2

A NULL pointer dereference in the AP4_TkhdAtom::GetTrackId() function of Aleksoid1978 MPC-BE before commit 4341cb3 allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file.

Published: Jul 01, 2026
Source: NVD
CVE-2026-50143 HIGH - 8.1

Apify Model Context Protocol (MCP) server: Actor MCP path authority injection leaks Apify token

Vendor: npm
Product: @apify/actors-mcp-server
Published: Jul 01, 2026
Source: GitHub
CVE-2026-50139 MEDIUM - 5.9

goshs: Share-link ?token=โ€ฆ redemption races past download limit

Vendor: go
Product: goshs.de/goshs/v2
Published: Jul 01, 2026
Source: GitHub
CVE-2026-50138 HIGH - 8.1

goshs: WebDAV listener ignores --read-only, --upload-only, and --no-delete mode flags

Vendor: go
Product: goshs.de/goshs/v2
Published: Jul 01, 2026
Source: GitHub

OnGres SCRAM silent channel-binding authentication downgrade via unsupported certificate algorithms

Vendor: maven
Product: com.ongres.scram:scram-client
Published: Jul 01, 2026
Source: GitHub
CVE-2026-50163 HIGH - 7.1

`oras-go` tar extraction: Hardlink entry with relative Linkname escapes extract dir via process CWD resolution

Vendor: go
Product: oras.land/oras-go/v2
Published: Jul 01, 2026
Source: GitHub

oras-go has file store write outside workingDir via symlink traversal

Vendor: go
Product: oras.land/oras-go/v2
Published: Jul 01, 2026
Source: GitHub
CVE-2026-50151 HIGH - 7.5

oras-go blob upload vulnerable to credential forwarding via unvalidated Location header

Vendor: go
Product: oras.land/oras-go/v2
Published: Jul 01, 2026
Source: GitHub
CVE-2026-58263 HIGH - 7.2

Jodit Editor is a WYSIWYG editor with written in pure TypeScript file and image editing capabilities. In versions prior to 4.12.28, the built-in clean-html sanitizer can be bypassed by a MathML/<style> carrier that hides a dangerous element from the sanitizer's element walk, so a no-inter...

Vendor: xdan
Product: jodit
Published: Jul 01, 2026
Source: NVD
CVE-2026-55153 HIGH - 7.1

mchange-commons-java is a Java library of shared utility classes used by mchange projects like the c3p0 connection pool. Prior to version 0.6.0, its JNDI ObjectFactory implementation (com.mchange.v2.naming.JavaBeanObjectFactory) will construct objects of arbitrary classes and initialize "JavaBe...

Vendor: swaldman
Product: mchange-commons-java
Published: Jul 01, 2026
Source: NVD
CVE-2026-54786 MEDIUM - 5.0

Wasmtime is a runtime for WebAssembly. All versions prior to 24.0.10; versions 25.0.0 through those before 36.0.11; versions 37.0.0 through those before 44.0.3; and versions 45.0.0 and 45.0.1 contain a native implementation of WASIp1 which suffers from a leak in the fd_renumber function where the f...

Vendor: bytecodealliance
Product: wasmtime
Published: Jul 01, 2026
Source: NVD

Jodit Editor is a WYSIWYG editor with written in pure TypeScript file and image editing capabilities. In versions prior to 4.12.18, Jodit.configure(options) โ€” and the internal ConfigMerge / ConfigProto helpers โ€” merged user-supplied options into the editor configuration without filtering prototype-m...

Vendor: xdan
Product: jodit
Published: Jul 01, 2026
Source: NVD
CVE-2026-54720 MEDIUM - 5.4

Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. In versions prior to 6.2.2, the "Insert media from web" functionality in the CMS is vulnerable to XSS from a specially crafted embed. This issue was fixed in version 6.2.2/

Vendor: silverstripe
Product: silverstripe-framework
Published: Jul 01, 2026
Source: NVD
CVE-2026-50521 HIGH - 8.3

Use after free in Microsoft Edge (Chromium-based) allows an authorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 01, 2026
Source: NVD
CVE-2026-14340 MEDIUM - 5.0

An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed a user-to-server token scoped to a GitHub App installation to perform certain write operations on public repositories outside the token's intended scope. This was possible because the authorization ...

Vendor: GitHub
Product: Enterprise Server
Published: Jul 01, 2026
Source: NVD

oras-go: Malicious registry can hijack Bearer token realm to exfiltrate credentials and refresh tokens

Vendor: go
Product: oras.land/oras-go/v2
Published: Jul 01, 2026
Source: GitHub
CVE-2026-48824 MEDIUM - 5.3

Mailpit: Sibling-endpoint memory-exhaustion DoS via unbounded JSON body on /api/v1/messages, /api/v1/tags, and /api/v1/message/{id}/release (incomplete fix of GHSA-fpxj-m5q8-fphw)

Vendor: go
Product: github.com/axllent/mailpit
Published: Jul 01, 2026
Source: GitHub
CVE-2026-48819 MEDIUM - 4.8

@hey-api/openapi-ts's `buildClientParams` template: prototype chain substitution via unknown `$<slot>___proto__` key

Vendor: npm
Product: @hey-api/openapi-ts
Published: Jul 01, 2026
Source: GitHub
CVE-2026-44935 CRITICAL - 9.9

Missing validation of "valuesFrom" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants.

Vendor: go
Product: github.com/rancher/fleet
Published: Jul 01, 2026
Source: GitHub