Total CVEs

144,714

Critical Severity

4,191

High Severity

15,264

Last 7 Days

1,858
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 22,861 - 22,880 of 41,119 CVEs
CVE-2025-50228 CRITICAL - 9.1

Jizhicms v2.5.4 is vulnerable to Server-Side Request Forgery (SSRF) in User Evaluation, Message, and Comment modules.

Vendor: jizhicms
Product: jizhicms
Published: Apr 09, 2026
Source: NVD
CVE-2026-4660 HIGH - 7.5

HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This vulnerability, CVE-2026-4660, is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and package.

Vendor: go
Product: github.com/hashicorp/go-getter
Published: Apr 09, 2026
Source: NVD
CVE-2025-45806 MEDIUM - 6.1

A cross-site scripting (XSS) vulnerability in rrweb-snapshot before v2.0.0-alpha.18 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

Published: Apr 09, 2026
Source: NVD
CVE-2026-3005 MEDIUM - 6.4

The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and including, 0.94.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible fo...

Published: Apr 09, 2026
Source: NVD
CVE-2026-2519 MEDIUM - 5.3

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to price manipulation via the 'tips' parameter in all versions up to, and including, 27.0. This is due to the plugin trusting a user-supplied input without server-side validation against the co...

Published: Apr 09, 2026
Source: NVD

Mattermost Plugins versions <=2.1.3.0 fail to limit the request body size on the {{/changes}} webhook endpoint which allows an authenticated attacker to cause memory exhaustion and denial of service via sending an oversized JSON payload. Mattermost Advisory ID: MMSA-2026-00611

Vendor: Mattermost
Product: Mattermost
Published: Apr 09, 2026
Source: NVD

Mattermost Plugins versions <=2.3.1 fail to limit the request body size on the {{/lifecycle}} webhook endpoint which allows an authenticated attacker to cause memory exhaustion and denial of service via sending an oversized JSON payload. Mattermost Advisory ID: MMSA-2026-00610

Vendor: Mattermost
Product: Mattermost
Published: Apr 09, 2026
Source: NVD
CVE-2025-57735 CRITICAL - 9.1

When user logged out, the JWT token the user had authtenticated with was not invalidated, which could lead to reuse of that token in case it was intercepted. In Airflow 3.2 we implemented the mechanism that implements token invalidation at logout. Users who are concerned about the logout scenario an...

Vendor: Apache Software Foundation
Product: Apache Airflow
Published: Apr 09, 2026
Source: NVD
CVE-2024-1490 HIGH - 7.2

An authenticated remote attacker with high privileges can exploit the OpenVPN configuration via the web-based management interface of a WAGO PLC. If user-defined scripts are permitted, OpenVPN may allow the execution of arbitrary shell commands enabling the attacker to run arbitrary commands on the ...

Published: Apr 09, 2026
Source: NVD

Hydrosystem Control System saves sensitive information into a log file. Critically, user credentials are logged allowing the attacker to obtain further authorized access into the system. Combined with vulnerability CVE-2026-34184, these sensitive information could be accessed by an unauthorized user...

Published: Apr 09, 2026
Source: NVD
CVE-2026-34538 MEDIUM - 6.5

Apache Airflow versions 3.0.0 through 3.1.8 DagRun wait endpoint returns XCom result values even to users who only have DAG Run read permissions, such as the Viewer role.This behavior conflicts with the FAB RBAC model, which treats XCom as a separate protected resource, and with the security model d...

Vendor: Apache Software Foundation
Product: Apache Airflow
Published: Apr 09, 2026
Source: NVD

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control System ...

Vendor: Hydrosystem
Product: Control System
Published: Apr 09, 2026
Source: NVD

Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed in Hydrosys...

Vendor: Hydrosystem
Product: Control System
Published: Apr 09, 2026
Source: NVD
CVE-2026-34179 CRITICAL - 9.1

In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH requests to /1.0/certificates/{fingerprint} for restricted TLS certificate users, allowing a remote authenticated attacker to escalate privileg...

Vendor: Canonical
Product: lxd
Published: Apr 09, 2026
Source: NVD
CVE-2026-34178 CRITICAL - 9.1

In Canonical LXD before 6.8, the backup import path validates project restrictions against backup/index.yaml in the supplied tar archive but creates the instance from backup/container/backup.yaml, a separate file in the same archive that is never checked against project restrictions. An authenticate...

Vendor: Canonical
Product: lxd
Published: Apr 09, 2026
Source: NVD
CVE-2026-34177 CRITICAL - 9.1

Canonical LXD versions 4.12 through 6.7 contain an incomplete denylist in isVMLowLevelOptionForbidden (lxd/project/limits/permissions.go), which omits raw.apparmor and raw.qemu.conf from the set of keys blocked under the restricted.virtual-machines.lowlevel=block project restriction. A remote attack...

Vendor: Canonical
Product: lxd
Published: Apr 09, 2026
Source: NVD
CVE-2025-62188 HIGH - 7.5

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Apache DolphinScheduler. This vulnerability may allow unauthorized actors to access sensitive information, including database credentials. This issue affects Apache DolphinScheduler versions 3.1.*. Users are r...

Vendor: Apache Software Foundation
Product: Apache DolphinScheduler
Published: Apr 09, 2026
Source: NVD
CVE-2026-5854 CRITICAL - 9.8

A vulnerability was detected in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument merge results in os command injection. It is possible to initiate the ...

Published: Apr 09, 2026
Source: NVD
CVE-2026-5853 CRITICAL - 9.8

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument addrPrefixLen leads to os command injection. The attack m...

Published: Apr 09, 2026
Source: NVD
CVE-2026-5852 CRITICAL - 9.8

A weakness has been identified in Totolink A7100RU 7.4cu.2313_b20191024. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument igmpVer causes os command injection. The attack is possible to be carried out remotely. The ex...

Published: Apr 09, 2026
Source: NVD