Total CVEs

145,595

Critical Severity

4,259

High Severity

15,683

Last 7 Days

2,272
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 23,901 - 23,920 of 42,000 CVEs
CVE-2026-39891 HIGH - 8.8

PraisonAI is a multi-agent teams system. Prior to 4.5.115, the create_agent_centric_tools() function returns tools (like acp_create_file) that process file content using template rendering. When user input from agent.start() is passed directly into these tools without escaping, template expressions ...

Vendor: MervinPraison
Product: PraisonAI
Published: Apr 08, 2026
Source: NVD
CVE-2026-39890 CRITICAL - 9.8

PraisonAI is a multi-agent teams system. Prior to 4.5.115, the AgentService.loadAgentFromFile method uses the js-yaml library to parse YAML files without disabling dangerous tags (such as !!js/function and !!js/undefined). This allows an attacker to craft a malicious YAML file that, when parsed, exe...

Vendor: MervinPraison
Product: PraisonAI
Published: Apr 08, 2026
Source: NVD
CVE-2026-39889 HIGH - 7.5

PraisonAI is a multi-agent teams system. Prior to 4.5.115, the A2U (Agent-to-User) event stream server in PraisonAI exposes all agent activity without authentication. The create_a2u_routes() function registers the following endpoints with NO authentication checks: /a2u/info, /a2u/subscribe, /a2u/eve...

Vendor: MervinPraison
Product: PraisonAI
Published: Apr 08, 2026
Source: NVD
CVE-2026-39888 CRITICAL - 9.9

PraisonAI is a multi-agent teams system. Prior to 1.5.115, execute_code() in praisonaiagents.tools.python_tools defaults to sandbox_mode="sandbox", which runs user code in a subprocess wrapped with a restricted __builtins__ dict and an AST-based blocklist. The AST blocklist embedded inside...

Vendor: MervinPraison
Product: praisonaiagents
Published: Apr 08, 2026
Source: NVD
CVE-2026-39885 HIGH - 7.5

FrontMCP is a TypeScript-first framework for the Model Context Protocol (MCP). Prior to 2.3.0, the mcp-from-openapi library uses @apidevtools/json-schema-ref-parser to dereference $ref pointers in OpenAPI specifications without configuring any URL restrictions or custom resolvers. A malicious OpenAP...

Vendor: agentfront, @frontmcp, frontmcp
Product: frontmcp, adapters, sdk, mcp-from-openapi
Published: Apr 08, 2026
Source: NVD
CVE-2026-39883 HIGH - 7.0

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This vulnerabi...

Vendor: open-telemetry
Product: opentelemetry-go
Published: Apr 08, 2026
Source: NVD
CVE-2026-39882 MEDIUM - 5.3

OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1.43.0, the otlp HTTP exporters (traces/metrics/logs) read the full HTTP response body into an in-memory bytes.Buffer without a size cap. This is exploitable for memory exhaustion when the configured collector endpoint is attacker-...

Vendor: open-telemetry
Product: opentelemetry-go
Published: Apr 08, 2026
Source: NVD
CVE-2026-39881 MEDIUM - 5.0

Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious netbeans server to execute arbitrary Ex commands when Vim connects to it, via unsanitized strings in the defineAnnoType and specialKeys protocol m...

Vendor: vim
Product: vim
Published: Apr 08, 2026
Source: NVD
CVE-2026-39860 CRITICAL - 9.0

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds (typically the Nix daemon running as root in multi-user installations) by following symlinks during fixed-outp...

Vendor: NixOS
Product: nix
Published: Apr 08, 2026
Source: NVD
CVE-2026-39416 MEDIUM - 6.1

AIL framework is an open-source platform to collect, crawl, process and analyse unstructured data. Prior to 6.8, a stored cross-site scripting (XSS) vulnerability was identified in the modal item preview functionality. When item content longer than 800 characters was processed, attacker-controlled c...

Vendor: ail-project
Product: ail-framework
Published: Apr 08, 2026
Source: NVD
CVE-2026-39415 MEDIUM - 4.3

Frappe Learning Management System (LMS) is a learning system that helps users structure their content. Prior to 2.46.0, a vulnerability has been identified in Frappe Learning where quiz scores can be modified by students before submission. The application currently relies on client-side calculated s...

Vendor: frappe
Product: lms
Published: Apr 08, 2026
Source: NVD
CVE-2026-39414 HIGH - 6.5

MinIO is a high-performance object storage system. From RELEASE.2018-08-18T03-49-57Z to before RELEASE.2025-12-20T04-58-37Z, MinIO's S3 Select feature is vulnerable to memory exhaustion when processing CSV files containing lines longer than available memory. The CSV reader's nextSplit() fu...

Vendor: minio
Product: minio
Published: Apr 08, 2026
Source: NVD
CVE-2026-5802 HIGH - 7.3

A vulnerability was identified in idachev mcp-javadc up to 1.2.4. Impacted is an unknown function of the component HTTP Interface. Such manipulation of the argument jarFilePath leads to os command injection. It is possible to launch the attack remotely. The exploit is publicly available and might be...

Published: Apr 08, 2026
Source: NVD
CVE-2026-39880 MEDIUM - 5.0

Remnawave Backend is the backend for the Remnawave proxy and user management solution. Prior to 2.7.5, a glitch in the HWID device registration logic allows an authenticated user to bypass the configured limit for HWID devices and register more devices than expected, allowing them to resell subscrip...

Vendor: remnawave
Product: backend
Published: Apr 08, 2026
Source: NVD
CVE-2026-39864 MEDIUM - 4.4

Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.0.5 and 5.8.7, an out-of-bounds read in the auth module of Kamailio (formerly OpenSER and SER) allows remote attackers to cause a denial of service (process crash) via a specially crafted SIP packet if a successful user ...

Vendor: kamailio
Product: kamailio
Published: Apr 08, 2026
Source: NVD
CVE-2026-39863 HIGH - 7.5

Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.1.1, 6.0.6, and 5.8.8, an out-of-bounds access in the core of Kamailio (formerly OpenSER and SER) allows remote attackers to cause a denial of service (process crash) via a specially crafted data packet sent over TCP. Th...

Vendor: kamailio
Product: kamailio
Published: Apr 08, 2026
Source: NVD

Tophat is a mobile applications testing harness. Prior to 2.5.1, Tophat is affected by remote code execution via crafted tophat:// or http://localhost:29070 URLs. The arguments query parameter flows unsanitized from URL parsing through to /bin/bash -c execution, allowing an attacker to execute arbit...

Vendor: Shopify
Product: tophat
Published: Apr 08, 2026
Source: NVD

InvenTree is an Open Source Inventory Management System. Prior to 1.2.7 and 1.3.0, when INVENTREE_DOWNLOAD_FROM_URL is enabled (opt-in), authenticated users can supply remote_image URLs that are fetched server-side via requests.get() with only Django's URLValidator check. There is no validation...

Vendor: inventree
Product: InvenTree
Published: Apr 08, 2026
Source: NVD
CVE-2026-35479 MEDIUM - 6.6

InvenTree is an Open Source Inventory Management System. Prior to 1.2.7 and 1.3.0, any users who have staff access permissions can install plugins via the API, without requiring "superuser" account access. This level of permission requirement is out of alignment with other plugin actions (...

Vendor: inventree
Product: InvenTree
Published: Apr 08, 2026
Source: NVD
CVE-2026-35478 HIGH - 8.3

InvenTree is an Open Source Inventory Management System. From 0.16.0 to before 1.2.7, any authenticated InvenTree user can create a valid API token attributed to any other user in the system โ€” including administrators and superusers โ€” by supplying the target's user ID in the user field of a POS...

Vendor: inventree
Product: InvenTree
Published: Apr 08, 2026
Source: NVD