Total CVEs

145,595

Critical Severity

4,259

High Severity

15,683

Last 7 Days

2,269
Quick preset (or use dates below)
Clear Filters
πŸ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years β†’
Showing 24,001 - 24,020 of 42,000 CVEs
CVE-2026-4837 MEDIUM - 6.6

An eval() injection vulnerability in the Rapid7 Insight Agent beaconing logic for Linux versions could theoretically allow an attacker to achieve remote code execution as root via a crafted beacon response. Because the Agent uses mutual TLS (mTLS) to verify commands from the Rapid7 Platform, it is u...

Published: Apr 08, 2026
Source: NVD
CVE-2026-4498 HIGH - 7.7

Execution with Unnecessary Privileges (CWE-250) in Kibana’s Fleet plugin debug route handlers can lead reading index data beyond their direct Elasticsearch RBAC scope via Privilege Abuse (CAPEC-122). This requires an authenticated Kibana user with Fleet sub-feature privileges (such as agents, agent ...

Vendor: elastic
Product: kibana
Published: Apr 08, 2026
Source: NVD
CVE-2026-33461 HIGH - 7.7

Incorrect Authorization (CWE-863) in Kibana can lead to information disclosure via Privilege Abuse (CAPEC-122). A user with limited Fleet privileges can exploit an internal API endpoint to retrieve sensitive configuration data, including private keys and authentication tokens, that should only be ac...

Vendor: Elastic
Product: Kibana
Published: Apr 08, 2026
Source: NVD
CVE-2026-33460 MEDIUM - 4.3

Incorrect Authorization (CWE-863) in Kibana can lead to cross-space information disclosure via Privilege Abuse (CAPEC-122). A user with Fleet agent management privileges in one Kibana space can retrieve Fleet Server policy details from other spaces through an internal enrollment endpoint. The endpoi...

Vendor: Elastic
Product: Kibana
Published: Apr 08, 2026
Source: NVD
CVE-2026-31017 CRITICAL - 9.1

A Server-Side Request Forgery (SSRF) vulnerability exists in the Print Format functionality of ERPNext v16.0.1 and Frappe Framework v16.1.1, where user-supplied HTML is insufficiently sanitized before being rendered into PDF. When generating PDFs from user-controlled HTML content, the application al...

Vendor: frappe
Product: erpnext
Published: Apr 08, 2026
Source: NVD
CVE-2026-30080 HIGH - 7.5

OpenAirInterface v2.2.0 accepts Security Mode Complete without any integrity protection. Configuration has supported integrity NIA1 and NIA2. But if an UE sends initial registration request with only security capability IA0, OpenAirInterface accepts and proceeds. This downgrade security context can ...

Vendor: openairinterface
Product: oai-cn5g-amf
Published: Apr 08, 2026
Source: NVD
CVE-2026-30075 HIGH - 7.5

OpenAirInterface Version 2.2.0 has a Buffer Overflow vulnerability in processing UplinkNASTransport containing Authentication Response containing a NAS PDU with oversize response (For example 100 byte). The response is decoded by AMF and passed to the AUSF component for verification. AUSF crashes on...

Vendor: openairinterface
Product: oai-cn5g-amf
Published: Apr 08, 2026
Source: NVD
CVE-2026-2377 MEDIUM - 6.5

A flaw was found in mirror-registry. Authenticated users can exploit the log export feature by providing a specially crafted web address (URL). This allows the application's backend to make arbitrary requests to internal network resources, a vulnerability known as Server-Side Request Forgery (S...

Published: Apr 08, 2026
Source: NVD
CVE-2025-57175 MEDIUM - 6.4

Siklu EtherHaul 8010 siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b devices have a static root password.

Vendor: Siklu
Product: EtherHaul 8010
Published: Apr 08, 2026
Source: NVD
CVE-2025-14243 MEDIUM - 5.3

A flaw was found in the OpenShift Mirror Registry. This vulnerability allows an unauthenticated, remote attacker to enumerate valid usernames and email addresses via different error messages during authentication failures and account creation.

Vendor: Red Hat
Product: mirror registry for Red Hat OpenShift, mirror registry for Red Hat OpenShift 2
Published: Apr 08, 2026
Source: NVD
CVE-2023-46945 CRITICAL - 9.1

QD 20230821 is vulnerable to Server-side request forgery (SSRF) via a crafted request

Vendor: qd-today
Product: qd
Published: Apr 08, 2026
Source: NVD
CVE-2026-31040 HIGH - 9.8

A vulnerability was identified in stata-mcp prior to v1.13.0 where insufficient validation of user-supplied Stata do-file content can lead to command execution.

Vendor: pip
Product: stata-mcp
Published: Apr 08, 2026
Source: NVD
CVE-2026-39865 MEDIUM - 5.9

Axios is a promise based HTTP client for the browser and Node.js. Starting in version 1.13.0 and prior to 1.13.2, Axios HTTP/2 session cleanup logic contains a state corruption bug that allows a malicious server to crash the client process through concurrent session closures. The vulnerability exist...

Vendor: axios
Product: axios
Published: Apr 08, 2026
Source: NVD
CVE-2026-39394 HIGH - 8.1

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, the Install::index() controller reads the host POST parameter without any validation and passes it directly into updateEnvSettings(), which...

Vendor: ci4-cms-erp
Product: ci4ms
Published: Apr 08, 2026
Source: NVD
CVE-2026-39393 HIGH - 8.1

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, the install route guard in ci4ms relies solely on a volatile cache check (cache('settings')) combined with .env file existence to...

Vendor: ci4-cms-erp
Product: ci4ms
Published: Apr 08, 2026
Source: NVD
CVE-2026-39392 MEDIUM - 5.5

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, the Pages module does not apply the html_purify validation rule to content fields during create and update operations, while the Blog modul...

Vendor: ci4-cms-erp
Product: ci4ms
Published: Apr 08, 2026
Source: NVD
CVE-2026-39391 MEDIUM - 4.8

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, the blacklist (ban) note parameter in UserController::ajax_blackList_post() is stored in the database without sanitization and rendered int...

Vendor: ci4-cms-erp
Product: ci4ms
Published: Apr 08, 2026
Source: NVD
CVE-2026-39390 MEDIUM - 5.5

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, the Google Maps iframe setting (cMap field) in compInfosPost() sanitizes input using strip_tags() with an <iframe> allowlist and rege...

Vendor: ci4-cms-erp
Product: ci4ms
Published: Apr 08, 2026
Source: NVD
CVE-2026-39389 MEDIUM - 6.7

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.4.0, This vulnerability is fixed in 0.31.4.0.

Vendor: ci4-cms-erp
Product: ci4ms
Published: Apr 08, 2026
Source: NVD
CVE-2026-39859 MEDIUM - 7.5

LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to 10.25.3, liquidjs 10.25.0 documents root as constraining filenames passed to renderFile() and parseFile(), but top-level file loads do not enforce that boundary. A Liquid instance configured with an empty te...

Vendor: npm
Product: liquidjs
Published: Apr 08, 2026
Source: GitHub