Total CVEs

145,982

Critical Severity

4,294

High Severity

15,805

Last 7 Days

2,233
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 24,081 - 24,100 of 42,387 CVEs
CVE-2025-63238 MEDIUM - 6.1

A Reflected Cross-Site Scripting (XSS) affects LimeSurvey versions prior to 6.15.11+250909, due to the lack of validation of gid parameter in getInstance() function in application/models/QuestionCreate.php. This allows an attacker to craft a malicious URL and compromise the logged in user.

Vendor: limesurvey
Product: limesurvey
Published: Apr 09, 2026
Source: NVD
CVE-2026-5962 HIGH - 7.3

A vulnerability was detected in Tenda CH22 1.0.0.6(468). This issue affects the function R7WebsSecurityHandlerfunction of the component httpd. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be used.

Published: Apr 09, 2026
Source: NVD
CVE-2026-5961 HIGH - 7.3

A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This vulnerability affects unknown code of the file /topic-details.php. The manipulation of the argument post_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed pu...

Published: Apr 09, 2026
Source: NVD
CVE-2026-40046 MEDIUM - 5.4

Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for "CVE-2025-66168: MQTT control packet remaining length field is not properly validated" was only applied to 5.19.2 (and future 5.19.x) releases but was missed for all 6.0...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT
Published: Apr 09, 2026
Source: NVD
CVE-2026-39976 HIGH - 7.1

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for client_credentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier (since there's no user). The token guard then passes this v...

Vendor: laravel
Product: passport
Published: Apr 09, 2026
Source: NVD

MISP is an open source threat intelligence and sharing platform. Prior to 2.5.36, improper neutralization of special elements in an LDAP query in ApacheAuthenticate.php allows LDAP injection via an unsanitized username value when ApacheAuthenticate.apacheEnv is configured to use a user-controlled se...

Vendor: MISP
Product: MISP
Published: Apr 09, 2026
Source: NVD
CVE-2026-39958 CRITICAL - 9.1

oma is a package manager for AOSC OS. Prior to 1.25.2, oma-topics is responsible for fetching metadata for testing repositories (topics) named "Topic Manifests" ({mirror}/debs/manifest/topics.json) from remote repository servers, registering them as APT source entries. However, the name fi...

Vendor: AOSC-Dev
Product: oma
Published: Apr 09, 2026
Source: NVD

Lychee is a free, open-source photo-management tool. Prior to 7.5.4, a SQL operator-precedence bug in SharingController::listAll() causes the orWhereNotNull('user_group_id') clause to escape the ownership filter applied by the when() block. Any authenticated non-admin user with upload perm...

Vendor: LycheeOrg
Product: Lychee
Published: Apr 09, 2026
Source: NVD
CVE-2026-39943 MEDIUM - 6.5

Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, Directus stores revision records (in directus_revisions) whenever items are created or updated. Due to the revision snapshot code not consistently calling the prepareDelta sanitization pipeline, sensit...

Vendor: directus
Product: directus
Published: Apr 09, 2026
Source: NVD
CVE-2026-39942 HIGH - 8.5

Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, the PATCH /files/{id} endpoint accepts a user-controlled filename_disk parameter. By setting this value to match the storage path of another user's file, an attacker can overwrite that file's...

Vendor: directus
Product: directus
Published: Apr 09, 2026
Source: NVD
CVE-2026-39856 MEDIUM - 5.5

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an out-of-bounds read vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code (pe_page_hash_calc()). When processing PE sections for page hashing, the function uses...

Vendor: mtrojnar
Product: osslsigncode
Published: Apr 09, 2026
Source: NVD
CVE-2026-39855 MEDIUM - 5.5

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an integer underflow vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code (pe_page_hash_calc()). When page hash processing is performed on a PE file, the functio...

Vendor: mtrojnar
Product: osslsigncode
Published: Apr 09, 2026
Source: NVD
CVE-2026-30479 CRITICAL - 9.1

A Dynamic-link Library Injection vulnerability in OSGeo Project MapServer before v8.0 allows attackers to execute arbitrary code via a crafted executable.

Published: Apr 09, 2026
Source: NVD
CVE-2026-5960 MEDIUM - 4.3

A weakness has been identified in code-projects Patient Record Management System 1.0. This affects an unknown part of the file /db/hcpms.sql of the component SQL Database Backup File Handler. Executing a manipulation can lead to information disclosure. The attack can be launched remotely. The exploi...

Published: Apr 09, 2026
Source: NVD
CVE-2026-4878 MEDIUM - 6.7

A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so, ...

Published: Apr 09, 2026
Source: NVD
CVE-2026-39941 MEDIUM - 6.1

ChurchCRM is an open-source church management system. Prior to 7.1.0, an XSS vulnerability allows attacker-supplied input sent via a the EName and EDesc parameters in EditEventAttendees.php to be rendered in a page without proper output encoding, enabling arbitrary JavaScript execution in victims�...

Vendor: ChurchCRM
Product: CRM
Published: Apr 09, 2026
Source: NVD
CVE-2026-39853 HIGH - 7.8

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.12, A stack buffer overflow vulnerability exists in osslsigncode in several signature verification paths. During verification of a PKCS#7 signature, the code copies the digest value from a parsed SpcIndirectData...

Vendor: mtrojnar
Product: osslsigncode
Published: Apr 09, 2026
Source: NVD
CVE-2026-39843 HIGH - 7.7

Plane is an an open-source project management tool. From 0.28.0 to before 1.3.0, the remediation of GHSA-jcc6-f9v6-f7jw is incomplete which could lead to the same full read Server-Side Request Forgery when a normal html page contains a link tag with an href that redirects to a private IP address is ...

Vendor: makeplane
Product: plane
Published: Apr 09, 2026
Source: NVD

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance (.prov file) when signature verification is required. This vulnerability is fixed in 4.1.4.

Vendor: helm
Product: helm
Published: Apr 09, 2026
Source: NVD

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, a specially crafted Helm plugin, when installed or updated, will cause Helm to write the contents of the plugin to an arbitrary filesystem location. To prevent this, validate that the plugin.yaml of the Helm plugin does not in...

Vendor: helm
Product: helm
Published: Apr 09, 2026
Source: NVD