Total CVEs

141,292

Critical Severity

3,799

High Severity

13,738

Last 7 Days

1,844
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 2,921 - 2,940 of 37,697 CVEs
CVE-2026-49338 HIGH - 7.1

gonic is a music streaming server / free-software subsonic server API implementation. Prior to version 0.21.0, the Subsonic API endpoints `/rest/deletePlaylist.view` and `/rest/getPlaylist.view` perform no per-resource authorization. Once authenticated as any user (admin or not), an attacker can del...

Vendor: sentriz
Product: gonic
Published: Jun 19, 2026
Source: NVD

@microsoft/kiota-http-fetchlibrary provides TypeScript libraries for Kiota-generated API clients. In versions 1.0.0-preview.97 through 1.0.0-preview.101, `@microsoft/kiota-http-fetchlibrary`'s `RedirectHandler` is documented as stripping `Authorization` and `Cookie` from cross-origin redirect t...

Vendor: microsoft
Product: kiota-typescript
Published: Jun 19, 2026
Source: NVD
CVE-2026-49293 HIGH - 7.5

js-toml is a TOML parser for JavaScript, fully compliant with the TOML 1.0.0 Spec. Versions up to and including 1.1.0 parse hexadecimal / octal / binary integer literals via a hand-written `parseBigInt` loop that multiplies a `BigInt` accumulator by the radix once per input digit. Each iteration per...

Vendor: sunnyadn
Product: js-toml
Published: Jun 19, 2026
Source: NVD
CVE-2026-49291 HIGH - 8.1

mcp-memory-service is a semantic memory layer for AI applications. Prior to version 10.65.3, the HTTP MCP JSON-RPC endpoint at `/mcp` requires only OAuth `read` scope for all requests, then dispatches `tools/call` directly to handlers that include mutating tools. A read-only OAuth client can call `s...

Vendor: doobidoo
Product: mcp-memory-service
Published: Jun 19, 2026
Source: NVD
CVE-2026-49288 MEDIUM - 4.3

Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.23 and 6.20.0, an authenticated Control Panel user could view metadata and content for resources they don't have permission to view, including entries, assets, users, roles, groups, and other configured resourc...

Vendor: statamic
Product: cms
Published: Jun 19, 2026
Source: NVD
CVE-2026-27878 MEDIUM - 6.5

A TraceQL query in Grafana Tempo with a large exemplars hint value can cause the Tempo instance to allocate an excessive amount of memory, resulting in an out-of-memory crash. This could allow an authenticated user to trigger a denial of service against the Tempo service.

Vendor: Grafana
Product: Enterprise Traces (GET), Tempo
Published: Jun 19, 2026
Source: NVD
CVE-2026-12726 MEDIUM - 6.3

A flaw was found in the AWX GitHub webhook integration. When processing GitHub pull_request webhooks, the controller stores the pull_request.statuses_url value from the webhook payload without validating that it points to a trusted GitHub API endpoint. If a job template is configured with a GitHub P...

Vendor: Red Hat
Product: Red Hat Ansible Automation Platform 2
Published: Jun 19, 2026
Source: NVD
CVE-2026-12238 MEDIUM - 5.3

The WP Go Maps โ€“ Most Popular Map Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 10.1.01. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for unauthenticated attackers to ...

Vendor: wpgmaps
Product: WP Go Maps โ€“ Google Map, OpenStreetMap, Leaflet Map
Published: Jun 19, 2026
Source: NVD
CVE-2023-54357 HIGH - 7.5

Joomla com_booking component 2.4.9 contains an information disclosure vulnerability that allows unauthenticated attackers to enumerate user accounts by exploiting the getUserData function in the customer controller. Attackers can send GET requests to index.php with option=com_booking, controller=cus...

Vendor: Artio
Product: Joomla! com_booking component
Published: Jun 19, 2026
Source: NVD
CVE-2026-49359 MEDIUM - 6.5

PhpWeasyPrint is a PHP library allowing PDF generation from a URL or an HTML page. Prior to version 2.6.0, `pontedilana/php-weasyprint` fetches the content of option values server-side via `file_get_contents()` when the value looks like a URL, without restricting the URL scheme. The `attachment` opt...

Vendor: pontedilana
Product: php-weasyprint
Published: Jun 19, 2026
Source: NVD

Slopsmith is a self-contained web application for browsing, playing, and practicing Rocksmith 2014 Custom DLC (CDLC). Prior to 0.2.9-alpha.5, a path-traversal vulnerability in Slopsmith's archive extractors allows an attacker to write arbitrary files outside the extraction directory by supplyin...

Vendor: byrongamatos
Product: slopsmith
Published: Jun 19, 2026
Source: NVD
CVE-2026-49287 HIGH - 7.4

Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.23 and 6.20.0, the fix for CVE-2026-41175 was incomplete. It addressed the issue in the query builder, but the same protection was not applied to in-memory collection sorting. Manipulating sort parameters could resu...

Vendor: statamic
Product: cms
Published: Jun 19, 2026
Source: NVD
CVE-2026-49286 HIGH - 8.1

PhpWeasyPrint is a PHP library allowing PDF generation from a URL or an HTML page. Prior to version 2.6.0, `pontedilana/php-weasyprint` guarded the output filename against the `phar://` stream wrapper with a case-sensitive blacklist. PHP stream wrappers are case-insensitive, so `PHAR://`, `Phar://`,...

Vendor: pontedilana
Product: php-weasyprint
Published: Jun 19, 2026
Source: NVD
CVE-2026-49271 MEDIUM - 6.5

libheif is a HEIF and AVIF file format decoder and encoder. Prior to version 1.22.1, the uncompressed HEIF decoder validates explicit icef compressed-unit offsets using unit_offset + unit_size. Because the addition can wrap, a crafted HEIF file can pass the range check and then construct a vector fr...

Vendor: strukturag
Product: libheif
Published: Jun 19, 2026
Source: NVD
CVE-2019-25762 HIGH - 7.5

Joomla! Component JoomProject 1.1.3.2 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive user data by exploiting the projects endpoint. Attackers can send requests to index.php with option=com_jpprojects&view=projects&tmpl=component&...

Vendor: Joomboost
Product: JoomProject
Published: Jun 19, 2026
Source: NVD
CVE-2019-25761 HIGH - 7.1

Joomla! Component JoomCRM 1.1.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the deal_id parameter. Attackers can send GET requests to index.php with option=com_joomcrm&view=contacts and inject SQ...

Vendor: Joomboost
Product: JoomCRM
Published: Jun 19, 2026
Source: NVD
CVE-2019-25760 MEDIUM - 6.2

Joomla! Component Easy Shop 1.2.3 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by supplying base64-encoded file paths. Attackers can send GET requests to index.php with the option parameter set to com_easyshop, task set to ajax.loadImage...

Vendor: Joomtech
Product: Easy Shop
Published: Jun 19, 2026
Source: NVD
CVE-2019-25759 HIGH - 7.1

Joomla! Component vBizz 1.0.7 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the payid parameter. Attackers can submit POST requests to the employee management interface with crafted payid array values ...

Vendor: Wdmtech
Product: vBizz
Published: Jun 19, 2026
Source: NVD
CVE-2019-25758 HIGH - 8.8

Joomla! Component vBizz 1.0.7 contains an unrestricted file upload vulnerability that allows authenticated attackers to upload arbitrary PHP files by submitting malicious files through the profile_pic parameter. Attackers can upload PHP files via POST requests to the employee view endpoint and execu...

Vendor: Wdmtech
Product: vBizz
Published: Jun 19, 2026
Source: NVD
CVE-2019-25757 HIGH - 7.1

Joomla vWishlist 1.0.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the vproductid and userid parameters. Attackers can send POST requests to the component with crafted SQL payloads in these parameter...

Vendor: Wdmtech
Product: vWishlist
Published: Jun 19, 2026
Source: NVD