Total CVEs

141,492

Critical Severity

3,867

High Severity

13,899

Last 7 Days

1,679
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 3,441 - 3,460 of 37,897 CVEs

Hydro: Insufficient session expiration when recreating sessions

Vendor: npm
Product: hydrooj
Published: Jun 18, 2026
Source: GitHub
CVE-2026-55603 HIGH - 7.5

http-proxy-middleware is node.js http-proxy middleware. From 3.0.4 until 3.0.7 and 4.1.1, fixRequestBody() is the library's documented helper for re-emitting a request body that was already consumed by a body parser. When the outgoing Content-Type is multipart/form-data, it rebuilds the body wi...

Vendor: npm
Product: http-proxy-middleware
Published: Jun 18, 2026
Source: GitHub
CVE-2026-55602 MEDIUM - 8.6

http-proxy-middleware is node.js http-proxy middleware. From 0.16.0 until 2.0.10, 3.0.6, and 4.1.0, http-proxy-middleware documents router proxy-table entries as host, path, or host+path selectors, but the host+path implementation uses unanchored substring matching on attacker-controlled request met...

Vendor: npm
Product: http-proxy-middleware
Published: Jun 18, 2026
Source: GitHub
CVE-2026-55254 MEDIUM - 4.8

NCalc: Denial of Service via Unbounded and Non-Terminating Factorial Evaluation

Vendor: nuget
Product: NCalc.Core
Published: Jun 18, 2026
Source: GitHub
CVE-2026-55388 HIGH - 8.1

piscina is a node.js worker pool implementation. Prior to 6.0.0-rc.2, 5.2.0, and 4.9.3, piscina's constructor and run() paths read the filename option via plain member access. Both reads fall through the prototype chain when the caller's options object doesn't have filename as an own ...

Vendor: npm
Product: piscina
Published: Jun 18, 2026
Source: GitHub

Docker MCP Gateway: Argument injection via OCI image label YAML

Vendor: go
Product: github.com/docker/mcp-gateway
Published: Jun 18, 2026
Source: GitHub

jodit: Prototype pollution in Jodit via Jodit.modules.Helpers.set()

Vendor: npm
Product: jodit
Published: Jun 18, 2026
Source: GitHub
CVE-2026-55229 HIGH - 7.5

Gotenberg: SSRF via LibreOffice document processing

Vendor: go
Product: github.com/gotenberg/gotenberg/v8
Published: Jun 18, 2026
Source: GitHub
CVE-2026-55226 MEDIUM - 5.4

Strimzi: Unrestricted access to all Secrets within namespace watched by the Topic operator

Vendor: maven
Product: io.strimzi:strimzi
Published: Jun 18, 2026
Source: GitHub
CVE-2026-55225 HIGH - 8.0

Strimzi: Cross-namespace privilege escalation via `Kafka.spec.entityOperator`

Vendor: maven
Product: io.strimzi:strimzi
Published: Jun 18, 2026
Source: GitHub
CVE-2026-9815 MEDIUM - 6.5

The MagicForm WordPress plugin through 0.1.3 does not properly validate the type of files uploaded through an unauthenticated AJAX action when a form's per-field extension allowlist is left empty, allowing unauthenticated attackers to upload PHP files and execute arbitrary code on the server.

Published: Jun 18, 2026
Source: NVD
CVE-2026-55746 HIGH - 7.6

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to stored Cross-Site Scripting in the Personal File Storage (PFS) module. A folder title (pff_title) is imported with the 'TXT' filter, which does not strip or encode HTML (the tag check in cot_import is disabled), so an authenti...

Vendor: Cotonti
Product: Cotonti
Published: Jun 18, 2026
Source: NVD
CVE-2026-55745 MEDIUM - 5.4

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the Personal File Storage (PFS) module. In modules/pfs/inc/pfs.editfolder.php, the folder update action ('a=update') updates folder metadata (title, description, public/gallery flags) without call...

Vendor: Cotonti
Product: Cotonti
Published: Jun 18, 2026
Source: NVD
CVE-2026-55744 HIGH - 8.1

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the Personal File Storage (PFS) module. In modules/pfs/inc/pfs.main.php, the file upload action ('a=upload') processes uploaded files without calling cot_check_xg() to validate the anti-CSRF token...

Vendor: Cotonti
Product: Cotonti
Published: Jun 18, 2026
Source: NVD
CVE-2026-55742 CRITICAL - 9.6

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the administration rights handler. In system/admin/admin.rights.php, the rights update action ('a=update') modifies group access rights (including via cot_auth_add_group) without calling cot_check...

Vendor: Cotonti
Product: Cotonti
Published: Jun 18, 2026
Source: NVD
CVE-2026-55741 HIGH - 8.8

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the administration configuration handler. In system/admin/admin.config.php, the configuration update action ('a=update') processes POST data via cot_config_update_options() without calling cot_che...

Vendor: Cotonti
Product: Cotonti
Published: Jun 18, 2026
Source: NVD
CVE-2026-28573 MEDIUM - 5.5

In AndroidManifest.xml, there is a possible persistent denial of service due to a missing permission check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Vendor: Google
Product: Android
Published: Jun 18, 2026
Source: NVD
CVE-2026-12137 MEDIUM - 6.1

The SysBasics Customize My Account for WooCommerce โ€“ Dashboard, Endpoints, Avatar & Menu Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 4.3.6 due to insufficient input sanitization and output es...

Vendor: phppoet
Product: SysBasics Customize My Account for WooCommerce โ€“ Dashboard, Endpoints, Avatar & Menu Manager
Published: Jun 18, 2026
Source: NVD
CVE-2026-12136 MEDIUM - 6.4

The Customize My Account For Woocommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sysbasics_user_avatar' shortcode in versions up to, and including, 4.3.6. This is due to insufficient input sanitization and output escaping on user supplied attributes (min_...

Vendor: phppoet
Product: SysBasics Customize My Account for WooCommerce โ€“ Dashboard, Endpoints, Avatar & Menu Manager
Published: Jun 18, 2026
Source: NVD
CVE-2026-12111 MEDIUM - 4.3

The Appointment Booking Calendar plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 1.4.01. This is due to insufficient authorization and missing per-calendar ownership checks in the cpabc_appointments_calendar_load2() function, which is reachable ...

Vendor: codepeople
Product: Appointment Booking Calendar
Published: Jun 18, 2026
Source: NVD