Total CVEs

145,438

Critical Severity

4,245

High Severity

15,631

Last 7 Days

2,408
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 4,801 - 4,820 of 41,843 CVEs
CVE-2026-14162 CRITICAL - 9.8

Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access a specific URL to obtain API documentation.

Vendor: Advantech
Product: Hospital Quering Management
Published: Jun 30, 2026
Source: NVD
CVE-2026-14161 HIGH - 7.5

Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access a specific URL to obtain API documentation.

Vendor: Advantech
Product: Hospital Queuing Management
Published: Jun 30, 2026
Source: NVD
CVE-2026-13766 CRITICAL - 9.8

DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers. The default SQL builder, a SQL::Abstract subclass, sets bindtype in its constructor but never quote_char, so SQL::Abstract emits identifiers verbatim. Caller-supplied identifiers (order_by, where-clau...

Vendor: EXODIST
Product: DBIx::QuickORM
Published: Jun 30, 2026
Source: NVD
CVE-2026-54475 HIGH - 7.5

Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic temporary destinations are expected to be isolated to the connection that created them. The isolation can be broken as this is only checked in the client, allowing a differen...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ
Published: Jun 30, 2026
Source: NVD
CVE-2026-53917 HIGH - 7.5

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Client, Apache ActiveMQ Broker. An authenticated user can cause a broker DoS by sending a crafted OpenWire Message with a large encoded size value for the map. OpenWire message propert...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Client, Apache ActiveMQ Broker
Published: Jun 30, 2026
Source: NVD
CVE-2026-53916 HIGH - 7.5

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp. An unauthenticated client that opens a STOMP NIO connection can send header bytes that never terminate which makes the broker buffer them without limit, exhausting the JVM heap...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp
Published: Jun 30, 2026
Source: NVD
CVE-2026-52760 MEDIUM - 6.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache ActiveMQ, Apache ActiveMQ Web Console. The browse page in the web console renders a message Id directly without sanitization. This allows an authenticated producer to send a messag...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ, Apache ActiveMQ Web Console
Published: Jun 30, 2026
Source: NVD
CVE-2026-50750 HIGH - 7.5

Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. Following the fix for CVE-2026-49270 an unauthenticated attacker can now cause broker OOM by sending an repeated BrokerInfo commands without sending a ConnectionInfo, until the broker...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All
Published: Jun 30, 2026
Source: NVD
CVE-2026-50734 HIGH - 7.5

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All. An unauthenticated network attacker can cause a broker DoS by sending a crafted WireFormatInfo frame with a malicious large size value. The value is not validate and causes the...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All
Published: Jun 30, 2026
Source: NVD
CVE-2026-49877 HIGH - 8.1

Improper Authorization vulnerability in Apache ActiveMQ. An authenticated low-privilege Web Console user by default can access /admin/* paths in the Web Console. The default Jetty settings incorrectly did not limit those paths to only admins. This issue affects Apache ActiveMQ: before 5.19.8, from ...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ
Published: Jun 30, 2026
Source: NVD
CVE-2026-49434 HIGH - 7.5

Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. An attacker that has access to publish or modify entries in LDAP that match the configured searchBase and searchFilter can instantiate denied transports inside the broker JVM. This can be used t...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All
Published: Jun 30, 2026
Source: NVD
CVE-2026-49432 HIGH - 7.5

Improper Input Validation vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp. A remote unauthenticated peer that can reach an exposed STOMP connector can trigger denial-of-service behavior by sending a negative content-length. For the NIO STOMP transport, an attacker can k...

Vendor: Apache Software Foundation
Product: Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp
Published: Jun 30, 2026
Source: NVD
CVE-2026-13316 MEDIUM - 4.4

A flaw has been found in foreman when HTTP parameters are modified in http_proxies_controller and http_proxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component.

Vendor: Red Hat
Product: Red Hat Satellite 6
Published: Jun 30, 2026
Source: NVD
CVE-2026-9711 CRITICAL - 9.8

The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injection via the WordPress 'search' parameter in versions up to, and including, 5.0.11 due to insufficient escaping on the user supplied parameter and lack of preparation on the existing...

Published: Jun 30, 2026
Source: NVD
CVE-2026-8141 HIGH - 7.2

The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxonomy_include_children' parameter in all versions up to, and including, 3.4.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated at...

Published: Jun 30, 2026
Source: NVD

Cross-Site Scripting (XSS) vulnerability in Intermark IT's WebControl CMS v3.5. This vulnerability allows an attacker to execute JavaScript code or inject a dynamic iframe into the victim’s browser by sending a malicious URL via the 'urlDestino' parameter in '/portal.do'. Th...

Published: Jun 30, 2026
Source: NVD

HTML injection vulnerability in Intermark IT's WebControl CMS v3.5. This vulnerability allows an attacker to send an email containing malicious HTML code to a victim via the contact form. To exploit this vulnerability, the attacker must send a request using the 'nombreApellidos', ...

Published: Jun 30, 2026
Source: NVD

brace-expansion through 5.0.6 is vulnerable to denial of service. The expand() function exhibits exponential-time complexity in the number of consecutive non-expanding '{}' brace groups. An attacker who passes a crafted string to expand(), directly or transitively, can cause significant CP...

Vendor: juliangruber
Product: brace-expansion
Published: Jun 30, 2026
Source: NVD
CVE-2026-12610 MEDIUM - 6.4

A flaw was found in sssd. When authenticating with a YubiKey, the SSSD PAM responder can crash due to a use-after-free vulnerability, where a memory pointer is incorrectly handled. A local attacker could exploit this flaw by manipulating smartcard or YubiKey contents, leading to a denial of service ...

Vendor: fedoraproject
Product: sssd
Published: Jun 30, 2026
Source: NVD

Raytha CMS is vulnerable to SQL Injection within the OData filter parsing pipeline.  The vulnerability allows a remote, unauthenticated attacker to execute arbitrary SQL statements against the underlying PostgreSQL database, leading to full database compromise, including credential extraction. Be...

Vendor: Raytha
Product: Raytha
Published: Jun 30, 2026
Source: NVD