Total CVEs

143,226

Critical Severity

4,056

High Severity

14,605

Last 7 Days

1,268
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 561 - 580 of 39,631 CVEs
CVE-2026-59706 CRITICAL - 9.3

mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side request forgery via attacker-controlled ollama_base_url parameter. Unauthenticated attackers can retrieve stored secrets like OpenAI API keys via GET /api/v1/config/ or trigger SSRF attacks...

Vendor: mem0
Product: mem0
Published: Jul 07, 2026
Source: NVD

Anki is a program for creating and reviewing flashcards. Prior to 25.09.3, Anki launches a local HTTP server to serve media files and web pages for parts of its interface, but requests from other origins were not sufficiently blocked. A malicious website could potentially trigger side-effecting requ...

Vendor: ankitects
Product: anki
Published: Jul 07, 2026
Source: NVD
CVE-2026-58266 MEDIUM - 6.5

Anki is a program for creating and reviewing flashcards. Prior to 25.09.4, Anki's webview-based pages communicate with the Rust backend using an internal localhost API, and user scripts included via iframes in the editor can access this API despite protections intended to block reviewer and edi...

Vendor: ankitects
Product: anki
Published: Jul 07, 2026
Source: NVD
CVE-2026-55490 MEDIUM - 6.5

OpenWrt is a Linux operating system targeting embedded devices. Before v25.12.5, an integer underflow in handle_send_a() of the Emergency Access Daemon allows any unauthenticated attacker on the local network to crash the daemon by sending a single crafted UDP packet. The message length underflows b...

Vendor: openwrt
Product: openwrt
Published: Jul 07, 2026
Source: NVD
CVE-2026-55418 HIGH - 8.6

FastGPT is an open source AI knowledge base platform. Prior to v4.15.0-beta5, two FastGPT file handlers authorize an unrelated resource and then sign or read an S3 object using a key taken directly from the request, without checking that the key belongs to the caller's team. Because S3 object k...

Vendor: labring
Product: FastGPT
Published: Jul 07, 2026
Source: NVD

Koodo Reader is an ebook reader. In version 2.3.0 and earlier, Koodo Reader is vulnerable to remote code execution through malicious EPUB files because the open-book IPC handler enables nodeIntegrationInSubFrames and EPUB chapter content is rendered with unsanitized innerHTML. An attacker can craft ...

Vendor: koodo-reader
Product: koodo-reader
Published: Jul 07, 2026
Source: NVD

Hasura is an open-source product that provides users GraphQL or REST APIs. Prior to 2.49.2 and 2.45.5, a user can use a where clause on a table computed field (returning SETOF some_table) to infer row values that ought to be filtered for their role based on some_table's row-level permissions. W...

Vendor: hasura
Product: graphql-engine
Published: Jul 07, 2026
Source: NVD
CVE-2026-54607 HIGH - 7.7

FastGPT is a knowledge-based AI application platform. Prior to 4.15.0-beta4, the HTTP-tool OpenAPI schema importer validates only the top-level URL before passing it to SwaggerParser.bundle, whose remote reference resolver fetches $ref URLs without FastGPT's internal-address guard and returns f...

Vendor: labring
Product: FastGPT
Published: Jul 07, 2026
Source: NVD

FastGPT is a knowledge-based AI application platform. Prior to 4.15.0, GET /api/core/ai/record/getRecord authenticates the caller but loads LLM request and response traces only by requestId without team scoping, allowing any authenticated user to read another team's prompts, retrieved RAG chunk...

Vendor: labring
Product: FastGPT
Published: Jul 07, 2026
Source: NVD
CVE-2026-54601 MEDIUM - 6.3

FastGPT is an open source AI knowledge base platform. From 4.14.17 to before 4.15.0-beta4, FastGPT allows an authenticated tenant user to call POST /api/core/dataset/collection/create/reTrainingCollection in a way that persists a server-owned datasetId value from another tenant. This creates mixed d...

Vendor: labring
Product: FastGPT
Published: Jul 07, 2026
Source: NVD
CVE-2026-49033 HIGH - 7.8

The application contains a stack-based buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code.

Vendor: Labcenter
Product: Proteus
Published: Jul 07, 2026
Source: NVD
CVE-2026-42958 HIGH - 7.8

The application contains a use-after-free vulnerability that can be exploited to cause memory corruption while parsing specially crafted files. This could allow an attacker to execute arbitrary code in the context of the current process.

Vendor: Labcenter
Product: Proteus
Published: Jul 07, 2026
Source: NVD

The application contains an out-of-bounds write vulnerability that can be exploited by an attacker to cause the program to write data past the end of an allocated memory buffer. This can lead to arbitrary code execution.

Vendor: Labcenter
Product: Proteus
Published: Jul 07, 2026
Source: NVD

The public dashboard deletion endpoint does not enforce organization isolation, allowing an Org Admin in one organization to delete public dashboards belonging to a different organization by supplying the target dashboard's identifiers.

Vendor: Grafana
Product: Grafana Enterprise, Grafana OSS
Published: Jul 07, 2026
Source: NVD
CVE-2026-59707 HIGH - 8.6

LocalAI contains an unauthenticated server-side request forgery vulnerability in the POST /models/apply endpoint that allows attackers to fetch arbitrary internal URLs. The endpoint passes unsanitized gallery URL fields directly to gallery.GetGalleryConfigFromURLWithContext without proper validation...

Vendor: LocalAI
Product: LocalAI
Published: Jul 07, 2026
Source: NVD
CVE-2026-58583 HIGH - 7.1

FluxInk (formerly Sunia SPB Peripheral) Color Management Driver (TcnPeripheral64.sys) 1.0.7.2 allows local privilege escalation for a standard user account via arbitrary physical memory mapping at \Device\PhysicalMemory. Fixed in version 1.0.7.6. The fixed driver is currently available in the Window...

Vendor: FluxInk
Product: Color Management Driver
Published: Jul 07, 2026
Source: NVD
CVE-2026-58473 CRITICAL - 9.1

Cognee before 1.2.0 contains an improper access control vulnerability that allows unauthenticated attackers to overwrite the global LLM provider configuration by self-registering an account and calling the settings endpoint, which performs no admin or superuser check. Attackers can redirect all LLM ...

Vendor: topoteretes
Product: cognee
Published: Jul 07, 2026
Source: NVD
CVE-2026-58472 MEDIUM - 5.9

GNU Wget through 1.25.0, fixed in commit dd692d9, contains a heap buffer overflow vulnerability in the html_quote_string() function in src/convert.c that allows a remote attacker to trigger memory corruption by supplying a crafted HTML attribute with a large number of characters requiring entity enc...

Vendor: gnuwget
Product: wget
Published: Jul 07, 2026
Source: NVD
CVE-2026-58471 MEDIUM - 5.9

GNU Wget through 1.25.0, fixed in commit c2640fe, contains a heap buffer overflow vulnerability in the convert_fname() function within src/url.c that allows remote attackers to trigger memory corruption through a server-supplied filename requiring character set conversion. When the output buffer is ...

Vendor: gnuwget
Product: wget
Published: Jul 07, 2026
Source: NVD
CVE-2026-58470 MEDIUM - 5.3

GNU Wget through 1.25.0, fixed in commit 43d3ba9, contains an integer overflow vulnerability in the parse_content_range() function within src/http.c that allows server-controlled values to cause signed integer arithmetic to overflow. Attackers can supply malicious Content-Range header values to trig...

Vendor: gnuwget
Product: wget
Published: Jul 07, 2026
Source: NVD