Total CVEs

143,377

Critical Severity

4,061

High Severity

14,648

Last 7 Days

1,380
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 561 - 580 of 39,782 CVEs
CVE-2026-15062 CRITICAL - 9.6

SQL injection vulnerabilities in the Snowflake Snowpark Python SDK (snowpark-python) versions prior to 1.53.0 could allow authenticated low-privilege users to execute SQL beyond their authorization scope. An attacker could exploit these vulnerabilities by embedding SQL payloads in source database co...

Vendor: Snowflake
Product: Snowpark Python SDK
Published: Jul 08, 2026
Source: NVD
CVE-2026-15044 MEDIUM - 6.3

A flaw was found in the TrustyAI Service Operator. When deploying services like gorch or NemoGuardrails, if a specific security setting is not enabled, these services can expose their communication channels without requiring users to prove their identity. This allows any other program within the clu...

Vendor: Red Hat
Product: Red Hat OpenShift AI (RHOAI)
Published: Jul 08, 2026
Source: NVD
CVE-2026-15036 MEDIUM - 4.3

A vulnerability was determined in Harness up to 2.28.2. This vulnerability affects the function getAuthorizedSpaces of the file app/api/controller/gitspace/list_all.go of the component gitspaces Endpoint. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely....

Product: Harness
Published: Jul 08, 2026
Source: NVD
CVE-2026-11903 HIGH - 8.0

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Progress MOVEit Transfer (Ad Hoc module). This issue affects MOVEit Transfer: from 2026.0.0 before 2026.0.1, from 2025.1.0 before 2025.1.4, from 2025.0.0 before 2025.0.8.

Vendor: Progress
Product: MOVEit Transfer
Published: Jul 08, 2026
Source: NVD
CVE-2026-10708 HIGH - 7.5

This vulnerability enables large‑scale data harvesting without requiring app‑specific secrets. A single request to a minimal leaderboard component may return user records containing emails, UUIDs, and custom fields. The combination of wildcard CORS behavior, long‑lived twenty‑day JWTs, and the absen...

Vendor: Adalo No-Code App Builder
Product: App Builder
Published: Jul 08, 2026
Source: NVD
CVE-2026-10706 HIGH - 7.5

In Adalo’s no-code app builder, (Versions 1 and 2) the attackers may extract full user records and correlate user behavior across multiple applications via dbId enumeration. The platform does not implement data minimization, privacy by design, or implement appropriate technical safeguards, allowing ...

Vendor: Adalo No-Code App Builder
Product: App Builder
Published: Jul 08, 2026
Source: NVD
CVE-2026-10699 HIGH - 7.5

Missing release of memory after effective lifetime vulnerability in Progress MOVEit Transfer (Custom Reports modules). This issue affects MOVEit Transfer: from 2025.0.0 before 2025.0.8, from 2025.1.0 before 2025.1.4, from 2026.0.0 before 2026.0.1.

Vendor: Progress
Product: MOVEit Transfer
Published: Jul 08, 2026
Source: NVD
CVE-2026-10698 HIGH - 7.2

Improper Neutralization of Special Elements in Data Query Logic vulnerability in Progress MOVEit Transfer (Custom Reports modules). This issue affects MOVEit Transfer: from 2025.0.0 before 2025.0.8, from 2025.1.0 before 2025.1.4, from 2026.0.0 before 2026.0.1.

Vendor: Progress
Product: MOVEit Transfer
Published: Jul 08, 2026
Source: NVD

MISP’s importModule() path used getEnabledModule() to resolve a single import module by name, but this lookup did not enforce the per-organisation module restriction checked by getEnabledModules(). As a result, an authenticated user from an organisation that was not allowed to use a module restricte...

Vendor: misp
Product: misp
Published: Jul 08, 2026
Source: NVD

An authorization bypass in MISP’s EventsController::importModule() allowed authenticated users or read-only API keys with event view access to persist data to events they were not allowed to modify. When an import module returned results in the misp_standard format, the write path did not verify eve...

Vendor: misp
Product: misp
Published: Jul 08, 2026
Source: NVD
CVE-2026-60092 MEDIUM - 6.1

AVideo (Meet plugin) through commit e8d6119f3cb1b849149906efeb0a41fc024f59f8 contains a stored cross-site scripting vulnerability in the Meet plugin's getMeetInfo.json.php endpoint. When a participant joins a public meeting, the raw HTTP User-Agent header is stored (meet_join_log.user_agent) wi...

Vendor: AVideo
Product: AVideo
Published: Jul 08, 2026
Source: NVD
CVE-2026-59257 HIGH - 8.8

n8n before 1.123.61, 2.x before 2.27.4, and 2.28.x before 2.28.1 contains a SQL injection vulnerability in the legacy MySQL v1 node's executeQuery operation. The operation substitutes evaluated {{ ... }} expression values directly into the raw SQL string without parameterization. When a workflo...

Vendor: n8n
Product: n8n
Published: Jul 08, 2026
Source: NVD
CVE-2026-59253 MEDIUM - 5.0

n8n before 2.28.0 contains an improper authorization vulnerability allowing authenticated users to assign workflows to folders in other projects. Attackers can bypass project and folder authorization boundaries by supplying crafted request payloads during workflow creation, causing logical integrity...

Vendor: n8n
Product: n8n
Published: Jul 08, 2026
Source: NVD
CVE-2026-58657 MEDIUM - 4.8

Grav before 2.0.0 (affected through 2.0.0-rc.9 and the 2.0 branch) contains a stored CSS injection vulnerability in the Markdown image resize() media action. Prior media hardening rejects direct ?style= payloads and unsafe attribute() fallbacks, but the resize() action in Excerpts::processMediaActio...

Vendor: Grav
Product: Grav
Published: Jul 08, 2026
Source: NVD
CVE-2026-58656 HIGH - 7.5

Grav API plugin before v1.0.0-rc.16 accepts JWT tokens via the ?token= URL query parameter and responds with Access-Control-Allow-Origin: *, allowing unauthenticated attackers to make fully authenticated cross-origin API requests from any malicious website. Attackers who obtain a leaked JWT token fr...

Vendor: getgrav
Product: grav
Published: Jul 08, 2026
Source: NVD
CVE-2026-58654 MEDIUM - 4.3

The Grav API plugin (getgrav/grav-plugin-api) 1.0.0 contains an unrestricted file upload vulnerability in the avatar upload endpoint (/api/v1/users/user/avatar). The endpoint validates only the client-declared MIME type (getClientMediaType) beginning with 'image/' and does not inspect the ...

Vendor: Grav
Product: Grav
Published: Jul 08, 2026
Source: NVD
CVE-2026-58480 CRITICAL - 9.8

Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthenticated arbitrary file upload vulnerability that allows attackers to upload executable files by bypassing extension validation in the save_attachments function exposed through the Advanced Reviews feature. Attackers can exp...

Vendor: Creative Themes
Product: Blocksy Companion
Published: Jul 08, 2026
Source: NVD
CVE-2026-56778 MEDIUM - 6.4

n8n before 2.25.7 and 2.26.x before 2.26.2 contains an authorization bypass in the Public API execution retry endpoint, which authorizes access using the workflow:read scope instead of workflow:execute. An authenticated user with read-only access to a shared workflow can use the Public API to retry ...

Vendor: n8n
Product: n8n
Published: Jul 08, 2026
Source: NVD
CVE-2026-56776 HIGH - 7.4

n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization bypass in the POST /workflows/{workflowId}/test-runs/new endpoint, which authorizes access using the workflow:read scope instead of workflow:execute. An authenticated user with read-only access to a workflow can trigger a real evaluat...

Vendor: n8n
Product: n8n
Published: Jul 08, 2026
Source: NVD
CVE-2026-56775 MEDIUM - 5.4

n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization vulnerability in three mutating evaluation test-run endpoints that authorize state-changing actions using the workflow:read scope instead of the action-appropriate workflow:execute scope. On instances using Advanced Permissions (Enter...

Vendor: n8n
Product: n8n
Published: Jul 08, 2026
Source: NVD