Total CVEs

145,909

Critical Severity

4,292

High Severity

15,777

Last 7 Days

2,189
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 6,041 - 6,060 of 42,314 CVEs
CVE-2026-12992 HIGH - 7.4

A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling the javax.wsdl.importDocuments feature. When the VALIDITY rule is set to FULL, an attacker with Developer-role access can upload a WSDL document containing attacker-controlled import locations...

Vendor: Red Hat
Product: Red Hat build of Apicurio Registry 3
Published: Jun 25, 2026
Source: NVD
CVE-2026-12975 HIGH - 8.5

A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory without enabling secure processing features or disabling external entity resolution. An attacker with artifact-write permission (or unauthenticated when the registry runs with default configu...

Vendor: Red Hat
Product: Red Hat build of Apicurio Registry 3
Published: Jun 25, 2026
Source: NVD
CVE-2026-11800 HIGH - 8.1

A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow allows an attacker with valid client credentials to bypass signature verification. By forging an assertion, the attacker can create unauthorized access tokens. This enables the attacker to im...

Vendor: Red Hat
Product: Red Hat build of Keycloak 26.6, Red Hat build of Keycloak 26.6.4, Red Hat Build of Keycloak, Red Hat Data Grid 8, Red Hat JBoss Enterprise Application Platform Expansion Pack, Red Hat Single Sign-On 7
Published: Jun 25, 2026
Source: NVD
CVE-2026-11703 HIGH - 7.5

Missing SNI/ALPN binding on stateful (session-ID) resumption, which previously skipped the binding check performed for ticket-based resumption. A cached session could be resumed under a different SNI/ALPN than originally negotiated and, where client-authentication policy differs across virtual hosts...

Vendor: wolfSSL
Product: wolfSSL
Published: Jun 25, 2026
Source: NVD
CVE-2026-10098 MEDIUM - 5.3

OCSP CertID serial-number length-confusion in wolfSSL_OCSP_resp_find_status allows a same-issuer SingleResponse whose serial is a prefix of the target serial to be reported as the revocation status of a different certificate. The lookup compared serial-number bytes without first requiring the two se...

Vendor: wolfSSL
Product: wolfSSL
Published: Jun 25, 2026
Source: NVD
CVE-2025-71340 HIGH - 8.1

picklescan through 0.0.26 fails to detect malicious pickle files that invoke idlelib.pyshell.ModifiedInterpreter.runcode in __reduce__ methods. Attackers can embed undetected code in pickle files that executes arbitrary commands when the file is loaded via pickle.load(), enabling supply chain attack...

Vendor: picklescan
Product: picklescan
Published: Jun 25, 2026
Source: NVD
CVE-2025-71338 CRITICAL - 10.0

Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that allows unauthenticated attackers to write arbitrary files to the filesystem. Attackers can exploit unsanitized fileName parameters with ../ sequences to overwrite critical files like package.js...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2025-71336 CRITICAL - 9.8

Flowise before 3.0.6 (affected versions 2.2.7-patch.1 and earlier) contains an unsandboxed remote code execution vulnerability in the Custom MCP feature, which is designed to execute OS commands such as launching local MCP servers. Because Flowise's authentication and authorization model is min...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2025-71335 HIGH - 8.1

Flowise before 3.0.10 (affected versions 3.0.7 and earlier) fails to invalidate existing sessions and session tokens after a user changes their password. An attacker who already holds an active session, for example via a stolen session token or a device left logged in, remains authenticated as the l...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2025-71334 CRITICAL - 9.8

Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due to missing validation that the chatflowId and chatId parameters are UUIDs or numbers in file handling operations. By supplying a path-traversal value (e.g., '../../../../../tmp') ...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2025-71333 CRITICAL - 9.8

Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachments endpoint when storageType is set to local. Attackers can exploit path traversal in the chatId and chatflowId parameters to upload malicious files to arbitrary directories, potentially ena...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2025-71328 HIGH - 8.3

Flowise before 3.0.10 contains an unverified password change vulnerability. An authenticated user can change their account password through the account settings (Security) section without supplying the current password or any additional verification, as the application does not enforce a current-pas...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2025-71327 CRITICAL - 9.1

Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint that allows unauthenticated attackers to create user accounts. Remote attackers can exploit this endpoint to register arbitrary accounts and authenticate to the system, gaining full API acces...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2025-71324 HIGH - 7.5

Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-upload-file and /api/v1/openai-assistants-file/download endpoints. The chatId value is not validated and is passed to streamStorageFile(), where a fallback file-lookup path constructed witho...

Vendor: Flowise
Product: Flowise
Published: Jun 25, 2026
Source: NVD
CVE-2021-47987 HIGH - 7.5

Parse Server before 4.10.0 was affected by a supply chain incident in which incorrect version tags were pushed to the official repository pointing to an unreviewed personal fork of a contributor with write access. No releases were published with these tags; a project was exposed only if it defined a...

Vendor: parse-community
Product: parse-server
Published: Jun 25, 2026
Source: NVD
CVE-2021-47986 HIGH - 7.5

Parse Server before 4.10.0 contains a supply chain vulnerability where incorrect version tags were pushed to the repository linking to unreviewed code in a personal fork. Attackers could exploit this by specifying affected version tags in dependency declarations to execute unreviewed and potentially...

Vendor: parse-community
Product: parse-server
Published: Jun 25, 2026
Source: NVD
CVE-2020-37256 MEDIUM - 5.4

Grav before 1.6.30 contains a cross-site scripting vulnerability in the Admin plugin page editor default security configuration. Privileged users with page editing capabilities can inject malicious scripts to execute arbitrary code and install malicious plugins for system access.

Vendor: Grav
Product: Grav
Published: Jun 25, 2026
Source: NVD
CVE-2026-55166 CRITICAL - 9.9

Lemur: ACME SSRF + creator-equality IDOR lead to AWS IAM/PKI compromise

Vendor: pip
Product: lemur
Published: Jun 25, 2026
Source: GitHub
CVE-2026-55165 MEDIUM - 4.8

Lemur: JWT verifier honors attacker-supplied alg, enabling ATO

Vendor: pip
Product: lemur
Published: Jun 25, 2026
Source: GitHub
CVE-2026-55164 MEDIUM - 4.9

Lemur user-update path stores plaintext passwords

Vendor: pip
Product: lemur
Published: Jun 25, 2026
Source: GitHub