Total CVEs

141,249

Critical Severity

3,795

High Severity

13,708

Last 7 Days

2,297
Quick preset (or use dates below)
Clear Filters
Showing 7,941 - 7,960 of 13,708 CVEs
CVE-2025-71282 HIGH - 7.5

XenForo before 2.3.7 discloses filesystem paths through exception messages triggered by open_basedir restrictions. This allows an attacker to obtain information about the server's directory structure.

Vendor: XenForo
Product: XenForo
Published: Apr 01, 2026
Source: NVD
CVE-2025-71281 HIGH - 8.8

XenForo before 2.3.7 does not properly restrict methods callable from within templates. A loose prefix match was used instead of a stricter first-word match for methods accessible through callbacks and variable method calls in templates, potentially allowing unauthorized method invocations.

Vendor: XenForo
Product: XenForo
Published: Apr 01, 2026
Source: NVD
CVE-2025-71278 HIGH - 8.8

XenForo before 2.3.5 allows OAuth2 client applications to request unauthorized scopes. This affects any customer using OAuth2 clients on any version of XenForo 2.3 prior to 2.3.5, potentially allowing client applications to gain access beyond their intended authorization level.

Vendor: XenForo
Product: XenForo
Published: Apr 01, 2026
Source: NVD
CVE-2025-13855 HIGH - 7.6

IBM Storage Protect Server 8.2.0 IBM Storage Protect Plus Server is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database.

Vendor: IBM
Product: Storage Protect Server
Published: Apr 01, 2026
Source: NVD
CVE-2026-34604 HIGH - 7.1

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/graphql uses string-based path containment checks in FilesystemBridge. That blocks plain ../ traversal, but it does not resolve symlink or junction targets. If a symlink/junction already exists under the allowed content r...

Vendor: npm
Product: @tinacms/graphql
Published: Apr 01, 2026
Source: GitHub
CVE-2026-34603 HIGH - 7.1

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/cli recently added lexical path-traversal checks to the dev media routes, but the implementation still validates only the path string and does not resolve symlink or junction targets. If a link already exists under the me...

Vendor: npm
Product: @tinacms/graphql
Published: Apr 01, 2026
Source: GitHub
CVE-2026-34601 HIGH - 7.5

xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In xmldom versions 0.6.0 and prior and @xmldom/xmldom prior to versions 0.8.12 and 0.9.9, xmldom/xmldom allows attacker-controlled strings containing the CDATA terminator ]]> to be insert...

Vendor: npm
Product: xmldom
Published: Apr 01, 2026
Source: GitHub
CVE-2026-5238 HIGH - 7.3

A weakness has been identified in itsourcecode Payroll Management System 1.0. Affected by this issue is some unknown functionality of the file /view_employee.php of the component Parameter Handler. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed fro...

Published: Apr 01, 2026
Source: NVD

Ash Framework is a declarative, extensible framework for building Elixir applications. Prior to version 3.22.0, Ash.Type.Module.cast_input/2 unconditionally creates a new Erlang atom via Module.concat([value]) for any user-supplied binary string that starts with "Elixir.", before verifying...

Vendor: erlang
Product: ash
Published: Apr 01, 2026
Source: GitHub

YesWiki is a wiki system written in PHP. Prior to version 4.6.0, a stored and blind XSS vulnerability exists in the form title field. A malicious attacker can inject JavaScript without any authentication via a form title that is saved in the backend database. When any user visits that injected page,...

Vendor: composer
Product: yeswiki/yeswiki
Published: Apr 01, 2026
Source: GitHub
CVE-2026-34528 HIGH - 8.1

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to version 2.62.2, the signupHandler in File Browser applies default user permissions via d.settings.Defaults.Apply(user), then strips only Admin. The Execut...

Vendor: go
Product: github.com/filebrowser/filebrowser/v2
Published: Mar 31, 2026
Source: GitHub
CVE-2026-34529 HIGH - 7.6

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to version 2.62.2, the EPUB preview function in File Browser is vulnerable to Stored Cross-Site Scripting (XSS). JavaScript embedded in a crafted EPUB file e...

Vendor: go
Product: github.com/filebrowser/filebrowser/v2
Published: Mar 31, 2026
Source: GitHub
CVE-2026-5237 HIGH - 7.3

A security flaw has been discovered in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /manage_user.php of the component Parameter Handler. Performing a manipulation of the argument ID results in sql injection. The attack is possible...

Published: Mar 31, 2026
Source: NVD
CVE-2026-27489 HIGH - 7.5

Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, a path traversal vulnerability via symlink allows to read arbitrary files outside model or user-provided directory. This issue has been patched in version 1.21.0.

Vendor: pip
Product: onnx
Published: Mar 31, 2026
Source: GitHub

FastMCP is the standard framework for building MCP applications. Prior to version 3.2.0, while testing the GitHubProvider OAuth integration, which allows authentication to a FastMCP MCP server via a FastMCP OAuthProxy using GitHub OAuth, it was discovered that the FastMCP OAuthProxy does not properl...

Vendor: pip
Product: fastmcp
Published: Mar 31, 2026
Source: GitHub
CVE-2026-25726 HIGH - 8.1

Cloudreve is a self-hosted file management and sharing system. Prior to version 4.13.0, the application uses the weak pseudo-random number generator math/rand seeded with time.Now().UnixNano() to generate critical security secrets, including the secret_key, and hash_id_salt. These secrets are genera...

Vendor: go
Product: github.com/cloudreve/Cloudreve/v4
Published: Mar 31, 2026
Source: GitHub
CVE-2026-5214 HIGH - 8.8

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Impacted is the function cgi_addgroup_get_gro...

Vendor: dlink
Product: dnr-202l_firmware
Published: Mar 31, 2026
Source: NVD
CVE-2026-34605 HIGH - 6.1

SiYuan is a personal knowledge management system. From version 3.6.0 to before version 3.6.2, the SanitizeSVG function introduced in version 3.6.0 to fix XSS in the unauthenticated /api/icon/getDynamicIcon endpoint can be bypassed by using namespace-prefixed element names such as <x:script xmlns:...

Vendor: siyuan-note
Product: siyuan
Published: Mar 31, 2026
Source: NVD
CVE-2026-34585 HIGH - 8.6

SiYuan is a personal knowledge management system. Prior to version 3.6.2, a vulnerability allows crafted block attribute values to bypass server-side attribute escaping when an HTML entity is mixed with raw special characters. An attacker can embed a malicious IAL value inside a .sy document, packag...

Vendor: siyuan-note
Product: siyuan
Published: Mar 31, 2026
Source: NVD
CVE-2026-34453 HIGH - 7.5

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the publish service exposes bookmarked blocks from password-protected documents to unauthenticated visitors. In publish/read-only mode, /api/bookmark/getBookmark filters bookmark results by calling FilterBlocksByPublishAccess(...

Vendor: siyuan-note
Product: siyuan
Published: Mar 31, 2026
Source: NVD