Total CVEs

141,249

Critical Severity

3,795

High Severity

13,708

Last 7 Days

2,254
Quick preset (or use dates below)
Clear Filters
Showing 8,241 - 8,260 of 14,200 CVEs
CVE-2026-3121 MEDIUM - 6.5

A flaw was found in Keycloak. An administrator with `manage-clients` permission can exploit a misconfiguration where this permission is equivalent to `manage-permissions`. This allows the administrator to escalate privileges and gain control over roles, users, or other administrative functions withi...

Vendor: redhat
Product: build_of_keycloak
Published: Mar 26, 2026
Source: NVD
CVE-2026-33153 MEDIUM - 6.5

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versions prior to 2.6.0, the Recipe API endpoint exposes a hidden `?debug=true` query parameter that returns the complete raw SQL query being executed, including all table names, column names, JOI...

Vendor: TandoorRecipes
Product: recipes
Published: Mar 26, 2026
Source: NVD
CVE-2026-33148 MEDIUM - 6.5

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versions prior to 2.6.0, the FDC (USDA FoodData Central) search endpoint constructs an upstream API URL by directly interpolating the user-supplied `query` parameter into the URL string without UR...

Vendor: TandoorRecipes
Product: recipes
Published: Mar 26, 2026
Source: NVD
CVE-2026-29969 MEDIUM - 6.1

A cross-site scripting (XSS) vulnerability in the wff_cols_pref.css.aspx endpoint of staffwiki v7.0.1.19219 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted HTTP request.

Published: Mar 26, 2026
Source: NVD
CVE-2026-29055 MEDIUM - 5.3

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versions prior to 2.6.0, the image processing pipeline in Tandoor Recipes explicitly skips EXIF metadata stripping, image rescaling, and size validation for WebP and GIF image formats. A developer...

Vendor: TandoorRecipes
Product: recipes
Published: Mar 26, 2026
Source: NVD
CVE-2026-28503 MEDIUM - 6.5

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versions prior to 2.6.0, the `SyncViewSet.query_synced_folder()` action in `cookbook/views/api.py` (line 903) fetches a Sync object using `get_object_or_404(Sync, pk=pk)` without including `space=...

Vendor: TandoorRecipes
Product: recipes
Published: Mar 26, 2026
Source: NVD
CVE-2026-33536 MEDIUM - 5.1

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds write...

Vendor: nuget
Product: Magick.NET-Q16-AnyCPU
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33887 MEDIUM - 5.4

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.16 and 6.7.2, authenticated Control Panel users could view entry revisions for any collection with revisions enabled, regardless of whether they had the required collection permissions. This bypasses the au...

Vendor: composer
Product: statamic/cms
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33886 MEDIUM - 6.5

Statamic is a Laravel and Git powered content management system (CMS). Starting in version 5.7.12 and prior to versions 5.73.16 and 6.7.2, a control panel user with access to Antlers-enabled fields could access sensitive application configuration values by inserting config variables into their conte...

Vendor: composer
Product: statamic/cms
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33885 MEDIUM - 6.1

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.16 and 6.7.2, the external URL detection used for redirect validation on unauthenticated endpoints could be bypassed, allowing users to be redirected to external URLs after actions like form submissions and...

Vendor: composer
Product: statamic/cms
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33884 MEDIUM - 4.3

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.16 and 6.7.2, an authenticated Control Panel user with access to live preview could use a live preview token to access restricted content that the token was not intended for. This has been fixed in 5.73.16 ...

Vendor: composer
Product: statamic/cms
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33883 MEDIUM - 6.1

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.16 and 6.7.2, the `user:reset_password_form` tag could render user-input directly into HTML without escaping, allowing an attacker to craft a URL that executes arbitrary JavaScript in the victim's brow...

Vendor: composer
Product: statamic/cms
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33882 MEDIUM - 6.5

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.16 and 6.7.2, the markdown preview endpoint could be manipulated to return augmented data from arbitrary fieldtypes. With the users fieldtype specifically, an authenticated control panel user could retrieve...

Vendor: composer
Product: statamic/cms
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33750 MEDIUM - 6.5

The brace-expansion library generates arbitrary strings containing a common prefix and suffix. Prior to versions 5.0.5, 3.0.2, 2.0.3, and 1.1.13, a brace pattern with a zero step value (e.g., `{1..2..0}`) causes the sequence generation loop to run indefinitely, making the process hang for seconds an...

Vendor: npm
Product: brace-expansion
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33732 MEDIUM - 4.8

srvx is a universal server based on web standards. Prior to version 0.11.13, a pathname parsing discrepancy in srvx's `FastURL` allows middleware bypass on the Node.js adapter when a raw HTTP request uses an absolute URI with a non-standard scheme (e.g. `file://`). Starting in version 0.11.13, ...

Vendor: h3js
Product: srvx
Published: Mar 26, 2026
Source: NVD
CVE-2026-33477 MEDIUM - 4.3

FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. In versiosn 2.3.7 through 3.10.0, the file snippet endpoint `/api/file/snippet.php` allows an authenticated user with only `read_own` access to a folder to retrieve snippet content from files uplo...

Vendor: error311
Product: FileRise
Published: Mar 26, 2026
Source: NVD
CVE-2026-33766 MEDIUM - 6.5

WWBN AVideo is an open source video platform. In versions up to and including 26.0, `isSSRFSafeURL()` validates URLs against private/reserved IP ranges before fetching, but `url_get_contents()` follows HTTP redirects without re-validating the redirect target. An attacker can bypass SSRF protection b...

Vendor: composer
Product: wwbn/avideo
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33764 MEDIUM - 4.3

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the AI plugin's `save.json.php` endpoint loads AI response objects using an attacker-controlled `$_REQUEST['id']` parameter without validating that the AI response belongs to the specified video. An au...

Vendor: composer
Product: wwbn/avideo
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33763 MEDIUM - 5.3

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `get_api_video_password_is_correct` API endpoint allows any unauthenticated user to verify whether a given password is correct for any password-protected video. The endpoint returns a boolean `passwordIsCorrect` ...

Vendor: composer
Product: wwbn/avideo
Published: Mar 26, 2026
Source: GitHub
CVE-2026-33761 MEDIUM - 5.3

WWBN AVideo is an open source video platform. In versions up to and including 26.0, three `list.json.php` endpoints in the Scheduler plugin lack any authentication check, while every other endpoint in the same plugin directories (`add.json.php`, `delete.json.php`, `index.php`) requires `User::isAdmi...

Vendor: composer
Product: wwbn/avideo
Published: Mar 26, 2026
Source: GitHub