Total CVEs

141,292

Critical Severity

3,799

High Severity

13,738

Last 7 Days

1,859
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 8,641 - 8,660 of 13,828 CVEs
CVE-2026-23484 MEDIUM - 6.5

Blinko is an AI-powered card note-taking project. In versions from 1.8.3 and prior, the fileName parameter is not filtered, allowing path traversal to write files anywhere on the file system. Moreover, this interface only requires authProcedure (normal user), not superAdminAuthMiddleware. At time of...

Vendor: blinkospace
Product: blinko
Published: Mar 23, 2026
Source: NVD
CVE-2026-23483 MEDIUM - 5.3

Blinko is an AI-powered card note-taking project. In versions from 1.8.3 and prior, the plugin file server endpoint uses join() to concatenate paths but does not verify if the final path is within the plugins directory, leading to path traversal. At time of publication, there are no publicly availab...

Vendor: blinkospace
Product: blinko
Published: Mar 23, 2026
Source: NVD
CVE-2026-23481 MEDIUM - 6.5

Blinko is an AI-powered card note-taking project. Prior to version 1.8.4, there is an authenticated arbitrary file write vulnerability in saveAdditionalDevFile. This issue has been patched in version 1.8.4.

Vendor: blinkospace
Product: blinko
Published: Mar 23, 2026
Source: NVD
CVE-2026-33176 MEDIUM - 7.5

Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Support number helpers accept strings containing scientific notation (e.g. `1e10000`), which `BigDecimal` expands into extremely large...

Vendor: rubygems
Product: activesupport
Published: Mar 23, 2026
Source: GitHub
CVE-2026-33174 MEDIUM - 7.5

Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, when serving files through Active Storage's proxy delivery mode, the proxy controller loads the entire requested byte range into memory before sending it. A reques...

Vendor: rubygems
Product: activestorage
Published: Mar 23, 2026
Source: GitHub
CVE-2026-33173 MEDIUM - 5.3

Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, `DirectUploadsController` accepts arbitrary metadata from the client and persists it on the blob. Because internal flags like `identified` and `analyzed` are stored in ...

Vendor: rubygems
Product: activestorage
Published: Mar 23, 2026
Source: GitHub
CVE-2026-33170 MEDIUM - 6.1

Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, `SafeBuffer#%` does not propagate the `@html_unsafe` flag to the newly created buffer. If a `SafeBuffer` is mutated in place (e.g. via `gsub!...

Vendor: rubygems
Product: activesupport
Published: Mar 23, 2026
Source: GitHub
CVE-2026-33169 MEDIUM - 5.3

Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework. `NumberToDelimitedConverter` uses a lookahead-based regular expression with `gsub!` to insert thousands delimiters. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, the interaction between t...

Vendor: rubygems
Product: activesupport
Published: Mar 23, 2026
Source: GitHub
CVE-2026-33548 MEDIUM - 6.1

Mantis Bug Tracker (MantisBT) is an open source issue tracker. In version 2.28.0, improper escaping of tag names retrieved from History in Timeline (my_view_page.php) allows an attacker to inject HTML and, if CSP settings permit, achieve execution of arbitrary JavaScript, when displaying a tag that ...

Vendor: mantisbt
Product: mantisbt
Published: Mar 23, 2026
Source: NVD
CVE-2026-33517 MEDIUM - 6.1

Mantis Bug Tracker (MantisBT) is an open source issue tracker. In version 2.28.0, when deleting a Tag (tag_delete.php), improper escaping of its name when displaying the confirmation message allows an attacker to inject HTML and, if CSP settings permit, achieve execution of arbitrary JavaScript. Ver...

Vendor: mantisbt
Product: mantisbt
Published: Mar 23, 2026
Source: NVD
CVE-2026-32852 MEDIUM - 6.1

MailEnable versions prior toย 10.55 contain a reflected cross-site scripting vulnerability in the webmail interface that allows remote attackers to execute arbitrary JavaScript in a victim's browser by crafting a malicious URL. Attackers can inject malicious code through the StartDate parameter ...

Vendor: MailEnable
Product: MailEnable
Published: Mar 23, 2026
Source: NVD
CVE-2026-32851 MEDIUM - 6.1

MailEnable versions prior toย 10.55 contain a reflected cross-site scripting vulnerability in the webmail interface that allows remote attackers to execute arbitrary JavaScript in a victim's browser by crafting a malicious URL. Attackers can inject malicious code through the Attendees parameter ...

Vendor: MailEnable
Product: MailEnable
Published: Mar 23, 2026
Source: NVD
CVE-2026-32850 MEDIUM - 6.1

MailEnable versions prior toย 10.55 contain a reflected cross-site scripting vulnerability in the webmail interface that allows remote attackers to execute arbitrary JavaScript in a victim's browser by crafting a malicious URL. Attackers can inject malicious code through the SelectedIndex parame...

Vendor: MailEnable
Product: MailEnable
Published: Mar 23, 2026
Source: NVD
CVE-2026-30886 MEDIUM - 6.5

New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.11.4-alpha.2, an Insecure Direct Object Reference (IDOR) vulnerability in the video proxy endpoint (`GET /v1/videos/:task_id/content`) allows any authenticated user to access v...

Vendor: QuantumNous
Product: new-api
Published: Mar 23, 2026
Source: NVD
CVE-2026-27131 MEDIUM - 5.5

The Sprig Plugin for Craft CMS is a reactive Twig component framework for Craft CMS. Starting in version 2.0.0 and prior to versions 2.15.2 and 3.15.2, admin users, and users with explicit permission to access the Sprig Playground, could potentially expose the security key, credentials, and other se...

Vendor: putyourlightson
Product: craft-sprig
Published: Mar 23, 2026
Source: NVD
CVE-2025-52204 MEDIUM - 6.1

A Cross-Site Scripting (XSS) vulnerability exists in Znuny::ITSM 6.5.x in the customer.pl endpoint via the OTRSCustomerInterface parameter

Published: Mar 23, 2026
Source: NVD
CVE-2024-46879 MEDIUM - 5.4

A Reflected Cross-Site Scripting (XSS) vulnerability exists in the POST request data zipPath of tiki-admin_system.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or unauthor...

Published: Mar 23, 2026
Source: NVD
CVE-2024-46878 MEDIUM - 5.4

A Cross-Site Scripting (XSS) vulnerability exists in the page parameter of tiki-editpage.php in Tiki version 26.3 and earlier. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or unauthorized actions.

Published: Mar 23, 2026
Source: NVD
CVE-2026-32879 MEDIUM - 4.9

New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Starting in version 0.10.0, a logic flaw in the universal secure verification flow allows an authenticated user with a registered passkey to satisfy secure verification without completing a WebAu...

Vendor: go
Product: github.com/QuantumNous/new-api
Published: Mar 23, 2026
Source: GitHub
CVE-2026-33690 MEDIUM - 5.3

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `getRealIpAddr()` function in `objects/functions.php` trusts user-controlled HTTP headers to determine the client's IP address. An attacker can spoof their IP address by sending forged headers, bypassing any...

Vendor: WWBN
Product: AVideo
Published: Mar 23, 2026
Source: NVD