Total CVEs

141,292

Critical Severity

3,799

High Severity

13,738

Last 7 Days

1,859
Quick preset (or use dates below)
Clear Filters
Showing 8,861 - 8,880 of 14,211 CVEs
CVE-2026-32054 MEDIUM - 6.5

OpenClaw versions prior to 2026.2.25 contain a symlink traversal vulnerability in browser trace and download output path handling that allows local attackers to escape the managed temp root directory. An attacker with local access can create symlinks to route file writes outside the intended temp di...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 21, 2026
Source: NVD
CVE-2026-32053 MEDIUM - 6.5

OpenClaw versions prior to 2026.2.23 contain a vulnerability in Twilio webhook event deduplication where normalized event IDs are randomized per parse, allowing replay events to bypass manager dedupe checks. Attackers can replay Twilio webhook events to trigger duplicate or stale call-state transiti...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 21, 2026
Source: NVD
CVE-2026-32052 MEDIUM - 6.4

OpenClaw versions prior to 2026.2.24 contain a command injection vulnerability in the system.run shell-wrapper that allows attackers to execute hidden commands by injecting positional argv carriers after inline shell payloads. Attackers can craft misleading approval text while executing arbitrary co...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 21, 2026
Source: NVD
CVE-2026-32046 MEDIUM - 5.3

OpenClaw versions prior to 2026.2.21 contain an improper sandbox configuration vulnerability that allows attackers to execute arbitrary code by exploiting renderer-side vulnerabilities without requiring a sandbox escape. Attackers can leverage the disabled OS-level sandbox protections in the Chromiu...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 21, 2026
Source: NVD
CVE-2026-32045 MEDIUM - 5.9

OpenClaw versions prior to 2026.2.21 incorrectly apply tokenless Tailscale header authentication to HTTP gateway routes, allowing bypass of token and password requirements. Attackers on trusted networks can exploit this misconfiguration to access HTTP gateway routes without proper authentication cre...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 21, 2026
Source: NVD
CVE-2026-32044 MEDIUM - 5.5

OpenClaw versions prior to 2026.3.2 contain an archive extraction vulnerability in the tar.bz2 installer path that bypasses safety checks enforced on other archive formats. Attackers can craft malicious tar.bz2 skill archives to bypass special-entry blocking and extracted-size guardrails, causing lo...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 21, 2026
Source: NVD
CVE-2026-32043 MEDIUM - 6.5

OpenClaw versions prior to 2026.2.25 contain a time-of-check-time-of-use vulnerability in approval-bound system.run execution where the cwd parameter is validated at approval time but resolved at execution time. Attackers can retarget a symlinked cwd between approval and execution to bypass command ...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 21, 2026
Source: NVD
CVE-2026-4083 MEDIUM - 6.4

The Scoreboard for HTML5 Games Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'scoreboard' shortcode in all versions up to, and including, 1.2. The shortcode function sfhg_shortcode() allows arbitrary HTML attributes to be added to the rendered <iframe>...

Published: Mar 21, 2026
Source: NVD
CVE-2026-3577 MEDIUM - 4.4

The Keep Backup Daily plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the backup title alias (`val` parameter) in the `update_kbd_bkup_alias` AJAX action in all versions up to, and including, 2.1.2. This is due to insufficient input sanitization and output escaping. While `sani...

Published: Mar 21, 2026
Source: NVD
CVE-2026-3572 MEDIUM - 6.1

The iTracker360 plugin for WordPress is vulnerable to Cross-Site Request Forgery leading to Stored Cross-Site Scripting in all versions up to and including 2.2.0. This is due to missing nonce verification on the settings form submission and insufficient input sanitization combined with missing outpu...

Published: Mar 21, 2026
Source: NVD
CVE-2026-3567 MEDIUM - 5.3

The RepairBuddy โ€“ Repair Shop CRM & Booking Plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 4.1132. The plugin exposes two AJAX handlers that, when combined, allow any authenticated user to modify admin-level plugin settings. First, the wc_rb_get_f...

Published: Mar 21, 2026
Source: NVD
CVE-2026-3516 MEDIUM - 6.4

The Contact List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_cl_map_iframe' parameter in all versions up to, and including, 3.0.18. This is due to insufficient input sanitization and output escaping when handling the Google Maps iframe custom field. The save...

Published: Mar 21, 2026
Source: NVD
CVE-2026-3474 MEDIUM - 4.9

The EmailKit โ€“ Email Customizer for WooCommerce & WP plugin for WordPress is vulnerable to arbitrary file read via path traversal in all versions up to, and including, 1.6.3. This is due to the action() function in the TemplateData class passing user-supplied input from the 'emailkit-editor...

Published: Mar 21, 2026
Source: NVD
CVE-2026-3350 MEDIUM - 6.4

The Image Alt Text Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in all versions up to, and including, 1.8.2. This is due to insufficient input sanitization and output escaping when dynamically generating image alt and title attributes using a DOM parse...

Published: Mar 21, 2026
Source: NVD
CVE-2026-33428 MEDIUM - 6.5

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, a non-staff user with elevated group membership could access deleted posts belonging to any user due to an overly broad authorization check on the deleted posts index endpoint. Versions 2026...

Vendor: discourse
Product: discourse
Published: Mar 21, 2026
Source: NVD
CVE-2026-33425 MEDIUM - 5.3

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, unauthenticated users can determine whether a specific user is a member of a private group by observing changes in directory results when using the `exclude_groups` parameter. Versions 2026....

Vendor: discourse
Product: discourse
Published: Mar 21, 2026
Source: NVD
CVE-2026-33424 MEDIUM - 5.9

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, an attacker can grant access to a private message topic through invites even after they lose access to that PM. Versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2 contain a patch. No known w...

Vendor: discourse
Product: discourse
Published: Mar 21, 2026
Source: NVD
CVE-2026-2430 MEDIUM - 6.4

The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lazy-loading image processing in all versions up to, and including, 3.1.14. This is due to the use of an overly permissive regular expression in the `add_lazyload` function that replaces all occurrences of `\ss...

Published: Mar 21, 2026
Source: NVD
CVE-2026-2352 MEDIUM - 6.4

The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ao_post_preload' meta value in all versions up to, and including, 3.1.14. This is due to insufficient input sanitization in the `ao_metabox_save()` function and missing output escaping when the value...

Published: Mar 21, 2026
Source: NVD
CVE-2026-3864 MEDIUM - 6.5

A vulnerability was discovered in the Kubernetes CSI Driver for NFS where the subDir parameter in volume identifiers was insufficiently validated. Attackers with the ability to create PersistentVolumes referencing the NFS CSI driver could craft volume identifiers containing path traversal sequences ...

Vendor: go
Product: github.com/kubernetes-csi/csi-driver-nfs
Published: Mar 20, 2026
Source: NVD