Total CVEs

141,292

Critical Severity

3,799

High Severity

13,738

Last 7 Days

1,830
Quick preset (or use dates below)
Clear Filters
Showing 9,081 - 9,100 of 14,211 CVEs
CVE-2026-28460 MEDIUM - 5.9

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in system.run that allows attackers to execute non-allowlisted commands by splitting command substitution using shell line-continuation characters. Attackers can bypass security analysis by injecting $\\ followed by a new...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 19, 2026
Source: NVD
CVE-2026-28449 MEDIUM - 4.8

OpenClaw versions prior to 2026.2.25 lack durable replay state for Nextcloud Talk webhook events, allowing valid signed webhook requests to be replayed without suppression. Attackers can capture and replay previously valid signed webhook requests to trigger duplicate inbound message processing and c...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 19, 2026
Source: NVD
CVE-2026-27670 MEDIUM - 5.3

OpenClaw versions prior to 2026.3.2 contain a race condition vulnerability in ZIP extraction that allows local attackers to write files outside the intended destination directory. Attackers can exploit a time-of-check-time-of-use race between path validation and file write operations by rebinding pa...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 19, 2026
Source: NVD
CVE-2026-22176 MEDIUM - 6.1

OpenClaw versions prior to 2026.2.19 contain a command injection vulnerability in Windows Scheduled Task script generation where environment variables are written to gateway.cmd using unquoted set KEY=VALUE assignments, allowing shell metacharacters to break out of assignment context. Attackers can ...

Vendor: OpenClaw
Product: OpenClaw
Published: Mar 19, 2026
Source: NVD
CVE-2026-32743 MEDIUM - 6.5

PX4 is an open-source autopilot stack for drones and unmanned vehicles. Versions 1.17.0-rc2 and below are vulnerable to Stack-based Buffer Overflow through the MavlinkLogHandler, and are triggered via MAVLink log request. The LogEntry.filepath buffer is 60 bytes, but the sscanf function parses paths...

Vendor: PX4
Product: PX4-Autopilot
Published: Mar 19, 2026
Source: NVD
CVE-2026-32736 MEDIUM - 4.3

The Hytale Modding Wiki is a free service for Hytale mods to host their documentation & wikis. An Insecure Direct Object Reference (IDOR) vulnerability in versions of the wiki prior to 1.0.0 exposes mod authors' personal information - including full names and email addresses - to any authen...

Vendor: HytaleModding
Product: wiki
Published: Mar 18, 2026
Source: NVD
CVE-2026-25745 MEDIUM - 6.5

OpenEMR is a free and open source electronic health records and medical practice management application. In versions up to and including 8.0.0, the message/note update endpoint (e.g. PUT or POST) updates by message/note ID only and does not verify that the message belongs to the current patient (or ...

Vendor: openemr
Product: openemr
Published: Mar 18, 2026
Source: NVD
CVE-2026-33230 MEDIUM - 6.1

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. In versions 3.9.3 and prior, `nltk.app.wordnet_app` contains a reflected cross-site scripting issue in the `lookup_...` route. A craf...

Vendor: pip
Product: nltk
Published: Mar 18, 2026
Source: GitHub
CVE-2026-33194 MEDIUM - 6.8

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the `IsSensitivePath()` function in `kernel/util/path.go` uses a denylist approach that was recently expanded (GHSA-h5vh-m7fg-w5h6, commit 9914fd1) but remains incomplete. Multiple security-relevant Linux directories are not b...

Vendor: go
Product: github.com/siyuan-note/siyuan/kernel
Published: Mar 18, 2026
Source: GitHub
CVE-2026-33065 MEDIUM - 5.3

Free5GC is an open-source Linux Foundation project for 5th generation (5G) mobile core networks. In versions prior to 1.4.2, the UDM incorrectly converts a downstream 400 Bad Request (from UDR) into a 500 Internal Server Error when handling DELETE requests with an empty supi path parameter. This lea...

Vendor: go
Product: github.com/free5gc/udm
Published: Mar 18, 2026
Source: GitHub
CVE-2026-33177 MEDIUM - 4.3

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.14 and 6.7.0, low-privileged Control Panel users could create taxonomy terms by submitting requests to the field action processing endpoint with attacker-controlled field definitions. This bypasses the auth...

Vendor: composer
Product: statamic/cms
Published: Mar 18, 2026
Source: GitHub
CVE-2026-33171 MEDIUM - 4.3

Statamic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.14 and 6.7.0, authenticated Control Panel users could read arbitrary `.json`, `.yaml`, and `.csv` files from the server by manipulating the file dictionary's `filename` configuration parameter in the f...

Vendor: composer
Product: statamic/cms
Published: Mar 18, 2026
Source: GitHub
CVE-2026-30048 MEDIUM - 5.4

A stored cross-site scripting (XSS) vulnerability exists in the NotChatbot WebChat widget thru 1.4.4. User-supplied input is not properly sanitized before being stored and rendered in the chat conversation history. This allows an attacker to inject arbitrary JavaScript code which is executed when th...

Vendor: npm
Product: @developer.notchatbot/webchat
Published: Mar 18, 2026
Source: NVD
CVE-2026-26948 MEDIUM - 4.9

Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.174, 15G and 16G versions prior to 7.10.90.00, contain an Exposure of Sensitive System Information Due to Uncleared Debug Information vulnerability. A high privileged attacker with remote access could potentially exploit ...

Vendor: Dell
Product: Integrated Dell Remote Access Controller
Published: Mar 18, 2026
Source: NVD
CVE-2026-26945 MEDIUM - 5.3

Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.181, 15G and 16G versions prior to 7.20.10.50 and Dell Integrated Dell Remote Access Controller 10, 17G versions prior to 1.20.25.00, contain a Process Control vulnerability. A high privileged attacker with adjacent netw...

Vendor: Dell
Product: Integrated Dell Remote Access Controller
Published: Mar 18, 2026
Source: NVD
CVE-2026-33209 MEDIUM - 6.1

Avo is a framework to create admin panels for Ruby on Rails apps. Prior to version 3.30.3, a reflected cross-site scripting (XSS) vulnerability exists in the return_to query parameter used in the avo interface. An attacker can craft a malicious URL that injects arbitrary JavaScript, which is execute...

Vendor: rubygems
Product: avo
Published: Mar 18, 2026
Source: GitHub
CVE-2026-33132 MEDIUM - 5.3

ZITADEL is an open source identity management platform. Versions prior to 3.4.9 and 4.0.0 through 4.12.2 allowed users to bypass organization enforcement during authentication. Zitadel allows applications to enforce an organzation context during authentication using scopes (urn:zitadel:iam:org:id:{i...

Vendor: go
Product: github.com/zitadel/zitadel
Published: Mar 18, 2026
Source: GitHub
CVE-2026-30695 MEDIUM - 6.1

A Cross-Site Scripting (XSS) vulnerability exists in the web-based configuration interface of Zucchetti Axess access control devices, including XA4, X3/X3BIO, X4, X7, and XIO / i-door / i-door+. The vulnerability is caused by improper sanitization of user-supplied input in the dirBrowse parameter of...

Published: Mar 18, 2026
Source: NVD
CVE-2026-33081 MEDIUM - 5.8

PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. Versions 0.8.2 and below have a Blind SSRF vulnerability in the /download endpoint. The validateDownloadURL() function only checks the initial user-supplied URL, but the embedded Chromium browser can foll...

Vendor: go
Product: github.com/pinchtab/pinchtab
Published: Mar 18, 2026
Source: GitHub
CVE-2026-33140 MEDIUM - 6.1

PySpector is a static analysis security testing (SAST) Framework engineered for modern Python development workflows. PySpector versions 0.1.6 and prior are affected by a stored Cross-Site Scripting (XSS) vulnerability in the HTML report generator. When PySpector scans a Python file containing JavaSc...

Vendor: pip
Product: pyspector
Published: Mar 18, 2026
Source: GitHub