Total CVEs

141,292

Critical Severity

3,799

High Severity

13,738

Last 7 Days

1,583
Quick preset (or use dates below)
Clear Filters
Showing 9,141 - 9,160 of 13,738 CVEs
CVE-2025-50881 HIGH - 8.8

The `flow/admin/moniteur.php` script in Use It Flow administration website before 10.0.0 is vulnerable to Remote Code Execution. When handling GET requests, the script takes user-supplied input from the `action` URL parameter, performs insufficient validation, and incorporates this input into a stri...

Published: Mar 16, 2026
Source: NVD

Fullchain is an umbrella project for deploying a ready-to-use CTF platform. In versions prior to 0.1.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from a subverted application to any Pod out of the origin namespace. The flawed inter-ns NetworkPolicy breaks the security-by-defau...

Vendor: go
Product: github.com/ctfer-io/fullchain
Published: Mar 16, 2026
Source: GitHub
CVE-2026-32805 HIGH - 7.5

Romeo gives the capability to reach high code coverage of Go ≥1.20 apps by helping to measure code coverage for functional and integration tests within GitHub Actions. Prior to version 0.2.2, the `sanitizeArchivePath` function in `webserver/api/v1/decoder.go` (lines 80-88) is vulnerable to a path tr...

Vendor: go
Product: github.com/ctfer-io/romeo/webserver
Published: Mar 16, 2026
Source: GitHub

The CTFer.io Monitoring component is in charge of the collection, process and storage of various signals (i.e. logs, metrics and distributed traces). In versions prior to 0.2.2, the sanitizeArchivePath function in pkg/extract/extract.go (lines 248–254) is vulnerable to Path Traversal due to a missin...

Vendor: go
Product: github.com/ctfer-io/monitoring
Published: Mar 16, 2026
Source: GitHub
CVE-2026-32737 HIGH - 10.0

Romeo gives the capability to reach high code coverage of Go ≥1.20 apps by helping to measure code coverage for functional and integration tests within GitHub Actions. Prior to version 0.2.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from the "hardened" namespace to a...

Vendor: go
Product: github.com/ctfer-io/romeo/environment/deploy
Published: Mar 16, 2026
Source: GitHub

Chall-Manager is a platform-agnostic system able to start Challenges on Demand of a player. In versions prior to 0.6.5, due to a miswritten NetworkPolicy, a malicious actor can pivot from an instance to any Pod out of the origin namespace. This breaks the security-by-default property expected as par...

Vendor: go
Product: github.com/ctfer-io/chall-manager/deploy
Published: Mar 16, 2026
Source: GitHub
CVE-2026-30881 HIGH - 8.8

Chamilo LMS is a learning management system. Version 1.11.34 and prior contains a SQL Injection vulnerability in the statistics AJAX endpoint. The parameters date_start and date_end from $_REQUEST are embedded directly into a raw SQL string without proper sanitization. Although Database::escape_stri...

Vendor: chamilo
Product: chamilo-lms
Published: Mar 16, 2026
Source: NVD
CVE-2026-30875 HIGH - 8.8

Chamilo LMS is a learning management system. Prior to version 1.11.36, an arbitrary file upload vulnerability in the H5P Import feature allows authenticated users with Teacher role to achieve Remote Code Execution (RCE). The H5P package validation only checks if h5p.json exists but doesn't bloc...

Vendor: chamilo
Product: chamilo-lms
Published: Mar 16, 2026
Source: NVD
CVE-2025-68971 HIGH - 7.5

In Forgejo through 13.0.3, the attachment component allows a denial of service by uploading a multi-gigabyte file attachment (e.g., to be associated with an issue or a release).

Published: Mar 16, 2026
Source: NVD

Webhooks for Craft CMS plugin adds the ability to manage “webhooks” in Craft CMS, which will send GET or POST requests when certain events occur. From version 3.0.0 to before version 3.2.0, the Webhooks plugin renders user-supplied template content through Twig’s renderString() function without sand...

Vendor: craftcms
Product: webhooks
Published: Mar 16, 2026
Source: NVD
CVE-2026-32749 HIGH - 7.6

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, POST /api/import/importSY and POST /api/import/importZipMd write uploaded archives to a path derived from the multipart filename field without sanitization, allowing an admin to write files to arbitrary locations outside ...

Vendor: go
Product: github.com/siyuan-note/siyuan/kernel
Published: Mar 16, 2026
Source: GitHub
CVE-2026-32728 HIGH - 7.6

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.15 and 8.6.41, an attacker who is allowed to upload files can bypass the file extension filter by appending a MIME parameter (e.g. `;charset=utf-8`) to the `Content-Type` head...

Vendor: npm
Product: parse-server
Published: Mar 16, 2026
Source: GitHub

The Azure Blob Storage for Craft CMS plugin provides an Azure Blob Storage integration for Craft CMS. In versions on the 2.x branch prior to 2.1.1, unauthenticated users can view a list of buckets the plugin has access to. The `DefaultController->actionLoadContainerData()` endpoint allows unauthe...

Vendor: composer
Product: craftcms/azure-blob
Published: Mar 16, 2026
Source: GitHub
CVE-2026-4269 HIGH - 7.5

A missing S3 ownership verification in the Bedrock AgentCore Starter Toolkit before version v0.1.13 may allow a remote actor to inject code during the build process, leading to code execution in the AgentCore Runtime. This issue only affects users of the Bedrock AgentCore Starter Toolkit before vers...

Vendor: pip
Product: bedrock-agentcore-starter-toolkit
Published: Mar 16, 2026
Source: NVD
CVE-2026-28498 HIGH - 7.5

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a library-level vulnerability was identified in the Authlib Python library concerning the validation of OpenID Connect (OIDC) ID Tokens. Specifically, the internal hash verification logic (_verify_hash...

Vendor: authlib
Product: authlib
Published: Mar 16, 2026
Source: NVD
CVE-2026-23862 HIGH - 7.8

Dell ThinOS 10 versions prior to ThinOS 2602_10.0573, contain an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

Vendor: Dell
Product: ThinOS 10
Published: Mar 16, 2026
Source: NVD
CVE-2025-69768 HIGH - 7.5

SQL Injection vulnerability in Chyrp v.2.5.2 and before allows a remote attacker to obtain sensitive information via the Admin.php component

Vendor: chyrp
Product: chyrp
Published: Mar 16, 2026
Source: NVD
CVE-2025-66687 HIGH - 7.5

Doom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game files

Published: Mar 16, 2026
Source: NVD
CVE-2026-32264 HIGH - 7.2

Craft CMS is a content management system (CMS). From version 4.0.0-RC1 to before version 4.17.5 and from version 5.0.0-RC1 to before version 5.9.11, there is a Behavior injection RCE vulnerability in ElementIndexesController and FieldsController. Craft control panel administrator permissions and all...

Vendor: composer
Product: craftcms/cms
Published: Mar 16, 2026
Source: GitHub
CVE-2026-32263 HIGH - 7.2

Craft CMS is a content management system (CMS). From version 5.6.0 to before version 5.9.11, in src/controllers/EntryTypesController.php, the $settings array from parse_str is passed directly to Craft::configure() without Component::cleanseConfig(). This allows injecting Yii2 behavior/event handlers...

Vendor: composer
Product: craftcms/cms
Published: Mar 16, 2026
Source: GitHub