Total CVEs

142,027

Critical Severity

3,943

High Severity

14,108

Last 7 Days

1,877
Quick preset (or use dates below)
Clear Filters
Showing 10,361 - 10,380 of 14,604 CVEs
CVE-2026-27797 MEDIUM - 5.3

Homarr is an open-source dashboard. Prior to version 1.54.0, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows a remote attacker to force the Homarr server to perform arbitrary outbound HTTP requests. This can be used as an internal network access primitive (e.g., reaching l...

Vendor: homarr-labs
Product: homarr
Published: Mar 07, 2026
Source: NVD
CVE-2026-27796 MEDIUM - 5.3

Homarr is an open-source dashboard. Prior to version 1.54.0, the integration.all tRPC endpoint in Homarr is exposed as a publicProcedure, allowing unauthenticated users to retrieve a complete list of configured integrations. This metadata includes sensitive information such as internal service URLs,...

Vendor: homarr-labs
Product: homarr
Published: Mar 07, 2026
Source: NVD
CVE-2026-30885 MEDIUM - 5.3

WWBN AVideo is an open source video platform. Prior to 25.0, the /objects/playlistsFromUser.json.php endpoint returns all playlists for any user without requiring authentication or authorization. An unauthenticated attacker can enumerate user IDs and retrieve playlist information including playlist ...

Vendor: composer
Product: wwbn/avideo
Published: Mar 07, 2026
Source: GitHub
CVE-2026-30870 MEDIUM - 6.5

PowerSync Service is the server-side component of the PowerSync sync engine. In version 1.20.0, when using new sync streams with config.edition: 3, certain subquery filters were ignored when determining which data to sync to users. Depending on the sync stream configuration, this could result in aut...

Vendor: npm
Product: @powersync/service-core
Published: Mar 07, 2026
Source: GitHub
CVE-2026-2722 MEDIUM - 4.8

The Stock Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.26.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and ...

Published: Mar 07, 2026
Source: NVD
CVE-2026-2721 MEDIUM - 4.8

The MailArchiver plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.4.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and a...

Published: Mar 07, 2026
Source: NVD
CVE-2026-2494 MEDIUM - 4.3

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.9.8.2. This is due to missing nonce validation on the membership request management page (approve and decline actions). This makes it possi...

Published: Mar 07, 2026
Source: NVD
CVE-2026-2488 MEDIUM - 4.3

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to unauthorized message deletion due to a missing capability check on the pg_delete_msg() function in all versions up to, and including, 5.9.8.1. This is due to the function not verifying that the requesting u...

Published: Mar 07, 2026
Source: NVD
CVE-2026-2431 MEDIUM - 6.1

The CM Custom Reports plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'date_from' and 'date_to' parameters in all versions up to, and including, 1.2.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticat...

Published: Mar 07, 2026
Source: NVD
CVE-2026-2429 MEDIUM - 4.9

The Community Events plugin for WordPress is vulnerable to SQL Injection via the 'ce_venue_name' CSV field in the `on_save_changes_venues` function in all versions up to, and including, 1.5.8. This is due to insufficient escaping on the user-supplied CSV data and lack of sufficient prepara...

Published: Mar 07, 2026
Source: NVD
CVE-2026-1902 MEDIUM - 6.4

The Hammas Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'apix' parameter in the 'hp-calendar-manage-redirect' shortcode in all versions up to, and including, 1.5.11 due to insufficient input sanitization and output escaping. This makes it pos...

Published: Mar 07, 2026
Source: NVD
CVE-2026-1650 MEDIUM - 5.3

The MDJM Event Management plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the 'custom_fields_controller' function in all versions up to, and including, 1.7.8.1. This makes it possible for unauthenticated attackers to delete arbitrar...

Published: Mar 07, 2026
Source: NVD
CVE-2026-25073 MEDIUM - 5.4

XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain a stored cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary script content through the System Name field. Attackers can inject malicious scripts that execute in a victim's bro...

Vendor: Anhui Seeker Electronic Technology Co., LTD.
Product: XikeStor SKS8310-8X
Published: Mar 07, 2026
Source: NVD
CVE-2026-2371 MEDIUM - 5.3

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 12.8.3. This is due to missing authorization and post status validation in the `gspb_el_reusable_load()` AJAX handler. The handler accepts a...

Published: Mar 07, 2026
Source: NVD
CVE-2026-1981 MEDIUM - 4.3

The HUMN-1 AI Website Scanner & Human Certification by Winston AI plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the winston_disconnect() function in all versions up to, and including, 0.0.3. This makes it possible for authenticated a...

Published: Mar 07, 2026
Source: NVD
CVE-2026-1644 MEDIUM - 4.3

The WP Frontend Profile plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.8. This is due to missing nonce validation on the 'update_action' function. This makes it possible for unauthenticated attackers to approve or reject user acco...

Published: Mar 07, 2026
Source: NVD
CVE-2026-30857 MEDIUM - 5.9

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.3.0, a cross-tenant authorization bypass in the knowledge base copy endpoint allows any authenticated user to clone (duplicate) another tenant’s knowledge base into their own tenan...

Vendor: go
Product: github.com/Tencent/WeKnora
Published: Mar 06, 2026
Source: GitHub
CVE-2026-30856 MEDIUM - 5.4

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.3.0, a vulnerability involving tool name collision and indirect prompt injection allows a malicious remote MCP server to hijack tool execution. By exploiting an ambiguous naming c...

Vendor: go
Product: github.com/Tencent/WeKnora
Published: Mar 06, 2026
Source: GitHub
CVE-2026-30852 MEDIUM - 7.5

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the vars_regexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When vars_regexp matches against a placeholder like {http.request.header.X-Input}, the...

Vendor: go
Product: github.com/caddyserver/caddy/v2/modules/caddyhttp
Published: Mar 06, 2026
Source: GitHub
CVE-2026-30838 MEDIUM - 6.1

league/commonmark is a PHP Markdown parser. Prior to version 2.8.1, the DisallowedRawHtml extension can be bypassed by inserting a newline, tab, or other ASCII whitespace character between a disallowed HTML tag name and the closing >. For example, <script\n> would pass through unfiltered an...

Vendor: composer
Product: league/commonmark
Published: Mar 06, 2026
Source: GitHub