Total CVEs

142,027

Critical Severity

3,943

High Severity

14,108

Last 7 Days

1,726
Quick preset (or use dates below)
Clear Filters
Showing 10,561 - 10,580 of 14,108 CVEs
CVE-2026-29124 HIGH - 7.8

Multiple SUID root-owned binaries are found in /home/monitor/terminal, /home/monitor/kore-terminal, /home/monitor/IDE-DPack/terminal-dpack, and /home/monitor/IDE-DPack/terminal-dpack2 in International Data Casting (IDC) SFX2100 Satellite Receiver, which may lead to local privlidge escalation from th...

Vendor: International Datacasting Corporation
Product: SFX2100 Satellite Receiver
Published: Mar 05, 2026
Source: NVD
CVE-2026-29123 HIGH - 7.8

A SUID root-owned binary in /home/xd/terminal/XDTerminal in International Data Casting (IDC) SFX2100 on Linux allows a local actor to potentially preform local privilege escalation depending on conditions of the system via execution of the affected SUID binary. This can be via PATH hijacking, symlin...

Vendor: International Datacasting Corporation
Product: SFX2100 Satellite Receiver
Published: Mar 05, 2026
Source: NVD
CVE-2026-29093 HIGH - 8.1

WWBN AVideo is an open source video platform. Prior to version 24.0, the official docker-compose.yml publishes the memcached service on host port 11211 (0.0.0.0:11211) with no authentication, while the Dockerfile configures PHP to store all user sessions in that memcached instance. An attacker who c...

Vendor: composer
Product: wwbn/avideo
Published: Mar 05, 2026
Source: GitHub
CVE-2026-29121 HIGH - 7.8

International Data Casting (IDC) SFX2100 satellite receiver comes with the `/sbin/ip` utility installed with the setuid bit set. This configuration grants elevated privileges to any local user who can execute the binary. A local actor is able to use the GTFObins resource to preform privileged file r...

Vendor: International Datacasting Corporation
Product: SFX2100 Satellite Receiver
Published: Mar 05, 2026
Source: NVD
CVE-2026-29786 HIGH - 6.3

node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x() extraction. Thi...

Vendor: npm
Product: tar
Published: Mar 05, 2026
Source: GitHub
CVE-2026-29784 HIGH - 7.5

Ghost is a Node.js content management system. From version 5.101.6 to 6.19.2, incomplete CSRF protections around /session/verify made it possible to use OTCs in login sessions different from the requesting session. In some scenarios this might have made it easier for phishers to take over a Ghost si...

Vendor: npm
Product: ghost
Published: Mar 05, 2026
Source: GitHub
CVE-2026-29182 HIGH - 7.2

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.4 and 9.4.1-alpha.3, Parse Server's readOnlyMasterKey option allows access with master-level read privileges but is documented to deny all write operations. However, som...

Vendor: npm
Product: parse-server
Published: Mar 05, 2026
Source: GitHub
CVE-2026-29778 HIGH - 7.1

pyLoad is a free and open-source download manager written in Python. From version 0.5.0b3.dev13 to 0.5.0b3.dev96, the edit_package() function implements insufficient sanitization for the pack_folder parameter. The current protection relies on a single-pass string replacement of "../", whic...

Vendor: pip
Product: pyload-ng
Published: Mar 05, 2026
Source: GitHub
CVE-2026-2836 HIGH - 8.1

A cache poisoning vulnerability has been found in the Pingora HTTP proxy framework’s default cache key construction. The issue occurs because the default HTTP cache key implementation generates cache keys using only the URI path, excluding critical factors such as the host header (authority). Operat...

Vendor: rust
Product: pingora-cache
Published: Mar 05, 2026
Source: NVD
CVE-2026-29186 HIGH - 7.7

Backstage is an open framework for building developer portals. Prior to version 1.14.3, this is a configuration bypass vulnerability that enables arbitrary code execution. The @backstage/plugin-techdocs-node package uses an allowlist to filter dangerous MkDocs configuration keys during the documenta...

Vendor: npm
Product: @backstage/plugin-techdocs-node
Published: Mar 05, 2026
Source: GitHub
CVE-2026-29074 HIGH - 7.5

SVGO, short for SVG Optimizer, is a Node.js library and command-line application for optimizing SVG files. From version 2.1.0 to before version 2.8.1, from version 3.0.0 to before version 3.3.3, and before version 4.0.1, SVGO accepts XML with custom entities, without guards against entity expansion ...

Vendor: npm
Product: svgo
Published: Mar 04, 2026
Source: GitHub
CVE-2026-29192 HIGH - 7.7

ZITADEL is an open source identity management platform. From version 4.0.0 to 4.11.1, a vulnerability in Zitadel's login V2 interface was discovered that allowed a possible account takeover via Default URI Redirect. This issue has been patched in version 4.12.0.

Vendor: go
Product: github.com/zitadel/zitadel/v2
Published: Mar 04, 2026
Source: GitHub
CVE-2026-29193 HIGH - 8.2

ZITADEL is an open source identity management platform. From version 4.0.0 to 4.12.0, a vulnerability in Zitadel's login V2 UI allowed users to bypass login behavior and security policies and self-register new accounts or sign in using password even if corresponding options were disabled in the...

Vendor: go
Product: github.com/zitadel/zitadel/v2
Published: Mar 04, 2026
Source: GitHub
CVE-2026-27803 HIGH - 8.3

Vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs. Prior to version 1.35.4, when a Manager has manage=false for a given collection, they can still perform several management operations as long as they have access to the collection. This issue ha...

Vendor: dani-garcia
Product: vaultwarden
Published: Mar 04, 2026
Source: NVD
CVE-2026-27802 HIGH - 8.3

Vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs. Prior to version 1.35.4, there is a privilege escalation vulnerability via bulk permission update to unauthorized collections by Manager. This issue has been patched in version 1.35.4.

Vendor: dani-garcia
Product: vaultwarden
Published: Mar 04, 2026
Source: NVD
CVE-2026-29771 HIGH - 6.5

Netmaker makes networks with WireGuard. Prior to version 1.2.0, the /api/server/shutdown endpoint allows termination of the Netmaker server process via syscall.SIGINT. This allows any user to repeatedly shut down the server, causing cyclic denial of service with approximately 3-second restart interv...

Vendor: go
Product: github.com/gravitl/netmaker
Published: Mar 04, 2026
Source: GitHub
CVE-2026-29065 HIGH - 9.1

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, a Zip Slip vulnerability in the backup restore functionality allows arbitrary file overwrite via path traversal in uploaded ZIP archives. This issue has been patched in version 0.54.4.

Vendor: pip
Product: changedetection.io
Published: Mar 04, 2026
Source: GitHub

Immutable.js provides many Persistent Immutable data structures. Prior to versions 3.8.3, 4.3.7, and 5.1.5, Prototype Pollution is possible in immutable via the mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject() APIs. This issue has been patched in versions 3.8.3, 4.3.7, and 5.1.5...

Vendor: npm
Product: immutable
Published: Mar 04, 2026
Source: GitHub
CVE-2026-29062 HIGH - 7.5

jackson-core contains core low-level incremental ("streaming") parser and generator abstractions used by Jackson Data Processor. From version 3.0.0 to before version 3.1.0, the UTF8DataInputJsonParser, which is used when parsing from a java.io.DataInput source, bypasses the maxNestingDepth...

Vendor: maven
Product: tools.jackson.core:jackson-core
Published: Mar 04, 2026
Source: GitHub
CVE-2026-29054 HIGH - 7.5

Traefik is an HTTP reverse proxy and load balancer. From version 2.11.9 to 2.11.37 and from version 3.1.3 to 3.6.8, there is a potential vulnerability in Traefik managing the Connection header with X-Forwarded headers. When Traefik processes HTTP/1.1 requests, the protection put in place to prevent ...

Vendor: go
Product: github.com/traefik/traefik/v2
Published: Mar 04, 2026
Source: GitHub