Total CVEs

142,027

Critical Severity

3,943

High Severity

14,108

Last 7 Days

1,726
Quick preset (or use dates below)
Clear Filters
Showing 10,841 - 10,860 of 14,604 CVEs
CVE-2026-28219 MEDIUM - 4.3

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, an improper authorization check in the topic management logic allows authenticated users to modify privileged attributes of their topics. By manipulating specific parameters in a PUT or POST request...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD
CVE-2026-28218 MEDIUM - 5.4

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, fail-open access control in Data Explorer plugin allows any authenticated user to execute SQL queries that have no explicit group assignments, including built-in system queries. Versions 2025.12.2, ...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD
CVE-2026-27835 MEDIUM - 4.3

wger is a free, open-source workout and fitness manager. In versions up to and including 2.4, `RepetitionsConfigViewSet` and `MaxRepetitionsConfigViewSet` return all users' repetition config data because their `get_queryset()` calls `.all()` instead of filtering by the authenticated user. Any r...

Vendor: wger-project
Product: wger
Published: Feb 26, 2026
Source: NVD
CVE-2026-27154 MEDIUM - 6.1

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, a user full name can be evaluated as raw HTML when the following settings are set: `display_name_on_posts` => true; and `prioritize_username_in_ux` => false. Editing a post of a malicious user...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD
CVE-2026-27162 MEDIUM - 4.9

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, `posts_nearby` was checking topic access but then returning all posts regardless of type, including whispers that should only be visible to whisperers. Use `Post.secured(guardian)` to properly filte...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD
CVE-2026-27149 MEDIUM - 6.5

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, SQL injection in PM tag filtering (`list_private_messages_tag`) allows bypassing tag filter conditions, potentially disclosing unauthorized private message metadata. Versions 2025.12.2, 2026.1.1, an...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD
CVE-2026-27021 MEDIUM - 5.3

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, the voters endpoint in the poll plugin lacked post visibility checks which allowed unauthorized access to voters details of polls in any post. Versions 2025.12.2, 2026.1.1, and 2026.2.0 patch the is...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD
CVE-2026-26973 MEDIUM - 4.3

Discourse is an open source discussion platform. Versions prior to 2025.12.2, 2026.1.1, and 2026.2.0 have an IDOR (Insecure Direct Object Reference) in `ReviewableNotesController`. When `enable_category_group_moderation` is enabled, a user belonging to a category moderation group can create or dele...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD
CVE-2026-27457 MEDIUM - 4.3

Weblate is a web based localization tool. Prior to version 5.16.1, the REST API's `AddonViewSet` (`weblate/api/views.py`, line 2831) uses `queryset = Addon.objects.all()` without overriding `get_queryset()` to scope results by user permissions. This allows any authenticated user (or anonymous u...

Vendor: pip
Product: weblate
Published: Feb 26, 2026
Source: GitHub
CVE-2026-26937 MEDIUM - 6.5

Uncontrolled Resource Consumption (CWE-400) in the Timelion component in Kibana can lead Denial of Service via Input Data Manipulation (CAPEC-153)

Vendor: Elastic
Product: Kibana
Published: Feb 26, 2026
Source: NVD
CVE-2026-22722 MEDIUM - 6.1

A malicious actor with authenticated user privileges on a Windows based Workstation host may be able to cause a null pointer dereference error. To Remediate CVE-2026-22722, apply the patches listed in the "Fixed version" column of the 'Response Matrix'

Vendor: VMware
Product: Workstation
Published: Feb 26, 2026
Source: NVD
CVE-2026-22715 MEDIUM - 5.9

VMWare Workstation and Fusion contain a logic flaw in the management of network packets.ย  Known attack vectors: A malicious actor with administrative privileges on a Guest VM may be able to interrupt or intercept network connections of other Guest VM's.ย  Resolution: To remediate CVE-2026-2271...

Vendor: VMware
Product: Workstation, Fusion
Published: Feb 26, 2026
Source: NVD
CVE-2026-26936 MEDIUM - 4.9

Inefficient Regular Expression Complexity (CWE-1333) in the AI Inference Anonymization Engine in Kibana can lead Denial of Service via Regular Expression Exponential Blowup (CAPEC-492).

Vendor: Elastic
Product: Kibana
Published: Feb 26, 2026
Source: NVD
CVE-2026-26935 MEDIUM - 6.5

Improper Input Validation (CWE-20) in the internal Content Connectors search endpoint in Kibana can lead Denial of Service via Input Data Manipulation (CAPEC-153)

Vendor: Elastic
Product: Kibana
Published: Feb 26, 2026
Source: NVD
CVE-2026-26934 MEDIUM - 6.5

Improper Validation of Specified Quantity in Input (CWE-1284) in Kibana can allow an authenticated attacker with view-only privileges to cause a Denial of Service via Input Data Manipulation (CAPEC-153). An attacker can send a specially crafted, malformed payload causing excessive resource consumpti...

Vendor: Elastic
Product: Kibana
Published: Feb 26, 2026
Source: NVD
CVE-2026-26932 MEDIUM - 5.7

Improper Validation of Array Index (CWE-129) in the PostgreSQL protocol parser in Packetbeat can lead Denial of Service via Input Data Manipulation (CAPEC-153). An attacker can send a specially crafted packet causing a Go runtime panic that terminates the Packetbeat process. This vulnerability requi...

Vendor: Elastic
Product: Packetbeat
Published: Feb 26, 2026
Source: NVD
CVE-2026-28296 MEDIUM - 4.3

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed (CRLF) sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and inj...

Vendor: Red Hat
Product: Red Hat Enterprise Linux 10, Red Hat Enterprise Linux 6, Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9
Published: Feb 26, 2026
Source: NVD
CVE-2026-28295 MEDIUM - 4.3

A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by providing an arbitrary IP address and port in its passive mode (PASV) response. The client unconditionally trusts this information and attempts to connect to the specified endpoint, allowing the malici...

Vendor: Red Hat
Product: Red Hat Enterprise Linux 10, Red Hat Enterprise Linux 6, Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9
Published: Feb 26, 2026
Source: NVD
CVE-2026-26228 MEDIUM - 4.9

VideoLAN VLC for Android prior to version 3.7.0 contains a path traversal vulnerability in the Remote Access Server routing for the authenticated endpoint GET /download. The file query parameter is concatenated into a filesystem path under the configured download directory without canonicalization o...

Vendor: VideoLAN
Product: VLC for Android
Published: Feb 26, 2026
Source: NVD
CVE-2026-26207 MEDIUM - 5.4

Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, `discourse-policy` plugin allows any authenticated user to interact with policies on posts they do not have permission to view. The `PolicyController` loads posts by ID without verifying the current...

Vendor: discourse
Product: discourse
Published: Feb 26, 2026
Source: NVD