Total CVEs

142,027

Critical Severity

3,943

High Severity

14,108

Last 7 Days

1,724
Quick preset (or use dates below)
Clear Filters
Showing 10,921 - 10,940 of 14,108 CVEs
CVE-2026-27967 HIGH - 7.1

Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file tools (`read_file`, `edit_file`). It allows reading and writing files **outside the project directory** when a project contains symbolic links pointing to external paths. This bypasses the intended work...

Vendor: zed-industries
Product: zed
Published: Feb 26, 2026
Source: NVD
CVE-2026-27818 HIGH - 7.5

TerriaJS-Server is a NodeJS Express server for TerriaJS, a library for building web-based geospatial data explorers. A validation bug in versions prior to 4.0.3 allows an attacker to proxy domains not explicitly allowed in the `proxyableDomains` configuration. Version 4.0.3 fixes the issue.

Vendor: TerriaJS
Product: terriajs-server
Published: Feb 26, 2026
Source: NVD
CVE-2026-27800 HIGH - 7.4

Zed, a code editor, has a Zip Slip (Path Traversal) vulnerability exists in its extension archive extraction functionality prior to version 0.224.4. The `extract_zip()` function in `crates/util/src/archive.rs` fails to validate ZIP entry filenames for path traversal sequences (e.g., `../`). This all...

Vendor: zed-industries
Product: zed
Published: Feb 26, 2026
Source: NVD
CVE-2026-27635 HIGH - 7.5

Manyfold is an open source, self-hosted web application for managing a collection of 3d models, particularly focused on 3d printing. Prior to version 0.133.0, when model render generation is enabled, a logged-in user can achieve RCE by uploading a ZIP containing a file with a shell metacharacter in ...

Vendor: manyfold3d
Product: manyfold
Published: Feb 26, 2026
Source: NVD
CVE-2026-27633 HIGH - 7.5

TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Versions prior to version 2.02 have a Denial of Service (DoS) vulnerability via memory exhaustion. Unauthenticated remote attackers can send an HTTP POST request to the server with an exceptionally large `Content-Length` header (e.g....

Vendor: maximmasiutin
Product: TinyWeb
Published: Feb 26, 2026
Source: NVD
CVE-2026-27630 HIGH - 7.5

TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. Versions prior to version 2.02 are vulnerable to a Denial of Service (DoS) attack known as Slowloris. The server spawns a new OS thread for every incoming connection without enforcing a maximum concurrency limit or an appropriate req...

Vendor: maximmasiutin
Product: TinyWeb
Published: Feb 26, 2026
Source: NVD
CVE-2026-27578 HIGH - 5.4

n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, an authenticated user with permission to create or modify workflows could inject arbitrary scripts into pages rendered by the n8n application using different techniques on various nodes (Form Trigger n...

Vendor: n8n-io
Product: n8n
Published: Feb 25, 2026
Source: NVD
CVE-2026-27494 HIGH - 10.0

n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, an authenticated user with permission to create or modify workflows could use the Python Code node to escape the sandbox. The sandbox did not sufficiently restrict access to certain built-in Python obj...

Vendor: n8n-io
Product: n8n
Published: Feb 25, 2026
Source: NVD
CVE-2026-27950 HIGH - 7.5

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the fix for the heap-use-after-free described in CVE-2026-24680 is incomplete. While the vulnerable execution flow referenced in the advisory exists in the SDL2 implementation, the fix appears to have been appl...

Vendor: FreeRDP
Product: FreeRDP
Published: Feb 25, 2026
Source: NVD
CVE-2026-27819 HIGH - 7.2

Vikunja is an open-source self-hosted task management platform. Prior to version 2.0.0, the restoreConfig function in vikunja/pkg/modules/dump/restore.go of the go-vikunja/vikunja repository fails to sanitize file paths within the provided ZIP archive. A maliciously crafted ZIP can bypass the intend...

Vendor: go-vikunja
Product: vikunja
Published: Feb 25, 2026
Source: NVD
CVE-2026-27616 HIGH - 7.3

Vikunja is an open-source self-hosted task management platform. Prior to version 2.0.0, the application allows users to upload SVG files as task attachments. SVG is an XML-based format that supports JavaScript execution through elements such as <script> tags or event handlers like onload. The ...

Vendor: go-vikunja
Product: vikunja
Published: Feb 25, 2026
Source: NVD

Storybook is a frontend workshop for building user interface components and pages in isolation. Prior to versions 7.6.23, 8.6.17, 9.1.19, and 10.2.10, the WebSocket functionality in Storybook's dev server, used to create and update stories, is vulnerable to WebSocket hijacking. This vulnerabili...

Vendor: storybookjs
Product: storybook
Published: Feb 25, 2026
Source: NVD
CVE-2026-26986 HIGH - 7.5

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_window_free` dereferences a freed `xfAppWindow` pointer during `HashTable_Free` cleanup because `xf_rail_window_common` calls `free(appWindow)` on title allocation failure without first removing the entry...

Vendor: FreeRDP
Product: FreeRDP
Published: Feb 25, 2026
Source: NVD
CVE-2026-26985 HIGH - 8.1

LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provides data- and project-management for neuroimaging research. Starting in version 24.0.0 and prior to versions 26.0.5, 27.0.2, and 28.0.0, an authenticated user with the appropriate authorization can rea...

Vendor: aces
Product: Loris
Published: Feb 25, 2026
Source: NVD
CVE-2026-26984 HIGH - 8.7

LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provides data- and project-management for neuroimaging research. Prior to versions 26.0.5, 27.0.2, and 28.0.0, an authenticated user with sufficient privileges can exploit a path traversal vulnerability to ...

Vendor: aces
Product: Loris
Published: Feb 25, 2026
Source: NVD
CVE-2026-3200 HIGH - 7.3

A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkName/register/login/getUser/getUsers of the file /server/controller/user.js. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might be...

Published: Feb 25, 2026
Source: NVD
CVE-2026-3172 HIGH - 8.1

Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server.

Published: Feb 25, 2026
Source: NVD
CVE-2026-26965 HIGH - 8.8

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, in the RLE planar decode path, `planar_decompress_plane_rle()` writes into `pDstData` at `((nYDst+y) * nDstStep) + (4*nXDst) + nChannel` without verifying that `(nYDst+nSrcHeight)` fits in the destination heigh...

Vendor: FreeRDP
Product: FreeRDP
Published: Feb 25, 2026
Source: NVD
CVE-2026-26955 HIGH - 8.8

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a malicious RDP server can trigger a heap buffer overflow in FreeRDP clients using the GDI surface pipeline (e.g., `xfreerdp`) by sending an RDPGFX ClearCodec surface command with an out-of-bounds destination r...

Vendor: FreeRDP
Product: FreeRDP
Published: Feb 25, 2026
Source: NVD
CVE-2026-25954 HIGH - 7.5

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently de...

Vendor: FreeRDP
Product: FreeRDP
Published: Feb 25, 2026
Source: NVD