Total CVEs

142,265

Critical Severity

3,947

High Severity

14,217

Last 7 Days

1,801
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 12,621 - 12,640 of 14,292 CVEs
CVE-2026-25518 MEDIUM - 5.9

cert-manager adds certificates and certificate issuers as resource types in Kubernetes clusters, and simplifies the process of obtaining, renewing and using those certificates. In versions from 1.18.0 to before 1.18.5 and from 1.19.0 to before 1.19.3, the cert-manager-controller performs DNS lookups...

Vendor: go
Product: github.com/cert-manager/cert-manager
Published: Feb 02, 2026
Source: GitHub
CVE-2026-25509 MEDIUM - 5.3

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.28.5.0, the authentication implementation in CI4MS is vulnerable to email enumeration. An unauthenticated attacker can determine whether an...

Vendor: composer
Product: ci4-cms-erp/ci4ms
Published: Feb 02, 2026
Source: GitHub

jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, user control of the first argument of the addMetadata function allows users to inject arbitrary XML. If given the possibility to pass unsanitized input to the addMetadata method, a user can inject arbitrary XMP metadata into the gene...

Vendor: npm
Product: jspdf
Published: Feb 02, 2026
Source: GitHub

jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, the addJS method in the jspdf Node.js build utilizes a shared module-scoped variable (text) to store JavaScript content. When used in a concurrent environment (e.g., a Node.js web server), this variable is shared across all requests....

Vendor: npm
Product: jspdf
Published: Feb 02, 2026
Source: GitHub
CVE-2026-23476 MEDIUM - 5.4

FacturaScripts is open-source enterprise resource planning and accounting software. Prior to 2025.8, there a reflected XSS bug in FacturaScripts. The problem is in how error messages get displayed. Twig's | raw filter is used, which skips HTML escaping. When triggering a database error (like pa...

Vendor: composer
Product: facturascripts/facturascripts
Published: Feb 02, 2026
Source: GitHub
CVE-2025-69207 MEDIUM - 5.4

Khoj is a self-hostable artificial intelligence app. Prior to 2.0.0-beta.23, an IDOR in the Notion OAuth callback allows an attacker to hijack any user's Notion integration by manipulating the state parameter. The callback endpoint accepts any user UUID without verifying the OAuth flow was init...

Vendor: pip
Product: khoj
Published: Feb 02, 2026
Source: GitHub

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass. By inserting malicious Groovy elements, an attacker may bypass sandbox restrictions and obtain RCE (Remote Code Exec...

Vendor: maven
Product: org.craftercms:craftercms
Published: Feb 02, 2026
Source: NVD
CVE-2025-47402 MEDIUM - 6.5

Transient DOS when processing a received frame with an excessively large authentication information element.

Vendor: Qualcomm, Inc.
Product: Snapdragon
Published: Feb 02, 2026
Source: NVD
CVE-2025-47364 MEDIUM - 6.8

Memory corruption while calculating offset from partition start point.

Vendor: Qualcomm, Inc.
Product: Snapdragon
Published: Feb 02, 2026
Source: NVD
CVE-2025-47363 MEDIUM - 6.8

Memory corruption when calculating oversized partition sizes without proper checks.

Vendor: Qualcomm, Inc.
Product: Snapdragon
Published: Feb 02, 2026
Source: NVD
CVE-2025-15395 MEDIUM - 4.3

IBM Jazz Foundation 7.0.3 through 7.0.3 iFix019 and 7.1.0 through 7.1.0 iFix005 is vulnerable to access control violations that allows the users to view or access/perform actions beyond their expected capability.

Vendor: IBM
Product: Jazz Foundation
Published: Feb 02, 2026
Source: NVD
CVE-2022-50980 MEDIUM - 6.5

A unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via CAN.

Published: Feb 02, 2026
Source: NVD
CVE-2022-50979 MEDIUM - 6.5

An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus (RS485).

Published: Feb 02, 2026
Source: NVD
CVE-2026-1760 MEDIUM - 5.3

A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing...

Published: Feb 02, 2026
Source: NVD
CVE-2026-1757 MEDIUM - 6.2

A flaw was identified in the interactive shell of the xmllint utility, part of the libxml2 project, where memory allocated for user input is not properly released under certain conditions. When a user submits input consisting only of whitespace, the program skips command execution but fails to free ...

Published: Feb 02, 2026
Source: NVD
CVE-2025-7105 MEDIUM - 5.7

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in `/api/convos/fork` to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service ...

Published: Feb 02, 2026
Source: NVD
CVE-2025-6208 MEDIUM - 5.3

The `SimpleDirectoryReader` component in `llama_index.core` version 0.12.23 suffers from uncontrolled memory consumption due to a resource management flaw. The vulnerability arises because the user-specified file limit (`num_files_limit`) is applied after all files in a directory are loaded into mem...

Vendor: pip
Product: llama-index-core
Published: Feb 02, 2026
Source: NVD
CVE-2026-20417 MEDIUM - 5.3

In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10314946 / ALPS10340155; Issue ID: MSV-5154.

Vendor: MediaTek, Inc.
Product: MT6991, MT6993, MT8678
Published: Feb 02, 2026
Source: NVD
CVE-2026-20415 MEDIUM - 5.5

In imgsys, there is a possible memory corruption due to improper locking. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10363254; Issue ID: MSV-5617.

Vendor: MediaTek, Inc.
Product: MT6897, MT6989
Published: Feb 02, 2026
Source: NVD
CVE-2026-20414 MEDIUM - 6.7

In imgsys, there is a possible escalation of privilege due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10362999; Issue ID: MSV-5625.

Vendor: MediaTek, Inc.
Product: MT6897, MT6989, MT8196, MT8678, MT8766, MT8768, MT8786, MT8796
Published: Feb 02, 2026
Source: NVD