Total CVEs

142,588

Critical Severity

4,002

High Severity

14,356

Last 7 Days

1,797
Quick preset (or use dates below)
Clear Filters
Showing 13,721 - 13,740 of 14,356 CVEs
CVE-2025-53477 HIGH - 7.5

NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection complete or HCI command TX buffer could lead to NULL pointer dereference. This issue requires disabled asserts and broken or bogus Bluetooth controller and thus severity is considered low. This issue affe...

Vendor: apache
Product: nimble
Published: Jan 10, 2026
Source: NVD
CVE-2025-52435 HIGH - 7.5

J2EE Misconfiguration: Data Transmission Without Encryption vulnerability in Apache NimBLE. Improper handling of Pause Encryption procedure on Link Layer results in a previously encrypted connection being left in un-encrypted state allowing an eavesdropper to observe the remainder of the exchange. ...

Vendor: apache
Product: nimble
Published: Jan 10, 2026
Source: NVD
CVE-2026-22777 HIGH - 7.5

ComfyUI-Manager is an extension designed to enhance the usability of ComfyUI. Prior to versions 3.39.2 and 4.0.5, an attacker can inject special characters into HTTP query parameters to add arbitrary configuration values to the config.ini file. This can lead to security setting tampering or modifica...

Published: Jan 10, 2026
Source: NVD
CVE-2026-22704 HIGH - 8.0

HAX CMS helps manage microsite universe with PHP or NodeJs backends. In versions 11.0.6 to before 25.0.0, HAX CMS is vulnerable to stored XSS, which could lead to account takeover. This issue has been patched in version 25.0.0.

Published: Jan 10, 2026
Source: NVD
CVE-2026-22700 HIGH - 7.5

RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof. In versions 0.14.0-pre.0 and 0.14.0-rc.0, a denial-of-service vulnerability ex...

Vendor: rustcrypto
Product: sm2_elliptic_curve
Published: Jan 10, 2026
Source: NVD
CVE-2026-22699 HIGH - 7.5

RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including types and traits for representing various elliptic curve forms, scalars, points, and public/secret keys composed thereof. In versions 0.14.0-pre.0 and 0.14.0-rc.0, a denial-of-service vulnerability ex...

Vendor: rustcrypto
Product: sm2_elliptic_curve
Published: Jan 10, 2026
Source: NVD
CVE-2026-22685 HIGH - 8.8

DevToys is a desktop app for developers. In versions from 2.0.0.0 to before 2.0.9.0, a path traversal vulnerability exists in the DevToys extension installation mechanism. When processing extension packages (NUPKG archives), DevToys does not sufficiently validate file paths contained within the arch...

Published: Jan 10, 2026
Source: NVD
CVE-2026-22688 HIGH - 8.8

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.5, there is a command injection vulnerability that allows authenticated users to inject stdio_config.command/args into MCP stdio settings, causing the server to execute subproces...

Vendor: tencent
Product: weknora
Published: Jan 10, 2026
Source: NVD
CVE-2026-22589 HIGH - 7.5

Spree is an open source e-commerce solution built with Ruby on Rails. Prior to versions 4.10.2, 5.0.7, 5.1.9, and 5.2.5, an Unauthenticated Insecure Direct Object Reference (IDOR) vulnerability was identified that allows an unauthenticated attacker to access guest address information without supplyi...

Vendor: spreecommerce
Product: spree
Published: Jan 10, 2026
Source: NVD
CVE-2025-13457 HIGH - 7.5

The WooCommerce Square plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.1 via the get_token_by_id function due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to expose arbitrary Squ...

Published: Jan 10, 2026
Source: NVD
CVE-2026-22596 HIGH - 7.2

Ghost is a Node.js content management system. In versions 5.90.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's /ghost/api/admin/members/events endpoint allows users with authentication credentials for the Admin API to execute arbitrary SQL. This issue has been patched in ...

Vendor: ghost
Product: ghost
Published: Jan 10, 2026
Source: NVD
CVE-2026-22595 HIGH - 8.1

Ghost is a Node.js content management system. In versions 5.121.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's handling of Staff Token authentication allowed certain endpoints to be accessed that were only intended to be accessible via Staff Session authentication. Exter...

Vendor: ghost
Product: ghost
Published: Jan 10, 2026
Source: NVD
CVE-2026-22594 HIGH - 8.1

Ghost is a Node.js content management system. In versions 5.105.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's 2FA mechanism allows staff users to skip email 2FA. This issue has been patched in versions 5.130.6 and 6.11.0.

Vendor: ghost
Product: ghost
Published: Jan 10, 2026
Source: NVD
CVE-2026-22029 HIGH - 8.0

React Router is a router for React. In @remix-run/router version prior to 1.23.2. and react-router 7.0.0 through 7.11.0, React Router (and Remix v1/v2) SPA open navigation redirects originating from loaders or actions in Framework Mode, Data Mode, or the unstable RSC modes can result in unsafe URLs ...

Published: Jan 10, 2026
Source: NVD
CVE-2026-21884 HIGH - 8.2

React Router is a router for React. In @remix-run/react version prior to 2.17.3. and react-router 7.0.0 through 7.11.0, a XSS vulnerability exists in in React Router's <ScrollRestoration> API in Framework Mode when using the getKey/storageKey props during Server-Side Rendering which could...

Published: Jan 10, 2026
Source: NVD
CVE-2025-59057 HIGH - 7.6

React Router is a router for React. In @remix-run/react versions 1.15.0 through 2.17.0. and react-router versions 7.0.0 through 7.8.2, a XSS vulnerability exists in in React Router's meta()/<Meta> APIs in Framework Mode when generating script:ld+json tags which could allow arbitrary JavaS...

Published: Jan 10, 2026
Source: NVD
CVE-2026-22612 HIGH - 7.8

Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, Fickling is vulnerable to detection bypass due to "builtins" blindness. This issue has been patched in version 0.1.7.

Vendor: trailofbits
Product: fickling
Published: Jan 10, 2026
Source: NVD
CVE-2026-22609 HIGH - 7.8

Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, the unsafe_imports() method in Fickling's static analyzer fails to flag several high-risk Python modules that can be used for arbitrary code execution. Malicious pickles importing these modules will not be det...

Vendor: trailofbits
Product: fickling
Published: Jan 10, 2026
Source: NVD
CVE-2026-22608 HIGH - 7.8

Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, both ctypes and pydoc modules aren't explicitly blocked. Even other existing pickle scanning tools (like picklescan) do not block pydoc.locate. Chaining these two together can achieve RCE while the scanner sti...

Vendor: trailofbits
Product: fickling
Published: Jan 10, 2026
Source: NVD
CVE-2026-22607 HIGH - 7.8

Fickling is a Python pickling decompiler and static analyzer. Fickling versions up to and including 0.1.6 do not treat Python's cProfile module as unsafe. Because of this, a malicious pickle that uses cProfile.run() is classified as SUSPICIOUS instead of OVERTLY_MALICIOUS. If a user relies on F...

Vendor: trailofbits
Product: fickling
Published: Jan 10, 2026
Source: NVD