Total CVEs

143,768

Critical Severity

4,091

High Severity

14,768

Last 7 Days

1,527
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 1,361 - 1,380 of 40,173 CVEs
CVE-2026-11405 CRITICAL - 9.8

The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login() function at 004c88b8. - The function contains a normal authentication path using MD5/hash-based password verification (prod_encode64/PasswordToMd5/check_rand_key). - After normal authentication fa...

Vendor: Tenda
Product: firmware
Published: Jul 06, 2026
Source: NVD
CVE-2026-9182 MEDIUM - 5.3

Esri ArcGIS Server contains an unrestricted file upload vulnerability. An unauthenticated attacker could exploit this issue by uploading a crafted file to the affected endpoint. Successful exploitation could allow arbitrary file upload, potentially allowing for other attacks. This issue impacts all ...

Vendor: esri
Product: arcgis_server
Published: Jul 06, 2026
Source: NVD
CVE-2026-9181 CRITICAL - 9.8

Esri ArcGIS Server contains a directory traversal vulnerability. ArcGIS Enterprise on Kubernetes is not impacted. An unauthenticated attacker could exploit this issue by sending crafted path parameters. Successful exploitation could allow overwriting sensitive files on the system. Abuse of this issu...

Vendor: esri
Product: arcgis_server
Published: Jul 06, 2026
Source: NVD
CVE-2026-55798 MEDIUM - 4.5

Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to injec...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-55380 HIGH - 7.5

Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. Th...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-55379 HIGH - 7.5

Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bom...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-54291 MEDIUM - 5.9

pgjdbc is an open source postgresql JDBC Driver. In releases 42.7.4 through 42.7.11, channelBinding=require connections can be silently downgraded from SCRAM-SHA-256-PLUS with channel binding to plain SCRAM-SHA-256 without it, losing the man-in-the-middle protection the setting is meant to guarantee...

Vendor: pgjdbc
Product: pgjdbc
Published: Jul 06, 2026
Source: NVD
CVE-2026-54060 HIGH - 7.5

Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.compile() assembled per-glyph images into a combined bitmap with Image.new("1", (xsize, ysize)) without calling Image._decompression_bomb_check(), allowing a font to trigger excessive allocation during conversion...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-54059 HIGH - 7.5

Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without calling Image._decompression_bomb_check(), allowing crafted PCF font data to cause excessive memory allocat...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-13753 HIGH - 7.5

A missing authorization vulnerability exists in the embedded webserver of HP Deskjet 2800 Series Printers running firmware version <=TBP1CN2612AR. An unauthenticated attacker with network access can send GET requests to multiple exposed administrative API endpoints and retrieve sensitive configur...

Vendor: HP Inc.
Product: HP 2800 Printer Series
Published: Jul 06, 2026
Source: NVD
CVE-2026-48614 CRITICAL - 9.9

An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inject arbitrary configuration directives, resulting in arbitrary file write as root and full privilege escalation on the underlying server.

Vendor: WebPros
Product: Plesk
Published: Jul 06, 2026
Source: NVD

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.10.0 and prior to version 4.11.0, an unbounded recursion can crash the PKCS#11 TA. Version 4.11.0 contains a patch. ...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD
CVE-2026-12154 MEDIUM - 6.4

The Reviews Widgets for Google, Yelp & TripAdvisor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'page_id' shortcode attribute of the [fbrev] shortcode in versions up to and including 2.7.3. This is due to insufficient input sanitization and output escaping ...

Vendor: widgetpack
Product: Reviews Widgets for Google, TripAdvisor, Yelp & Recommendations
Published: Jul 06, 2026
Source: NVD
CVE-2026-55786 HIGH - 8.4

flyto-core has Unauthenticated Command Execution via HTTP MCP `execute_module`

Vendor: pip
Product: flyto-core
Published: Jul 06, 2026
Source: GitHub
CVE-2026-55787 HIGH - 7.1

flyto-core has SSRF guard bypass via IPv6 transition addresses (IPv4-mapped / 6to4 / NAT64) in validate_url_ssrf

Vendor: pip
Product: flyto-core
Published: Jul 06, 2026
Source: GitHub
CVE-2026-49452 MEDIUM - 6.5

WeasyPrint has CSS Injection via Presentational Hints

Vendor: pip
Product: weasyprint
Published: Jul 06, 2026
Source: GitHub
CVE-2026-48316 CRITICAL - 10.0

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed.

Vendor: Adobe
Product: ColdFusion
Published: Jul 06, 2026
Source: NVD
CVE-2026-43825 HIGH - 7.3

Untrusted Java Deserialization in Apache OpenNLP SvmDoccatModel Versions Affected:   before 3.0.0-M4 (libsvm document categorization module; introduced in   OPENNLP-1808 and only present on the 3.x line) Description: SvmDoccatModel.deserialize(InputStream) reads an attacker-controlled stream with ...

Vendor: Apache Software Foundation
Product: Apache OpenNLP :: Core :: ML :: LibSVM
Published: Jul 06, 2026
Source: NVD
CVE-2026-40257 MEDIUM - 5.5

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.21.0 and prior to version 4.11.0, the ARM Crypto Extensions accelerated SHA-3 implementation has an off-by-one error...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD
CVE-2026-40141 CRITICAL - 9.9

A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileged Remote Access related to the processing of certain input parameters. Insufficient validation of user-supplied input may allow an authenticated attacker with limited privileges to access u...

Vendor: BeyondTrust
Product: Remote Support, Privilege Remote Access
Published: Jul 06, 2026
Source: NVD