Total CVEs

141,492

Critical Severity

3,867

High Severity

13,899

Last 7 Days

1,659
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 14,081 - 14,100 of 37,897 CVEs
CVE-2026-8084 LOW - 3.3

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This manipulation causes out-of-bounds read. The attack is restricted to local execution. The exploit has...

Vendor: osgeo
Product: gdal
Published: May 07, 2026
Source: NVD
CVE-2026-8083 HIGH - 7.3

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /ajax.php?action=save_user. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be u...

Published: May 07, 2026
Source: NVD
CVE-2026-44742 HIGH - 7.2

Postorius through 1.3.13 does not escape HTML in the message subject when rendering it in the Held messages pop-up, as exploited in the wild in May 2026.

Vendor: Postorius project
Product: Postorius
Published: May 07, 2026
Source: NVD
CVE-2026-42284 CRITICAL - 9.8

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.47, _clone() validates multi_options as the original list, then executes shlex.split(" ".join(multi_options)). A string like "--branch main --config core.hooksPath=/x" passes validation (st...

Vendor: gitpython_project
Product: gitpython
Published: May 07, 2026
Source: NVD
CVE-2026-42215 HIGH - 8.8

GitPython is a python library used to interact with Git repositories. From version 3.1.30 to before version 3.1.47, GitPython blocks dangerous Git options such as --upload-pack and --receive-pack by default, but the equivalent Python kwargs upload_pack and receive_pack bypass that check. If an appli...

Vendor: gitpython-developers
Product: GitPython
Published: May 07, 2026
Source: NVD
CVE-2026-42214 HIGH - 7.8

Notepad Next is a cross-platform, reimplementation of Notepad++. Prior to version 0.14, NotepadNext's detectLanguageFromExtension() function interpolates a file's extension directly into a Lua script without sanitization. An attacker can craft a filename whose extension contains Lua code, ...

Vendor: dail8859
Product: NotepadNext
Published: May 07, 2026
Source: NVD
CVE-2026-41906 HIGH - 7.1

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.214, the Change Customer modal correctly hides out-of-scope customers through the mailbox-filtered search endpoint, but the backend conversation_change_customer action accepts any supplied cu...

Vendor: freescout-help-desk
Product: freescout
Published: May 07, 2026
Source: NVD
CVE-2026-41905 HIGH - 7.7

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, Helper::sanitizeRemoteUrl() in app/Misc/Helper.php follows HTTP redirects via curlGetLastRedirectedUrl() but then re-validates the original URL instead of the final redirect destination....

Vendor: freescout-help-desk
Product: freescout
Published: May 07, 2026
Source: NVD
CVE-2026-41904 HIGH - 7.6

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user with updateAutoReply permission can store an XSS payload in the mailbox auto-reply message. The payload is rendered unescaped in the auto-reply email sent to every customer who co...

Vendor: freescout-help-desk
Product: freescout
Published: May 07, 2026
Source: NVD
CVE-2026-41903 MEDIUM - 5.4

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user holding the PERM_EDIT_USERS permission (intended for general user-profile editing) can read and modify the notification subscriptions of any other user, including admins, by sendi...

Vendor: freescout-help-desk
Product: freescout
Published: May 07, 2026
Source: NVD
CVE-2026-41902 CRITICAL - 9.1

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, the /user-setup/{hash} endpoint accepts a 60-character random invite_hash to set a new user's password. The endpoint performs no expiration check — the hash remains valid indefinite...

Vendor: freescout-help-desk
Product: freescout
Published: May 07, 2026
Source: NVD

BentoPDF is a client-side PDF toolkit that is self hostable. Prior to version 2.8.3, a cross-site scripting vulnerability was identified in BentoPD. An attacker may be able to execute arbitrary JavaScript in certain circumstances in Markdown to PDF Tool. This issue has been patched in version 2.8.3.

Vendor: alam00000
Product: bentopdf
Published: May 07, 2026
Source: NVD
CVE-2026-8081 MEDIUM - 6.3

A vulnerability has been found in router-for-me CLIProxyAPI 6.9.29. Affected by this issue is some unknown functionality of the file internal/api/handlers/management/api_tools.go of the component API Interface. The manipulation of the argument url leads to server-side request forgery. Remote exploit...

Vendor: router-for-me
Product: cliproxyapi
Published: May 07, 2026
Source: NVD
CVE-2026-37709 CRITICAL - 9.8

Insecure Permissions vulnerability in grokability snipe-it v.8.4.0 and before and fixed after 2026-03-10 commit 676a9958 allows a remote attacker to execute arbitrary code via the app/Http/Controllers/Api/UploadedFilesController.php component

Vendor: composer
Product: snipe/snipe-it
Published: May 07, 2026
Source: NVD
CVE-2026-7415 CRITICAL - 9.8

The MQTT broker embedded in Yarbo firmware v2.3.9 is configured to allow anonymous connections with no topic-level read or write ACLs. Any host on the same network can subscribe to sensitive telemetry topics or publish control messages directly to the robot without authentication or authorization of...

Vendor: yarbo
Product: lawn_mower_firmware
Published: May 07, 2026
Source: NVD
CVE-2026-7414 CRITICAL - 9.8

Yarbo firmware v2.3.9 contains hardcoded administrative credentials embedded in the firmware image. These credentials are identical across all devices running this firmware and cannot be changed or removed by end users, enabling trivial unauthorized access to device management interfaces by anyone w...

Vendor: yarbo
Product: lawn_mower_firmware
Published: May 07, 2026
Source: NVD
CVE-2026-7413 HIGH - 7.2

A hidden, persistent backdoor was found in Yarbo firmware v2.3.9 that provides remote, unauthenticated (or weakly authenticated) access to privileged functionality. The backdoor is undocumented, cannot be disabled via user-facing settings, and survives factory reset and ordinary firmware updates.

Vendor: yarbo
Product: lawn_mower_firmware
Published: May 07, 2026
Source: NVD

Cinny is a Matrix client. Prior to 4.10.3, A remote authenticated attacker who shares a room with a victim and has permissions to create room emotes (for example in a DM) can cause the victim's client to send their Matrix access token to an attacker-controlled server. This occurs when the victi...

Vendor: npm
Product: cinny
Published: May 07, 2026
Source: GitHub
CVE-2026-40610 MEDIUM - 5.5

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. In versions 1.4.38 and prior, the build packaging workflow follows attacker-controlled symlinks inside the build context and copies the referenced file contents into the generated Bento artifac...

Vendor: pip
Product: bentoml
Published: May 07, 2026
Source: GitHub
CVE-2026-7821 HIGH - 7.4

Improper certificate validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to enroll a device belonging to a restricted set of unenrolled devices, leading to information disclosure about EPMM appliance and impacting on the integrity of th...

Vendor: ivanti
Product: endpoint_manager_mobile
Published: May 07, 2026
Source: NVD