Total CVEs

141,537

Critical Severity

3,871

High Severity

13,923

Last 7 Days

1,619
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 14,301 - 14,320 of 37,942 CVEs

The form plugin for Grav adds the ability to create and use forms. Prior to 9.1.0 , there is an unauthenticated page-content overwrite via file upload (GHSA-w4rc-p66m-x6qq). Public form uploads now strip path components from the POST-supplied filename and hard-block page-content extensions (`md`, `y...

Vendor: composer
Product: getgrav/grav-plugin-form
Published: May 06, 2026
Source: GitHub

Nitro is a next generation server toolkit. Prior to 3.0.260429-beta, an attacker could turn a redirect route rule using wildcards rewrite into a cross-host redirect by sliding an extra slash in after the rule prefix. This vulnerability is fixed in 3.0.260429-beta.

Vendor: npm
Product: nitro
Published: May 06, 2026
Source: GitHub
CVE-2026-44373 MEDIUM - 5.3

Nitro is a next generation server toolkit. Prior to 3.0.260429-beta, an attacker could bypass a proxy route rule by sending percent-encoded path traversal (..%2f) in the URL, causing Nitro to forward a request that the upstream resolved outside the configured scope. This vulnerability is fixed in 3....

Vendor: npm
Product: nitro
Published: May 06, 2026
Source: GitHub

PyQuorum is a cryptographic library for secret sharing and key management. Prior to 0.2.1, the mul_mod function implements multiplication via a binary expansion loop whose execution time depends on the Hamming weight of the second operand (the exponent). An attacker who can measure the time of secre...

Vendor: pip
Product: pyquorum
Published: May 06, 2026
Source: GitHub
CVE-2026-42602 HIGH - 8.1

azureauthextension is the Azure Authenticator Extension. From 0.124.0 to 0.150.0, a server-side authentication bypass in azureauthextension allows any party who holds a single valid Azure access token for any scope the collector's configured identity can mint for to authenticate to any OpenTele...

Vendor: go
Product: github.com/open-telemetry/opentelemetry-collector-contrib/extension/azureauthextension
Published: May 06, 2026
Source: GitHub

MISP modules are autonomous modules that can be used to extend MISP for new services. In 3.0.7 and earlier, a Cross-Site Request Forgery vulnerability in the MISP Modules website allowed an attacker to cause an authenticated user to submit unintended requests to the home endpoint. The vulnerability ...

Vendor: pip
Product: misp-modules
Published: May 06, 2026
Source: GitHub

MISP modules are autonomous modules that can be used to extend MISP for new services. Prior to 3.0.7, an unsafe remote resource fetching vulnerability existed in MISP Modules expansion modules. The html_to_markdown module accepted arbitrary HTTP(S) URLs without sufficient validation, which could all...

Vendor: pip
Product: misp-modules
Published: May 06, 2026
Source: GitHub
CVE-2026-44351 CRITICAL - 9.1

fast-jwt provides fast JSON Web Token (JWT) implementation. Prior to 6.2.4, a critical authentication-bypass vulnerability in fast-jwt's async key-resolver flow allows any unauthenticated attacker to forge arbitrary JWTs that are accepted as authentic. When the application's key resolver r...

Vendor: npm
Product: fast-jwt
Published: May 06, 2026
Source: GitHub
CVE-2026-3291 MEDIUM - 5.5

Samsung Print Service Plugin for Android is potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities.

Vendor: hp
Product: samsung_print_service_plugin
Published: May 06, 2026
Source: NVD
CVE-2026-44245 MEDIUM - 6.1

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to 2.5.2, Vue 3's v-html directive is the framework-documented mechanism for injecting raw HTML, and it intentionally disables the auto-escaping that {{ }} interpolation provides. The PropertyCard.vue compone...

Vendor: go
Product: github.com/kyverno/policy-reporter-ui
Published: May 06, 2026
Source: GitHub

Daptin is a GraphQL/JSON-API headless CMS. Prior to version 0.11.5, processFuzzySearch in server/resource/resource_findallpaginated.go:1484 splits the user-supplied column parameter by comma and interpolates each segment directly into goqu.L(fmt.Sprintf("LOWER(%s) LIKE ?", prefix+col)) raw...

Vendor: go
Product: github.com/daptin/daptin
Published: May 06, 2026
Source: GitHub
CVE-2026-44334 HIGH - 8.4

PraisonAI is a multi-agent teams system. From version 4.5.139 to before version 4.6.32, CVE-2026-40287's fix gated tools.py auto-import behind PRAISONAI_ALLOW_LOCAL_TOOLS=true in two files (tool_resolver.py, api/call.py). A third import sink in praisonai/templates/tool_override.py was missed an...

Vendor: pip
Product: praisonai
Published: May 06, 2026
Source: GitHub
CVE-2026-44335 HIGH - 9.8

PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the URL checking logic in PraisonAI has a logical flaw that could be bypassed by attackers, leading to SSRF attacks. This issue has been patched in version 1.6.32.

Vendor: pip
Product: praisonaiagents
Published: May 06, 2026
Source: GitHub
CVE-2026-42572 MEDIUM - 5.3

Hatchet is a platform for orchestrating background tasks, AI agents, and durable workflows at scale. Prior to 0.83.39, a missing authorization directive on the GET /api/v1/stable/dags/tasks endpoint caused Hatchet's tenant-membership check to be skipped for this route. A user authenticated to a...

Vendor: go
Product: github.com/hatchet-dev/hatchet
Published: May 06, 2026
Source: GitHub
CVE-2026-44244 HIGH - 7.8

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.49, GitConfigParser.set_value() passes values to Python's configparser without validating for newlines. GitPython's own _write() converts embedded newlines into indented continuation lines (e.g. \n b...

Vendor: pip
Product: GitPython
Published: May 06, 2026
Source: GitHub
CVE-2026-42561 HIGH - 7.5

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.27, python-multipart has a denial of service vulnerability in multipart part header parsing. When parsing multipart/form-data, MultipartParser previously had no limit on the number of part headers or the size of an individual ...

Vendor: pip
Product: python-multipart
Published: May 06, 2026
Source: GitHub
CVE-2026-42559 HIGH - 8.8

RMCP is an official Rust SDK for the Model Context Protocol. Prior to version 1.4.0, the rmcp crate's Streamable HTTP server transport (crates/rmcp/src/transport/streamable_http_server/) did not validate the incoming Host header. This allowed a malicious public website, via a DNS rebinding atta...

Vendor: rust
Product: rmcp
Published: May 06, 2026
Source: GitHub
CVE-2026-44223 MEDIUM - 6.5

vLLM is an inference and serving engine for large language models (LLMs). From to before 0.20.0, the extract_hidden_states speculative decoding proposer in vLLM returns a tensor with an incorrect shape after the first decode step, causing a RuntimeError that crashes the EngineCore process. The cras...

Vendor: pip
Product: vllm
Published: May 06, 2026
Source: GitHub

Mako is a template library written in Python. Prior to 1.3.12, on Windows, a URI using backslash traversal (e.g. \..\..\ secret.txt) bypasses the directory traversal check in Template.__init__ and the posixpath-based normalization in TemplateLookup.get_template(), allowing reads of files outside the...

Vendor: pip
Product: Mako
Published: May 06, 2026
Source: GitHub

jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. Prior to 4.5.7, JupyterLab's HTML sanitizer allowlists data-commandlinker-command and data-commandlinker-args on button elements, while CommandLinker listens for all c...

Vendor: pip
Product: jupyterlab
Published: May 06, 2026
Source: GitHub