Total CVEs

142,750

Critical Severity

4,026

High Severity

14,425

Last 7 Days

1,318
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 15,541 - 15,560 of 39,155 CVEs
CVE-2026-42544 HIGH - 7.5

Granian is a Rust HTTP server for Python applications. From 1.2.0 to 2.7.4, Granian aborts a worker process when an unauthenticated client sends a WebSocket upgrade request whose Sec-WebSocket-Protocol header contains non-ASCII bytes. The crash happens in Granian's WebSocket scope construction ...

Vendor: pip
Product: granian
Published: May 06, 2026
Source: GitHub
CVE-2026-42844 HIGH - 8.8

Grav is a file-based Web platform. In Grav 2.0.0-beta.2, a low-privileged authenticated API user with api.media.write can abuse /api/v1/blueprint-upload to write an arbitrary YAML file into user/accounts/, then log in as the newly created account with api.super privileges. This results in full admin...

Vendor: composer
Product: getgrav/grav
Published: May 06, 2026
Source: GitHub

Masa CMS is affected by an Open Redirect vulnerability due to improper handling of scheme-relative URLs. The application incorrectly interprets paths beginning with double slashes (//) as internal paths, failing to validate the redirect target before processing. The application treats these values a...

Vendor: MasaCMS
Product: MasaCMS
Published: May 06, 2026
Source: NVD

Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines (PostCSS, Babel, TailwindCSS), Hugo invoked the configured Node tools without restrictions on file system access. As a result, executing hugo against an untrusted site could a...

Vendor: go
Product: github.com/gohugoio/hugo
Published: May 06, 2026
Source: GitHub

Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. Prior to 20.18.0, there is a reflected XSS vulnerability under admin panel -> System -> Import/Ex...

Vendor: composer
Product: openmage/magento-lts
Published: May 06, 2026
Source: GitHub
CVE-2026-44306 MEDIUM - 5.3

Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.21 and 6.15.0, responses from the forgot password forms hinted at whether an account existed for a given email address. An unauthenticated attacker could use this to enumerate valid users, which can aid in follow-up...

Vendor: composer
Product: statamic/cms
Published: May 06, 2026
Source: GitHub
CVE-2026-44302 HIGH - 7.5

Snappier is a high performance C# implementation of the Snappy compression algorithm. Prior to 1.3.1, Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. This vulnerability is fixed in 1.3.1.

Vendor: nuget
Product: Snappier
Published: May 06, 2026
Source: GitHub

Magic Wormhole makes it possible to get arbitrary-sized files and directories from one computer to another. Prior to 0.24.0, there is a path traversal when a receiver who specifies "--output <dir>" where that output directory currently exists (as a directory). This vulnerability is f...

Vendor: pip
Product: magic-wormhole
Published: May 06, 2026
Source: GitHub
CVE-2026-8033 MEDIUM - 5.3

A vulnerability has been found in PicoTronica e-Clinic Healthcare System ECHS 5.7. This affects an unknown function of the file /cdemos/echs/api/v2/ of the component Response Header Handler. Such manipulation leads to information disclosure. The attack may be performed from remote. The exploit has b...

Published: May 06, 2026
Source: NVD
CVE-2026-8032 HIGH - 7.3

A flaw has been found in PicoTronica e-Clinic Healthcare System ECHS 5.7. The impacted element is an unknown function of the file /cdemos/echs/priv/echs.js. This manipulation of the argument ADMIN_KEY causes hard-coded credentials. The attack is possible to be carried out remotely. The exploit has b...

Published: May 06, 2026
Source: NVD
CVE-2026-44118 HIGH - 7.8

OpenClaw before 2026.4.22 derives loopback MCP owner context from spoofable server-issued bearer tokens in request headers. Non-owner loopback clients can present themselves as owner to bypass owner-gated operations by manipulating the sender-owner header metadata.

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44117 MEDIUM - 5.8

OpenClaw before 2026.4.20 contains a server-side request forgery vulnerability in QQBot direct media upload that skips URL validation. Attackers can bypass SSRF protections by sending crafted image URLs to uploadC2CMedia and uploadGroupMedia endpoints to relay unintended requests.

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44116 HIGH - 8.6

OpenClaw before 2026.4.22 contains a server-side request forgery vulnerability in the Zalo plugin's sendPhoto function that fails to validate outbound photo URLs through the SSRF guard. Attackers can bypass SSRF protection by providing malicious photo URLs to the Zalo Bot API, enabling unauthor...

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44115 HIGH - 8.8

OpenClaw before 2026.4.22 contains an exec allowlist analysis vulnerability allowing shell expansion hiding in unquoted heredoc bodies. Attackers can bypass allowlist validation by embedding shell expansion tokens in heredoc bodies to execute unapproved commands at runtime.

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44114 HIGH - 7.8

OpenClaw before 2026.4.20 fails to properly reserve the OPENCLAW_ runtime-control environment namespace in workspace dotenv files, allowing attackers to override critical runtime variables. Malicious workspaces can set variables like OPENCLAW_GIT_DIR to manipulate trusted OpenClaw runtime behavior d...

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44113 MEDIUM - 5.3

OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in the OpenShell filesystem bridge that allows attackers to read files outside the intended mount root. Attackers can exploit symlink swaps during filesystem operations to bypass sandbox restrictions and access unauthorize...

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44112 MEDIUM - 5.3

OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in OpenShell sandbox filesystem writes that allows attackers to redirect writes outside the intended mount root. Attackers can exploit symlink swaps during filesystem operations to bypass sandbox restrictions and write fil...

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44111 MEDIUM - 4.3

OpenClaw before 2026.4.15 contains an arbitrary file read vulnerability in the QMD backend memory_get function that allows callers to read any Markdown files within the workspace root. Attackers with access to the memory tool can bypass path restrictions by providing arbitrary workspace Markdown pat...

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44110 HIGH - 8.8

OpenClaw before 2026.4.15 contains an authorization bypass vulnerability in Matrix room control-command authorization that trusts DM pairing-store entries. Attackers with DM-paired sender IDs can execute room control commands without being in configured allowlists by posting in bot rooms, potentiall...

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD
CVE-2026-44109 CRITICAL - 9.8

OpenClaw before 2026.4.15 contains an authentication bypass vulnerability in Feishu webhook and card-action validation that allows unauthenticated requests to reach command dispatch. Missing encryptKey configuration and blank callback tokens fail open instead of rejecting requests, enabling attacker...

Vendor: OpenClaw
Product: OpenClaw
Published: May 06, 2026
Source: NVD