Total CVEs

142,398

Critical Severity

3,966

High Severity

14,271

Last 7 Days

1,816
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 15,741 - 15,760 of 38,803 CVEs

Masa CMS is an open source content management system. In versions 7.2.0 through 7.2.9, 7.3.0 through 7.3.14, 7.4.0 through 7.4.9, and 7.5.0 through 7.5.2, the unauthenticated JSON API accepts an altTable parameter that is stored via the setAltTable() method without validation or sanitization. This v...

Vendor: MasaCMS
Product: MasaCMS
Published: May 05, 2026
Source: NVD

Masa CMS is an open source content management system. In versions 7.2.0 through 7.2.9, 7.3.0 through 7.3.14, 7.4.0 through 7.4.9, and 7.5.0 through 7.5.2, a SQL injection vulnerability exists in the beanFeed.cfc component within the getQuery function's handling of the sortDirection parameter. T...

Vendor: MasaCMS
Product: MasaCMS
Published: May 05, 2026
Source: NVD

Masa CMS is an open source content management system. In versions 7.5.2 and earlier, a SQL injection vulnerability exists in the beanFeed.cfc component within the getQuery function's processing of the sortBy parameter. The application fails to properly sanitize or parameterize this input before...

Vendor: MasaCMS
Product: MasaCMS
Published: May 05, 2026
Source: NVD
CVE-2026-38947 MEDIUM - 6.1

FluentCMS 1.2.3 is vulnerable to Cross Site Scripting (XSS) in TextHTML plugin.

Published: May 05, 2026
Source: NVD
CVE-2026-34596 HIGH - 7.0

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a Time-of-Check-to-Time-of-Use (TOCTOU) race condition exists during addon installation. When a user installs an addon through the SandMan interface, UpdUtil.exe is spawned as SYSTEM by Sbi...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD
CVE-2026-34527 MEDIUM - 5.3

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, SbieIniServer::HashPassword converts a SHA-1 digest to hexadecimal incorrectly. The high nibble of each byte is shifted right by 8 instead of 4, which always produces zero for an 8-bit valu...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD
CVE-2026-34464 HIGH - 8.8

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, NamedPipeServer::OpenHandler copies the server field from NAMED_PIPE_OPEN_REQ into a fixed WCHAR pipename[160] stack buffer using wcscat without verifying null termination. The handler only...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD
CVE-2026-34462 HIGH - 7.8

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, several ProcessServer handlers (KillAllHandler, SuspendAllHandler, and RunSandboxedHandler) copy a WCHAR boxname[34] field from request structures into WCHAR[40] stack buffers using wcscpy ...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD
CVE-2026-34461 HIGH - 7.8

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieIniServer RunSbieCtrl handler contains a stack buffer overflow. The MSGID_SBIE_INI_RUN_SBIE_CTRL message is handled before normal sandbox and impersonation checks, and for non-sandb...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD
CVE-2026-34459 HIGH - 8.8

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieSvc proxy service's GetRawInputDeviceInfoSlave handler contains two vulnerabilities that can be chained for sandbox escape. First, when a sandboxed process sends an IPC request...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD
CVE-2026-34458 HIGH - 8.8

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, an INI injection vulnerability allows any standard local user to bypass configuration restrictions (EditAdminOnly and ConfigPassword) and inject arbitrary directives into the global Sandbox...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD

Twenty is an open source CRM built with NestJS (Node.js). In versions 1.18.0 and earlier, the SSRF protection in twenty-server's SecureHttpClientService can be bypassed using IPv4-mapped IPv6 addresses in URL IP literals. Node.js's URL parser normalizes IPv4-mapped IPv6 addresses to compre...

Vendor: twentyhq
Product: twenty
Published: May 05, 2026
Source: NVD
CVE-2026-33420 MEDIUM - 5.3

Vaultwarden is a Bitwarden-compatible server written in Rust. In version 1.35.4 and earlier, the get_org_collections_details endpoint (GET /api/organizations/{org_id}/collections/details) is missing the has_full_access() authorization check that exists on the sibling get_org_collections endpoint. Th...

Vendor: dani-garcia
Product: vaultwarden
Published: May 05, 2026
Source: NVD
CVE-2026-33324 HIGH - 8.8

SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. In versions 1.7.0 and earlier, the Text2SQL chat interface is vulnerable to prompt injection. The user-provided question parameter is directly concatenated into the LLM prompt without filtering or escaping, and the S...

Vendor: dataease
Product: SQLBot
Published: May 05, 2026
Source: NVD
CVE-2026-32603 MEDIUM - 6.5

Sandboxie is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a local denial of service vulnerability exists in the Sandboxie kernel driver. An unprivileged process running inside a Standard Sandbox can send a malformed IOCTL to the \Device\SandboxieDriver...

Vendor: sandboxie-plus
Product: Sandboxie
Published: May 05, 2026
Source: NVD

Tunnelblick is an open source graphic user interface for OpenVPN on macOS. In versions 3.3beta26 through 9.0beta01, any local user can read arbitrary root-owned files by exploiting a symlink following vulnerability in tunnelblick-helper, reachable through the world-accessible tunnelblickd Unix socke...

Vendor: Tunnelblick
Product: Tunnelblick
Published: May 05, 2026
Source: NVD
CVE-2024-52911 HIGH - 7.5

Bitcoin Core through 28.x has a security issue, the details of which are not disclosed. The earliest affected version is 0.14.

Published: May 05, 2026
Source: NVD
CVE-2026-43901 MEDIUM - 6.8

Wireshark MCP is an MCP Server that turns tshark into a structured analysis interface, then layers in optional Wireshark suite utilities. In 1.1.5 and earlier, wireshark-mcp exposes a wireshark_export_objects MCP tool that accepts an attacker-controlled dest_dir parameter and passes it to tshark...

Vendor: pip
Product: wireshark-mcp
Published: May 05, 2026
Source: GitHub
CVE-2026-42554 MEDIUM - 6.1

Fiber is a web framework for Go. Prior to 2.52.12 and 3.1.0, Cross-Site Scripting vulnerability in Go Fiber allows a remote attacker to inject arbitrary HTML/JavaScript by supplying Accept: text/html on any request whose handler passes attacker-influenced data to the AutoFormat() feature. The develo...

Vendor: go
Product: github.com/gofiber/fiber/v3
Published: May 05, 2026
Source: GitHub

Link Preview JS extracts web links information. Prior to 4.0.1, the library did not check for IPv6 loopback attacks. There was also a DNS attack, where an address could be resolved into an internal IP. This could cause internal data leaks. This vulnerability is fixed in 4.0.1.

Vendor: npm
Product: link-preview-js
Published: May 05, 2026
Source: GitHub