Total CVEs

143,226

Critical Severity

4,056

High Severity

14,605

Last 7 Days

1,273
Quick preset (or use dates below)
Clear Filters
πŸ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years β†’
Showing 141 - 160 of 1,570 CVEs

In JetBrains YouTrack before 2026.2.16593 the websandbox bridge was vulnerable to a prototype pollution attack

Vendor: JetBrains
Product: YouTrack
Published: Jun 26, 2026
Source: NVD

In JetBrains YouTrack before 2026.2.16593 project settings disclosure via the MCP was possible

Vendor: JetBrains
Product: YouTrack
Published: Jun 26, 2026
Source: NVD

A flaw in Node.js Permission API can cause a local server to be started (via a Unix domain socket), even without the `--allow-net` permission. This vulnerability affects one supported release line: **Node.js 26**.

Vendor: nodejs
Product: node
Published: Jun 26, 2026
Source: NVD

A flaw in Node.js Permission API can cause a file metadata to be modified even on a path that was set as read-only with e.g. `--allow-fs-read`. This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, and **Node.js 26**.

Vendor: nodejs
Product: node
Published: Jun 26, 2026
Source: NVD

A flaw was found in KubeVirt's downward metrics virtio-serial server. The server reads guest requests using textproto.Reader.ReadLine(), which buffers input indefinitely until a newline character is received, with no length limit or read deadline. A user with access to a VM guest that has the d...

Vendor: Red Hat
Product: Red Hat OpenShift Virtualization 4
Published: Jun 26, 2026
Source: NVD

Bitwarden Server before 2026.5.0 contains a JSON injection vulnerability in IntegrationTemplateProcessor.ReplaceTokens(), which substitutes user-controlled values into event-integration templates without JSON encoding. When an organization has configured an event integration whose template reference...

Vendor: bitwarden
Product: server
Published: Jun 25, 2026
Source: NVD

A Joomla user with K2 "create item" rights (Author tier by default) can submit an article whose `embedVideo` POST field contains a raw `<script>` tag; K2 stores it verbatim and renders it unescaped to any visitor of the article page.

Vendor: getk2.com
Product: K2 extension for Joomla
Published: Jun 25, 2026
Source: NVD

A SQL injection vulnerability in Nessus allows an attacker to craft a malicious scan result file that, when imported by a privileged user, injects malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data.

Vendor: tenable
Product: Nessus
Published: Jun 25, 2026
Source: NVD

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, the NONET parse option, which Nokogiri turns on by default for Nokogiri::XML::Schema (see CVE-2020-26247), was not correctly enforced on the JRuby implementation. As a result, a schema parsed with def...

Vendor: sparklemotion
Product: nokogiri
Published: Jun 25, 2026
Source: NVD

Improper input validation in the PAM AD discovery endpoints in Devolutions Server 2026.2.4.0 through 2026.2.7.0 allows an authenticated user with the UserGroupsView permission to coerce server-side authentication to an attacker-controlled host, exposing PAM provider credentials as a NTLMv2 chall...

Vendor: Devolutions
Product: Server
Published: Jun 25, 2026
Source: NVD

An attacker can send a crafted EDNS OPT record that will be ignored by DNSdist’s filtering rules, but will be rewritten as a valid OPT record when EDNS Client Subnet is inserted, causing the backend to see the EDNS option(s) that DNSdist did not filter.

Vendor: PowerDNS
Product: DNSdist
Published: Jun 25, 2026
Source: NVD

An attacker might be able to delay the processing of DoH3 queries by sending DoH3 GET queries with an invalid DATA frame.

Vendor: PowerDNS
Product: DNSdist
Published: Jun 25, 2026
Source: NVD

An attacker sending a large number of crafted DNS queries might be able to trigger a dynamic block being inserted with a value causing invalid output to be produced in the prometheus endpoint. The prometheus endpoint will then be rejected by the scraper until the dynamic block expires.

Vendor: PowerDNS
Product: DNSdist
Published: Jun 25, 2026
Source: NVD
CVE-2026-3176 LOW - 3.1

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authenticated user with limited permissions to access project information due to insufficient authorization chec...

Vendor: gitlab
Product: gitlab
Published: Jun 25, 2026
Source: NVD
CVE-2026-0934 LOW - 3.8

GitLab has remediated an issue in GitLab EE affecting all versions from 17.9 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an authenticated user with custom role permissions to view, create, or delete protected environment configurations ...

Vendor: gitlab
Product: gitlab
Published: Jun 25, 2026
Source: NVD
CVE-2026-8662 LOW - 3.3

Path Traversal vulnerability in the create_archive function of Rapid7 InsightConnect Compression Plugin on Linux allows authenticated attackers to write to unintended file paths via crafted filename input. The impact is limited to file corruption as content cannot be controlled by the attacker.

Vendor: rapid7
Product: insightconnect_compression
Published: Jun 25, 2026
Source: NVD

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accepts attacker-controlled smtpHost and smtpPort values and establishes a raw JavaMail TCP connection without any IP validation. This completely bypasses WebC...

Vendor: appsmithorg
Product: appsmith
Published: Jun 24, 2026
Source: NVD

Cacti is an open source performance and fault management framework. In versions 1.2.30 and below, the locale-dependent decimal formatting in rrdtool_function_update() can corrupt RRDtool metric values. The rrdtool_function_update() function checks metric values with is_numeric() and concatenates the...

Vendor: Cacti
Product: cacti
Published: Jun 24, 2026
Source: NVD

Jenkins Active Directory Plugin 2.41.1 and earlier does not escape the user name before building the LDAP search filter in the Windows native (ADSI) authentication path, allowing unauthenticated attackers to inject LDAP wildcard characters to enumerate directory entries and to authenticate as a matc...

Vendor: Jenkins Project
Product: Jenkins Active Directory Plugin
Published: Jun 24, 2026
Source: NVD

ImageMagick before 7.1.2-19 contains an out-of-bounds access vulnerability in ConnectedComponentsImage() when processing connected-components artifacts with invalid indices. Attackers can trigger access violations by specifying malformed connected-components definitions via CLI, causing denial of se...

Vendor: ImageMagick
Product: ImageMagick
Published: Jun 24, 2026
Source: NVD