Total CVEs

142,696

Critical Severity

4,021

High Severity

14,390

Last 7 Days

1,406
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 18,841 - 18,860 of 39,101 CVEs
CVE-2026-40498 CRITICAL - 9.8

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, an unauthenticated attacker can access diagnostic and system tools that should be restricted to administrators. The /system/cron endpoint relies on a static MD5 hash derived from the APP_KEY, which is exposed in ...

Vendor: freescout-help-desk
Product: freescout
Published: Apr 21, 2026
Source: NVD
CVE-2026-37748 HIGH - 7.2

Visitor Management System 1.0 by sanjay1313 is vulnerable to Unrestricted File Upload in vms/php/admin_user_insert.php and vms/php/update_1.php. The move_uploaded_file() function is called without any MIME type, extension, or content validation, allowing an authenticated admin to upload a PHP webshe...

Vendor: sanjay1313
Product: visitor_management_system
Published: Apr 21, 2026
Source: NVD

SQL injection vulnerability in Zeon Academy Pro by Zeon Global Tech. This vulnerability allows an attacker to retrieve, create, update, and delete databases by sending a POST request using the parameter 'phonenumber' in '/private/continue-upload.php'.

Vendor: Zeon Global Tech
Product: Zeon Academy Pro
Published: Apr 21, 2026
Source: NVD

HTML injection vulnerability in PHP Point of Sale v19.4. This vulnerability allows an attacker to render HTML in the victim's browser due to a lack of proper validation of user input by sending a request to '/reports/generate/specific_customer', ussing 'start_date_formatted'...

Vendor: PHP Point Of Sale
Product: PHP Point Of Sale
Published: Apr 21, 2026
Source: NVD
CVE-2025-15638 CRITICAL - 10.0

Net::Dropbear versions before 0.14 for Perl contains a vulnerable version of libtomcrypt. Net::Dropbear versions before 0.14 includes versions of Dropbear 2019.78 or earlier. These include versions of libtomcrypt v1.18.1 or earlier, which is affected by CVE-2016-6129 and CVE-2018-12437.

Vendor: ATRODO
Product: Net::Dropbear
Published: Apr 21, 2026
Source: NVD
CVE-2017-20230 CRITICAL - 10.0

Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned. This allowed an attacker to craft data that could trigger the overflow.

Vendor: NWCLARK
Product: Storable
Published: Apr 21, 2026
Source: NVD
CVE-2026-5789 HIGH - 7.8

Vulnerability related to an unquoted search path in CivetWeb v1.16. This vulnerability allows a local attacker to execute arbitrary code with elevated privileges by placing a malicious executable in a directory that is scanned before the intended application path (C:\Program Files\CivetWeb\CivetWeb....

Vendor: civetweb_project
Product: civetweb
Published: Apr 21, 2026
Source: NVD

The method "sock_recvfrom_into()" of "asyncio.ProacterEventLoop" (Windows only) was missing a boundary check for the data buffer when using nbytes parameter. This allowed for an out-of-bounds buffer write if data was larger than the buffer size. Non-Windows platforms are not affe...

Published: Apr 21, 2026
Source: NVD
CVE-2026-31019 HIGH - 8.8

In the Website module of Dolibarr ERP & CRM 22.0.4 and below, the application uses blacklist-based filtering to restrict dangerous PHP functions related to system command execution. An authenticated user with permission to edit PHP content can bypass this filtering, resulting in full remote code...

Vendor: dolibarr
Product: dolibarr_erp\/crm
Published: Apr 21, 2026
Source: NVD
CVE-2026-31018 HIGH - 8.8

In Dolibarr ERP & CRM <= 22.0.4, PHP code detection and editing permission enforcement in the Website module is not applied consistently to all input parameters, allowing an authenticated user restricted to HTML/JavaScript editing to inject PHP code through unprotected inputs during website p...

Vendor: dolibarr
Product: dolibarr_erp\/crm
Published: Apr 21, 2026
Source: NVD
CVE-2026-31014 MEDIUM - 6.3

Dovestones Softwares AD Self Update <4.0.0.5 is vulnerable to Cross Site Request Forgery (CSRF). The affected endpoint processes state-changing requests without requiring a CSRF token or equivalent protection. The endpoint accepts application/x-www-form-urlencoded requests, and an originally POST...

Vendor: dovestones
Product: ad_self_update
Published: Apr 21, 2026
Source: NVD
CVE-2026-31013 MEDIUM - 6.1

Dovestones Softwares ADPhonebook <4.0.1.1 has a reflected cross-site scripting (XSS) vulnerability in the search parameter of the /ADPhonebook?Department=HR endpoint. User-supplied input is reflected in the HTTP response without proper input validation or output encoding, allowing execution of ar...

Vendor: dovestones
Product: ad_phonebook
Published: Apr 21, 2026
Source: NVD
CVE-2026-29644 MEDIUM - 5.3

XiangShan (open-source high-performance RISC-V processor) commit edb1dfaf7d290ae99724594507dc46c2c2125384 (2024-11-28) has improper gating of its distributed CSR write-enable path, allowing illegal CSR write attempts to alter custom PMA (Physical Memory Attribute) CSR state. Though the RISC-V privil...

Published: Apr 21, 2026
Source: NVD
CVE-2026-1089 MEDIUM - 6.5

User‑Controlled HTTP Header in Fortra's GoAnywhere MFT prior to version 7.10.0 allows attackers to trigger a DNS lookup, as well as DNS Rebinding and Information Disclosure.

Vendor: fortra
Product: goanywhere_managed_file_transfer
Published: Apr 21, 2026
Source: NVD
CVE-2026-0972 HIGH - 7.3

The login limit is not enforced on the SFTP service of Fortra's GoAnywhere MFT prior to 7.10.0 if the Web User attempting to be logged in to is configured to log in with an SSH Key, making the SSH key vulnerable to being guessed via Brute Force.

Vendor: fortra
Product: goanywhere_managed_file_transfer
Published: Apr 21, 2026
Source: NVD
CVE-2026-0971 MEDIUM - 4.3

An improper session timeout issue in Fortra's GoAnywhere MFT prior to version 7.10.0 results in SAML configured Web Users being redirected to the regular login page instead of the SAML login page.

Vendor: fortra
Product: goanywhere_managed_file_transfer
Published: Apr 21, 2026
Source: NVD
CVE-2025-31981 MEDIUM - 5.3

HCL BigFix Service Management (SM) Discovery is vulnerable to unenforced encryption due to port 80 (HTTP) being open, allowing unencrypted access.  An attacker with access to the network traffic can sniff packets from the connection and uncover the data.

Vendor: HCLSoftware
Product: BigFix Service Management (SM)
Published: Apr 21, 2026
Source: NVD

HCL BigFix Service Management is susceptible to HTTP Request Smuggling.  HTTP request smuggling vulnerabilities arise when websites route HTTP requests through web servers with inconsistent HTTP parsing. HTTP Smuggling exploits inconsistencies in request parsing between front-end and back-end server...

Vendor: HCLSoftware
Product: BigFix Service Management (SM)
Published: Apr 21, 2026
Source: NVD
CVE-2025-1241 MEDIUM - 5.8

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data.

Vendor: fortra
Product: goanywhere_agents
Published: Apr 21, 2026
Source: NVD
CVE-2025-14362 HIGH - 7.3

The login limit is not enforced on the SFTP service of Fortra's GoAnywhere MFT prior to 7.10.0 if the Web User attempting to be logged in to is configured to log in with an SSH Key, making the SSH key vulnerable to being guessed via Brute Force.

Vendor: Fortra
Product: GoAnywhere MFT
Published: Apr 21, 2026
Source: NVD