CVE
Info.com
  • Browse CVEs
  • Trends
  • Email Alerts
  • About

📊 CVE Trends & Statistics

Discover trending vulnerabilities and security insights

Last 7 Days Last 30 Days Last 90 Days Last Year
1,288
Total CVEs
115
Critical
492
High
447
Medium
79
Low
6.8
Avg CVSS Score

Severity Distribution

115
Critical
9%
Click to view
492
High
38%
Click to view
447
Medium
35%
Click to view
79
Low
6%
Click to view

Daily CVE Trends

192
Jul 03
70
Jul 04
86
Jul 05
232
Jul 06
174
Jul 07
338
Jul 08
101
Jul 09

Top Affected Vendors

Apache Software Foundation
Click to view all CVEs
50
🔥 15
Microsoft
Click to view all CVEs
48
🔥 4
Go
Click to view all CVEs
40
🔥 4
Coollabsio
Click to view all CVEs
32
🔥 4
Gitea
Click to view all CVEs
31
🔥 10
Foxit Software Inc.
Click to view all CVEs
28
Google
Click to view all CVEs
27
🔥 1
Pip
Click to view all CVEs
27
🔥 4
SourceCodester
Click to view all CVEs
27
Code-projects
Click to view all CVEs
27

Top Affected Products

edge_chromium
Microsoft
Click to view all CVEs
43
🔥 1
coolify
Coollabsio
Click to view all CVEs
32
🔥 4
Gitea Open Source Git Server
Gitea
Click to view all CVEs
31
🔥 10
Foxit PDF Editor, Foxit PDF Reader
Foxit Software Inc.
Click to view all CVEs
28
Chrome
Google
Click to view all CVEs
27
🔥 1
PowerProtect Data Domain
Dell
Click to view all CVEs
25
🔥 2
Apache Camel
Apache Software Foundation
Click to view all CVEs
22
🔥 7
github.com/coder/coder/v2
Go
Click to view all CVEs
18
FOSSBilling
FOSSBilling
Click to view all CVEs
17
Fireware OS
WatchGuard
Click to view all CVEs
16

🔥 Recently Published CVEs

CVE-2026-60095 MEDIUM - 6.5

Vinchin Backup & Recovery through 9.0.0.86562 contains a stack buffer overflow vulnerability in the ModuleHandShake function of the agentlink_server service that allows unauthenticated remote attacker...

Vendor: Vinchin Product: Backup & Recovery 9.0 Published: Jul 09, 2026
CVE-2026-60094 MEDIUM - 6.5

Vinchin Backup & Recovery through 9.0.0.86562 contains a heap buffer overflow vulnerability that allows unauthenticated remote attackers to cause process crash or memory corruption by sending a malfor...

Vendor: Vinchin Product: Backup & Recovery 9.0 Published: Jul 09, 2026
CVE-2026-4256 HIGH - 8.2

Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP Technology Inc. PassGate allows LDAP Injection. This issue affects PassGate: through 30042...

Published: Jul 09, 2026
CVE-2026-15186 MEDIUM - 6.3

A vulnerability was identified in macrozheng mall up to 1.0.3. This impacts an unknown function of the file /returnApply/create of the component Portal Endpoint. The manipulation of the argument order...

Vendor: macrozheng Product: mall Published: Jul 09, 2026
CVE-2026-15185 LOW - 3.3

A vulnerability was determined in GPAC 26.03-DEV. This affects the function vobsub_read_idx of the file /src/media_tools/vobsub.c of the component MP4Box. Executing a manipulation of the argument num_...

Product: GPAC Published: Jul 09, 2026
CVE-2026-14261

A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reinstallation through the /setup/ folder, enabling attackers to reinstall the service to a rem...

Vendor: Xerte Product: Xerte Online Tools Published: Jul 09, 2026
CVE-2026-12879

An Improper Input Validation vulnerability in BigQuery DAO in Google Cloud Apigee versions prior to 2026-06-12 on Google Cloud Platform allows an authenticated attacker to exfiltrate cross-tenant data...

Vendor: Google Cloud Product: Apigee Published: Jul 09, 2026
CVE-2026-12593

The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) forgot to ensure an HTTP request for creating an API Token for another user had s...

Vendor: Qt Product: Axivion Published: Jul 09, 2026
CVE-2026-12116

A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server settings, which can be changed to a PHP interpreter, allowing an attacker to upload PHP d...

Vendor: Xerte Product: Xerte Online Tools Published: Jul 09, 2026
CVE-2026-53760 MEDIUM - 5.2

Admidio: CSRF on Plugin Install, Uninstall, and Update via Unprotected GET Requests...

Vendor: composer Product: admidio/admidio Published: Jul 09, 2026
Browse CVEs Trends Email Alerts About

© 2026 CVEInfo.com - Aggregating CVE Information from Multiple Sources

Data sources: NVD, MITRE, GitHub Security Advisories