Filter and search through 199,173 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-0768 | Langflow code Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected ins... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-0766 | Open WebUI load_tool_module_by_id Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitra... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0765 | Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to e... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0764 | GPT Academic upload Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbit... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0763 | GPT Academic run_in_subprocess_wrapper_func Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote at... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0762 | GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0761 | Foundation Agents MetaGPT actionoutput_str_to_mapping Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers t... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0760 | Foundation Agents MetaGPT deserialize_message Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0759 | Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attacker... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0758 | mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate pri... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0757 | MCP Manager for Claude Desktop execute-command Command Injection Sandbox Escape Vulnerability. This vulnerability allows remote attackers to bypass th... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0756 | github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitr... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0755 | gemini-mcp-tool execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0750 | Improper Verification of Cryptographic Signature vulnerability in Drupal Drupal Commerce Paybox Commerce Paybox on Drupal 7.X allows Authentication By... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0749 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Form Builder allows Cross-Site Scripting ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0713 | A security vulnerability in the /apis/dashboard.grafana.app/* endpoints allows authenticated users to bypass dashboard and folder permissions. The vul... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0712 | An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks. The vulnerability was introduced in Gr... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0705 | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cloud Manager (Windows) before build 6.4.2... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-0675 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in webaware NextGEN Download Gallery nextgen-download-gallery... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-0672 | When using http.cookies.Morsel, user-controlled cookie values and parameters can allow injecting HTTP headers into messages. Patch rejects all control... | 0.0 | 0 | Neutral | No | Yes |