Filter and search through 199,642 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-24480 | QGIS is a free, open source, cross platform geographical information system (GIS) The repository contains a GitHub Actions workflow called "pre-commit... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-24479 | HUSTOF is an open source online judge based on PHP/C++/MySQL/Linux for ACM/ICPC and NOIP training. Prior to version 26.01.24, the problem_import_qduoj... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24476 | Shaarli is a personal bookmarking service. Prior to version 0.16.0, crafting a malicious tag which starting with `"` prematurely ends the `<input>` ta... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24474 | Dioxus Components is a shadcn-style component library for the Dioxus app framework. Prior to commit 41e4242ecb1062d04ae42a5215363c1d9fd4e23a, `use_ani... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24473 | ## Summary Serve static Middleware for the Cloudflare Workers adapter contains an information disclosure vulnerability that may allow attackers to re... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24435 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) implement an insecure Cross-Origin Resource Sharing (CORS) policy on au... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24429 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) ship with a predefined default password for a built-in authentication a... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24428 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) contain an authorization flaw in the user management API that allows a ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24423 | SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. T... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-24402 | Rejected reason: GitHub cannot issue a CVE for this Security Advisory because this advisory includes information about more than one vulnerability. ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24400 | An XML External Entity (XXE) vulnerability exists in `org.assertj.core.util.xml.XmlStringPrettyFormatter`: the `toXmlDocument(String)` method initiali... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24348 | Multiple cross-site scripting vulnerabilities in Admin UI of EZCast Pro II version 1.17478.146 allow attackers to execute arbitrary JavaScript code in... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24347 | Improper input validation in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to manipulate files in the /tmp directory | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24346 | Use of well-known default credentials in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to access protected areas in the web applicati... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24345 | Cross-Site Request Forgery in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to bypass authorization checks and gain full access to th... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24344 | Multiple Buffer Overflows in Admin UI of EZCast Pro II version 1.17478.146 allow attackers to cause a program crash and potential remote code executio... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24342 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24341 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24340 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24339 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |