Filter and search through 200,061 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-2880 | ## Summary A path normalization inconsistency in `@fastify/middie` can result in authentication/authorization bypass when using path-scoped middleware... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-28799 | PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, a heap use-after-free vulnerability exists in PJ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28795 | ### Impact The `save_report` tool in `openchatbi/tool/save_report.py` suffers from a critical path traversal vulnerability due to insufficient input s... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-28794 | ### Summary A critical Prototype Pollution vulnerability exists in the RPC JSON deserializer of the `@orpc/client` package. The vulnerability allows u... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-28785 | Ghostfolio is an open source wealth management software. Prior to version 2.244.0, by bypassing symbol validation, an attacker can execute arbitrary S... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28778 | International Datacasting Corporation (IDC) SFX Series SuperFlex Satellite Receiver contains undocumented, hardcoded/insecure credentials for the `xd`... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28777 | International Datacasting Corporation (IDC) SFX2100 Satellite Receiver, trivial password for the `user` (usr) account. A remote unauthenticated atta... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28776 | International Datacasting Corporation (IDC) SFX Series SuperFlex SatelliteReceiver contains hardcoded credentials for the `monitor` account. A remote ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28775 | An unauthenticated Remote Code Execution (RCE) vulnerability exists in the SNMP service of International Datacasting Corporation (IDC) SFX Series Supe... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28774 | An OS Command Injection vulnerability exists in the web-based Traceroute diagnostic utility of International Datacasting Corporation (IDC) SFX Series ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28773 | The web-based Ping diagnostic utility (/IDC_Ping/main.cgi) in International Datacasting Corporation (IDC) SFX Series SuperFlex SatelliteReceiver Web M... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28772 | A Reflected Cross-Site Scripting (XSS) vulnerability in the /IDC_Logging/index.cgi endpoint of International Datacasting Corporation (IDC) SFX Series ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28771 | A Reflected Cross-Site Scripting (XSS) vulnerability exists in the /index.cgi endpoint of International Datacasting Corporation (IDC) SFX Series Super... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28770 | Improper neutralization of special elements in the /IDC_Logging/checkifdone.cgi script in International Datacasting Corporation (IDC) SFX Series Super... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28769 | A path traversal vulnerability exists in the /IDC_Logging/checkifdone.cgi script in International Datacasting Corporation (IDC) SFX Series SuperFlex S... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28727 | Local privilege escalation due to insecure Unix socket permissions. The following products are affected: Acronis Cyber Protect 17 (macOS) before build... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28726 | Sensitive information disclosure due to improper access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28725 | Sensitive information disclosure due to improper configuration of a headless browser. The following products are affected: Acronis Cyber Protect 17 (L... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28724 | Unauthorized data access due to insufficient access control validation. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows)... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-28723 | Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 (Linux, Windows) before... | 0.0 | 0 | Neutral | No | No |