Filter and search through 199,276 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-21625 | User provided uploads to the Easy Discuss component for Joomla aren't properly validated. Uploads are purely checked by file extensions, no mime type ... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-21624 | Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of the Easy Discuss component for Joomla. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21623 | Lack of input filterung leads to a persistent XSS vulnerability in the forum post handling of the Easy Discuss component for Joomla. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21618 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in hexpm hexpm/hexpm ('Elixir.HexpmWeb.Share... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21569 | This High severity XXE (XML External Entity Injection) vulnerability was introduced in version 7.1.0 of Crowd Data Center and Server. This XXE (XM... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21483 | ## Security Advisory: Stored XSS Leading to Admin Account Takeover **Affected Versions:** ≤ 5.1.0 **Vulnerability Type:** CWE-79: Stored Cross-Site... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-21440 | ### Summary **Description** A Path Traversal (CWE-22) vulnerability in AdonisJS multipart file handling may allow a remote attacker to write arbitrar... | 0.0 | 0 | Low | Yes | Yes |
| CVE-2026-21437 | eopkg is a Solus package manager implemented in python3. In versions prior to 4.4.0, a malicious package could include files that are not tracked by `... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-21436 | eopkg is a Solus package manager implemented in python3. In versions prior to 4.4.0, a malicious package could escape the directory set by `--destdir`... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-21427 | The installers for multiple products provided by PIONEER CORPORATION contain an issue with the DLL search path, which may lead to insecurely loading D... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21418 | Dell Unity, version(s) 5.5.2 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulne... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21411 | Authentication bypass issue exists in OpenBlocks series versions prior to FW5.0.8, which may allow an attacker to bypass administrator authentication ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21409 | Improper authorization vulnerability exists in RICOH Streamline NX 3.5.1 to 24R3. If a man-in-the-middle attack is conducted on the communication betw... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-21408 | beat-access for Windows version 3.0.3 and prior contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Librarie... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-20974 | Improper input validation in data related to network restrictions prior to SMR Jan-2026 Release 1 allows physical attackers to bypass Carrier Relock. | 0.0 | 0 | Neutral | No | No |
| CVE-2026-20894 | Cross-site scripting vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation. If an attacking administrator conf... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-20893 | Origin validation error issue exists in Fujitsu Security Solution AuthConductor Client Basic V2 2.0.25.0 and earlier. If this vulnerability is exploit... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-20759 | OS Command Injection vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation, which may allow a logged-in user w... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-1680 | Improper access control in the WCF endpoint in Edgemo (now owned by Danoffice IT) Local Admin Service 1.2.7.23180 on Windows allows a local user to es... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-1665 | A command injection vulnerability exists in nvm (Node Version Manager) versions 0.40.3 and below. The nvm_download() function uses eval to execute wge... | 0.0 | 0 | Neutral | No | No |