Filter and search through 199,388 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-22835 | Rejected reason: Not used | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-22834 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22833 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22832 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22831 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22830 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22829 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22822 | ### Summary The `getSecretKey` template function, while introduced for senhasegura Devops Secrets Management (DSM) provider, has the ability to fetch... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22816 | Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. When resolving dependencies in versions before... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22814 | ### Summary **Description** A Mass Assignment (CWE-915) vulnerability in AdonisJS Lucid may allow a remote attacker who can influence data that is pas... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22808 | ### Summary A cross-site scripting (XSS) vulnerability in Fleet’s Windows MDM authentication flow could allow an attacker to compromise a Fleet user ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22805 | Metabase is an open-source data analytics platform. Prior to 55.13, 56.3, and 57.1, self-hosted Metabase instances that allow users to create subscrip... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22787 | ### Impact html2pdf.js contains a cross-site scripting (XSS) vulnerability when given a text source rather than an element. This text is not sufficien... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22786 | ### Impact Gin-vue-admin <= v2.8.7 has a path traversal vulnerability in the breakpoint resume upload functionality. Attacker can upload any files on ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22785 | ### Impact The MCP server generation logic relies on string manipulation that incorporates the summary field from the OpenAPI specification without pr... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2026-22782 | ### Summary Invalid RPC signatures cause the server to log the shared HMAC secret (and expected signature), which exposes the secret to log readers an... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22755 | Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Vivotek Affected device model numbers are FD8365,... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22714 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Mona... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22713 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Grow... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22712 | Improper Encoding or Escaping of Output due to magic word replacement in ParserAfterTidy vulnerability in The Wikimedia Foundation Mediawiki - Approve... | 0.0 | 0 | Neutral | No | No |