Filter and search through 199,628 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-23911 | Rejected reason: Not used | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-23910 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23909 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23896 | No description available | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23892 | ### Impact OctoPrint versions up to and including 1.11.5 are affected by a (theoretical) timing attack vulnerability that allows API key extraction o... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23887 | Group-Office is an enterprise customer relationship management and groupware tool. In versions 6.8.148 and below, and 25.0.1 through 25.0.79, the appl... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23877 | ### Summary Swing Music's `list_folders()` function in the `/folder/dir-browser` endpoint is vulnerable to directory traversal attacks. Any authentica... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23875 | CrawlChat is an open-source, AI-powered platform that transforms technical documentation into intelligent chatbots. Prior to version 0.0.8, a non-exis... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23873 | hustoj is an open source online judge based on PHP/C++/MySQL/Linux for ACM/ICPC and NOIP training. All versions are vulnerable to CSV Injection (Formu... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23852 | SiYuan is a personal knowledge management system. Versions prior to 3.5.4 have a stored Cross-Site Scripting (XSS) vulnerability that allows an attack... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23851 | ### Summary The SiYuan Note application (v3.5.3) contains a logic vulnerability in the /api/file/globalCopyFiles endpoint. The function allows authent... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23850 | ### Summary Markdown feature allows unrestricted server side html-rendering which allows arbitary file read (LFD) and fully SSRF access We in @0xL4ugh... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23847 | ### Summary Reflected XSS in /api/icon/getDynamicIcon due to unsanitized SVG input. ### Details The endpoint generates SVG images for text icons (type... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23844 | Whisper Money is a personal finance application. Versions prior to 0.1.5 have an insecure direct object reference vulnerability. A user can update/cre... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23838 | Tandoor Recipes is a recipe manager than can be installed with the Nix package manager. Starting in version 23.05 and prior to version 26.05, when usi... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23833 | ### Summary An integer overflow in the API component's protobuf decoder allows denial-of-service attacks when API encryption is not used. ### Details... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23764 | VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato (versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively), as well... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23763 | VB-Audio Matrix and Matrix Coconut (versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively), contain a local privilege escalation vulnerabil... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23762 | VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato (versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively), as well... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23761 | VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato (versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively), as well... | 0.0 | 0 | Neutral | No | No |