Filter and search through 200,138 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-3216 | This module enables you to easily theme and build an entire website using only their browser, without the need to write code beyond basic JSX and CSS.... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-3215 | This module integrates with Islandora, an open-source digital asset management (DAM) framework. Islandora integrates with various open-source services... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3214 | This module enables you to protect web forms from automated spam by requiring users to pass a challenge. The module doesn't sufficiently invalidate us... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3213 | This module enables you to block bots by Firewall. The module doesn't sufficiently sanitize user input leading to a reflected Cross-site scripting (XS... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3212 | This module integrates the Tagify JavaScript library to enhance taxonomy entity reference widgets. The module does not sufficiently sanitise user-supp... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3211 | This module allows site builders to create so-called "theme_rule" config entities. These theme rules can render pages with different themes than the d... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3210 | This module enables you to add icons to CKEditor. The module doesn't sufficiently add custom permissions to the dialog and autocomplete routes, allowi... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3206 | Improper Resource Shutdown or Release vulnerability in KrakenD, SLU KrakenD-CE (CircuitBreaker modules), KrakenD, SLU KrakenD-EE (CircuitBreaker modul... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3197 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3125 | A Server-Side Request Forgery (SSRF) vulnerability was identified in the @opennextjs/cloudflare package, resulting from a path normalization bypass in... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-3098 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-30921 | Summary OneUptime Synthetic Monitors allow low-privileged project users to submit custom Playwright code that is executed on the `oneuptime-probe` se... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-30916 | ### Impact This impacts users of Shescape that configure their `shell` to point to a file on disk that is a link to a link. The precise result of bei... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-30910 | Crypt::Sodium::XS versions through 0.001000 for Perl has potential integer overflows. Combined aead encryption, combined signature creation, and bin2... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-30909 | Crypt::NaCl::Sodium versions through 2.002 for Perl has potential integer overflows. bin2hex, encrypt, aes256gcm_encrypt_afternm and seal functions d... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-30896 | The installer for Qsee Client versions 1.0.1 and prior insecurely load Dynamic Link Libraries (DLLs). When a user is directed to place some malicious ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-3089 | No description available | 0.0 | 0 | Neutral | No | No |
| CVE-2026-30887 | ### Summary OneUptime allows project members to run custom Playwright/JavaScript code via Synthetic Monitors to test websites. However, the system exe... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-30885 | **Product:** AVideo (https://github.com/WWBN/AVideo) **Version:** Latest (tested March 2026) **Type:** Insecure Direct Object Reference (IDOR) **Auth ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-30870 | ### Impact In version **1.20.0**, when using new sync streams with `config.edition: 3`, certain subquery filters were ignored when determining which ... | 0.0 | 0 | Neutral | No | Yes |