Filter and search through 392,661 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-666 | No description available | 0.0 | 0 | Neutral | Yes |
| No |
| CVE-2026-5000 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2026-25067 | SmarterTools SmarterMail versions prior to build 9518 contain an unauthenticated path coercion vulnerability in the background-of-the-day preview end... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24910 | In Bun before 1.3.5, the default trusted dependencies list (aka trust allow list) can be spoofed by a non-npm package in the case of a matching name (... | 5.9 | 163 | Neutral | No | No |
| CVE-2026-24909 | vlt before 1.0.0-rc.10 mishandles path sanitization for tar, leading to path traversal during extraction. | 5.9 | 277 | Neutral | No | Yes |
| CVE-2026-24897 | Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files ... | 10.0 | 599 | Neutral | No | No |
| CVE-2026-24889 | ### Impact Arithmetic overflow can be triggered in the `Bytes::slice`, `Vec::slice`, and `Prng::gen_range` (for `u64`) methods in the `soroban-sdk` i... | 5.3 | 124 | Neutral | No | Yes |
| CVE-2026-24888 | ### Summary The `makerjs.extendObject` function copies properties from source objects without proper validation, potentially exposing applications to ... | 6.5 | 216 | Neutral | No | Yes |
| CVE-2026-24883 | In GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leading to a den... | 3.7 | 102 | Neutral | No | Yes |
| CVE-2026-24882 | In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and ECC keys. | 8.4 | 518 | Neutral | No | Yes |
| CVE-2026-24881 | In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key can cause a stack-based buffer overflow... | 8.1 | 482 | Neutral | No | Yes |
| CVE-2026-24875 | Integer Overflow or Wraparound vulnerability in yoyofr modizer.This issue affects modizer: before 4.1.1. | 7.8 | 439 | Neutral | No | No |
| CVE-2026-24874 | Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in themrdemonized xray-monolith.This issue affects xray-monolith: before 2... | 9.1 | 576 | Neutral | No | No |
| CVE-2026-24873 | Out-of-bounds Read vulnerability in Rinnegatamante lpp-vita.This issue affects lpp-vita: before lpp-vita r6. | 7.8 | 525 | Neutral | No | No |
| CVE-2026-24872 | improper pointer arithmetic vulnerability in ProjectSkyfire SkyFire_548.This issue affects SkyFire_548: before 5.4.8-stable5. | 9.8 | 596 | Neutral | No | No |
| CVE-2026-24871 | Improper Control of Generation of Code ('Code Injection') vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manag... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24870 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop: before 1.3. | 3.7 | 175 | Neutral | No | No |
| CVE-2026-24869 | Use-after-free in the Layout: Scrolling and Overflow component. This vulnerability affects Firefox < 147.0.2. | 8.1 | 476 | Neutral | No | Yes |
| CVE-2026-24868 | Mitigation bypass in the Privacy: Anti-Tracking component. This vulnerability affects Firefox < 147.0.2. | 7.5 | 386 | Neutral | No | Yes |
| CVE-2026-24867 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |