Filter and search through 392,252 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-23746 | Entrust Instant Financial Issuance (IFI) On Premise software (formerly referred to as CardWizard) versions 5.x, prior to 6.10.5, and prior to 6.11.1 c... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-23745 | ### Summary The `node-tar` library (`<= 7.5.2`) fails to sanitize the `linkpath` of `Link` (hardlink) and `SymbolicLink` entries when `preservePaths`... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2026-23744 | ### Summary MCPJam inspector is the local-first development platform for MCP servers. The Latest version Versions 1.4.2 and earlier are vulnerable to ... | 9.8 | 819 | Neutral | Yes | Yes |
| CVE-2026-23742 | ### Impact Arbitrary code execution through [lua filters](https://opensource.zalando.com/skipper/reference/scripts/). The default skipper configurat... | 8.8 | 708 | Neutral | No | Yes |
| CVE-2026-23737 | Improper input handling in the JSON deserialization component can lead to arbitrary JavaScript code execution. The vulnerability can be exploited via... | 7.5 | 508 | Neutral | No | Yes |
| CVE-2026-23736 | Due to improper input validation, a malicious object key can lead to prototype pollution during JSON deserialization. This affects only JSON deseriali... | 7.3 | 349 | Neutral | No | Yes |
| CVE-2026-23735 | ### Summary Originally reported as an issue #2613 but should be elevated to a security issue as the ExecutionContext is often used to pass authenticat... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23733 | ### Summary A stored Cross-Site Scripting (XSS) vulnerability in the Mermaid artifact renderer allows attackers to execute arbitrary JavaScript within... | 6.4 | 357 | Neutral | No | No |
| CVE-2026-23732 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, FastGlyph parsing trusts `cbData`/remaining length and never... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23731 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, The web application is vulnerable to clickjacking attacks. The WeGIA application d... | 4.3 | 107 | Neutral | No | No |
| CVE-2026-23730 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php e... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23729 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php e... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23728 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php e... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23727 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an Open Redirect vulnerability was identified in the /WeGIA/controle/control.php e... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23726 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, An Open Redirect vulnerability was identified in the /WeGIA/controle/control.php e... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23725 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, a Stored Cross-Site Scripting (XSS) vulnerability was identified in the html/pet/a... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23724 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, a Stored Cross-Site Scripting (XSS) vulnerability was identified in the html/atend... | 4.3 | 107 | Neutral | No | No |
| CVE-2026-23723 | WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an authenticated SQL Injection vulnerability was identified in the Atendido_ocorre... | 7.2 | 322 | Neutral | No | No |
| CVE-2026-23722 | WeGIA is a Web Manager for Charitable Institutions. Prior to 3.6.2, a Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the WeGIA s... | 9.1 | 576 | Neutral | No | No |
| CVE-2026-23721 | OpenProject is an open-source, web-based project management software. When using groups in OpenProject to manage users, the group members should only ... | 4.3 | 107 | Neutral | No | No |