Filter and search through 392,393 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-23630 | Docmost is open-source collaborative wiki and documentation software. In versions 0.3.0 through 0.23.2, Mermaid code block rendering is vulnerable to ... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-23626 | # Kimai 2.45.0 - Authenticated Server-Side Template Injection (SSTI) ## Vulnerability Summary | Field | Value | |-------|-------| | **Title** | Auth... | 6.8 | 250 | Neutral | No | Yes |
| CVE-2026-23625 | OpenProject is an open-source, web-based project management software. Versions 16.3.0 through 16.6.4 are affected by a stored cross-site scripting vul... | 8.7 | 541 | Neutral | No | No |
| CVE-2026-23622 | ### Summary `application/core/EA_Security.php::csrf_verify()` only enforces CSRF for POST requests and returns early for non-POST methods. Several app... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23593 | A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an unauthenticated remote attacker to view s... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23592 | Insecure file operations in HPE Aruba Networking Fabric Composer’s backup functionality could allow authenticated attackers to achieve remote code e... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23582 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23581 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23580 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23579 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23578 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23577 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23576 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23575 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23574 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23550 | Incorrect Privilege Assignment vulnerability in Modular DS allows Privilege Escalation.This issue affects Modular DS: from n/a through 2.5.1. | 10.0 | 693 | Neutral | Yes | Yes |
| CVE-2026-23535 | ### Impact Multi-translation download could write to an arbitrary location when instructed by a crafted server. ### Patches * https://github.com/Webl... | 8.0 | 579 | Neutral | No | Yes |
| CVE-2026-23534 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23533 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the RDPGFX Clea... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23532 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the FreeRDP cl... | 0.0 | 0 | Neutral | No | Yes |