Filter and search through 392,598 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-22920 | The device's passwords have not been adequately salted, making them vulnerable to password extraction attacks. | 7.5 | 386 | Neutral | No |
| Yes |
| CVE-2026-22919 | An attacker with administrative access may inject malicious content into the login page, potentially enabling cross-site scripting (XSS) attacks, lead... | 4.8 | 202 | Neutral | No | Yes |
| CVE-2026-22918 | An attacker may exploit missing protection against clickjacking by tricking users into performing unintended actions through maliciously crafted web p... | 8.2 | 489 | Neutral | No | Yes |
| CVE-2026-22917 | Improper input handling in a system endpoint may allow attackers to overload resources, causing a denial of service. | 7.5 | 386 | Neutral | No | Yes |
| CVE-2026-22916 | An attacker with low privileges may be able to trigger critical system functions such as reboot or factory reset without proper restrictions, potentia... | 5.4 | 121 | Neutral | No | Yes |
| CVE-2026-22915 | An attacker with low privileges may be able to read files from specific directories on the device, potentially exposing sensitive information. | 6.5 | 209 | Neutral | No | Yes |
| CVE-2026-22914 | An attacker with limited permissions may still be able to write files to specific locations on the device, potentially leading to system manipulation. | 6.5 | 209 | Neutral | No | Yes |
| CVE-2026-22913 | Improper handling of a URL parameter may allow attackers to execute code in a user's browser after login. This can lead to the extraction of sensitive... | 6.1 | 272 | Neutral | No | Yes |
| CVE-2026-22912 | Improper validation of a login parameter may allow attackers to redirect users to malicious websites after authentication. This can lead to various ri... | 6.1 | 207 | Neutral | No | Yes |
| CVE-2026-22911 | Firmware update files may expose password hashes for system accounts, which could allow a remote attacker to recover credentials and gain unauthorized... | 7.5 | 514 | Neutral | No | Yes |
| CVE-2026-22910 | The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This... | 9.1 | 568 | Neutral | No | Yes |
| CVE-2026-22909 | Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentiall... | 9.1 | 632 | Neutral | No | Yes |
| CVE-2026-22908 | Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confid... | 9.1 | 568 | Neutral | No | Yes |
| CVE-2026-22907 | An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read and modify system data. | 9.1 | 568 | Neutral | No | Yes |
| CVE-2026-22876 | Path Traversal vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation. If this vulnerability is exploited, arbi... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22871 | ## Summary A **path traversal vulnerability** exists in GuardDog's `safe_extract()` function that allows malicious PyPI packages to write arbitrary f... | 9.8 | 711 | Neutral | No | Yes |
| CVE-2026-22870 | ## Summary GuardDog's `safe_extract()` function does not validate decompressed file sizes when extracting ZIP archives (wheels, eggs), allowing attac... | 7.5 | 487 | Neutral | Yes | Yes |
| CVE-2026-22869 | Eigent is a multi-agent Workforce. A critical security vulnerability in the CI workflow (.github/workflows/ci.yml) allows arbitrary code execution fro... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22868 | **Impact** An attacker can cause high CPU usage by sending a specially crafted p2p message. More details to be released later. **Credit** This issu... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22867 | LaSuite Doc is a collaborative note taking, wiki and documentation platform. From 3.8.0 to 4.3.0, a Stored Cross-Site Scripting (XSS) vulnerability ex... | 8.7 | 541 | Neutral | No | No |