Filter and search through 392,438 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-22239 | The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An unauthenticated remote attacker could exploit this vulnerability... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-22238 | The vulnerability exists in BLUVOYIX due to improper authentication in the BLUVOYIX admin APIs. An unauthenticated remote attacker could exploit this ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22237 | The vulnerability exists in BLUVOYIX due to the exposure of sensitive internal API documentation. An unauthenticated remote attacker could exploit thi... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22236 | The vulnerability exists in BLUVOYIX due to improper authentication in the BLUVOYIX backend APIs. An unauthenticated remote attacker could exploit thi... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22235 | OPEXUS eComplaint before version 9.0.45.0 allows an attacker to visit the the 'DocumentOpen.aspx' endpoint, iterate through predictable values of 'cha... | 7.5 | 415 | Neutral | No | No |
| CVE-2026-22234 | OPEXUS eCasePortal before version 9.0.45.0 allows an unauthenticated attacker to navigate to the 'Attachments.aspx' endpoint, iterate through predicta... | 9.8 | 618 | Neutral | No | No |
| CVE-2026-22233 | OPEXUS eCASE Audit allows an authenticated attacker to save JavaScript as a comment in the "Estimated Staff Hours" field. The JavaScript is executed w... | 5.5 | 234 | Neutral | No | No |
| CVE-2026-22232 | OPEXUS eCASE Audit allows an authenticated attacker to save JavaScript in the "A or SIC Number" field within the Project Setup functionality. The Java... | 5.5 | 234 | Neutral | No | No |
| CVE-2026-22231 | OPEXUS eCASE Audit allows an authenticated attacker to save JavaScript as a comment within the Document Check Out functionality. The JavaScript is exe... | 5.5 | 234 | Neutral | No | No |
| CVE-2026-22230 | OPEXUS eCASE Audit allows an authenticated attacker to modify client-side JavaScript or craft HTTP requests to access functions or buttons that have b... | 7.6 | 469 | Neutral | No | No |
| CVE-2026-22219 | Chainlit versions prior to 2.9.4 contain a server-side request forgery (SSRF) vulnerability in the /project/element update flow when configured with t... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22218 | Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in the /project/element update flow. An authenticated client can send a ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22214 | RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds ... | 9.8 | 596 | Neutral | No | No |
| CVE-2026-22213 | RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the tapslip6 utility. The vulnerability ... | 9.8 | 698 | Neutral | Yes | No |
| CVE-2026-22212 | TinyOS versions up to and including 2.1.2 contain a stack-based buffer overflow vulnerability in the mcp2200gpio utility. The vulnerability is caused ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22211 | TinyOS versions up to and including 2.1.2 contain a global buffer overflow vulnerability in the printfUART formatted output implementation used within... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22200 | Enhancesoft osTicket versions up to and including 1.18.2 contain an arbitrary file read vulnerability in the ticket PDF export functionality. A remote... | 7.5 | 487 | Neutral | Yes | Yes |
| CVE-2026-22198 | GestSup versions up to and including 3.2.56 contain a pre-authentication stored cross-site scripting (XSS) vulnerability in the API error logging func... | 6.1 | 280 | Neutral | No | No |
| CVE-2026-22197 | GestSup versions up to and including 3.2.56 contain multiple SQL injection vulnerabilities in the asset list functionality. Multiple request parameter... | 8.1 | 613 | Neutral | No | No |
| CVE-2026-22196 | GestSup versions up to and including 3.2.56 contain a SQL injection vulnerability in ticket creation functionality. User-controlled input provided dur... | 8.1 | 613 | Neutral | No | No |