Filter and search through 392,252 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-24435 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) implement an insecure Cross-Origin Resource Sharing (CORS) policy on au... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-24433 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) contain a stored cross-site scripting vulnerability in the user creatio... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24432 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) lack cross-site request forgery (CSRF) protections on administrative en... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24431 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) display stored user account passwords in plaintext within the administr... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24430 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) disclose sensitive account credentials in cleartext within HTTP respons... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24429 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) ship with a predefined default password for a built-in authentication a... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24428 | Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) contain an authorization flaw in the user management API that allows a ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24423 | SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. T... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-24422 | ### Summary Several public API endpoints return email addresses and non‑public records (e.g. open questions with isVisible=false). ### Details OpenQu... | 5.3 | 196 | Neutral | No | No |
| CVE-2026-24421 | ### Summary Authenticated non‑admin users can call /api/setup/backup and trigger a configuration backup. The endpoint only checks authentication, not ... | 6.5 | 260 | Neutral | No | No |
| CVE-2026-24420 | ### Summary A logged‑in user without the dlattachment right can download FAQ attachments. This is due to a permissive permission check in attachment.p... | 6.5 | 260 | Neutral | No | No |
| CVE-2026-24412 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have aH... | 8.8 | 553 | Neutral | No | No |
| CVE-2026-24411 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Un... | 7.1 | 313 | Neutral | No | No |
| CVE-2026-24410 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Un... | 7.1 | 313 | Neutral | No | No |
| CVE-2026-24409 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Un... | 7.1 | 313 | Neutral | No | No |
| CVE-2026-24408 | ### Summary The sigstore-python OAuth authentication flow is susceptible to Cross-Site Request Forgery. ### Details `_OAuthSession` creates a uniqu... | 0.0 | 158 | Neutral | No | Yes |
| CVE-2026-24407 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Un... | 7.1 | 313 | Neutral | No | No |
| CVE-2026-24406 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a ... | 8.8 | 553 | Neutral | No | No |
| CVE-2026-24405 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a ... | 8.8 | 553 | Neutral | No | No |
| CVE-2026-24404 | iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In versions 2.3.1.1 and below, CIc... | 7.1 | 313 | Neutral | No | No |