Búsqueda de CVEs

362.459 resultados
CVE-2026-13437MEDIUMInsertion of sensitive information into sent data in the AI Agent job API in Devolutions PowerShell Universal 2026.2.0 allows an authenticatEPSS 0.2%CVE-2026-13742MEDIUMLack of signature verification before execution of downloaded contentEPSS 0.1%CVE-2026-13581MEDIUMEdimax EW-7478APC POST Request formStaDrvSetup os command injectionEPSS 1.2%CVE-2026-13580HIGHEdimax EW-7478APC POST Request formQoS buffer overflowEPSS 0.4%CVE-2026-13579MEDIUMitsourcecode Hospital Management System patientchangepassword.php sql injectionEPSS 0.2%CVE-2026-49049HIGHJoomla Extension - joomshaper.com - Unauthenticated access to Helix3 template ajax handlerEPSS 0.2%CVE-2026-56290CRITICALJoomla Extension - joomlack.fr - Unauthenticated file upload in Page Builder CK extension < 3.6.0EPSS 0.2%CVE-2026-13578MEDIUMitsourcecode Hospital Management System patientdetail.php sql injectionEPSS 0.2%CVE-2026-55844HIGHHome Assistant: iOS Companion App ignores internal SSID allowlist for connections – possible leak of access token and sensor dataEPSS 0.2%CVE-2026-13574MEDIUMllvm llvm-project Bitcode File IntrinsicInst.cpp getBasePtr heap-based overflowEPSS 0.1%CVE-2026-55607HIGHClaude Code: Sandbox Escape via Git Worktree Path Confusion Allows Unsandboxed Code ExecutionEPSS 0.7%CVE-2026-46406MEDIUMClaude Code: Insecure Temporary File in /copy Command Enables Response Disclosure and Symlink-Based File WriteEPSS 0.2%CVE-2026-13573MEDIUMllvm llvm-project ValueSymbolTable ValueSymbolTable.cpp insert stack-based overflowEPSS 0.1%CVE-2026-56124HIGHphpUploader < 2.0.2 Unauthenticated Database Exposure via index modelEPSS 0.4%CVE-2026-13572MEDIUMitsourcecode Hospital Management System insertbillingrecord.php sql injectionEPSS 0.2%CVE-2026-57341MEDIUMWordPress Colissimo Officiel : Méthodes de livraison pour WooCommerce plugin <= 2.9.0 - Insecure Direct Object References (IDOR) vulnerabilityEPSS 0.3%CVE-2026-57340MEDIUMWordPress Japanized For WooCommerce plugin <= 2.9.12 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57339MEDIUMWordPress Business Directory plugin <= 6.4.23 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57338HIGHWordPress ARForms plugin <= 7.1.2 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2026-57337HIGHWordPress Landing Page Builder plugin <= 1.5.3.5 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%