Búsqueda de CVEs

362.491 resultados
CVE-2026-57328MEDIUMWordPress Business Directory plugin <= 6.4.22 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-57327MEDIUMWordPress MainWP plugin <= 6.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57326MEDIUMWordPress Business Directory plugin <= 6.4.22 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-57320HIGHWordPress BEAR plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-13571MEDIUMSourceCodester Simple Food Ordering System cart.php logic errorEPSS 0.4%CVE-2026-12616MEDIUMThe /v1/upload/sbom endpoint extracts the iss claim from the attacker-supplied JWT with signature verification disabled, then interpolates tEPSS 0.3%CVE-2026-13676HIGHfast-uri vulnerable to host confusion via failed IDN canonicalizationEPSS 0.3%CVE-2026-11979LOWStack-Based Buffer Overflow in libxml2EPSS 0.2%CVE-2026-56457MEDIUMHCL DevOps Deploy / HCL Launch is susceptible to an exposure of sensitive informationEPSS 0.2%CVE-2026-13570MEDIUMSourceCodester Inventory Management System User Registration Endpoint users_handler.php cross site scriptingEPSS 0.2%CVE-2026-13569MEDIUMweng-xianhu EyouCMS API index.php sql injectionEPSS 0.2%CVE-2026-13568MEDIUMSourceCodester Inventory Management System User Registration Endpoint users_handler.php access controlEPSS 0.3%CVE-2026-54371HIGHattr < 2.6.0 Symlink Traversal Privilege Escalation via getfattr/setfattrEPSS 0.1%CVE-2026-54370HIGHacl < 2.4.0 TOCTOU Symlink Traversal via getfacl/setfacl/chaclEPSS 0.1%CVE-2026-54369HIGHacl < 2.4.0 Symlink Traversal Privilege Escalation via libacl FunctionsEPSS 0.1%CVE-2026-12856HIGHVscode-java: vscode: command injection vulnerability in the javadoc hover provider of the vscode-java extensionEPSS 0.3%CVE-2026-40521HIGHFrontAccounting < 2.4.20 Path Traversal RCE via attachment uploadEPSS 0.6%CVE-2026-13567MEDIUMcode-projects Online Music Site POST Request Feedback.php cross site scriptingEPSS 0.3%CVE-2026-40522HIGHFrontAccounting < 2.4.20 SQL Injection via rep601.phpEPSS 0.1%CVE-2026-40523HIGHFrontAccounting < 2.4.20 SQL Injection via reporting/rep710.phpEPSS 0.3%