Busca de CVEs
361.545 resultadosCVE-2026-45408CRITICALDokku: OS Command Injection via App Name in Git Pre-Receive HookEPSS 0.2%CVE-2026-55677HIGHEcho: Encoded slash (%2F) bypasses route-level protection and exposes static filesEPSS 0.4%CVE-2025-32394MEDIUMAutoGPT: There is a DoS vulnerability in AITextSummarizerBlockEPSS 0.2%CVE-2026-11779MEDIUMPayloadCMS 3.84.1 - Authenticated account lockout bypass through default unlock accessEPSS 0.2%CVE-2025-32423MEDIUMAutoGPT: There is a DoS vulnerability in ExtractTextInformationBlockEPSS 0.2%CVE-2026-56663HIGHAutoGPT: SSRF-to-RCE Chain in `SendWebRequestBlock` via IP validation bypass and internal `pg-meta` accessEPSS 0.2%CVE-2026-56823MEDIUMAutoGPT: IDOR in Webhook Ping Endpoint Allows Enumeration and Cross-User Ping TriggeringEPSS 0.1%CVE-2026-13434MEDIUMVirt-controller-rhel9: kubevirt: kubevirt: multus default-network annotation injection via unvalidated tenant networkname when externalnetresourceinjection is enabledEPSS 0.2%CVE-2026-57518HIGHPagekit CMS 1.0.18 Privilege Escalation via UserApiControllerEPSS 0.5%CVE-2023-20572MEDIUMAn observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message autheEPSS 0.1%CVE-2026-9640HIGHLXD Snapshot Import Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-0828HIGHKernel driver vulnerability in Safetica Endpoint ClientEPSS 0.5%CVE-2026-0685CRITICALServer side template inject (SSTI) in Edgewall Genshi Template EngineEPSS 0.7%CVE-2026-47214HIGHDocling: Unsafe URI and Path Handling in HTML BackendEPSS 0.2%CVE-2023-20540LOWAn observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message autheEPSS 0.1%CVE-2026-44018MEDIUMDocling: Unsafe Archive Extraction and XML Parsing in METS-GBS BackendEPSS 0.1%CVE-2025-11919CRITICALUnprotected temporary directories in Wolfram Cloud may result in privilege escalationEPSS 0.4%CVE-2026-9639MEDIUMAuthenticated Denial of Service via Malicious Backup Tarball in LXDEPSS 0.4%CVE-2026-12411HIGHBroken Access Control in Canonical LXD DevLXD APIEPSS 0.1%CVE-2026-45195HIGHGPU DDK - rgxfw_set_mips_fault_address(&psInit->sFaultPhysAddr) is untrustedEPSS 0.1%