Busca de CVEs
359.920 resultadosCVE-2026-56263MEDIUMCrawl4AI - Stored Cross-Site Scripting in Monitor DashboardEPSS —CVE-2026-56258CRITICALCrawl4AI - Arbitrary File Write via output_path Symlink and TOCTOUEPSS —CVE-2026-56248HIGHCapgo - Unauthenticated Denial-of-Service via audit_logs RLS PolicyEPSS —CVE-2026-56243HIGHCapgo - Hashed API Key Enforcement Bypass via PostgREST/RLS PlaneEPSS —CVE-2026-56234MEDIUMCapgo - Password Spraying via Public-Key Accessible Credential Validation EndpointEPSS —CVE-2026-56225HIGHCapgo - Authorization Bypass in API Key Management via App-Limited KeysEPSS —CVE-2026-56222HIGHCapgo - Cross-Organization App Takeover via Mismatched org_id and app_id in /private/role_bindingsEPSS —CVE-2025-71376HIGHpicklescan - Arbitrary Code Execution via Undetected idlelib.autocomplete.AutoComplete.fetch_completionsEPSS —CVE-2025-71370HIGHpicklescan - Remote Code Execution via torch.jit.unsupported_tensor_ops.execWrapperEPSS —CVE-2025-71365HIGHpicklescan - Arbitrary Code Execution via numpy.f2py.crackfortran.myeval Detection BypassEPSS —CVE-2025-71341HIGHpicklescan - Remote Code Execution via Undetected profile.Profile.runctxEPSS —CVE-2025-71337HIGHFlowise - Unverified Email Change via Account Profile EndpointEPSS —CVE-2023-54365HIGHTraefik - Denial of Service via HTTP/2 Request HandlingEPSS —CVE-2026-10711HIGHRCE in Akınsoft's CafePlusEPSS —CVE-2026-44089CRITICALBuffer Overflow in Totolink EX1200L routerEPSS —CVE-2026-4983MEDIUMOpen VSX Registry does not sanitize SVG files uploaded as extension icons prior to storage, and serves them with Content-Type: image/svg+xmlEPSS —CVE-2026-11374CRITICALAccount Takeover via Predictable SSO Ticket GenerationEPSS 1.2%CVE-2026-10521HIGHAuthenticated unintended access to critical program parametersEPSS 0.3%CVE-2026-9733CRITICALMojolicious::Plugin::Web::Auth::OAuth2 versions through 0.17 for Perl have an insecure default state parameterEPSS 0.2%CVE-2026-8379HIGHFrontend File Manager Plugin <= 23.6 - Unauthenticated Arbitrary File DownloadEPSS 0.1%