Busca de CVEs

363.097 resultados
CVE-2026-57346HIGHWordPress Embed Privacy plugin <= 1.12.3 - Arbitrary File Deletion vulnerabilityEPSS 0.3%CVE-2026-13556MEDIUMitsourcecode Online Hotel Management System POST Request controller.php edit cross site scriptingEPSS 0.4%CVE-2026-13555MEDIUMitsourcecode Online Hotel Management System controller.php add sql injectionEPSS 0.4%CVE-2026-13601HIGHYelp: yelp-xsl: overly permissive content security policy in yelp allows host file disclosure from flatpak applicationsEPSS 0.1%CVE-2026-13554MEDIUMitsourcecode Online Hotel Management System POST Request controller.php add cross site scriptingEPSS 0.4%CVE-2026-13553MEDIUMitsourcecode Online Hotel Management System controller.php add unrestricted uploadEPSS 0.5%CVE-2026-13552MEDIUMitsourcecode Online Hotel Management System controller.php edit sql injectionEPSS 0.4%CVE-2026-13551MEDIUMitsourcecode Baptism Information Management System editBaptism.php sql injectionEPSS 0.3%CVE-2026-57676MEDIUMWordPress Simple User Avatar plugin <= 4.9 - Insecure Direct Object References (IDOR) vulnerabilityEPSS 0.2%CVE-2026-13550MEDIUMitsourcecode Baptism Information Management System delbaptism.php sql injectionEPSS 0.3%CVE-2026-9267MEDIUMEclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the check_server_cerEPSS 0.2%CVE-2026-13595MEDIUMUtil-linux: util-linux: heap use-after-free in libblkid nested partition probingEPSS 0.1%CVE-2026-22078HIGHO+ Connect's lack of authentication for IPC channels led to a local privilege escalation vulnerability.EPSS 0.1%CVE-2026-13549MEDIUMCodeAstro Complaint Management System Report Endpoint Report.php deletereport authorizationEPSS 0.3%CVE-2026-57966MEDIUMSpice-vdagent: path traversal in file transfer via unsanitized filenameEPSS 0.1%CVE-2026-57965MEDIUMSpice-vdagent: integer overflow in udscs_write() leading to heap buffer overflowEPSS 0.1%CVE-2026-13548MEDIUMitsourcecode Hospital Management System doctortimings.php sql injectionEPSS 0.2%CVE-2026-13547MEDIUMHanwang e-Face General Management Platform upload.do unrestricted uploadEPSS 0.3%CVE-2026-13546MEDIUMFeehi CMS REST API Endpoint articles missing authenticationEPSS 0.4%CVE-2026-13545HIGHD-Link DCS-935L POST Parameter setconf.cgi sub_400E40 os command injectionEPSS 2.7%