Busca de CVEs

363.120 resultados
CVE-2026-31016MEDIUMCross Site Request Forgery vulnerability in Squidex.io Squidex CMS v.7.21.0 and before allows a remote attacker to escalate privileges via tEPSS 0.2%CVE-2026-57919HIGHPBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\\.\pipe\PBackupVSS) with a DACL that grants GENEREPSS 0.1%CVE-2026-51219MEDIUMA heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause EPSS 0.3%CVE-2026-13516HIGHTenda JD12L WifiGuestSet fromSetWifiGusetBasic stack-based overflowEPSS 0.5%CVE-2026-13515HIGHTenda JD12L SetPptpServerCfg formSetPPTPServer stack-based overflowEPSS 0.5%CVE-2026-13514LOWChess Play and Learn App com.chess AndroidManifest.xml backupEPSS 0.1%CVE-2026-13513LOWMyScale MyScaleDB SegmentId.h getCacheKey data authenticityEPSS 0.1%CVE-2026-13512MEDIUMDatabend Tenant client_session_manager.rs state_key authorizationEPSS 0.2%CVE-2026-13511LOWVoltAgent Memory REST API memory.handlers.ts handleGetMemoryConversation improper authorizationEPSS 0.2%CVE-2026-13510MEDIUMSimStudioAI sim Password Protection deployment.ts weak hashEPSS 0.2%CVE-2026-13509MEDIUMRAGapp Knowledge File files.py FileHandler.remove_file path traversalEPSS 0.3%CVE-2026-13508MEDIUMkhoj-ai khoj Conversation Sharing api_chat.py authorizationEPSS 0.2%CVE-2026-13507LOWvolcengine OpenViking Local VectorDB Primary-key Label str_to_uint64.py str_to_uint64 data authenticityEPSS 0.1%CVE-2026-49048HIGHJoomla Extension - joomcoder.com - Unauthenticated SQL Injection in JoomCCK extension for Joomla < 6.4.1EPSS 0.5%CVE-2026-13504MEDIUMcode-projects Project Management System Mail Compose mail.php cross site scriptingEPSS 0.2%CVE-2026-13503MEDIUMantlr ANTLR4 tokenVocab Grammar Option TokenVocabParser.java getImportedVocabFile path traversalEPSS 0.5%CVE-2026-13502LOWantlr ANTLR4 Maven Plugin GrammarDependencies.java ObjectInputStream.readObject toctouEPSS 0.1%CVE-2026-13501MEDIUMantlr ANTLR4 gofmt GoTarget.java GoTarget command injectionEPSS 0.7%CVE-2026-13500MEDIUMantlr ANTLR4 Grammar Action Block OutputFile.java code injectionEPSS 0.3%CVE-2026-13499MEDIUMyashpokharna2555 restaurent-management-system Registration login_register.php cross site scriptingEPSS 0.3%