Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-42255 | HIGH | 7.2 | Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation. | Apr 26, 2026 |
| CVE-2026-7015 | LOW | 2.4 | A vulnerability has been found in MaxSite CMS up to 109.3. This issue affects some unknown processing of the component Guestbook Plugin. Such manipulation of … | Apr 26, 2026 |
| CVE-2026-7014 | LOW | 2.4 | A flaw has been found in MaxSite CMS up to 109.3. This vulnerability affects unknown code of the component down_count Plugin. This manipulation of the … | Apr 26, 2026 |
| CVE-2026-7013 | LOW | 2.4 | A security vulnerability has been detected in MaxSite CMS up to 109.3. Affected by this issue is some unknown functionality of the component mail_send Plugin. … | Apr 26, 2026 |
| CVE-2026-42254 | MEDIUM | 4.0 | Hickory DNS hickory-recursor 0.1 through 0.25.2 allows cross-zone poisoning because cached data is not directly associated with a query that triggered a response. | Apr 26, 2026 |
| CVE-2026-7012 | LOW | 2.4 | A vulnerability was detected in MaxSite CMS up to 109.3. This affects an unknown part of the component Redirect Plugin. The manipulation of the argument … | Apr 26, 2026 |
| CVE-2026-7011 | LOW | 2.4 | A weakness has been identified in MaxSite CMS up to 109.3. Affected by this vulnerability is an unknown functionality of the file /admin/plugin_antispam of the … | Apr 26, 2026 |
| CVE-2026-7002 | HIGH | 7.3 | A vulnerability was determined in KLiK SocialMediaWebsite up to 1.0.1. This vulnerability affects unknown code of the file /includes/get_message_ajax.php of the component Private Message Handler. … | Apr 25, 2026 |
| CVE-2026-7001 | LOW | 2.4 | A vulnerability was found in Datacom DM4100 1.3.6.1.4.1.3709. This affects an unknown part of the component Ethernet Configuration Page. Performing a manipulation of the argument … | Apr 25, 2026 |
| CVE-2026-7000 | LOW | 2.4 | A vulnerability has been found in Datacom DM4100 1.3.6.1.4.1.3709. Affected by this issue is some unknown functionality of the component VLAN Page. Such manipulation of … | Apr 25, 2026 |
| CVE-2026-6999 | LOW | 2.4 | A flaw has been found in BIVOCOM TR321 21.1.1.50. Affected by this vulnerability is an unknown functionality of the component Wireless Setting. This manipulation of … | Apr 25, 2026 |
| CVE-2026-6998 | LOW | 2.4 | A vulnerability was detected in BDCOM P3310D 0.4.2 10.1.0F Build 86345. Affected is an unknown function of the component New RMON Statistics Page. The manipulation … | Apr 25, 2026 |
| CVE-2026-6997 | LOW | 2.4 | A security vulnerability has been detected in BDCOM P3310D 0.4.2 10.1.0F Build 86345. This impacts an unknown function of the component New RMON History Page. … | Apr 25, 2026 |
| CVE-2026-6996 | LOW | 2.4 | A weakness has been identified in BDCOM P3310D 0.4.2 10.1.0F Build 86345. This affects an unknown function of the component rmon event Tab. Executing a … | Apr 25, 2026 |
| CVE-2026-6995 | LOW | 2.4 | A security flaw has been discovered in BDCOM P3310D 0.4.2 10.1.0F Build 86345. The impacted element is an unknown function of the file /index.asp of … | Apr 25, 2026 |
| CVE-2026-6994 | MEDIUM | 6.3 | A weakness has been identified in Envoy up to 1.33.0. Affected is the function params.add of the file source/extensions/filters/http/header_mutation/header_mutation.cc of the component Query Parameter Handler. … | Apr 25, 2026 |
| CVE-2026-6993 | MEDIUM | 5.3 | A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impacts the function NewServer of the file transport/http/server.go of the component http.DefaultServeMux … | Apr 25, 2026 |
| CVE-2026-6992 | HIGH | 7.2 | A vulnerability was identified in Linksys MR9600 2.0.6.206937. This affects the function BTRequestGetSmartConnectStatus of the file /etc/init.d/run_central2.sh of the component JNAP Action Handler. The manipulation … | Apr 25, 2026 |
| CVE-2026-6991 | MEDIUM | 6.3 | A vulnerability was determined in colinhacks Zod up to 4.3.6. The impacted element is an unknown function of the file packages/zod/src/v4/core/regexes.ts of the component CUID … | Apr 25, 2026 |
| CVE-2026-6990 | LOW | 3.5 | A vulnerability was found in projeto-siga siga 11.0.3.18. The affected element is an unknown function of the file /sigawf/app/responsavel/novo. Performing a manipulation of the argument … | Apr 25, 2026 |
| CVE-2026-6989 | MEDIUM | 6.3 | A vulnerability has been found in Tenda F453 up to 1.0.0.3. Impacted is the function TendaTelnet of the file /goform/telnet of the component Telnet Service. … | Apr 25, 2026 |
| CVE-2026-6988 | HIGH | 8.8 | A flaw has been found in Tenda HG10 HG7_HG9_HG10re_300001138_en_xpon. This issue affects the function formRoute of the file /boaform/formRouting of the component Boa Service. This … | Apr 25, 2026 |
| CVE-2026-6987 | HIGH | 7.3 | A vulnerability was detected in PicoClaw up to 0.2.4. Impacted is an unknown function of the file /api/gateway/restart of the component Web Launcher Management Plane. … | Apr 25, 2026 |
| CVE-2026-6986 | LOW | 3.7 | A security vulnerability has been detected in Cesanta Mongoose up to 7.20. This issue affects the function mg_aes_gcm_decrypt of the file /src/tls_aes128.c of the component … | Apr 25, 2026 |
| CVE-2026-6985 | MEDIUM | 5.3 | A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handle_opt of the file /src/net_builtin.c of the component TCP … | Apr 25, 2026 |