Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-6583 | MEDIUM | 5.4 | A vulnerability has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete_api_key/edit_api_key of the file superagi/controllers/api_key.py of the component API Key … | Apr 19, 2026 |
| CVE-2026-6582 | HIGH | 7.3 | A flaw has been found in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue is the function get_vector_db_details of the file superagi/controllers/vector_dbs.py of the … | Apr 19, 2026 |
| CVE-2026-6581 | HIGH | 8.8 | A vulnerability was detected in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function SetMobileAPInfoById of the file /goform/aspForm. Performing a … | Apr 19, 2026 |
| CVE-2026-6580 | HIGH | 7.3 | A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file owntracks/views.py of the component Amap … | Apr 19, 2026 |
| CVE-2026-6579 | MEDIUM | 6.5 | A weakness has been identified in liangliangyy DjangoBlog up to 2.1.0.0. This impacts an unknown function of the file blog/views.py of the component Clean Endpoint. … | Apr 19, 2026 |
| CVE-2026-6578 | MEDIUM | 5.6 | A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting … | Apr 19, 2026 |
| CVE-2026-6577 | HIGH | 7.3 | A vulnerability was identified in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an unknown function of the file owntracks/views.py of the component logtracks … | Apr 19, 2026 |
| CVE-2026-6576 | MEDIUM | 6.3 | A vulnerability was determined in liangliangyy DjangoBlog up to 2.1.0.0. The affected element is the function CommandHandler of the file servermanager/api/commonapi.py of the component WeChat … | Apr 19, 2026 |
| CVE-2026-6574 | HIGH | 7.3 | A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API … | Apr 19, 2026 |
| CVE-2026-6573 | MEDIUM | 6.3 | A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation … | Apr 19, 2026 |
| CVE-2026-6572 | MEDIUM | 5.6 | A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of … | Apr 19, 2026 |
| CVE-2026-6571 | MEDIUM | 6.3 | A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a … | Apr 19, 2026 |
| CVE-2026-6570 | LOW | 2.7 | A security flaw has been discovered in kodcloud KodExplorer up to 4.52. Affected is the function initInstall of the file /app/controller/systemMember.class.php. Performing a manipulation of … | Apr 19, 2026 |
| CVE-2026-6569 | HIGH | 7.3 | A vulnerability was identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGet of the file /app/controller/share.class.php of the component fileGet Endpoint. Such … | Apr 19, 2026 |
| CVE-2026-6568 | HIGH | 7.3 | A vulnerability was determined in kodcloud KodExplorer up to 4.52. This affects the function share.class.php::initShareOld of the file /app/controller/share.class.php of the component Public Share Handler. … | Apr 19, 2026 |
| CVE-2026-6564 | MEDIUM | 4.3 | A vulnerability was found in EMQ EMQX Enterprise up to 6.1.0. The impacted element is an unknown function of the component Session Handling. The manipulation … | Apr 19, 2026 |
| CVE-2026-6563 | HIGH | 8.8 | A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function SetAPWifiorLedInfoById of the file /goform/aspForm. The manipulation … | Apr 19, 2026 |
| CVE-2026-6562 | HIGH | 7.3 | A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is the function getListByPage of the file /index/Search/index.html. Executing a manipulation of the argument keyword … | Apr 19, 2026 |
| CVE-2026-6561 | MEDIUM | 4.7 | A vulnerability was detected in EyouCMS up to 1.7.1. This issue affects the function edit_adminlogo of the file application/admin/controller/Index.php. Performing a manipulation of the argument … | Apr 19, 2026 |
| CVE-2026-6560 | HIGH | 8.8 | A security vulnerability has been detected in H3C Magic B0 up to 100R002. This vulnerability affects the function Edit_BasicSSID of the file /goform/aspForm. Such manipulation … | Apr 19, 2026 |
| CVE-2026-6559 | MEDIUM | 4.3 | A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 of the file /cgi-bin/login.cgi. This manipulation of the argument Hostname causes … | Apr 19, 2026 |
| CVE-2026-0868 | MEDIUM | 6.4 | The EMC – Easily Embed Calendly Scheduling Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's calendly shortcode in all versions … | Apr 19, 2026 |
| CVE-2026-6056 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Apr 18, 2026 |
| CVE-2026-41242 | UNKNOWN | — | protobufjs compiles protobuf definitions into JavaScript (JS) functions. In versions prior to 8.0.1 and 7.5.5, attackers can inject arbitrary code in the "type" fields of … | Apr 18, 2026 |
| CVE-2026-40948 | UNKNOWN | — | The Keycloak authentication manager in `apache-airflow-providers-keycloak` did not generate or validate the OAuth 2.0 `state` parameter on the login / login-callback flow, and did not … | Apr 18, 2026 |