Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23379
Total
1666
Critical
7346
High
7432
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-48111 | MEDIUM | 4.3 | 7-Zip is a file archiver with a high compression ratio. Versions 9.21 through 26.00 contain an off-by-one out-of-bounds read vulnerability in the ParseDepedencyExpression function of … | Jun 05, 2026 |
| CVE-2026-48104 | MEDIUM | 4.2 | 7-Zip is a file archiver with a high compression ratio. Versions 9.18 through 26.00 contain an uninitialized heap read in the SquashFS archive handler caused … | Jun 05, 2026 |
| CVE-2026-48103 | MEDIUM | 4.3 | 7-Zip is a file archiver with a high compression ratio. Versions 9.34 through 26.00 contain an off-by-one heap out-of-bounds read in the WIM (Windows Imaging) … | Jun 05, 2026 |
| CVE-2026-11339 | MEDIUM | 6.3 | A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. The affected element is the function sub_41CF20 of the file /boafrm/formUSSDSetup. The manipulation of the … | Jun 05, 2026 |
| CVE-2026-11338 | LOW | 2.4 | A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System 1.0. Impacted is an unknown function of the file /admin/?page=user/manage_user. The manipulation … | Jun 05, 2026 |
| CVE-2026-11337 | MEDIUM | 4.3 | A vulnerability was found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected by this vulnerability is an unknown functionality of the file /dashboard_page/forms/fetch.php. The manipulation of the argument … | Jun 05, 2026 |
| CVE-2025-5090 | MEDIUM | 6.5 | CVX is not resilient to unexpected messages from a connected switch. This leads to agent crashes on CVX causing instability in the CVX cluster. An … | Jun 05, 2026 |
| CVE-2025-5089 | MEDIUM | 6.5 | In a CVX cluster, an EOS switch connected to a CVX server is not resilient to certain malformed messages received from the connected CVX server. … | Jun 05, 2026 |
| CVE-2025-5088 | HIGH | 8.3 | An authenticated Redis session could be used to obtain full root access to all servers in the CVX cluster. Note that this would require an … | Jun 05, 2026 |
| CVE-2026-9270 | UNKNOWN | — | DataDog::DogStatsd versions through 0.07 for Perl allow metric injections. DataDog::DogStatsd does not properly sanitise input, allowing metric injections of data from untrusted sources. The send_stats … | Jun 05, 2026 |
| CVE-2026-48102 | LOW | 3.1 | 7-Zip is a file archiver with a high compression ratio. Versions 9.11 through 26.00 contain a heap out-of-bounds read of up to 3 bytes in … | Jun 05, 2026 |
| CVE-2026-48101 | MEDIUM | 6.5 | 7-Zip is a file archiver with a high compression ratio. Versions 9.21 through 26.00 contain an An uninitialized memory disclosure vulnerability in the UEFI capsule … | Jun 05, 2026 |
| CVE-2026-11362 | UNKNOWN | — | DataDog::DogStatsd versions through 0.07 for Perl allow metric injections from event tags. DataDog::DogStatsd does not properly sanitise input, allowing metric injections of data from untrusted … | Jun 05, 2026 |
| CVE-2026-11336 | MEDIUM | 6.3 | A vulnerability has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected is an unknown function of the file dashboard_page/admin_page.php of the component Admin Interface. The manipulation … | Jun 05, 2026 |
| CVE-2026-6209 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Jun 05, 2026 |
| CVE-2026-6208 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Jun 05, 2026 |
| CVE-2026-6207 | UNKNOWN | — | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Jun 05, 2026 |
| CVE-2026-48095 | HIGH | 8.8 | 7-Zip is a file archiver with a high compression ratio. Versions 26.00 and prior contain a heap buffer overflow vulnerability caused by an under-allocation in … | Jun 05, 2026 |
| CVE-2026-48092 | MEDIUM | 4.3 | 7-Zip is a file archiver with a high compression ratio. Versions 9.34 through 26.00 contain a heap memory disclosure via SquashFS fragment offset integer overflow … | Jun 05, 2026 |
| CVE-2026-38579 | UNKNOWN | — | Multiple reflected Cross-Site Scripting (XSS) vulnerabilities in damasac thaipalliative_lte through version 3.0 allow remote attackers to inject arbitrary web script or HTML via the idFormMain … | Jun 05, 2026 |
| CVE-2026-37737 | MEDIUM | 6.5 | sanic-cors version 2.2.0 and prior contains an improper regular expression in the try_match() function in sanic_cors/core.py that uses re.match without end-anchoring. This allows an attacker … | Jun 05, 2026 |
| CVE-2026-11335 | MEDIUM | 6.3 | A flaw has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. This impacts the function session_start of the file /login-form.php. Executing a manipulation of the argument UserAuthData … | Jun 05, 2026 |
| CVE-2026-11334 | HIGH | 7.3 | A vulnerability was detected in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. This affects an unknown function of the file dashboard_page/forms/fetch.php. Performing a manipulation of the argument department_code results … | Jun 05, 2026 |
| CVE-2026-11333 | MEDIUM | 6.3 | A security vulnerability has been detected in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. The impacted element is an unknown function of the file dashboard_page/forms/upload_student_data.php of the component Student … | Jun 05, 2026 |
| CVE-2026-10879 | UNKNOWN | — | DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders. The preparse method expands SQL placeholder … | Jun 05, 2026 |