Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
12557
Total
848
Critical
3598
High
3936
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-5634 | HIGH | 7.3 | A vulnerability was identified in projectworlds Car Rental Project 1.0. Affected by this vulnerability is an unknown functionality of the file /book_car.php of the component … | Apr 06, 2026 |
| CVE-2026-5633 | HIGH | 7.3 | A vulnerability was determined in assafelovic gpt-researcher up to 3.4.3. Affected is an unknown function of the component ws Endpoint. Executing a manipulation of the … | Apr 06, 2026 |
| CVE-2026-31410 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: use volume UUID in FS_OBJECT_ID_INFORMATION Use sb->s_uuid for a proper volume identifier as the … | Apr 06, 2026 |
| CVE-2026-31409 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ksmbd: unset conn->binding on failed binding request When a multichannel SMB2_SESSION_SETUP request with SMB2_SESSION_REQ_FLAG_BINDING fails … | Apr 06, 2026 |
| CVE-2026-31408 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold sco_recv_frame() reads conn->sk under sco_conn_lock() … | Apr 06, 2026 |
| CVE-2026-31407 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: add missing netlink policy validations Hyunwoo Kim reports out-of-bounds access in sctp and … | Apr 06, 2026 |
| CVE-2026-31406 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() After cancel_delayed_work_sync() is called from xfrm_nat_keepalive_net_fini(), xfrm_state_fini() … | Apr 06, 2026 |
| CVE-2026-31405 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The ule_mandatory_ext_handlers[] and ule_optional_ext_handlers[] tables … | Apr 06, 2026 |
| CVE-2026-5632 | HIGH | 7.3 | A vulnerability was found in assafelovic gpt-researcher up to 3.4.3. This impacts an unknown function of the component HTTP REST API Endpoint. Performing a manipulation … | Apr 06, 2026 |
| CVE-2026-5631 | HIGH | 7.3 | A vulnerability has been found in assafelovic gpt-researcher up to 3.4.3. This affects the function extract_command_data of the file backend/server/server_utils.py of the component ws Endpoint. … | Apr 06, 2026 |
| CVE-2026-5630 | MEDIUM | 4.3 | A flaw has been found in assafelovic gpt-researcher up to 3.4.3. The impacted element is an unknown function of the file backend/server/app.py of the component … | Apr 06, 2026 |
| CVE-2026-5629 | HIGH | 8.8 | A vulnerability was detected in Belkin F9K1015 1.00.10. The affected element is the function formSetFirewall of the file /goform/formSetFirewall. The manipulation of the argument webpage … | Apr 06, 2026 |
| CVE-2026-5628 | HIGH | 8.8 | A security vulnerability has been detected in Belkin F9K1015 1.00.10. Impacted is the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. The … | Apr 06, 2026 |
| CVE-2026-5625 | MEDIUM | 4.3 | A weakness has been identified in assafelovic gpt-researcher up to 3.4.3. This issue affects some unknown processing of the file gpt_researcher/skills/researcher.py of the component WebSocket … | Apr 06, 2026 |
| CVE-2026-5624 | MEDIUM | 4.3 | A security flaw has been discovered in ProjectSend r2002. This vulnerability affects unknown code of the file upload.php. Performing a manipulation results in cross-site request … | Apr 06, 2026 |
| CVE-2026-5623 | MEDIUM | 6.3 | A vulnerability was identified in hcengineering Huly Platform 0.7.382. This affects an unknown part of the file server/front/src/index.ts of the component Import Endpoint. Such manipulation … | Apr 06, 2026 |
| CVE-2026-5622 | LOW | 3.7 | A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT … | Apr 06, 2026 |
| CVE-2026-5621 | MEDIUM | 5.3 | A vulnerability was found in ChrisChinchilla Vale-MCP up to 0.1.0. Affected by this vulnerability is an unknown functionality of the file src/index.ts of the component … | Apr 06, 2026 |
| CVE-2026-5620 | MEDIUM | 6.3 | A vulnerability has been found in itsourcecode Construction Management System 1.0. Affected is an unknown function of the file /borrowed_equip_report.php of the component Parameter Handler. … | Apr 06, 2026 |
| CVE-2026-5619 | MEDIUM | 5.3 | A flaw has been found in Braffolk mcp-summarization-functions up to 0.1.5. This impacts an unknown function of the file src/server/mcp-server.ts of the component summarize_command. Executing … | Apr 06, 2026 |
| CVE-2026-5618 | MEDIUM | 5.6 | A vulnerability was detected in kalcaddle kodbox up to 1.64. This affects an unknown function of the component shareMake/shareCheck. Performing a manipulation of the argument … | Apr 06, 2026 |
| CVE-2026-5616 | HIGH | 7.3 | A security vulnerability has been detected in JeecgBoot 3.9.0/3.9.1. The impacted element is an unknown function of the file jeecg-boot/jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/airag/JeecgBizToolsProvider.java of the component AI Chat … | Apr 06, 2026 |
| CVE-2026-5615 | MEDIUM | 4.3 | A weakness has been identified in givanz Vvvebjs up to 2.0.5. The affected element is an unknown function of the file upload.php of the component … | Apr 06, 2026 |
| CVE-2026-5614 | HIGH | 8.8 | A security flaw has been discovered in Belkin F9K1015 1.00.10. Impacted is the function formSetPassword of the file /goform/formSetPassword. The manipulation of the argument webpage … | Apr 06, 2026 |
| CVE-2026-5613 | HIGH | 8.8 | A vulnerability was identified in Belkin F9K1015 1.00.10. This issue affects the function formReboot of the file /goform/formReboot. The manipulation of the argument webpage leads … | Apr 06, 2026 |