Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
12618
Total
849
Critical
3639
High
3952
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-32915 | HIGH | 8.8 | OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability allowing leaf subagents to access the subagents control surface and resolve against parent requester scope instead … | Mar 29, 2026 |
| CVE-2026-32914 | HIGH | 8.8 | OpenClaw before 2026.3.12 contains an insufficient access control vulnerability in the /config and /debug command handlers that allows command-authorized non-owners to access owner-only surfaces. Attackers … | Mar 29, 2026 |
| CVE-2026-23400 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: rust_binder: call set_notification_done() without proc lock Consider the following sequence of events on a death … | Mar 29, 2026 |
| CVE-2026-5043 | HIGH | 8.8 | A weakness has been identified in Belkin F9K1122 1.00.33. The impacted element is the function formSetPassword of the file /goform/formSetPassword of the component Parameter Handler. … | Mar 29, 2026 |
| CVE-2026-5042 | HIGH | 8.8 | A security flaw has been discovered in Belkin F9K1122 1.00.33. The affected element is the function formCrossBandSwitch of the file /goform/formCrossBandSwitch of the component Parameter … | Mar 29, 2026 |
| CVE-2026-5041 | MEDIUM | 4.7 | A vulnerability was identified in code-projects Chamber of Commerce Membership Management System 1.0. Impacted is the function fwrite of the file admin/pageMail.php. The manipulation of … | Mar 29, 2026 |
| CVE-2026-5037 | LOW | 3.3 | A vulnerability was determined in mxml up to 4.0.4. This issue affects the function index_sort of the file mxml-index.c of the component mxmlIndexNew. Executing a … | Mar 29, 2026 |
| CVE-2026-5036 | HIGH | 8.8 | A vulnerability was found in Tenda 4G06 04.06.01.29. This vulnerability affects the function fromDhcpListClient of the file /goform/DhcpListClient of the component Endpoint. Performing a manipulation … | Mar 29, 2026 |
| CVE-2026-5035 | HIGH | 7.3 | A vulnerability has been found in code-projects Accounting System 1.0. This affects an unknown part of the file /view_work.php of the component Parameter Handler. Such … | Mar 29, 2026 |
| CVE-2026-5034 | HIGH | 7.3 | A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /edit_costumer.php of the component … | Mar 29, 2026 |
| CVE-2026-5033 | HIGH | 7.3 | A vulnerability was detected in code-projects Accounting System 1.0. Affected by this vulnerability is an unknown functionality of the file /view_costumer.php of the component Parameter … | Mar 29, 2026 |
| CVE-2026-5031 | MEDIUM | 4.3 | A vulnerability was found in BichitroGan ISP Billing Software 2025.3.20. Impacted is an unknown function of the file /?_route=settings/users-view/ of the component Endpoint. The manipulation … | Mar 29, 2026 |
| CVE-2026-5030 | MEDIUM | 6.3 | A vulnerability has been found in Totolink NR1800X 9.1.0u.6279_B20210910. This issue affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi of the component Telnet Service. The … | Mar 29, 2026 |
| CVE-2026-5024 | HIGH | 8.8 | A vulnerability was found in D-Link DIR-513 1.10. This issue affects the function formSetEmail of the file /goform/formSetEmail. Performing a manipulation of the argument curTime … | Mar 29, 2026 |
| CVE-2026-5023 | MEDIUM | 5.3 | A vulnerability has been found in DeDeveloper23 codebase-mcp up to 3ec749d237dd8eabbeef48657cf917275792fde6. This vulnerability affects the function getCodebase/getRemoteCodebase/saveCodebase of the file src/tools/codebase.ts of the component RepoMix … | Mar 29, 2026 |
| CVE-2026-5021 | HIGH | 8.8 | A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This manipulation of … | Mar 29, 2026 |
| CVE-2026-2602 | MEDIUM | 6.4 | The Twentig plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'featuredImageSizeWidth' parameter in versions up to, and including, 1.9.7 due to insufficient … | Mar 29, 2026 |
| CVE-2026-5020 | MEDIUM | 6.3 | A vulnerability was detected in Totolink A3600R 4.1.2cu.5182_B20201102. Affected by this issue is the function setNoticeCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. … | Mar 29, 2026 |
| CVE-2026-4851 | UNKNOWN | — | GRID::Machine versions through 0.127 for Perl allows arbitrary code execution via unsafe deserialization. GRID::Machine provides Remote Procedure Calls (RPC) over SSH for Perl. The client … | Mar 29, 2026 |
| CVE-2026-5019 | HIGH | 7.3 | A security vulnerability has been detected in code-projects Simple Food Order System 1.0. Affected by this vulnerability is an unknown functionality of the file all-orders.php … | Mar 29, 2026 |
| CVE-2026-5018 | HIGH | 7.3 | A weakness has been identified in code-projects Simple Food Order System 1.0. Affected is an unknown function of the file register-router.php of the component Parameter … | Mar 28, 2026 |
| CVE-2026-5017 | HIGH | 7.3 | A security flaw has been discovered in code-projects Simple Food Order System 1.0. This impacts an unknown function of the file /all-tickets.php of the component … | Mar 28, 2026 |
| CVE-2026-5016 | HIGH | 7.3 | A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such … | Mar 28, 2026 |
| CVE-2026-5015 | MEDIUM | 4.3 | A vulnerability was determined in elecV2 elecV2P up to 3.8.3. The impacted element is an unknown function of the file /logs of the component Endpoint. … | Mar 28, 2026 |
| CVE-2026-5014 | MEDIUM | 5.3 | A vulnerability was found in elecV2 elecV2P up to 3.8.3. The affected element is the function path.join of the file /log/ of the component Wildcard … | Mar 28, 2026 |