Export limit exceeded: 361375 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (361375 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-57645 | 2026-06-26 | 8.1 High | ||
| newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions. | ||||
| CVE-2026-57657 | 2026-06-26 | 4.3 Medium | ||
| Unauthenticated Cross Site Request Forgery (CSRF) in Gmail SMTP <= 1.2.3.19 versions. | ||||
| CVE-2026-57663 | 2026-06-26 | 8.5 High | ||
| Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes <= 8.2.7 versions. | ||||
| CVE-2026-5757 | 2026-06-26 | N/A | ||
| Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive data exposure, further compromise, and stealthy persistence. | ||||
| CVE-2026-56790 | 1 Canboat | 1 Canboat | 2026-06-26 | 7.3 High |
| CANBoat through 6.22, fixed in commit a5a22b7, contains an off-by-one global buffer overflow in the searchForPgn() function in analyzer/pgn.c that allows remote attackers to crash the application. Attackers can deliver a crafted NMEA-2000 message with an out-of-range PGN value over CAN bus or N2K-over-IP to trigger an out-of-bounds array access and denial of service. | ||||
| CVE-2025-63078 | 2026-06-26 | 4.3 Medium | ||
| Subscriber Broken Access Control in Restaurant Menu by MotoPress <= 2.4.11 versions. | ||||
| CVE-2025-68063 | 2026-06-26 | 7.5 High | ||
| Contributor Local File Inclusion in Splash - Sport Club WordPress Theme for Basketball, Football, Hockey <= 4.4.3 versions. | ||||
| CVE-2026-54820 | 2026-06-26 | 9.3 Critical | ||
| Unauthenticated SQL Injection in JetBooking <= 4.0.4.1 versions. | ||||
| CVE-2026-54832 | 2026-06-26 | 7.5 High | ||
| Unauthenticated Broken Access Control in Gutenverse Companion <= 2.5.0 versions. | ||||
| CVE-2026-54840 | 2026-06-26 | 7.3 High | ||
| Unauthenticated Broken Access Control in Newsletters <= 4.13 versions. | ||||
| CVE-2026-56025 | 2026-06-26 | 7.5 High | ||
| Unauthenticated Broken Access Control in Paymob for WooCommerce <= 4.1.2 versions. | ||||
| CVE-2026-56031 | 2026-06-26 | 8.1 High | ||
| Unauthenticated PHP Object Injection in Uncanny Automator <= 7.3.1.2 versions. | ||||
| CVE-2026-56038 | 2026-06-26 | 8.8 High | ||
| Contributor Privilege Escalation in Frisbii Pay <= 1.8.2 versions. | ||||
| CVE-2026-56045 | 2026-06-26 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Automatic < 3.135.1 versions. | ||||
| CVE-2026-56064 | 2026-06-26 | 8.5 High | ||
| Subscriber SQL Injection in Tourfic <= 2.22.5 versions. | ||||
| CVE-2026-56072 | 2026-06-26 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in WoodMart <= 8.5.3 versions. | ||||
| CVE-2026-57317 | 2026-06-26 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Simply Schedule Appointments <= 1.6.12.2 versions. | ||||
| CVE-2026-57324 | 2026-06-26 | 6.5 Medium | ||
| Unauthenticated Broken Access Control in GIFT4U <= 1.0.10 versions. | ||||
| CVE-2026-57622 | 2026-06-26 | 4.3 Medium | ||
| Subscriber Broken Access Control in WPCafe <= 3.0.14 versions. | ||||
| CVE-2026-57638 | 2026-06-26 | 6.5 Medium | ||
| Contributor Cross Site Scripting (XSS) in Fluent Booking <= 2.1.0 versions. | ||||