Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23570
Total
1678
Critical
7413
High
7498
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-14791 | LOW | 3.5 | A weakness has been identified in crater-invoice-inc crater up to 6.0.6. This affects the function getFormattedString of the file app/Http/Requests/InvoicesRequest.php of the component Invoice Note … | Jul 06, 2026 |
| CVE-2026-14790 | LOW | 3.3 | A flaw has been found in GPAC 26.02.0. This affects the function nhmldump_send_frame of the file src/filters/write_nhml.c of the component Media File Handler. Executing a … | Jul 06, 2026 |
| CVE-2026-14789 | LOW | 3.3 | A vulnerability was detected in radareorg radare2 up to 6.1.6. Affected by this issue is some unknown functionality of the file libr/bin/format/mdmp/mdmp.c of the component … | Jul 06, 2026 |
| CVE-2026-14803 | MEDIUM | 6.5 | Mojo::JSON versions before 9.47 for Perl allow memory exhaustion via unbounded recursion in the pure-Perl decoder. The pure-Perl decode path (`_decode_value` dispatching to `_decode_array` and … | Jul 06, 2026 |
| CVE-2026-14788 | LOW | 3.3 | A security vulnerability has been detected in radareorg radare2 up to 6.1.6. Affected by this vulnerability is the function r_core_bin_load of the file libr/core/cfile.c. Such … | Jul 06, 2026 |
| CVE-2026-14787 | LOW | 3.3 | A weakness has been identified in radareorg radare2 up to 6.1.6. Affected is the function cmd_print in the library libr/core/cmd_print.inc of the component pb Print … | Jul 06, 2026 |
| CVE-2026-14786 | LOW | 3.3 | A security flaw has been discovered in radareorg radare2 up to 6.1.6. This impacts the function r_str_word_get0set of the file libr/util/str.c. The manipulation results in … | Jul 06, 2026 |
| CVE-2026-14784 | MEDIUM | 6.3 | A vulnerability was identified in vxcontrol PentAGI up to 2.1.0. This affects an unknown function of the file backend/pkg/docker/client.go of the component Docker API. The … | Jul 06, 2026 |
| CVE-2026-14783 | MEDIUM | 4.3 | A vulnerability was determined in NousResearch hermes-agent 2026.5.29.2. The impacted element is the function skill_view of the file tools/skills_tool.py. Executing a manipulation of the argument … | Jul 06, 2026 |
| CVE-2026-14778 | HIGH | 7.3 | A security vulnerability has been detected in SourceCodester Onlne Examination & Learning Management System 1.0. This affects an unknown part of the file /ajax_enroll.php of … | Jul 06, 2026 |
| CVE-2026-14777 | MEDIUM | 6.3 | A weakness has been identified in SourceCodester Onlne Examination & Learning Management System 1.0. Affected by this issue is some unknown functionality of the file … | Jul 06, 2026 |
| CVE-2026-14776 | MEDIUM | 6.3 | A security flaw has been discovered in SourceCodester Onlne Examination & Learning Management System 1.0. Affected by this vulnerability is the function pathinfo of the … | Jul 05, 2026 |
| CVE-2026-14775 | MEDIUM | 6.3 | A vulnerability was identified in SourceCodester Onlne Examination & Learning Management System 1.0. Affected is an unknown function of the file /process_lesson.php. Such manipulation of … | Jul 05, 2026 |
| CVE-2026-14774 | MEDIUM | 6.3 | A vulnerability was determined in itsourcecode Hospital Management System 1.0. This impacts an unknown function of the file /paymentdischarge.php. This manipulation of the argument patientid … | Jul 05, 2026 |
| CVE-2026-14773 | MEDIUM | 6.3 | A vulnerability was found in itsourcecode Hospital Management System 1.0. This affects an unknown function of the file /payment.php. The manipulation of the argument patientid … | Jul 05, 2026 |
| CVE-2026-10657 | LOW | 3.7 | Zephyr's DNS resolver detects mDNS (.local) queries in dns_resolve_name_internal() (subsys/net/lib/dns/resolve.c) with memcmp(strrchr(query, '.'), ".local", 7), which always reads a fixed 7 bytes from the suffix … | Jul 05, 2026 |
| CVE-2026-10656 | MEDIUM | 4.6 | The MAX32xxx USB device controller driver (drivers/usb/udc/udc_max32.c, compatible adi_max32_usbhs) dereferenced an endpoint buffer in its OUT and IN transfer-completion handlers without checking it for NULL. … | Jul 05, 2026 |
| CVE-2026-59520 | MEDIUM | 4.3 | Cross-Site Request Forgery (CSRF) vulnerability in properfraction CrawlWP SEO allows Cross Site Request Forgery. This issue affects CrawlWP SEO: from n/a through 3.0.16. | Jul 05, 2026 |
| CVE-2026-59519 | MEDIUM | 5.3 | Insertion of Sensitive Information Into Sent Data vulnerability in Softaculous FormLayer allows Retrieve Embedded Sensitive Data. This issue affects FormLayer: from n/a through 1.0.6. | Jul 05, 2026 |
| CVE-2026-59511 | MEDIUM | 5.3 | Insertion of Sensitive Information Into Sent Data vulnerability in Tim Strifler Exclusive Addons Elementor allows Retrieve Embedded Sensitive Data. This issue affects Exclusive Addons Elementor: … | Jul 05, 2026 |
| CVE-2026-14772 | HIGH | 7.3 | A vulnerability has been found in SourceCodester Class and Exam Timetabling System 1.0/1.php. The impacted element is an unknown function of the file /edit_course1.php. The … | Jul 05, 2026 |
| CVE-2026-14771 | HIGH | 7.3 | A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0/1.php. The affected element is an unknown function of the file /edit_exam1.php. Executing … | Jul 05, 2026 |
| CVE-2026-14770 | HIGH | 7.3 | A vulnerability was detected in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /edit_room.php. Performing a manipulation of … | Jul 05, 2026 |
| CVE-2026-14769 | HIGH | 7.3 | A security vulnerability has been detected in code-projects Real State Services 1.0. This issue affects some unknown processing of the file /pay.php. Such manipulation of … | Jul 05, 2026 |
| CVE-2026-14768 | HIGH | 7.3 | A weakness has been identified in code-projects Real State Services 1.0. This vulnerability affects unknown code of the file /builderHome.php. This manipulation of the argument … | Jul 05, 2026 |