7.5 CVE-2026-12997
The Gravity Forms plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and...

2026-07-15T19:50:25.310

6.5 CVE-2026-15746
Strands Agents is an open-source Python SDK for building and running AI agents. The strands-agents-tools...

2026-07-15T19:50:36.327

7.8 CVE-2026-15895
OS command injection in the npm package loading component in AWS jsii-diff before 1.131.0 might allow...

2026-07-15T20:16:56.200

5.4 CVE-2026-26032
The PackagerResolver of Apache Ivy is able to download online artifacts and to (re)package them in a...

2026-07-16T02:57:40.840

CVE-2026-46421
The SAP Cloud Application Programming Model is a tool for building enterprise-grade cloud applications,...

2026-07-15T20:29:34.980

8.2 CVE-2026-46485
Dashy is a self-hostable personal dashboard. Prior to 4.0.8, Dashy deployments using OIDC can allow...

2026-07-15T19:50:11.367

CVE-2026-49987
Repomix is a tool that packs repositories into AI-friendly files. Prior to 1.14.1, src/core/git/gitCommand.ts...

2026-07-15T20:17:13.083

CVE-2026-49988
Repomix is a tool that packs repositories into AI-friendly files. Prior to 1.14.1, the Repomix MCP server...

2026-07-15T20:15:56.030

CVE-2026-54443
Dashy is a self-hostable personal dashboard. From 1.9.4 until 3.2.0, the Dashy RSS Widget in src/components/Widgets/RssFeed.vue...

2026-07-15T20:17:40.743

5.4 CVE-2026-62348
TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.15, TDengine...

2026-07-15T19:50:11.367

8.3 CVE-2026-62349
TDengine is an open source, time-series database optimized for Internet of Things devices. In 3.4.1.6...

2026-07-15T20:18:01.557

7.2 CVE-2026-62350
TDengine is an open source, time-series database optimized for Internet of Things devices. Prior to...

2026-07-15T19:50:11.367

7.5 CVE-2026-62351
TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.15, source/libs/transport/src/transComm.c...

2026-07-15T20:18:01.667

5.4 CVE-2026-62353
TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.14, source/libs/parser/src/parTokenizer.c...

2026-07-15T20:18:01.763

5.4 CVE-2026-62355
TDengine is an open source, time-series database optimized for Internet of Things devices. Prior to...

2026-07-15T20:18:01.860

4.9 CVE-2026-62947
OpenWrt is a Linux operating system targeting embedded devices. Prior to 25.12.5, the cgi-download handler...

2026-07-15T20:54:43.733

5.9 CVE-2026-33443
CVE-2026-33443 is a memory management error in Secure Access servers prior to 14.55. Attackers with...

2026-07-16T14:16:50.170

7.8 CVE-2026-40952
CVE-2026-40952 is a privilege misconfiguration in the Secure Access installer for the Windows client...

2026-07-16T14:16:51.250

4.4 CVE-2026-40953
CVE-2026-40953 is a heap overflow in the certificate parsing function of Secure Access clients prior...

2026-07-16T14:16:51.390

3.7 CVE-2026-40954
CVE-2026-40954 is an integer underflow vulnerability in the traffic parsing function of Secure Access...

2026-07-16T14:16:51.547

3.7 CVE-2026-40955
CVE-2026-40955 is an integer underflow vulnerability in the traffic parsing function of Secure Access...

2026-07-16T14:16:51.683