8.8 CVE-2026-24516
A command injection vulnerability exists in DigitalOcean Droplet Agent through 1.3.2. The troubleshooting...

7.5 CVE-2026-26828
A NULL pointer dereference in the daap_reply_playlists function (src/httpd_daap.c) of owntone-server...

7.5 CVE-2026-26829
A NULL pointer dereference in the safe_atou64 function (src/misc.c) of owntone-server through commit...

6.2 CVE-2026-30006
XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff file.

6.2 CVE-2026-30007
XnSoft NConvert 7.230 is vulnerable to Use-After-Free via a crafted .tiff file

6.1 CVE-2026-33499
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `view/forbiddenPage.php`...

5.4 CVE-2026-33500
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the fix for CVE-2026-27568...

5.3 CVE-2026-33501
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the endpoint `plugin/Permissions/View/Users_groups_permissions/list.json.php`...

9.3 CVE-2026-33502
WWBN AVideo is an open source video platform. In versions up to and including 26.0, an unauthenticated...

8.8 CVE-2026-33507
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `objects/pluginImport.json.php`...

6.3 CVE-2026-4593
A flaw has been found in erupts erupt bis 1.13.3. Affected by this vulnerability is the function EruptDataQuery...

CVE-2025-15517
A missing authentication check in the HTTP server on TP-Link Archer NX200, NX210, NX500 and NX600 to...

CVE-2025-15518
Improper input handling in a wireless-control administrative CLI command on TP-Link Archer NX200, NX210,...

CVE-2025-15519
Improper input handling in a modem-management administrative CLI command on TP-Link Archer NX200, NX210,...

CVE-2025-15605
A hardcoded cryptographic key within the configuration mechanism on TP-Link Archer NX200, NX210, NX500...

7.3 CVE-2026-4594
A vulnerability has been found in erupts erupt up to 1.13.3. Affected by this issue is the function...

CVE-2025-15606
A Denial-of-Service (DoS) vulnerability in the httpd component of TP-Link's TD-W8961N v4.0 due to improper...

CVE-2026-0898
An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robot Studio developers...

7.5 CVE-2026-25075
strongSwan versions 4.5.0 prior to 6.0.5 contain an integer underflow vulnerability in the EAP-TTLS...

CVE-2026-26209
cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) serialization...

7.5 CVE-2026-33512
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the API plugin exposes...