7.5 CVE-2026-12997
The Gravity Forms plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and...
6.5 CVE-2026-15746
Strands Agents is an open-source Python SDK for building and running AI agents. The strands-agents-tools...
7.8 CVE-2026-15895
OS command injection in the npm package loading component in AWS jsii-diff before 1.131.0 might allow...
5.4 CVE-2026-26032
The PackagerResolver of Apache Ivy is able to download online
artifacts and to (re)package them in a...
CVE-2026-46421
The SAP Cloud Application Programming Model is a tool for building enterprise-grade cloud applications,...
8.2 CVE-2026-46485
Dashy is a self-hostable personal dashboard. Prior to 4.0.8, Dashy deployments using OIDC can allow...
CVE-2026-49987
Repomix is a tool that packs repositories into AI-friendly files. Prior to 1.14.1, src/core/git/gitCommand.ts...
CVE-2026-49988
Repomix is a tool that packs repositories into AI-friendly files. Prior to 1.14.1, the Repomix MCP server...
CVE-2026-54443
Dashy is a self-hostable personal dashboard. From 1.9.4 until 3.2.0, the Dashy RSS Widget in src/components/Widgets/RssFeed.vue...
5.4 CVE-2026-62348
TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.15, TDengine...
8.3 CVE-2026-62349
TDengine is an open source, time-series database optimized for Internet of Things devices. In 3.4.1.6...
7.2 CVE-2026-62350
TDengine is an open source, time-series database optimized for Internet of Things devices. Prior to...
7.5 CVE-2026-62351
TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.15, source/libs/transport/src/transComm.c...
5.4 CVE-2026-62353
TDengine is a time-series database optimized for Internet of Things devices. Prior to 3.4.1.14, source/libs/parser/src/parTokenizer.c...
5.4 CVE-2026-62355
TDengine is an open source, time-series database optimized for Internet of Things devices. Prior to...
4.9 CVE-2026-62947
OpenWrt is a Linux operating system targeting embedded devices. Prior to 25.12.5, the cgi-download handler...
5.9 CVE-2026-33443
CVE-2026-33443 is a memory management error in
Secure Access servers prior to 14.55. Attackers with...
7.8 CVE-2026-40952
CVE-2026-40952 is a privilege misconfiguration
in the Secure Access installer for the Windows client...
4.4 CVE-2026-40953
CVE-2026-40953 is a heap overflow in the
certificate parsing function of Secure Access clients prior...
3.7 CVE-2026-40954
CVE-2026-40954
is an integer underflow vulnerability in the traffic parsing function of Secure
Access...
3.7 CVE-2026-40955
CVE-2026-40955 is an integer underflow
vulnerability in the traffic parsing function of Secure Access...