Skip to main content
CVE-2026-23760 CRITICAL POC KEV THREAT Emergency

SmarterTools SmarterMail prior to build 9511 contains a critical authentication bypass in the password reset API (CVE-2026-23760) that allows unauthenticated attackers to reset system administrator passwords without verification. With EPSS 65% and KEV listing, this trivially exploitable vulnerability enables complete email server takeover, compromising all hosted mailboxes and organizational communications.

Authentication Bypass Smartermail
NVD
CVSS 3.1
9.8
EPSS
65.4%
Threat
6.9
CVE-2025-69764 CRITICAL POC Act Now

Tenda AX3 firmware has another stack-based buffer overflow in formGetIptv through a different input path, enabling remote code execution.

RCE Buffer Overflow Stack Overflow Memory Corruption Ax3 Firmware +1
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-24124 CRITICAL POC PATCH Act Now

Dragonfly P2P file distribution system versions 2.4.1-rc.0 and below have a missing authentication vulnerability allowing unauthenticated access to the management API.

Authentication Bypass Dragonfly Suse
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-23958 CRITICAL POC Act Now

DataEase data visualization tool prior to 2.10.19 uses MD5-hashed passwords without salting, allowing attackers to crack credentials and gain unauthorized access.

Authentication Bypass Dataease
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-56590 CRITICAL POC Act Now

Apryse HTML2PDF SDK through version 11.10 has a command injection vulnerability in the InsertFromURL function allowing remote code execution when converting HTML to PDF.

Command Injection Html2pdf
NVD
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-23873 CRITICAL POC Act Now

HUSTOJ online judge system has a CSV injection vulnerability in all versions that allows code execution through crafted submissions exported to spreadsheets.

Linux PHP MySQL Hustoj
NVD GitHub
CVSS 3.1
9.0
EPSS
0.0%
CVE-2025-69828 CRITICAL Act Now

TMS Management Console v6.3.7 has a CVSS 10.0 arbitrary file upload vulnerability allowing remote attackers to execute arbitrary code on the server without authentication.

Golang
NVD GitHub
CVSS 3.1
10.0
EPSS
0.4%
CVE-2025-68001 CRITICAL Act Now

g-FFL Checkout WordPress plugin has an unrestricted file upload vulnerability allowing attackers to upload web shells for remote code execution.

File Upload
NVD
CVSS 3.1
10.0
EPSS
0.1%
CVE-2025-50002 CRITICAL Act Now

Farost Energia WordPress plugin allows unrestricted file upload enabling attackers to upload web shells and achieve remote code execution on the WordPress server.

File Upload
NVD
CVSS 3.1
10.0
EPSS
0.1%
CVE-2025-68986 CRITICAL Act Now

Miion WordPress theme by zozothemes has an unrestricted file upload vulnerability allowing unauthenticated web shell deployment and server compromise.

WordPress PHP RCE
NVD
CVSS 3.1
9.9
EPSS
0.1%
CVE-2025-68910 CRITICAL Act Now

Blogzee WordPress theme by blazethemes has an unrestricted file upload vulnerability — the fourth blazethemes product affected by the same shared vulnerable upload component.

WordPress PHP RCE
NVD
CVSS 3.1
9.9
EPSS
0.1%
CVE-2025-68909 CRITICAL Act Now

Blogistic WordPress theme by blazethemes has an unrestricted file upload vulnerability enabling attackers to deploy web shells for persistent server access.

WordPress PHP RCE
NVD
CVSS 3.1
9.9
EPSS
0.1%
CVE-2025-67968 CRITICAL Act Now

Real Homes CRM WordPress plugin has an unrestricted file upload allowing web shell deployment for persistent remote code execution.

WordPress PHP RCE
NVD
CVSS 3.1
9.9
EPSS
0.1%
CVE-2025-62056 CRITICAL Act Now

News Event WordPress theme by blazethemes has an unrestricted file upload allowing web shell deployment and remote code execution.

WordPress PHP RCE
NVD
CVSS 3.1
9.9
EPSS
0.0%
CVE-2025-62050 CRITICAL Act Now

Blogmatic WordPress theme by blazethemes has an unrestricted file upload vulnerability allowing attackers to upload web shells for persistent server access.

WordPress PHP RCE
NVD
CVSS 3.1
9.9
EPSS
0.0%
CVE-2026-1331 CRITICAL Act Now

HAMASTAR MeetingHub has an arbitrary file upload vulnerability allowing unauthenticated remote attackers to upload web shells and achieve full server compromise.

File Upload RCE Meetinghub Paperless Meetings
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-69101 CRITICAL Act Now

Workreap Core WordPress plugin has an authentication bypass allowing unauthenticated users to access protected functionality through an alternate authentication path.

Authentication Bypass
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-24306 CRITICAL PATCH Act Now

Azure Front Door has an improper access control vulnerability (CVSS 9.8) allowing unauthorized attackers to elevate privileges through the CDN and WAF infrastructure.

Azure Azure Front Door
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-69052 CRITICAL Act Now

FmeAddons Registration & Login with Mobile Phone Number for WooCommerce has a missing authorization vulnerability allowing unauthenticated access to protected functionality.

WordPress PHP
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-68869 CRITICAL Act Now

LazyTasks project management WordPress plugin has an incorrect privilege assignment vulnerability allowing low-privileged users to escalate to administrator, gaining full site control.

Privilege Escalation
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-69079 CRITICAL Act Now

ThemeREX Sound/musicplace WordPress theme has an insecure deserialization vulnerability enabling PHP object injection and potential remote code execution.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-67617 CRITICAL Act Now

Consult Aid WordPress theme has an insecure deserialization vulnerability allowing object injection that can lead to remote code execution.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-64097 CRITICAL PATCH Act Now

NervesHub OTA firmware management has a weak random number generation vulnerability that allows attackers to predict firmware update tokens and push malicious updates.

Authentication Bypass Nerveshub
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-0920 CRITICAL Act Now

LA-Studio Element Kit for Elementor WordPress plugin allows unauthenticated admin user creation, enabling complete WordPress site takeover.

WordPress
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-24058 CRITICAL PATCH Act Now

Soft Serve self-hosted Git server versions 0.11.2 and below have a critical authentication bypass that allows unauthenticated access to private repositories.

SSH Authentication Bypass Soft Serve Suse
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-24042 CRITICAL Act Now

Appsmith platform version 1.94 and below has a missing authorization vulnerability that allows unauthenticated access to publicly deployed applications' internal APIs.

Information Disclosure Appsmith
NVD GitHub
CVSS 3.1
9.4
EPSS
0.1%
CVE-2025-54816 CRITICAL Act Now

A WebSocket endpoint lacks proper authentication, allowing unauthenticated users to connect and interact with real-time data streams and server-side functionality.

Privilege Escalation Evmapa
NVD GitHub
CVSS 3.1
9.4
EPSS
0.1%
CVE-2025-68018 CRITICAL Act Now

Order Listener for WooCommerce has a missing authorization vulnerability enabling unauthenticated access to order data and administrative functions.

WordPress Authentication Bypass
NVD
CVSS 3.1
9.4
EPSS
0.1%
CVE-2026-24307 CRITICAL PATCH Act Now

M365 Copilot has an input validation vulnerability allowing unauthorized attackers to extract sensitive information through crafted prompts over the network.

Information Disclosure 365 Copilot
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2026-24305 CRITICAL PATCH Act Now

Azure Entra ID (formerly Azure AD) has an elevation of privilege vulnerability allowing attackers to escalate permissions within the identity platform.

Azure Entra Id
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2025-68034 CRITICAL Act Now

CleverReach WordPress plugin has a SQL injection vulnerability allowing attackers to extract email marketing data and WordPress credentials from the database.

SQLi
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2025-67945 CRITICAL Act Now

MailerLite WordPress plugin has a SQL injection vulnerability enabling attackers to extract sensitive data from the WordPress database.

WordPress SQLi
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2026-21264 CRITICAL PATCH Act Now

Microsoft Account has a cross-site scripting vulnerability allowing unauthenticated attackers to execute scripts in the context of Microsoft Account pages.

Microsoft XSS Account
NVD
CVSS 3.1
9.3
EPSS
0.0%
CVE-2025-49055 CRITICAL Act Now

WP Learn SQL Injection allows unauthenticated attackers to execute arbitrary SQL queries against the WordPress database, exposing all stored data.

SQLi
NVD
CVSS 3.1
9.3
EPSS
0.0%
CVE-2025-68857 CRITICAL Act Now

Paid Downloads WordPress plugin has a SQL injection vulnerability enabling database compromise through the download management functionality.

SQLi
NVD
CVSS 3.1
9.3
EPSS
0.0%
CVE-2025-67944 CRITICAL Act Now

Nelio AB Testing WordPress plugin has a code injection vulnerability allowing attackers to execute arbitrary code through the A/B testing functionality.

Code Injection RCE
NVD
CVSS 3.1
9.1
EPSS
0.1%
CVE-2025-69312 CRITICAL Act Now

Xpro Elementor Addons WordPress plugin has an unrestricted file upload allowing attackers to upload dangerous file types through the Elementor builder integration.

File Upload
NVD
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-20912 CRITICAL PATCH Act Now

Gitea fails to validate repository ownership when linking attachments to releases, allowing users to attach files from one repository to releases in another.

Authentication Bypass Gitea
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-20897 CRITICAL PATCH Act Now

Gitea fails to validate repository ownership when deleting Git LFS locks, allowing users with write access to one repo to delete LFS locks in other repositories.

Authentication Bypass Gitea
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-20750 CRITICAL PATCH Act Now

Gitea does not properly validate project ownership in organization operations, allowing users with project write access to manipulate projects belonging to other organizations.

Authentication Bypass Gitea
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-23966 CRITICAL PATCH Act Now

The sm-crypto JavaScript library has a private key recovery vulnerability in its SM2 implementation, allowing attackers to extract secret keys from signatures.

Authentication Bypass Sm Crypto
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%
CVE-2025-68015 CRITICAL Act Now

Event Tickets with Ticket Scanner WordPress plugin has a code injection vulnerability allowing remote code execution through the event management system.

Code Injection RCE
NVD
CVSS 3.1
9.0
EPSS
0.1%
CVE-2026-24002 CRITICAL PATCH Act Now

Grist spreadsheet software has an injection vulnerability in Python formula execution that allows authenticated users to escape the formula sandbox and execute arbitrary code.

Python AI / ML Grist Core
NVD GitHub
CVSS 3.1
9.0
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy