Skip to main content
CVE-2026-27944 CRITICAL POC PATCH Act Now

Unauthenticated backup download and RCE in Nginx UI before 2.3.3. EPSS 1.0%. PoC available.

Nginx TLS Nginx Ui Suse
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.0%
CVE-2026-29128 CRITICAL POC Act Now

Plaintext daemon credentials in IDC SFX2100 routing config files (zebra, bgpd, ospfd, ripd). CVSS 10.0. PoC available.

IoT BGP Privilege Escalation Information Disclosure Credential Stuffing +2
NVD
CVSS 3.1
10.0
EPSS
0.0%
CVE-2025-70231 CRITICAL POC Act Now

Path traversal in D-Link DIR-513 verification code processing. PoC available.

D-Link Path Traversal Dir 513 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-70233 CRITICAL POC Act Now

Stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetEnableWizard. Part of a family of 15+ critical buffer overflows in this router.

D-Link Buffer Overflow Dir 513 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-70232 CRITICAL POC Act Now

Stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetMACFilter. Part of a family of 15+ critical buffer overflows in this router.

D-Link Buffer Overflow Dir 513 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-70230 CRITICAL POC Act Now

Stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetDDNS. Part of a family of 15+ critical buffer overflows in this router.

D-Link Buffer Overflow Dir 513 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-70229 CRITICAL POC Act Now

Stack buffer overflow in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSchedule. Part of a family of 15+ critical buffer overflows in this router.

D-Link Buffer Overflow Dir 513 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-28446 CRITICAL POC PATCH Act Now

Auth bypass in OpenClaw voice-call extension before 2026.2.1. EPSS 0.68%. PoC and patch available.

Authentication Bypass AI / ML Openclaw
NVD GitHub
CVSS 3.1
9.4
EPSS
0.7%
CVE-2026-1678 CRITICAL POC Act Now

Buffer overflow in Zephyr RTOS dns_unpack_name() function causing OOB writes. PoC available.

DNS Zephyr
NVD GitHub
CVSS 3.1
9.4
EPSS
0.1%
CVE-2026-25921 CRITICAL POC PATCH Act Now

Supply chain attack via LFS object overwrite across repos in Gogs before 0.14.2. PoC and patch available.

Authentication Bypass Gogs Suse
NVD GitHub
CVSS 3.1
9.3
EPSS
0.0%
CVE-2026-29188 CRITICAL POC PATCH Act Now

Unauthorized file operations in File Browser before fix. PoC and patch available.

Authentication Bypass Filebrowser Suse
NVD GitHub
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-2743 CRITICAL Act Now

Remote code execution in SeppMail secure email gateway versions 15.0.2.1 and earlier allows unauthenticated attackers to write arbitrary files via path traversal in the Large File Transfer (LFT) feature of the User Web Interface, leading to full system compromise. The flaw carries a maximum CVSS 4.0 score of 10.0 reflecting network-reachable, no-privilege exploitation with scope-changing impact, and was disclosed by InfoGuard Labs alongside CVE-2026-7864, CVE-2026-44127, and CVE-2026-44128. No public exploit identified at time of analysis and EPSS sits at 0.52% (67th percentile), so widespread automated abuse has not yet materialized despite the critical severity.

RCE Path Traversal Seppmail
NVD VulDB
CVSS 4.0
10.0
EPSS
0.5%
CVE-2026-0848 CRITICAL PATCH Act Now

Remote code execution in NLTK (Natural Language Toolkit) versions ≤3.9.2 allows unauthenticated attackers to execute arbitrary Java bytecode through the StanfordSegmenter module's unvalidated loading of external JAR files. The vulnerability is exploitable via model poisoning, MITM attacks during JAR downloads, or dependency poisoning, with execution occurring automatically at import time. Despite a critical CVSS 10.0 score, EPSS probability of 0.48% (65th percentile) suggests low observed exploitation activity. No CISA KEV listing indicates no confirmed widespread active exploitation, though the vulnerability is publicly documented on huntr.com with technical details available.

Java RCE
NVD
CVSS 3.0
10.0
EPSS
0.5%
CVE-2026-28353 CRITICAL Act Now

Trivy Vulnerability Scanner is a VS Code extension that helps find vulnerabilities.

Information Disclosure
NVD GitHub
CVSS 4.0
10.0
EPSS
0.1%
CVE-2026-28466 CRITICAL PATCH Act Now

Gateway authorization bypass in OpenClaw before 2026.2.14. Unsanitized approval fields in node.invoke. Patch available.

Authentication Bypass RCE Openclaw
NVD GitHub
CVSS 3.1
9.9
EPSS
0.1%
CVE-2026-22390 CRITICAL Act Now

Builderall Builderall Builder for WordPress builderall-cheetah-for-wp is affected by code injection (CVSS 9.9).

WordPress Code Injection RCE
NVD
CVSS 3.1
9.9
EPSS
0.1%
CVE-2026-24960 CRITICAL Act Now

Unrestricted file upload in Charety (charety) WordPress theme allows uploading web shells for remote code execution.

File Upload
NVD
CVSS 3.1
9.9
EPSS
0.0%
CVE-2025-68555 CRITICAL Act Now

Unrestricted file upload in Nutrie (nutrie) WordPress theme allows uploading web shells for remote code execution.

File Upload
NVD
CVSS 3.1
9.9
EPSS
0.0%
CVE-2025-68554 CRITICAL Act Now

Unrestricted file upload in Keenarch (keenarch) WordPress theme allows uploading web shells for remote code execution.

File Upload
NVD
CVSS 3.1
9.9
EPSS
0.0%
CVE-2025-68553 CRITICAL Act Now

Unrestricted file upload in Lendiz (lendiz) WordPress theme allows uploading web shells for remote code execution.

File Upload
NVD
CVSS 3.1
9.9
EPSS
0.0%
CVE-2026-21536 CRITICAL PATCH Act Now

RCE in Microsoft Devices Pricing Program.

Microsoft RCE File Upload Devices Pricing Program
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2026-21628 CRITICAL Act Now

Unauthenticated RCE via file upload in industrial/enterprise application.

RCE File Upload Astroid Framework
NVD
CVSS 3.1
9.8
EPSS
0.3%
CVE-2026-28043 CRITICAL Act Now

The ThemeREX Healer WordPress theme through version 1.0.0 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files on the server through improper handling of file include statements. An attacker can exploit this to access sensitive configuration files, database credentials, and other protected data without authentication. No patch is currently available and exploitation requires no user interaction.

WordPress PHP LFI Information Disclosure
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2026-2599 CRITICAL Act Now

PHP Object Injection in Database for CF7/WPforms/Elementor forms WordPress plugin.

WordPress PHP Deserialization Information Disclosure
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-28391 CRITICAL PATCH Act Now

Windows cmd.exe metacharacter injection in OpenClaw before 2026.2.2. Bypass exec whitelist. Patch available.

Windows Openclaw
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-3381 CRITICAL PATCH Act Now

Insecure embedded zlib in Compress::Raw::Zlib through 2.219 for Perl.

Information Disclosure Red Hat Suse
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-40926 CRITICAL PATCH Act Now

Insecure session ID generation in Plack::Middleware::Session::Simple before 0.05 for Perl. Patch available.

Information Disclosure Suse
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-27389 CRITICAL Act Now

Auth bypass in WeDesignTech Ultimate Booking Addon for WordPress.

Authentication Bypass
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-28105 CRITICAL Act Now

Deserialization of untrusted data in Good Energy (goodenergy) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-28074 CRITICAL Act Now

Deserialization of untrusted data in Pizza House (pizzahouse) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-27983 CRITICAL Act Now

Privilege escalation in LMS Elementor Pro WordPress plugin.

Privilege Escalation
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-27439 CRITICAL Act Now

Deserialization of untrusted data in Dentario (dentario) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-27438 CRITICAL Act Now

Deserialization of untrusted data in Kingler (kingler) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-27437 CRITICAL Act Now

Deserialization of untrusted data in Tennis Club (tennis-sportclub) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-27417 CRITICAL Act Now

Deserialization of untrusted data in Sweet Date (sweetdate) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22501 CRITICAL Act Now

Deserialization of untrusted data in Mounthood (mounthood) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22497 CRITICAL Act Now

Deserialization of untrusted data in Jardi (jardi) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22475 CRITICAL Act Now

Deserialization of untrusted data in Estate (estate) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22474 CRITICAL Act Now

Deserialization of untrusted data in Equestrian Centre (equestrian-centre) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22454 CRITICAL Act Now

Deserialization of untrusted data in Solaris (solaris) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22453 CRITICAL Act Now

Deserialization of untrusted data in Pets Club (petclub) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22451 CRITICAL Act Now

Deserialization of untrusted data in Handyman (handyman-services) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-22417 CRITICAL Act Now

ThemeGoods Grand Wedding through version 3.1.0 is vulnerable to remote object injection via unsafe deserialization of untrusted data, enabling attackers to execute arbitrary code without authentication. The vulnerability requires specific conditions to be met but carries high severity with complete compromise of confidentiality, integrity, and availability. No patch is currently available for affected installations.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-54001 CRITICAL Act Now

Deserialization of untrusted data in Classter (classter) WordPress theme allows PHP Object Injection, potentially enabling remote code execution through POP chains.

Deserialization
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-3257 CRITICAL Act Now

Insecure embedded library in UnQLite 0.06 Perl module.

Heap Overflow Unqlite
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-29165 CRITICAL Act Now

Privilege escalation in D-Link DIR-1253 MESH V1.6.1684 via etc/shadow.sample.

D-Link Privilege Escalation
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-23767 CRITICAL Act Now

ESC/POS printer control language lacks authentication/authorization. Any device on the network can send print commands.

Authentication Bypass Tm M30iii H Firmware Tm T88vi Ihub Firmware Tm T88vii Firmware Tm L100 Firmware +20
NVD
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-28443 CRITICAL Act Now

SQL injection in OpenReplay session replay before 1.20.0.

SQLi Openreplay
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.0%
CVE-2025-13476 CRITICAL Act Now

Static TLS fingerprint in Rakuten Viber Cloak mode enables tracking despite privacy mode.

Windows Android TLS Viber
NVD
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-28536 CRITICAL Act Now

Auth bypass in device authentication module.

Authentication Bypass Harmonyos
NVD
CVSS 3.1
9.6
EPSS
0.0%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy