Security Dashboard

Priority	CVE	Severity	CVSS	EPSS	Indicators	Published
126	CVE-2026-41091 Improper link resolution before file access ('link following') in Microsoft Defe	HIGH	7.8	12.1%	KEV POC FIX	2026-05-20
120	CVE-2026-48172 LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possi	CRITICAL	10.0	0.0%	KEV POC FIX	2026-05-21
117	CVE-2026-8398 A supply chain attack compromised the official installation packages of DAEMON T	CRITICAL	9.3	0.0%	KEV POC FIX	2026-05-15
116	CVE-2026-48027 Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious ver	CRITICAL	9.3	26.8%	KEV POC	2026-05-27
108	CVE-2026-9082 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti	MEDIUM	6.5	0.0%	KEV POC FIX	2026-05-20
92	CVE-2026-45498 Microsoft Defender Denial of Service Vulnerability	MEDIUM	4.0	2.3%	KEV POC FIX	2026-05-20
69	CVE-2026-31072 The JSONSerializer and CBORSerializer in APScheduler (all versions including 3.1	CRITICAL	9.8	0.1%	POC FIX	2026-05-19
67	CVE-2026-41948 Dify version 1.14.1 and prior contain a path traversal vulnerability that allows	CRITICAL	9.3	0.1%	POC	2026-05-18
67	CVE-2026-41947 Dify version 1.14.1 and prior contains an authorization bypass vulnerability tha	CRITICAL	9.3	0.0%	POC FIX	2026-05-18
66	CVE-2026-24444 SDMC NE6037 cable modem routers running firmware 7.1.6.0.25 and 7.1.6.1.9_B9 con	CRITICAL	9.3	-	POC	2026-05-28
66	CVE-2026-31071 API endpoints in LalanaChami Pharmacy Management System (commit 5c3d028) lack au	CRITICAL	9.1	0.1%	POC	2026-05-19
64	CVE-2026-3220 The Autoptimize WordPress plugin before 3.1.15, Clearfy Cache WordPress plugin	HIGH	8.8	0.0%	POC FIX	2026-05-18
64	CVE-2026-43634 HestiaCP versions 1.2.0 through 1.9.4 contain an IP spoofing vulnerability that	HIGH	8.7	0.0%	POC FIX	2026-05-19
63	CVE-2026-6379 The WP Photo Album Plus WordPress plugin before 9.1.11.001 does not properly san	HIGH	8.6	0.0%	POC FIX	2026-05-18
63	CVE-2026-7862 The Eupago Gateway For Woocommerce WordPress plugin before 4.7.2 does not proper	HIGH	8.6	0.0%	POC FIX	2026-05-28
63	CVE-2026-47114 IINA before 1.4.3 contains a user-assisted command execution vulnerability that	HIGH	8.6	0.2%	POC FIX	2026-05-21
62	CVE-2026-45369 python-utcp is the python implementation of UTCP. Prior to 1.1.3, the _substitut	HIGH	8.3	0.0%	POC FIX	2026-05-14
61	CVE-2026-41949 Dify version 1.14.1 and prior contain an authorization bypass vulnerability in t	HIGH	8.2	0.0%	POC FIX	2026-05-18
61	CVE-2026-41470 LIVE555 before 2026.04.22 contains an authorization bypass vulnerability in RTSP	HIGH	8.2	0.1%	POC FIX	2026-05-19
59	CVE-2026-45370 python-utcp is the python implementation of UTCP. Prior to 1.1.3, _prepare_envir	HIGH	7.7	0.0%	POC FIX	2026-05-14
58	CVE-2026-6381 The WP Maps WordPress plugin before 4.9.3 does not properly sanitize a paramete	HIGH	7.5	0.0%	POC FIX	2026-05-18
58	CVE-2025-15609 The Fortis for WooCommerce WordPress plugin before 1.3.1 may leak sensitive API	HIGH	7.5	0.0%	POC FIX	2026-05-19
57	CVE-2026-9346 A flaw has been found in Edimax EW-7438RPn up to 1.31. This impacts the function	HIGH	7.4	0.0%	POC	2026-05-24
57	CVE-2026-9345 A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This affects the f	HIGH	7.4	0.0%	POC	2026-05-24
57	CVE-2026-9344 A security vulnerability has been detected in Edimax EW-7438RPn up to 1.31. The	HIGH	7.4	0.0%	POC	2026-05-24
57	CVE-2026-9360 A security flaw has been discovered in Edimax EW-7438RPn 1.28a. Affected by this	HIGH	7.4	0.0%	POC	2026-05-24
57	CVE-2026-8775 A flaw has been found in Edimax BR-6428NS 1.10. This affects the function formL2	HIGH	7.4	0.0%	POC	2026-05-18
57	CVE-2026-8776 A vulnerability has been found in Edimax BR-6428NS 1.10. This vulnerability affe	HIGH	7.4	0.0%	POC	2026-05-18
57	CVE-2026-9348 A vulnerability was found in Edimax EW-7438RPn up to 1.31. Affected by this vuln	HIGH	7.4	0.0%	POC	2026-05-24
57	CVE-2026-9294 A vulnerability was identified in Edimax BR-6428NS 1.10. The impacted element is	HIGH	7.4	0.0%	POC	2026-05-23
57	CVE-2026-9295 A security flaw has been discovered in Edimax BR-6428NS 1.10. This affects the f	HIGH	7.4	0.0%	POC	2026-05-23
57	CVE-2026-8764 A security vulnerability has been detected in H3C Magic B3 up to 100R002. This a	HIGH	7.3	0.0%	POC	2026-05-17
56	CVE-2025-70103 Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM images to th	HIGH	7.3	0.0%	POC	2026-05-27
56	CVE-2026-31266 Craft CMS 5.9.5 and earlier contains a Missing Authorization vulnerability in th	HIGH	7.3	0.0%	POC	2026-05-27
56	CVE-2026-6495 The Ajax Load More WordPress plugin before 7.8.4 does not sanitise and escape a	HIGH	7.1	0.0%	POC FIX	2026-05-18
56	CVE-2026-46333 In the Linux kernel, the following vulnerability has been resolved: ptrace: sli	HIGH	7.1	0.0%	POC FIX	2026-05-15
54	CVE-2026-33741 EspoCRM is an open source customer relationship management application. Versions	MEDIUM	6.8	0.0%	POC FIX	2026-05-19
52	CVE-2026-41141 EspoCRM is an open source customer relationship management application. Prior to	MEDIUM	6.5	-	POC FIX	2026-05-28
51	CVE-2026-5776 The Email Encoder WordPress plugin before 2.4.7 does not escape email addresses	MEDIUM	6.1	0.1%	POC FIX	2026-05-20
49	CVE-2026-7385 The Decent Comments WordPress plugin before 3.0.2 does not restrict access to co	MEDIUM	5.8	0.0%	POC FIX	2026-05-20
49	CVE-2026-9367 A vulnerability was determined in NousResearch hermes-agent up to 5157f5427f1948	MEDIUM	5.5	1.0%	POC	2026-05-24
48	CVE-2026-9351 A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.16	MEDIUM	5.5	0.1%	POC	2026-05-24
48	CVE-2026-9368 A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. Thi	MEDIUM	5.5	0.1%	POC	2026-05-24
48	CVE-2026-8759 A vulnerability was identified in xiandafu beetl up to 3.20.2. Affected is an un	MEDIUM	5.5	0.1%	POC	2026-05-17
48	CVE-2026-8757 A vulnerability was found in adenhq hive up to 0.11.0. This affects the function	MEDIUM	5.5	0.1%	POC	2026-05-17
48	CVE-2026-46383 Microsoft APM is an open-source, community-driven dependency manager for AI agen	MEDIUM	5.5	0.1%	POC FIX	2026-05-15
48	CVE-2026-8737 A weakness has been identified in Sanluan PublicCMS 5.202506.d. This issue affec	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-9354 A vulnerability was detected in NousResearch hermes-agent up to 2026.4.16. The a	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-9366 A vulnerability was found in NousResearch hermes-agent 2026.4.23. The impacted e	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-9353 A security vulnerability has been detected in NousResearch hermes-agent up to 20	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-9372 A flaw has been found in ItzCrazyKns Vane up to 1.12.1. This vulnerability affec	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-8738 A security vulnerability has been detected in Sanluan PublicCMS 5.202506.d. Impa	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-8758 A vulnerability was determined in Metasoft 美特软件 MetaCRM up to 6.4.0 Beta06. This	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-9350 A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. Thi	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-8725 A weakness has been identified in CoreWorxLab CAAL up to 1.6.0. The affected ele	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-8751 A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-9349 A vulnerability was determined in calcom cal.diy up to 4.9.4. Affected by this i	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-8785 A flaw has been found in projectworlds hospital-management-system-in-php 1.0. Af	MEDIUM	5.5	0.0%	POC	2026-05-18
48	CVE-2026-9352 A weakness has been identified in NousResearch hermes-agent up to 2026.4.23. Thi	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-9355 A flaw has been found in SourceCodester Hospitals Patient Records Management Sys	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-9356 A vulnerability has been found in SourceCodester Hospitals Patient Records Manag	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-8750 A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-9364 A flaw has been found in projectworlds Online Art Gallery Shop 1.0. Impacted is	MEDIUM	5.5	0.0%	POC	2026-05-24
48	CVE-2026-8739 A vulnerability was detected in Sanluan PublicCMS 5.202506.d. The affected eleme	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-8734 A vulnerability was determined in Oinone Pamirs up to 7.2.0. Affected by this is	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-8752 A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability aff	MEDIUM	5.5	0.0%	POC	2026-05-17
48	CVE-2026-9580 A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is	MEDIUM	5.5	0.0%	POC FIX	2026-05-26
48	CVE-2026-9606 A vulnerability has been found in itsourcecode Courier Management System 1.0. Im	MEDIUM	5.5	0.0%	POC	2026-05-26
48	CVE-2026-9584 A security vulnerability has been detected in code-projects Project Management S	MEDIUM	5.5	0.0%	POC	2026-05-26
48	CVE-2026-9603 A security vulnerability has been detected in SourceCodester eDoc Doctor Appoint	MEDIUM	5.5	0.0%	POC	2026-05-26
47	CVE-2026-1631 The Feeds for YouTube (YouTube video, channel, and gallery plugin) WordPress plu	MEDIUM	5.4	0.0%	POC FIX	2026-05-18
42	CVE-2026-46345 Relevant Products/Components: * `trestle/core/commands/author/jinja.py` * `	HIGH	8.4	-	POC FIX	2026-05-28
42	CVE-2025-70116 A NULL pointer dereference in GPAC MP4Box: when parsing certain truncated MP4 fi	MEDIUM	4.3	0.0%	POC	2026-05-27
42	CVE-2026-9807 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9	MEDIUM	4.3	0.0%	POC FIX	2026-05-28
42	CVE-2026-41160 EspoCRM is an open source customer relationship management application. Prior to	MEDIUM	4.3	-	POC FIX	2026-05-28
35	CVE-2026-9365 A vulnerability has been found in Ettercap up to 0.8.3. The affected element is	LOW	2.9	0.1%	POC FIX	2026-05-24
35	CVE-2026-9371 A security vulnerability has been detected in ItzCrazyKns Vane up to 1.12.1. Aff	LOW	2.9	0.1%	POC	2026-05-24
35	CVE-2026-9306 A security vulnerability has been detected in QuantumNous new-api up to 0.12.1.	LOW	2.9	0.0%	POC	2026-05-23
35	CVE-2026-9370 A weakness has been identified in ulisesbocchio jasypt-spring-boot up to 3.0.5/4	LOW	2.9	0.0%	POC	2026-05-24
31	CVE-2026-9347 A vulnerability has been found in Edimax EW-7438RPn up to 1.31. Affected is the	LOW	2.1	0.9%	POC	2026-05-24
31	CVE-2026-9343 A weakness has been identified in Edimax EW-7438RPn up to 1.31. The affected ele	LOW	2.1	0.9%	POC	2026-05-23
31	CVE-2026-9359 A vulnerability was identified in Edimax EW-7438RPn 1.28a. Affected by this vuln	LOW	2.1	0.8%	POC	2026-05-24
31	CVE-2026-9361 A weakness has been identified in Edimax EW-7438RPn 1.12. This affects the funct	LOW	2.1	0.8%	POC	2026-05-24
31	CVE-2026-8753 A security vulnerability has been detected in kalcaddle Kodbox up to 1.64. This	LOW	2.1	0.8%	POC	2026-05-17
31	CVE-2026-9362 A security vulnerability has been detected in Edimax EW-7438RPn 1.12. This vulne	LOW	2.1	0.8%	POC	2026-05-24
31	CVE-2026-9363 A vulnerability was detected in Edimax EW-7438RPn 1.12. This issue affects the f	LOW	2.1	0.8%	POC	2026-05-24
31	CVE-2026-9296 A weakness has been identified in Edimax BR-6428NS 1.10. This impacts the functi	LOW	2.1	0.8%	POC	2026-05-23
31	CVE-2026-9297 A security vulnerability has been detected in Edimax BR-6428NS 1.10. Affected is	LOW	2.1	0.8%	POC	2026-05-23
31	CVE-2026-8777 A vulnerability was found in Edimax BR-6428NS 1.10. This issue affects the funct	LOW	2.1	0.8%	POC	2026-05-18
31	CVE-2026-8774 A vulnerability was detected in Edimax BR-6228NC 1.22. Affected by this issue is	LOW	2.1	0.8%	POC	2026-05-18

Oldest Unpatched Critical/High CVEs

CVE	Severity	CVSS	Priority	Days Open
CVE-2024-3400	CRITICAL	10.0	224	776d
CVE-2019-19781	CRITICAL	9.8	223	2344d
CVE-2020-5902	CRITICAL	9.8	223	2157d
CVE-2021-35464	CRITICAL	9.8	223	1771d
CVE-2020-10189	CRITICAL	9.8	223	2274d
CVE-2012-4681	CRITICAL	9.8	223	5021d
CVE-2022-42475	CRITICAL	9.8	223	1242d
CVE-2023-3519	CRITICAL	9.8	223	1044d
CVE-2015-7450	CRITICAL	9.8	222	3798d
CVE-2023-34048	CRITICAL	9.8	222	946d

1 / 2 Next