Total CVEs
6188
last 30 days
Avg Priority
35.0
of max 220
KEV
8
actively exploited
POC
744
public exploits
Unpatched
1227
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-5281
Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had co
118
CVE-2026-34621
Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Control
117
CVE-2026-33634
Trivy is a security scanner. On March 19, 2026, a threat actor used compromised credentials to publi
117
CVE-2026-3055
Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP l
114
CVE-2026-34197
Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability i
109
CVE-2026-3502
TrueConf Client downloads application update code and applies it without performing verification. An
109
CVE-2026-32201
Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform
Priority Distribution
| Priority | CVE |
|---|---|
| 38 |
CVE-2026-30994
Incorrect access control in the config.php component of Slah v1.5.0 and below al
|
| 38 |
CVE-2026-40245
### Summary
An information disclosure vulnerability in the UDR service allows an
|
| 38 |
CVE-2026-33096
Out-of-bounds read in Windows HTTP.sys allows an unauthorized attacker to deny s
|
| 38 |
CVE-2026-23708
A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through
|
| 38 |
CVE-2026-30364
CentSDR commit e40795 was discovered to contain a stack overflow in the "Thread1
|
| 38 |
CVE-2026-40869
### Impact
The vulnerability allows any registered and authenticated user to acc
|
| 38 |
CVE-2026-6319
Use after free in Payments in Google Chrome on Android prior to 147.0.7727.101 a
|
| 38 |
CVE-2026-6308
Out of bounds read in Media in Google Chrome prior to 147.0.7727.101 allowed a r
|
| 38 |
CVE-2026-40870
### Impact
The root level `commentable` field in the API allows access to all co
|
| 38 |
CVE-2026-34188
Improper Neutralization of Special Elements used in an OS Command vulnerability
|
| 38 |
CVE-2026-6372
Missing Authorization vulnerability in Plisio Accept Cryptocurrencies with Plisi
|
| 38 |
CVE-2026-34986
### Impact
Decrypting a JSON Web Encryption (JWE) object will panic if the `alg
|
| 38 |
CVE-2026-30996
An issue in the file handling logic of the component download.php of SAC-NFe v2.
|
| 38 |
CVE-2026-40303
**Summary**
endpoints.GetSessionCookie parses an attacker-supplied cookie chunk
|
| 38 |
CVE-2026-3104
A specially crafted domain can be used to cause a memory leak in a BIND resolver
|
| 38 |
CVE-2026-35209
### Impact
Applications that pass unsanitized user input (e.g. parsed JSON requ
|
| 38 |
CVE-2026-4525
If a Vault auth mount is configured to pass through the "Authorization" header,
|
| 38 |
CVE-2026-30762
Summary:
The file lightrag/api/config.py (line 397) uses a default JWT secret "l
|
| 38 |
CVE-2026-35401
Saleor is an e-commerce platform. From 2.0.0 to before 3.23.0a3, 3.22.47, 3.21.5
|
| 38 |
CVE-2026-30656
A NULL pointer dereference vulnerability exists in fio (Flexible I/O Tester) v3.
|
| 38 |
CVE-2026-23869
A denial of service vulnerability exists in React Server Components, affecting t
|
| 38 |
CVE-2026-32071
Null pointer dereference in Windows Local Security Authority Subsystem Service (
|
| 38 |
CVE-2026-40170
ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.2
|
| 38 |
CVE-2026-35172
## summary:
distribution can restore read access in `repo a` after an explicit d
|
| 38 |
CVE-2026-34392
LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web app
|
| 38 |
CVE-2026-4659
The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Arbit
|
| 38 |
CVE-2026-33350
LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web app
|
| 38 |
CVE-2026-33756
Saleor is an e-commerce platform. From 2.0.0 to before 3.23.0a3, 3.22.47, 3.21.5
|
| 38 |
CVE-2026-5807
Vault is vulnerable to a denial-of-service condition where an unauthenticated at
|
| 38 |
CVE-2026-26154
Improper input validation in Windows Server Update Service allows an unauthorize
|
| 38 |
CVE-2026-32066
OpenClaw before 2026.3.1 contains an unbounded memory growth vulnerability in th
|
| 38 |
CVE-2026-40901
DataEase is an open-source data visualization and analytics platform. Versions 2
|
| 38 |
CVE-2026-40890
### Summary
Processing a malformed input containing a `<` character that is not
|
| 37 |
CVE-2026-0522
A local file inclusion vulnerability in the upload/download flow of the VertiGIS
|
| 37 |
CVE-2026-3690
OpenClaw Canvas Authentication Bypass Vulnerability. This vulnerability allows r
|
| 37 |
CVE-2026-32275
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. F
|
| 37 |
CVE-2026-3278
Improper neutralization of input during web page generation ('cross-site scripti
|
| 37 |
CVE-2026-5991
A vulnerability was found in Tenda F451 1.0.0.7. Affected by this issue is the f
|
| 37 |
CVE-2026-5990
A vulnerability has been found in Tenda F451 1.0.0.7. Affected by this vulnerabi
|
| 37 |
CVE-2026-5992
A vulnerability was determined in Tenda F451 1.0.0.7. This affects the function
|
| 37 |
CVE-2026-5988
A vulnerability was detected in Tenda F451 1.0.0.7. This impacts the function fo
|
| 37 |
CVE-2026-4975
A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the funct
|
| 37 |
CVE-2026-6137
A vulnerability was detected in Tenda F451 1.0.0.7_cn_svn7958. The affected elem
|
| 37 |
CVE-2026-4974
A flaw has been found in Tenda AC7 15.03.06.44. Affected by this issue is the fu
|
| 37 |
CVE-2026-5980
A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the
|
| 37 |
CVE-2026-5983
A vulnerability was determined in D-Link DIR-605L 2.13B01. This issue affects th
|
| 37 |
CVE-2026-5629
A vulnerability was detected in Belkin F9K1015 1.00.10. The affected element is
|
| 37 |
CVE-2026-33131
# H3 NodeRequestUrl bugs
Vulnerable pieces of code :
```js
import { H3, serve
|
| 37 |
CVE-2026-34727
Vikunja is an open-source self-hosted task management platform. Prior to 2.3.0,
|
| 37 |
CVE-2026-34076
## Summary
The `clerkFrontendApiProxy` function in `@clerk/backend` is vulnerab
|
| 37 |
CVE-2026-33735
MyTube is a self-hosted downloader and player for several video websites Prior t
|
| 37 |
CVE-2026-4282
A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value st
|
| 37 |
CVE-2026-31989
OpenClaw versions prior to 2026.3.1 contain a server-side request forgery vulner
|
| 37 |
CVE-2026-40153
PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, the execute_com
|
| 37 |
CVE-2026-2332
In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when ch
|
| 37 |
CVE-2026-33745
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library
|
| 37 |
CVE-2026-33247
### Background
NATS.io is a high performance open source pub-sub distributed co
|
| 37 |
CVE-2026-27856
Doveadm credentials are verified using direct comparison which is susceptible to
|
| 37 |
CVE-2026-33488
## Summary
The `createKeys()` function in the LoginControl plugin's PGP 2FA sys
|
| 37 |
CVE-2026-2378
ArcSearch for Android versions prior to 1.12.7 could display a different domain
|
| 37 |
CVE-2026-33643
SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the
|
| 37 |
CVE-2026-29953
SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the
|
| 37 |
CVE-2026-23364
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: Comp
|
| 37 |
CVE-2026-20004
A vulnerability in the TLS library of Cisco IOS XE Software could allow an unaut
|
| 37 |
CVE-2026-5984
A vulnerability was identified in D-Link DIR-605L 2.13B01. Impacted is the funct
|
| 37 |
CVE-2026-4371
A malicious mail server could send malformed strings with negative lengths, caus
|
| 37 |
CVE-2026-33896
## Summary
`pki.verifyCertificateChain()` does not enforce RFC 5280 basicConstr
|
| 37 |
CVE-2026-4428
A logic error in CRL distribution point validation in AWS-LC before 1.71.0 cause
|
| 37 |
CVE-2026-34359
## Summary
`ManagedWebAccessUtils.getServer()` uses `String.startsWith()` to ma
|
| 37 |
CVE-2026-41035
In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value
|
| 37 |
CVE-2026-25207
Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflo
|
| 37 |
CVE-2026-25205
Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows
|
| 37 |
CVE-2026-4600
Versions of the package jsrsasign before 11.1.1 are vulnerable to Improper Verif
|
| 37 |
CVE-2026-35099
Lakeside SysTrack Agent 11 before 11.2.1.28 has a race condition with resultant
|
| 37 |
CVE-2026-41015
radare2 before 9236f44, when configured on UNIX without SSL, allows command inje
|
| 37 |
CVE-2026-32887
## Versions
- `effect`: 3.19.15
- `@effect/rpc`: 0.72.1
- `@effect/platform`: 0
|
| 37 |
CVE-2025-15607
A command injection vulnerability on AX53 v1 occurs in mscd debug functionality
|
| 37 |
CVE-2026-35535
In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgr
|
| 37 |
CVE-2026-32156
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an u
|
| 37 |
CVE-2026-33804
@fastify/middie versions 9.3.1 and earlier are vulnerable to middleware bypass w
|
| 37 |
CVE-2026-2450
.NET misconfiguration: use of impersonation vulnerability in upKeeper Solutions
|
| 37 |
CVE-2026-5687
A weakness has been identified in Tenda CX12L 16.03.53.12. This issue affects th
|
| 37 |
CVE-2026-33667
OpenProject is an open-source project management application. In versions prior
|
| 37 |
CVE-2026-22173
OpenClaw versions prior to 2026.2.18 contain a command injection vulnerability i
|
| 37 |
CVE-2026-5795
In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication chec
|
| 37 |
CVE-2026-32631
Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 d
|
| 37 |
CVE-2026-5686
A security flaw has been discovered in Tenda CX12L 16.03.53.12. This vulnerabili
|
| 37 |
CVE-2026-2991
The KiviCare - Clinic & Patient Management System (EHR) plugin for WordPress is
|
| 37 |
CVE-2025-10679
The ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails,
|
| 37 |
CVE-2026-4982
A user with permission "update world" in any Venueless world is able to exfiltra
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 735d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2302d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2115d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1729d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2232d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4980d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1201d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1002d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3757d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 904d |