EUVD-2026-4420

Dell Data Protection Advisor, versions prior to 19.12, contains an Improper Neutralization of Special Elements Used in a Template Engine vulnerability in the Server. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure...

EUVD-2026-4506

EUVD-2026-4506...

EUVD-2026-3985

Missing Authorization vulnerability in Scalenut Scalenut scalenut allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Scalenut: from n/a through = 1.1.3...

EUVD-2026-3447

HTML injection vulnerability in multiple Botble products such as TransP, Athena, Martfury, and Homzen, consisting of an HTML injection due to a lack of proper validation of user input by sending a request to '/search' using the 'q' parameter...

EUVD-2026-3042

EUVD-2026-3042...

EUVD-2026-2584

EUVD-2026-2584...

EUVD-2026-2602

EUVD-2026-2602...

EUVD-2026-2396

EUVD-2026-2396...

EUVD-2026-1797

The WP Table Builder – Drag & Drop Table Builder plugin for WordPress is vulnerable to unauthorized modification of data due to an incorrect authorization check on the savetable function in all versions up to, and including, 2.0.19. This makes it possible for authenticated attackers, with...

EUVD-2026-1515

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

EUVD-2026-1568

A LoadLibraryEX vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to load an attacker-controlled DLL into a key executable, leading to execution of attacker-supplied code under the context of SYSTEM on affected installations...

EUVD-2026-1545

Authentication Bypass Using an Alternate Path or Channel vulnerability in RiceTheme Felan Framework felan-framework allows Authentication Abuse.This issue affects Felan Framework: from n/a through = 1.1.3...

EUVD-2026-1442

Cross-Site Request Forgery CSRF is present on all functions in edu Business Solutions Print Shop Pro WebDesk version 18.34. The application does not implement proper CSRF tokens or other other protective measures, allowing a remote attacker to trick authenticated users into unknowingly executing...

EUVD-2026-1213

A command injection vulnerability in the shellexec function of sonirico mcp-shell v0.3.1 allows attackers to execute arbitrary commands via supplying a crafted command string...

EUVD-2026-0130

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0109

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0192

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0280

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0285

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

EUVD-2026-0308

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...