39401 matches found
CVE-2026-52918
In the Linux kernel, the following vulnerability has been resolved: B...
Kaseya Virtual System Administrator - Open Redirect
Kaseya Virtual System Administrator 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before 9.1.0.4 are susceptible to an open redirect vulnerability. An attacker can redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. id: CVE-2015-286...
QNAP HBS 3 - Broken Access Control
An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 Hybrid Backup Sync. If exploited, the vulnerability allows remote attackers to log in to a device. This issue affects: QNAP Systems Inc. HBS 3 versions prior to v16.0.0415 on QTS 4.5.2; versions prior to...
Atlassian Crowd and Crowd Data Center - Unauthenticated Remote Code Execution
Atlassian Crowd and Crowd Data Center is susceptible to a remote code execution vulnerability because the pdkinstall development plugin is incorrectly enabled in release builds. Attackers who can send unauthenticated or authenticated requests to a Crowd or Crowd Data Center instance can exploit...
PKP Open Journal Systems 2.4.8-3.3 - Cross-Site Scripting
PKP Open Journal Systems 2.4.8 to 3.3 contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary code via the X-Forwarded-Host Header. id: CVE-2022-24181 info: name: PKP Open Journal Systems 2.4.8-3.3 - Cross-Site Scripting author: lucasljm2001,ekrause severit...
GHSA-64MM-VXMG-Q3VJ vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines...
CVE-2020-12459 vulnerabilities
Vulnerabilities for packages: grafana-fips...
GHSA-J454-PVHH-FCMQ vulnerabilities
Vulnerabilities for packages: linux-qemu-melange...
CVE-2025-68939 vulnerabilities
Vulnerabilities for packages: gitea-fips...
CVE-2026-49468 vulnerabilities
Vulnerabilities for packages: airflow...
GHSA-34XG-WGJX-8XPH vulnerabilities
Vulnerabilities for packages: nextcloud-server...
CVE-2026-49214 vulnerabilities
Vulnerabilities for packages: nextcloud-server...
CVE-2026-12151 vulnerabilities
Vulnerabilities for packages: npm, code-server...
CVE-2026-6733 vulnerabilities
Vulnerabilities for packages: npm, code-server...
CVE-2026-9679 vulnerabilities
Vulnerabilities for packages: npm, code-server...
GHSA-VXPW-J846-P89Q vulnerabilities
Vulnerabilities for packages: npm, code-server...
Linux Distros Unpatched Vulnerability : CVE-2026-12805
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in OFFIS DCMTK up to 3.7.0. The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc. Executing a...
Linux Distros Unpatched Vulnerability : CVE-2026-50269
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.0, attacker- controlled input included into multipart/payload...
CVE-2026-56410
xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...
CVE-2026-56409
xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...