Vulnerabilities
Recent vulnerabilities
Recent vulnerabilities from
🏠GNA-1 (CIRCL)
Select from 78 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-14544 |
9.8 (3.1)
|
Hplip: incomplete fix for cve-2026-8631 |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-07-03T07:26:00.402Z | 2026-07-06T14:14:48.675Z |
| CVE-2026-13698 |
6 (4.0)
|
A memory leak in OpenVPN version 2.5.0 through 2.… |
OpenVPN |
OpenVPN |
2026-07-06T14:13:49.479Z | 2026-07-06T14:13:49.479Z |
| CVE-2026-14781 |
4.8 (3.1)
|
Keycloak-services: keycloak-services: oidc email_verif… |
Red Hat |
Red Hat Build of Keycloak |
2026-07-05T06:55:30.225Z | 2026-07-06T14:12:11.151Z |
| CVE-2026-54893 |
2.1 (4.0)
|
Email-derived URL path injection in the Swoosh Microso… |
swoosh |
swoosh |
2026-07-06T14:04:16.486Z | 2026-07-06T14:04:16.486Z |
| CVE-2026-58226 |
8.7 (4.0)
|
Unauthenticated denial-of-service via unbounded HPACK … |
elixir-mint |
hpax |
2026-07-06T09:03:47.374Z | 2026-07-06T14:04:14.632Z |
| CVE-2026-55153 |
7.1 (3.1)
|
mchange-commons-java contains elements susceptible to … |
swaldman |
mchange-commons-java |
2026-07-01T20:02:47.254Z | 2026-07-06T14:02:08.977Z |
| CVE-2026-58457 |
9.3 (4.0)
9.8 (3.1)
|
Shenzhen Aitemi M300 MT02 Unauthenticated OS Command I… |
Shenzhen Aitemi E Commerce Co. Ltd. |
M300 Wi-Fi Repeater |
2026-07-01T19:22:42.559Z | 2026-07-06T14:01:11.887Z |
| CVE-2026-58380 |
7.3 (3.1)
|
Gimp: gimp: stack buffer overflow in pnmscanner_gettoken() |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-07-06T13:58:43.680Z | 2026-07-06T13:58:43.680Z |
| CVE-2026-14355 |
5.6 (3.1)
|
ext/openssl: Memory corruption in openssl_encrypt with… |
php |
php |
2026-07-03T20:57:31.958Z | 2026-07-06T13:57:58.387Z |
| CVE-2026-12196 |
8.3 (4.0)
|
HestiaCP Admin Takeover |
hestiacp |
hestiacp |
2026-07-04T12:05:19.775Z | 2026-07-06T13:57:21.795Z |
| CVE-2025-13475 |
3.5 (3.1)
|
Cross-Tenant Access via Application Consent Mismanagem… |
WSO2 |
WSO2 Identity Server |
2026-07-04T12:49:06.782Z | 2026-07-06T13:55:26.159Z |
| CVE-2026-12740 |
8.1 (3.1)
|
Plack::Middleware::OAuth versions through 0.10 for Per… |
CORNELIUS |
Plack::Middleware::OAuth |
2026-07-04T17:58:31.298Z | 2026-07-06T13:54:14.245Z |
| CVE-2026-14642 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
SourceCodester Class and Exam Timetabling System edit_… |
SourceCodester |
Class and Exam Timetabling System |
2026-07-04T18:45:08.326Z | 2026-07-06T13:51:26.736Z |
| CVE-2026-14652 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
SourceCodester Simple and Nice Shopping Cart Script Ad… |
SourceCodester |
Simple and Nice Shopping Cart Script |
2026-07-04T20:30:09.887Z | 2026-07-06T13:51:02.190Z |
| CVE-2024-1248 |
4.8 (3.1)
|
Role Overwriting via Silent JIT Provisioning in Multip… |
WSO2 |
WSO2 API Manager |
2026-07-04T20:38:49.590Z | 2026-07-06T13:50:13.770Z |
| CVE-2026-59511 |
5.3 (3.1)
|
WordPress Exclusive Addons Elementor plugin <= 2.7.9.9… |
Tim Strifler |
Exclusive Addons Elementor |
2026-07-05T21:36:39.476Z | 2026-07-06T13:48:03.312Z |
| CVE-2026-14658 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
code-projects Assessment Management marking-scheme.php… |
code-projects |
Assessment Management |
2026-07-04T22:00:09.063Z | 2026-07-06T13:43:09.707Z |
| CVE-2026-14686 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
HdrHistogram Range Check DoubleHistogram.java org.HdrH… |
n/a |
HdrHistogram |
2026-07-05T00:00:10.233Z | 2026-07-06T13:42:40.870Z |
| CVE-2026-14570 |
7.5 (3.1)
|
Crypt::DSA versions before 1.22 for Perl draw the DSA … |
TIMLEGGE |
Crypt::DSA |
2026-07-05T01:30:12.849Z | 2026-07-06T13:42:11.715Z |
| CVE-2026-58579 |
5.4 (3.1)
5.1 (4.0)
|
RAGFlow < 0.26.3 - Stored Cross-Site Scripting via Age… |
infiniflow |
ragflow |
2026-07-02T19:38:51.314Z | 2026-07-06T13:41:20.492Z |
| CVE-2026-14692 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
SourceCodester Multi-Vendor Online Grocery Management … |
SourceCodester |
Multi-Vendor Online Grocery Management System |
2026-07-05T02:00:08.972Z | 2026-07-06T13:40:56.540Z |
| CVE-2026-14700 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Internship Management System Employer Lo… |
code-projects |
Internship Management System |
2026-07-05T03:30:09.324Z | 2026-07-06T13:40:26.163Z |
| CVE-2026-14706 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
code-projects Online Examination Quiz Creation Feature… |
code-projects |
Online Examination |
2026-07-05T05:00:08.778Z | 2026-07-06T13:39:58.701Z |
| CVE-2026-14721 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
UTT HiPER 1250GW Web Endpoint ConfigWirelessBase_5g st… |
UTT |
HiPER 1250GW |
2026-07-05T07:15:06.452Z | 2026-07-06T13:39:30.030Z |
| CVE-2026-14732 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
SourceCodester Class and Exam Timetabling System edit_… |
SourceCodester |
Class and Exam Timetabling System |
2026-07-05T08:45:08.618Z | 2026-07-06T13:34:44.814Z |
| CVE-2026-14738 |
6.3 (4.0)
3.7 (3.1)
3.7 (3.0)
|
exo-explore exo Vision Feature Cache vision.py _image_… |
exo-explore |
exo |
2026-07-05T10:15:09.187Z | 2026-07-06T13:33:34.713Z |
| CVE-2026-59096 |
7.5 (3.1)
8.2 (4.0)
|
Dapr - OIDC Discovery Issuer and JWKS URI Injection vi… |
dapr |
dapr |
2026-07-02T19:41:40.984Z | 2026-07-06T13:31:26.068Z |
| CVE-2026-59102 |
5.4 (3.1)
2.1 (4.0)
|
Forgejo < 15.0.3 - Stored XSS via Actions Run Full Nam… |
forgejo |
forgejo |
2026-07-02T19:44:07.617Z | 2026-07-06T13:30:13.629Z |
| CVE-2026-14705 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Examination head.php sql injection |
code-projects |
Online Examination |
2026-07-05T04:45:07.884Z | 2026-07-06T13:29:42.382Z |
| CVE-2026-14784 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
vxcontrol PentAGI Docker API client.go sandbox |
vxcontrol |
PentAGI |
2026-07-06T00:00:11.832Z | 2026-07-06T13:29:33.137Z |