Search Vulnerabilities

D-Link DNS-1550-04 system_mgr.cgi cgi_set_wto access control

CVE-2026-4193

D-Link DIR-823G goahead UpdateClientInfo access control

CVE-2026-4191

JawherKl node-api-postgres Profile Picture index.js path.extname unrestricted upload

CVE-2026-4180

D-Link DIR-816 goahead redirect.asp access control

CVE-2026-32720

Improper Access Control in github.com/ctfer-io/monitoring

CVE-2026-0977

IBM CICS Transaction Gateway for Multiplatforms Information Disclosure

CVE-2026-4105

Systemd: systemd: privilege escalation via improper access control in registermachine d-bus method

CVE-2026-32138

NEXULEAN API Key Leak

Mar 12, 2026

CVE-2026-27591

Winter: Privilege escalation by authenticated backend users

CVE-2026-32102

OliveTin Unauthorized Action Output Disclosure via EventStream

CVE-2026-24509

LOW

Dell Alienware Command Center (AWCC), versions prior to 6

CVE-2026-31874

Taskosaur Improper Role Assignment via Parameter Manipulation in User Registration

CVE-2026-31872

Parse Server has a protected fields bypass via dot-notation in query and sort

CVE-2026-3429

Org.keycloak.services.resources.account: improper access control leading to mfa deletion and account takeover in keycloak account rest api

CVE-2026-28803

Open Forms possible to view submission details of other people than intended

CVE-2026-31834

Umbraco Affected by Vertical Privilege Escalation via Missing Authorization Checks

CVE-2026-31815

django-unicorn affected by component state manipulation via unvalidated attribute access

CVE-2026-30966

Parse Server role escalation and CLP bypass via direct `_Join` table write

CVE-2026-30962

Parse Server has a protected fields bypass via logical query operators

CVE-2026-25176

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2026-4194

D-Link DNS-1550-04 system_mgr.cgi cgi_set_wto access control

CVE-2026-4193

D-Link DIR-823G goahead UpdateClientInfo access control

CVE-2026-4191

JawherKl node-api-postgres Profile Picture index.js path.extname unrestricted upload

CVE-2026-4180

D-Link DIR-816 goahead redirect.asp access control

CVE-2026-32720

Improper Access Control in github.com/ctfer-io/monitoring

CVE-2026-0977

IBM CICS Transaction Gateway for Multiplatforms Information Disclosure

CVE-2026-4105

Systemd: systemd: privilege escalation via improper access control in registermachine d-bus method

CVE-2026-32138

NEXULEAN API Key Leak

Mar 12, 2026

CVE-2026-27591

Winter: Privilege escalation by authenticated backend users

CVE-2026-32102

OliveTin Unauthorized Action Output Disclosure via EventStream

CVE-2026-24509

LOW

Dell Alienware Command Center (AWCC), versions prior to 6

CVE-2026-31874

Taskosaur Improper Role Assignment via Parameter Manipulation in User Registration

CVE-2026-31872

Parse Server has a protected fields bypass via dot-notation in query and sort

CVE-2026-3429

Org.keycloak.services.resources.account: improper access control leading to mfa deletion and account takeover in keycloak account rest api

CVE-2026-28803

Open Forms possible to view submission details of other people than intended

CVE-2026-31834

Umbraco Affected by Vertical Privilege Escalation via Missing Authorization Checks

CVE-2026-31815

django-unicorn affected by component state manipulation via unvalidated attribute access

CVE-2026-30966

Parse Server role escalation and CLP bypass via direct `_Join` table write

CVE-2026-30962

Parse Server has a protected fields bypass via logical query operators

CVE-2026-25176

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability