CVE.report
CVE.report is the most up-to-date database of common vulnerabilities and exposures. Information is pulled in from several sources and processed in to a mobile friendly, easy to use page. Use the site to quickly check for vulnerabilities in products such as operating systems, applications, hardware, networks, databases, browsers, e-mail clients and more.
CVEs provide a unique and common naming scheme for publicly known cyber security vulnerabilities in order to quickly identify and share these vulnerabilities. You can use the search below to look for vulnerabilities based on product, vendor, or common tags
The form you will see after following this link allows you to fill out the various variables in the CVSS scoring system and receive the corresponding score. The description of each of the variables is also included for additional information.
cve.report now provides a free read-only JSON API for CVE details. Each record combines the CVE Program JSON record, NVD enrichment, KEV, and EPSS when available.
Recent CVEs
| CVE | Description | Updated |
|---|---|---|
| CVE-2026-33808 json | Impact@fastify/express v4.0.4 and earlier fails to normalize URLs before passing them to Express middleware when Fastify rout... | Mon, 01 Jun 2026 11:35:04 |
| CVE-2026-33807 json | @fastify/express v4.0.4 and earlier contains a path handling bug in the onRegister function that causes middleware paths to b... | Mon, 01 Jun 2026 11:35:04 |
| CVE-2026-8931 json | A critical Remote Code Execution (RCE) vulnerability exists in Disig Web Signer versions 2.0.3 through 2.5.3. | Mon, 01 Jun 2026 11:20:17 |
| CVE-2026-48879 json | Incorrect Privilege Assignment vulnerability in Sergey AIWU allows Privilege Escalation. This issue affects AIWU: from n/a t... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-48866 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Rocketgenius Inc. Gravity For... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-48865 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress LearnPress al... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-48839 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VeronaLabs WP Statistic... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-48559 json | Lightweight Music Server (LMS) though 3.76.0 contains a stored cross-site scripting vulnerability that allows attackers to ex... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-42683 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e4jvikwp VikBooking Hot... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-42682 json | Missing Authorization vulnerability in Tomdever wpForo Forum allows Exploiting Incorrectly Configured Access Control Security... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-42681 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in E2Pdf.Com e2pdf allows ... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-42680 json | Incorrect Privilege Assignment vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery Pro allows Privil... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-42251 json | Use of hard-coded credentials in KS-SOMED allowed an unauthorized attacker access to FTP server that hosted the application's... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-37221 json | FlexRIC v2.0.0 crashes when receiving a RIC_SUBSCRIPTION_RESPONSE with an unknown ric_id that has no corresponding pending ev... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-37220 json | FlexRIC v2.0.0 crashes when an SCTP association is closed before an E2_SETUP_REQUEST is sent. The near-RT RIC assumes a mappi... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-10533 json | A flaw was found in OpenShift Container Platform. Completed pods with restartPolicy: Never do not count toward ResourceQuota ... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-10267 json | A security flaw has been discovered in janet-lang janet up to 1.41.0. This affects the function doframe of the file src/core/... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-10265 json | A vulnerability was identified in itsourcecode Content Management System 1.0. Affected by this issue is some unknown function... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-10264 json | A vulnerability was determined in lharries whatsapp-mcp 0.0.1. Affected by this vulnerability is the function SendMessageRequ... | Mon, 01 Jun 2026 11:20:16 |
| CVE-2026-10263 json | A vulnerability was found in SourceCodester Computer Repair Shop Management System up to 1.0. Affected is an unknown function... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2026-10262 json | A vulnerability has been found in code-projects Real State Services 1.0. This impacts an unknown function of the file /loginu... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2026-10261 json | A flaw has been found in CodeAstro Online Job Portal 1.0. This affects an unknown function of the file /users/application_sta... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2026-10260 json | A vulnerability was detected in CodeAstro Online Job Portal 1.0. The impacted element is an unknown function of the file /adm... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2026-10259 json | A security vulnerability has been detected in H3C Magic B0 up to 100R002. The affected element is the function SetMobileAPInf... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2026-0826 json | In certain scenarios when the admin has enabled Interactive Connectivity Establishment (ICE), a buffer overflow could enable ... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2025-60495 json | A segmentation violation in the gf_media_get_color_info function (/media_tools/isom_tools.c) of GPAC Project/MP4Box before 26... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2025-60486 json | A heap use-after-free in the dasher_process function (/filters/dasher.c) of GPAC Project/MP4Box before 26.02.0 allows attacke... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2025-60485 json | A segmentation violation in the gf_isom_apple_set_tag_ex function (/isomedia/isom_write.c) of GPAC Project/MP4Box before 26.0... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2025-60483 json | A NULL pointer dereference in the gf_ac4_pres_b_4_back_channels_present function (/media_tools/av_parsers.c) of GPAC Project/... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2025-60481 json | A NULL pointer dereference in the gf_odf_ac4_cfg_dsi_v1 function (/odf/descriptors.c) of GPAC Project/MP4Box before 26.02.0 a... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2025-55664 json | A heap buffer overflow in the m2tsdmx_send_packet function (filters/dmx_m2ts.c) of GPAC MP4Box v2.4 allows attackers to cause... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2024-40646 json | Vertex is a management tool for PT (Private Tracker) users to manage streaming and watching videos. Versions prior to commit ... | Mon, 01 Jun 2026 11:20:15 |
| CVE-2026-49328 json | Server-Side Request Forgery (SSRF) in the UrlImageConverter component of Apache Fesod (Incubating) fesod-sheet before 2.0.2-i... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-49270 json | Exposure of Sensitive Information Through Metadata vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ ... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-49157 json | Incorrect Default Permissions vulnerability in Apache ActiveMQ. This issue affects Apache ActiveMQ: before 5.19.7, from 6.0.... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-34193 json | Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a writ... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10258 json | A weakness has been identified in itsourcecode Content Management System 1.0. Impacted is an unknown function of the file /ad... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10257 json | A security flaw has been discovered in itsourcecode Content Management System 1.0. This issue affects some unknown processing... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10256 json | A vulnerability was identified in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the ... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10255 json | A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is t... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10254 json | A flaw has been found in SourceCodester Pet Grooming Management Software 1.0. Affected is an unknown function of the file /ad... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10253 json | A vulnerability was detected in itsourcecode Online House Rental System 1.0. This impacts an unknown function of the file /ma... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10252 json | A security vulnerability has been detected in itsourcecode Online House Rental System 1.0. This affects an unknown function o... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-10251 json | A weakness has been identified in itsourcecode Online House Rental System 1.0. The impacted element is an unknown function of... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-9309 json | Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious page could inject markup that ... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-9308 json | Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeholders. A malici... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-8474 json | A vulnerability was discovered on Stormshield Network Security * 4.3.0 to 4.3.41, * 4.8.0 to 4.8.15, * 5.... | Mon, 01 Jun 2026 11:20:14 |
| CVE-2026-46605 json | Incomplete authorization by Apache ActiveMQ server before versions v6.2.6 and v5.19.7 allows authenticated connections to rem... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-45505 json | Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker,... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-42588 json | Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker,... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-42360 json | A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking (e.g. nested `password` / `tok... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-42253 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache ActiveMQ, Apache... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-40963 json | The structure_data endpoint in the Airflow UI returned external dependency graph nodes for linked Dags without checking wheth... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10243 json | A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an unknown function of the ... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10242 json | A weakness has been identified in itsourcecode Content Management System 1.0. This impacts an unknown function of the file /i... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10241 json | A security flaw has been discovered in jeecgboot The server processes these URLs up to 3.9.1. This affects the function FileD... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10240 json | A vulnerability was identified in JeecgBoot up to 3.9.2. The impacted element is an unknown function of the file /airag/airag... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10239 json | A vulnerability was determined in JeecgBoot up to 3.9.2. The affected element is the function WordUtil.addImage of the file /... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10237 json | A vulnerability was found in SourceCodester Water Billing Management System 1.0. Impacted is an unknown function of the file ... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10236 json | A vulnerability has been found in SourceCodester Water Billing Management System 1.0. This issue affects some unknown process... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10235 json | A flaw has been found in CodeAstro Ingredients Stock Management System 1.0. This vulnerability affects unknown code of the fi... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10234 json | A vulnerability was detected in Mettle sendportal up to 3.0.1. This affects an unknown part of the file /webview/ of the comp... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10233 json | A security vulnerability has been detected in Assimp up to 6.0.4. Affected by this issue is the function HL1MDLLoader::read_s... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10232 json | A weakness has been identified in Assimp up to 6.0.4. Affected by this vulnerability is the function aiNode::~aiNode of the f... | Mon, 01 Jun 2026 11:20:13 |
| CVE-2026-10231 json | A security flaw has been discovered in Assimp up to 6.0.4. Affected is the function HL1MDLLoader::extract_anim_value of the f... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10230 json | A vulnerability was identified in Assimp up to 6.0.4. This impacts the function Assimp::MDL::HalfLife::HL1MDLLoader::read_ani... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10229 json | A vulnerability was determined in Assimp up to 6.0.4. This affects the function HL1MDLLoader::read_meshes of the file HL1MDLL... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10228 json | A vulnerability was found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. T... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10227 json | A vulnerability has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10226 json | A flaw has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. Impac... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10225 json | A vulnerability was detected in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10224 json | A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. This vulnerability affects the funct... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10223 json | A weakness has been identified in NousResearch hermes-agent up to 2026.4.30. This affects the function _scan_memory_content o... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10222 json | A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function _san... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10221 json | A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function _com... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10220 json | A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the function _serve_plugin_skill/ski... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10219 json | A vulnerability was found in nextlevelbuilder GoClaw up to 3.11.3. This impacts the function FsBridge.WriteFile of the file i... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10218 json | A vulnerability has been found in nextlevelbuilder GoClaw up to 3.11.3. This affects the function auth of the file internal/h... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10217 json | A flaw has been found in nextlevelbuilder GoClaw up to 3.11.3. The impacted element is the function handleSave of the file in... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10216 json | A vulnerability was detected in unitedbyai droidclaw up to 0.5.3. The affected element is an unknown function of the file ser... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10215 json | A security vulnerability has been detected in Dolibarr ERP CRM up to 23.0.1. Impacted is the function checkUserAccessToObject... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10214 json | A weakness has been identified in zhayujie chatgpt-on-wechat up to 2.0.8. This issue affects the function _get_safety_warning... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10213 json | A security flaw has been discovered in AstrBotDevs AstrBot 4.23.6. This vulnerability affects unknown code of the file /api/s... | Mon, 01 Jun 2026 11:20:12 |
| CVE-2026-10212 json | A vulnerability was identified in AstrBotDevs AstrBot 4.24.2. This affects the function astr_main_agent of the file astrbot/c... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10211 json | A vulnerability was determined in AstrBotDevs AstrBot 4.23.6. Affected by this issue is the function _normalize_rw_path of th... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10210 json | A vulnerability was found in AstrBotDevs AstrBot 4.23.6. Affected by this vulnerability is the function _sanitize_prompt_desc... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10209 json | A vulnerability has been found in code-projects Online Hospital Management System 1.0. Affected is an unknown function of the... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10208 json | A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the function login_user of the f... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10206 json | A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of the file /dbsrv.asp. Per... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10205 json | A security vulnerability has been detected in Metasoft 美特软件 MetaCRM 6.4.0. The impacted element is an unknown functio... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10204 json | A weakness has been identified in OFCMS 1.1.3. The affected element is the function Query of the file \ofcms-admin\src\main\j... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10203 json | A security flaw has been discovered in OFCMS 1.1.3. Impacted is the function Query of the file \ofcms-admin\src\main\java\com... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10202 json | A vulnerability was identified in OFCMS 1.1.3. This issue affects the function Query of the file \ofcms-admin\src\main\java\c... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10201 json | A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of th... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10200 json | A vulnerability was found in Assimp up to 6.0.4. This affects the function glTFCommon::CopyValue in the library glTFCommon.h ... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10199 json | A vulnerability has been found in Assimp up to 6.0.4. Affected by this issue is the function glTF2::LazyDict in the library g... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10198 json | A flaw has been found in Assimp up to 6.0.4. Affected by this vulnerability is the function Assimp::glTFImporter::ImportMeshe... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10197 json | A vulnerability was detected in Assimp up to 6.0.4. Affected is the function glTF2Importer::ImportEmbeddedTextures in the lib... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10194 json | A weakness has been identified in OFFIS DCMTK 3.7.0. This affects the function DcmQueryRetrieveIndexDatabaseHandle::deleteOld... | Mon, 01 Jun 2026 11:20:11 |
| CVE-2026-10193 json | A security flaw has been discovered in OFCMS up to 1.1.3. The impacted element is the function Query of the file ofcms-admin\... | Mon, 01 Jun 2026 11:20:11 |