CVE.report
CVE.report is the most up-to-date database of common vulnerabilities and exposures. Information is pulled in from several sources and processed in to a mobile friendly, easy to use page. Use the site to quickly check for vulnerabilities in products such as operating systems, applications, hardware, networks, databases, browsers, e-mail clients and more.
CVEs provide a unique and common naming scheme for publicly known cyber security vulnerabilities in order to quickly identify and share these vulnerabilities. You can use the search below to look for vulnerabilities based on product, vendor, or common tags
The form you will see after following this link allows you to fill out the various variables in the CVSS scoring system and receive the corresponding score. The description of each of the variables is also included for additional information.
cve.report now provides a free read-only JSON API for CVE details. Each record combines the CVE Program JSON record, NVD enrichment, KEV, and EPSS when available.
Recent CVEs
| CVE | Description | Updated |
|---|---|---|
| CVE-2026-8782 json | A weakness has been identified in omec-project amf up to 2.1.3-dev. This affects an unknown function of the file ngap/handler... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8781 json | A security flaw has been discovered in omec-project amf up to 2.1.3-dev. The impacted element is the function RANConfiguratio... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8780 json | A vulnerability was identified in omec-project amf up to 2.1.3-dev. The affected element is an unknown function of the file n... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8779 json | A vulnerability was determined in omec-project amf up to 2.1.3-dev. Impacted is the function NGSetupRequest of the file ngap/... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8777 json | A vulnerability was found in Edimax BR-6428NS 1.10. This issue affects the function formStaDrvSetup of the file /goform/formS... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8776 json | A vulnerability has been found in Edimax BR-6428NS 1.10. This vulnerability affects the function formPPTPSetup of the file /g... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8775 json | A flaw has been found in Edimax BR-6428NS 1.10. This affects the function formL2TPSetup of the file /goform/formL2TPSetup of ... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8774 json | A vulnerability was detected in Edimax BR-6228NC 1.22. Affected by this issue is the function mp of the file /goform/mp of th... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-7373 json | Rapid7 Metasploit Pro is vulnerable to a local privilege escalation attack that allows users to gain SYSTEM level control of ... | Sun, 17 May 2026 22:30:10 |
| CVE-2026-8773 json | A security vulnerability has been detected in linlinjava litemall up to 1.8.0. Affected by this vulnerability is the function... | Sun, 17 May 2026 20:30:07 |
| CVE-2026-8772 json | A weakness has been identified in linlinjava litemall up to 1.8.0. Affected is an unknown function of the component Admin End... | Sun, 17 May 2026 20:30:07 |
| CVE-2026-8771 json | A security flaw has been discovered in linlinjava litemall up to 1.8.0. This impacts the function list of the file litemall-w... | Sun, 17 May 2026 20:30:07 |
| CVE-2026-8770 json | A vulnerability was identified in continuedev continue up to 1.2.22. This affects the function lsTool of the file core/tools/... | Sun, 17 May 2026 20:30:07 |
| CVE-2026-8507 json | Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl have out-of-bounds (OOB) write flaws. When parsing a PKCS12 file, with... | Sun, 17 May 2026 20:30:07 |
| CVE-2026-8769 json | A vulnerability was determined in vercel ai up to 3.0.97. The impacted element is the function createJsonResponseHandler/crea... | Sun, 17 May 2026 19:29:41 |
| CVE-2026-8768 json | A vulnerability was found in vercel ai up to 3.0.97. The affected element is the function validateDownloadUrl of the file pac... | Sun, 17 May 2026 19:29:41 |
| CVE-2026-8767 json | A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the file .github/workflows/prettier... | Sun, 17 May 2026 19:29:41 |
| CVE-2026-8766 json | A flaw has been found in Kilo-Org kilocode up to 7.0.47. This issue affects the function Load of the file packages/opencode/s... | Sun, 17 May 2026 19:29:41 |
| CVE-2026-8765 json | A vulnerability was detected in Kilo-Org kilocode up to 7.0.47. This vulnerability affects the function Bun.file of the file ... | Sun, 17 May 2026 19:29:41 |
| CVE-2024-39847 json | Unauthenticated attackers can exploit a weakness in the XML parser functionality of the SOAP endpoints in 4D server. This all... | Sun, 17 May 2026 19:29:41 |
| CVE-2024-13971 json | Unauthenticated attackers can exploit a weakness in the XML parser functionality of Lobster_pro prior to version 4.12.6-GA. T... | Sun, 17 May 2026 19:29:41 |
| CVE-2026-8764 json | A security vulnerability has been detected in H3C Magic B3 up to 100R002. This affects the function UpdateWanParams of the fi... | Sun, 17 May 2026 18:29:14 |
| CVE-2026-8721 json | Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl truncates passwords with embedded NULLs. Password parameters in PKCS12... | Sun, 17 May 2026 18:29:14 |
| CVE-2026-46720 json | Net::Statsd::Tiny versions before 0.3.8 for Perl allowed metric injections. The metric names and set values were not checked... | Sun, 17 May 2026 14:25:18 |
| CVE-2026-31709 json | In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL before rewriting it... | Sun, 17 May 2026 12:24:01 |
| CVE-2026-23468 json | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Limit BO list entry count to prevent resourc... | Sun, 17 May 2026 12:24:00 |
| CVE-2026-23171 json | In the Linux kernel, the following vulnerability has been resolved: bonding: fix use-after-free due to enslave fail after sl... | Sun, 17 May 2026 12:24:00 |
| CVE-2025-68315 json | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to detect potential corrupted nid in free_nid_... | Sun, 17 May 2026 12:24:00 |
| CVE-2025-39981 json | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix possible UAFs This attemps to fix ... | Sun, 17 May 2026 12:24:00 |
| CVE-2024-56647 json | In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering ip_rt_bug arp li... | Sun, 17 May 2026 12:24:00 |
| CVE-2023-52920 json | In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack i... | Sun, 17 May 2026 12:24:00 |
| CVE-2026-8759 json | A vulnerability was identified in xiandafu beetl up to 3.20.2. Affected is an unknown function of the file beetl-classic-inte... | Sun, 17 May 2026 11:22:20 |
| CVE-2026-8758 json | A vulnerability was determined in Metasoft 美特软件 MetaCRM up to 6.4.0 Beta06. This impacts an unknown function of the f... | Sun, 17 May 2026 10:22:10 |
| CVE-2026-8757 json | A vulnerability was found in adenhq hive up to 0.11.0. This affects the function _read_events_tail of the file core/framework... | Sun, 17 May 2026 10:22:10 |
| CVE-2026-8756 json | A vulnerability has been found in fishaudio Bert-VITS2 up to 8f7fbd8c4770965225d258db548da27dc8dd934c. The impacted element i... | Sun, 17 May 2026 09:21:15 |
| CVE-2026-8755 json | A flaw has been found in fishaudio Bert-VITS2 up to 8f7fbd8c4770965225d258db548da27dc8dd934c. The affected element is the fun... | Sun, 17 May 2026 09:21:15 |
| CVE-2026-8754 json | A vulnerability was detected in AstrBotDevs AstrBot up to 4.23.5. Impacted is the function post_file of the file astrbot/dash... | Sun, 17 May 2026 09:21:15 |
| CVE-2026-8753 json | A security vulnerability has been detected in kalcaddle Kodbox up to 1.64. This issue affects the function parseVideoInfo of ... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25339 json | Zechat 1.5 contains a SQL injection vulnerability in the v parameter that allows unauthenticated attackers to extract databas... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25338 json | Zechat 1.5 contains a SQL injection vulnerability in the hashtag parameter that allows unauthenticated attackers to extract d... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25337 json | Joomla JoomOCShop 1.0 contains a cross-site request forgery vulnerability that allows attackers to perform unauthorized actio... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25336 json | Joomla jCart for OpenCart 2.3.0.2 contains a cross-site request forgery vulnerability that allows attackers to modify user ac... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25335 json | WordPress Plugin Peugeot Music 1.0 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to u... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25334 json | Zechat 1.5 contains a Cross-Site Request Forgery (CSRF) vulnerability that allows an attacker to change a user's information ... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25333 json | Nordex N149/4.0-4.5 Wind Turbine Web Server 4.0 contains an SQL injection vulnerability that allows unauthenticated attackers... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25332 json | GitBucket 4.23.1 contains an unauthenticated remote code execution vulnerability that allows attackers to execute arbitrary c... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25331 json | Zenar Content Management System contains a cross-site scripting vulnerability that allows unauthenticated attackers to inject... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25330 json | Joomla! extension EkRishta 2.10 contains persistent cross-site scripting and SQL injection vulnerabilities that allow attacke... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25329 json | WordPress Plugin WP with Spritz 1.0 contains a remote file inclusion vulnerability that allows unauthenticated attackers to r... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25328 json | VX Search 10.6.18 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer b... | Sun, 17 May 2026 09:21:15 |
| CVE-2018-25327 json | Joomla! Component Js Jobs 1.2.0 contains a cross-site request forgery vulnerability that allows attackers to perform state-ch... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25326 json | Google Drive for WordPress 2.2 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrar... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25325 json | Woocommerce CSV Importer 3.3.6 contains a path traversal vulnerability that allows any registered user to delete arbitrary fi... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25324 json | Simple Fields 0.2 through 0.3.5 WordPress Plugin contains a local file inclusion vulnerability that allows unauthenticated at... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25323 json | Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability that allo... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25322 json | Allok Fast AVI MPEG Splitter 1.2 contains a stack based buffer overflow vulnerability that allows local attackers to execute ... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25321 json | TP-Link TL-WR720N wireless router contains a cross-site request forgery vulnerability that allows attackers to perform unauth... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25320 json | ACL Analytics versions 11.x through 13.0.0.579 contain an arbitrary code execution vulnerability that allows attackers to exe... | Sun, 17 May 2026 09:21:14 |
| CVE-2018-25319 json | Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection vulnerability that allows authenticated attackers to manipulate dat... | Sun, 17 May 2026 09:21:14 |
| CVE-2026-8752 json | A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/s... | Sun, 17 May 2026 08:19:45 |
| CVE-2026-8751 json | A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-co... | Sun, 17 May 2026 08:19:45 |
| CVE-2026-8750 json | A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue is the function importFiles of the file h2o-... | Sun, 17 May 2026 07:19:44 |
| CVE-2026-8747 json | A weakness has been identified in Z-BlogPHP 1.7.4.3430. This affects the function CheckComment of the file zb_system/function... | Sun, 17 May 2026 07:19:44 |
| CVE-2026-8746 json | A security flaw has been discovered in Open5GS up to 2.7.7. Affected by this issue is the function discover_handler in the li... | Sun, 17 May 2026 07:19:44 |
| CVE-2026-8745 json | A vulnerability was identified in Open5GS up to 2.7.7. Affected by this vulnerability is the function ogs_timer_add in the li... | Sun, 17 May 2026 06:19:42 |
| CVE-2026-8744 json | A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function ogs_sbi_subscription_data_add/ogs_sbi_nf_serv... | Sun, 17 May 2026 06:19:42 |
| CVE-2026-8743 json | A vulnerability was found in Open5GS up to 2.7.6. This impacts the function ran_ue_find_by_amf_ue_ngap_id of the file src/amf... | Sun, 17 May 2026 06:19:42 |
| CVE-2026-8741 json | A vulnerability has been found in EMQX up to 6.2.0. This affects an unknown function of the file apps/emqx/src/emqx_persisten... | Sun, 17 May 2026 05:19:40 |
| CVE-2026-8740 json | A flaw has been found in Sanluan PublicCMS 5.202506.d. The impacted element is the function execute of the file publiccms-cor... | Sun, 17 May 2026 05:19:40 |
| CVE-2026-8739 json | A vulnerability was detected in Sanluan PublicCMS 5.202506.d. The affected element is the function getSignKey of the file pub... | Sun, 17 May 2026 04:19:35 |
| CVE-2026-8738 json | A security vulnerability has been detected in Sanluan PublicCMS 5.202506.d. Impacted is the function TradeOrderController.pay... | Sun, 17 May 2026 04:19:35 |
| CVE-2026-8737 json | A weakness has been identified in Sanluan PublicCMS 5.202506.d. This issue affects the function execute of the file publiccms... | Sun, 17 May 2026 03:19:13 |
| CVE-2026-8736 json | A security flaw has been discovered in Oinone Pamirs up to 7.2.0. This vulnerability affects the function request.getParamete... | Sun, 17 May 2026 03:19:13 |
| CVE-2026-8735 json | A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils.parseMap of the file PamirsP... | Sun, 17 May 2026 02:18:14 |
| CVE-2026-8734 json | A vulnerability was determined in Oinone Pamirs up to 7.2.0. Affected by this issue is the function RSQLToSQLNodeConnector.ma... | Sun, 17 May 2026 02:18:14 |
| CVE-2026-8733 json | A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub_3B46... | Sun, 17 May 2026 01:17:11 |
| CVE-2026-8731 json | A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function ogs_sbi_client_add in the library /lib/sbi/cl... | Sun, 17 May 2026 01:17:10 |
| CVE-2026-8730 json | A flaw has been found in Open5GS up to 2.7.6. This impacts the function ogs_sbi_nf_instance_set_id in the library /lib/sbi/co... | Sun, 17 May 2026 01:17:10 |
| CVE-2026-8729 json | A vulnerability was detected in Open5GS up to 2.7.7. This affects an unknown function in the library /lib/sbi/message.c of th... | Sun, 17 May 2026 01:17:10 |
| CVE-2026-8728 json | A security vulnerability has been detected in Open5GS up to 2.7.7. The impacted element is the function ogs_sbi_discovery_opt... | Sun, 17 May 2026 00:31:37 |
| CVE-2026-8719 json | The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in... | Sun, 17 May 2026 00:31:37 |
| CVE-2026-8725 json | A weakness has been identified in CoreWorxLab CAAL up to 1.6.0. The affected element is an unknown function of the file src/c... | Sat, 16 May 2026 22:29:58 |
| CVE-2026-8724 json | A security flaw has been discovered in Dataease 2.10.20. Impacted is the function SqlparserUtils.transFilter of the file Sqlp... | Sat, 16 May 2026 22:29:58 |
| CVE-2026-8723 json | ### Summary `qs.stringify` throws `TypeError` when called with `arrayFormat: 'comma'` and `encodeValuesOnly: true` on an a... | Sat, 16 May 2026 20:29:26 |
| CVE-2026-6050 json | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | Sat, 16 May 2026 19:29:25 |
| CVE-2026-46728 json | Das U-Boot before 2026.04 allows FIT (Flat Image Tree) signature verification bypass because hashed-nodes is omitted from a h... | Sat, 16 May 2026 18:29:23 |
| CVE-2026-46719 json | Net::Statsd::Lite versions before 0.9.0 for Perl allowed metric injections. The metric names were not checked for newlines, ... | Sat, 16 May 2026 17:29:22 |
| CVE-2021-47981 json | Quick.CMS 6.7 contains a cross-site scripting vulnerability in the sliders form that allows authenticated attackers to inject... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47980 json | Fuel CMS 1.4.13 contains a blind SQL injection vulnerability that allows authenticated attackers to manipulate database queri... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47979 json | WordPress Plugin Backup and Restore 1.0.3 contains an arbitrary file deletion vulnerability that allows authenticated attacke... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47978 json | ProcessMaker 3.5.4 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary file... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47977 json | WordPress Plugin Anti-Malware Security and Bruteforce Firewall 4.20.59 contains a directory traversal vulnerability that allo... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47976 json | TextPattern CMS 4.9.0-dev contains a remote code execution vulnerability that allows authenticated attackers to upload arbitr... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47975 json | WP Learn Manager 1.1.2 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject m... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47974 json | VX Search 13.5.28 contains an unquoted service path vulnerability in both VX Search Server and VX Search Enterprise services ... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47973 json | Sticky Notes Widget 3.0.6 contains a denial of service vulnerability that allows attackers to crash the application by pastin... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47972 json | Sticky Notes & Color Widgets 1.4.2 contains a denial of service vulnerability that allows attackers to crash the application ... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47971 json | My Notes Safe 5.3 contains a denial of service vulnerability that allows attackers to crash the application by pasting excess... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47970 json | Macaron Notes 5.5 contains a denial of service vulnerability that allows attackers to crash the application by creating notes... | Sat, 16 May 2026 12:29:15 |
| CVE-2021-47969 json | Color Notes 1.4 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessiv... | Sat, 16 May 2026 12:29:15 |