🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-34026 | Critical | 9.0 |
Versa Concerto Improper Authentication Vulnerability — Versa Concerto SD-WAN orchestration platform contains an improper…
|
⚡ Exploit ✅ Patch | Jan 22, 2026 |
| CVE-2026-24010 | High | 8.0 |
Horilla is a free and open source Human Resource Management System (HRMS). A critical File Upload vulnerability in versi…
|
⚡ Exploit ✅ Patch | Jan 22, 2026 |
| CVE-2026-24129 | High | 8.0 |
Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versi…
|
⚡ Exploit ✅ Patch | Jan 22, 2026 |
| CVE-2026-23988 | High | 7.3 |
Rufus is a utility that helps format and create bootable USB flash drives. Versions 4.11 and below contain a race condit…
|
⚡ Exploit ✅ Patch | Jan 22, 2026 |
| CVE-2026-20045 | Critical | 9.0 |
Cisco Unified Communications Products Code Injection Vulnerability — Cisco Unified Communications Manager (Unified CM), …
|
⚡ Exploit ✅ Patch | Jan 21, 2026 |
| CVE-2021-47850 | High | 7.5 |
Mini Mouse 9.2.0 contains a path traversal vulnerability that allows remote attackers to access arbitrary system files a…
|
⚡ Exploit ✅ Patch | Jan 21, 2026 |
| CVE-2021-47802 | High | 7.5 |
Tenda D151 and D301 routers contain an unauthenticated configuration download vulnerability that allows remote attackers…
|
⚡ Exploit ✅ Patch | Jan 21, 2026 |
| CVE-2026-23986 | High | 7.1 |
Copier is a library and CLI app for rendering project templates. Prior to version 9.11.2, Copier suggests that it's safe…
|
⚡ Exploit ✅ Patch | Jan 21, 2026 |
| CVE-2025-53912 | Critical | 9.6 |
An arbitrary file read vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A s…
|
⚡ Exploit ✅ Patch | Jan 20, 2026 |
| CVE-2026-22219 | High | 7.7 |
Chainlit versions prior to 2.9.4 contain a server-side request forgery (SSRF) vulnerability in the /project/element upda…
|
⚡ Exploit ✅ Patch | Jan 20, 2026 |
| CVE-2026-1137 | High | 8.8 |
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function strcpy of the file /gof…
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2026-1140 | High | 8.8 |
A vulnerability was found in UTT 进取 520W 1.7.7-180627. This issue affects the function strcpy of the file /goform/Config…
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2026-1138 | High | 8.8 |
A flaw has been found in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/ConfigExceptQQ. …
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2026-1139 | High | 8.8 |
A vulnerability has been found in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /…
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2026-23732 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, FastGlyph parsing trusts `cbDa…
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2025-68616 | High | 7.5 |
WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery (SSRF) pro…
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2026-23850 | High | 7.5 |
SiYuan is a personal knowledge management system. In versions prior to 3.5.4, the markdown feature allows unrestricted s…
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2026-1192 | High | 7.3 |
A vulnerability was determined in Tosei Online Store Management System ネット店舗管理システム 1.01. The affected element is an unkn…
|
⚡ Exploit ✅ Patch | Jan 19, 2026 |
| CVE-2026-23644 | High | 7.5 |
esm.sh is a no-build content delivery network (CDN) for web development. Prior to Go pseeudoversion 0.0.0-20260116051925…
|
⚡ Exploit ✅ Patch | Jan 18, 2026 |
| CVE-2026-23523 | Critical | 9.6 |
Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |