🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2021-47794 | High | 8.8 |
ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers to create malicious FT…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2021-47780 | High | 7.8 |
Macro Expert 4.7 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrar…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2021-47805 | High | 7.8 |
Disk Savvy 13.6.14 contains an unquoted service path vulnerability in its Windows service configuration that allows loca…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2021-47815 | High | 7.5 |
Nsauditor 3.2.3 contains a denial of service vulnerability in the registration code input field that allows attackers to…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2021-47814 | High | 7.5 |
NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by overflowing…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2026-22782 | High | 7.5 |
RustFS is a distributed object storage system built in Rust. From >= 1.0.0-alpha.1 to 1.0.0-alpha.79, invalid RPC signat…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2026-23723 | High | 7.2 |
WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an authenticated SQL Injection vulnerability was ide…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2026-23520 | Critical | 9.0 |
Arcane provides modern docker management. Prior to 1.13.0, Arcane has a command injection in the updater service. Arcane…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2026-23622 | High | 8.8 |
Easy!Appointments is a self hosted appointment scheduler. In 1.5.2 and earlier, application/core/EA_Security.php::csrf_v…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47758 | High | 8.8 |
Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability that allows attac…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47757 | High | 8.8 |
Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup res…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2026-22863 | High | 7.5 |
Deno is a JavaScript, TypeScript, and WebAssembly runtime. Before 2.6.0, node:crypto doesn't finalize cipher. The vulner…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47755 | High | 7.5 |
Oliver Library Server v5 contains a file download vulnerability that allows unauthenticated attackers to access arbitrar…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2026-23512 | High | 8.6 |
SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, there is a Untrusted Search Path vulnerability wh…
|
⚡ Exploit ✅ Patch | Jan 14, 2026 |
| CVE-2026-22856 | High | 8.1 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP threa…
|
⚡ Exploit ✅ Patch | Jan 14, 2026 |
| CVE-2026-20805 | Critical | 9.0 |
Microsoft Windows Information Disclosure Vulnerability — Microsoft Windows Desktop Windows Manager contains an informati…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2022-50936 | High | 8.8 |
WBCE CMS version 1.5.2 contains an authenticated remote code execution vulnerability that allows attackers to upload mal…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2022-50915 | High | 8.4 |
PTPublisher 2.3.4 contains an unquoted service path vulnerability in the PTProtect service that allows local attackers t…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2022-50901 | High | 8.4 |
Wondershare Dr.Fone 11.4.9 contains an unquoted service path vulnerability in the DFWSIDService that allows local users …
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2022-50900 | High | 8.4 |
Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerability that allows local users to execute arbitrary…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |