🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-34570 | High | 8.8 |
CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorizati…
|
⚡ Exploit | Apr 1, 2026 |
| CVE-2026-0522 | High | 8.8 |
A local file inclusion vulnerability in the upload/download flow of the VertiGIS FM application allows authenticated att…
|
⚡ Exploit | Apr 1, 2026 |
| CVE-2026-35091 | High | 8.2 |
A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Co…
|
⚡ Exploit | Apr 1, 2026 |
| CVE-2026-5271 | High | 7.8 |
pymanager included the current working directory in sys.path meaning modules could be shadowed by modules in the current…
|
⚡ Exploit | Apr 1, 2026 |
| CVE-2026-27489 | High | 7.5 |
Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2026-34543 | High | 7.5 |
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2026-35092 | High | 7.5 |
A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a re…
|
⚡ Exploit | Apr 1, 2026 |
| CVE-2026-34544 | High | 7.3 |
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2026-34545 | High | 7.3 |
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2026-5211 | High | 8.8 |
A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, D…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5204 | High | 8.8 |
A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary of the file /goform/we…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5212 | High | 8.8 |
A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5214 | High | 8.8 |
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-32…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-34227 | High | 8.8 |
Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to version 1.7.4, a single click …
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5156 | High | 8.8 |
A vulnerability was determined in Tenda CH22 1.0.0.1. This impacts the function formQuickIndex of the file /goform/Quick…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5213 | High | 8.8 |
A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2025-32957 | High | 8.7 |
baserCMS is a website development framework. Prior to version 5.2.3, the application's restore function allows users to …
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-34585 | High | 8.6 |
SiYuan is a personal knowledge management system. Prior to version 3.6.2, a vulnerability allows crafted block attribute…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-34377 | High | 8.1 |
ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.0 and zebra-consensus version 5.0.1, a logic…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-34163 | High | 7.7 |
FastGPT is an AI Agent building platform. Prior to version 4.14.9.5, FastGPT's MCP (Model Context Protocol) tools endpoi…
|
⚡ Exploit ✅ Patch | Mar 31, 2026 |