🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-3360 | High | 7.5 |
The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to an Insecure Direct Object Ref…
|
— | Apr 10, 2026 |
| CVE-2026-40074 | High | 7.5 |
SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Prior to 2.57.1, redir…
|
✅ Patch | Apr 10, 2026 |
| CVE-2026-40073 | High | 7.5 |
SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Prior to 2.57.1, under…
|
✅ Patch | Apr 10, 2026 |
| CVE-2026-35650 | High | 7.5 |
OpenClaw before 2026.3.22 contains an environment variable override handling vulnerability that allows attackers to bypa…
|
✅ Patch | Apr 10, 2026 |
| CVE-2026-6024 | High | 7.3 |
A vulnerability was determined in Tenda i6 1.0.0.7(2204). Affected by this issue is the function R7WebsSecurityHandlerfu…
|
— | Apr 10, 2026 |
| CVE-2026-6031 | High | 7.3 |
A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. This affects an unknown function of the …
|
— | Apr 10, 2026 |
| CVE-2026-6036 | High | 7.3 |
A vulnerability was found in code-projects Vehicle Showroom Management System 1.0. The impacted element is an unknown fu…
|
— | Apr 10, 2026 |
| CVE-2026-6037 | High | 7.3 |
A vulnerability was determined in code-projects Vehicle Showroom Management System 1.0. This affects an unknown function…
|
— | Apr 10, 2026 |
| CVE-2026-6038 | High | 7.3 |
A vulnerability was identified in code-projects Vehicle Showroom Management System 1.0. This impacts an unknown function…
|
— | Apr 10, 2026 |
| CVE-2026-6004 | High | 7.3 |
A vulnerability was detected in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown function of the fil…
|
— | Apr 10, 2026 |
| CVE-2026-29002 | High | 7.2 |
CouchCMS contains a privilege escalation vulnerability that allows authenticated Admin-level users to create SuperAdmin …
|
⚡ Exploit | Apr 10, 2026 |
| CVE-2026-4162 | High | 7.1 |
The Gravity SMTP plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.1.4. Th…
|
— | Apr 10, 2026 |
| CVE-2026-33704 | High | 7.1 |
Chamilo LMS is a learning management system. Prior to 1.11.38, any authenticated user (including students) can write arb…
|
✅ Patch | Apr 10, 2026 |
| CVE-2026-5983 | High | 8.8 |
A vulnerability was determined in D-Link DIR-605L 2.13B01. This issue affects the function formSetDDNS of the file /gofo…
|
— | Apr 9, 2026 |
| CVE-2026-5980 | High | 8.8 |
A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /g…
|
— | Apr 9, 2026 |
| CVE-2026-5979 | High | 8.8 |
A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulnerability is the function formVirtualServ …
|
— | Apr 9, 2026 |
| CVE-2026-5982 | High | 8.8 |
A vulnerability was found in D-Link DIR-605L 2.13B01. This vulnerability affects the function formAdvNetwork of the file…
|
— | Apr 9, 2026 |
| CVE-2026-5815 | High | 8.8 |
A vulnerability was detected in D-Link DIR-645 1.01/1.02/1.03. Impacted is the function hedwigcgi_main of the file /cgi-…
|
— | Apr 9, 2026 |
| CVE-2026-5981 | High | 8.8 |
A vulnerability has been found in D-Link DIR-605L 2.13B01. This affects the function formAdvFirewall of the file /goform…
|
— | Apr 9, 2026 |
| CVE-2026-4326 | High | 8.8 |
The Vertex Addons for Elementor plugin for WordPress is vulnerable to Missing Authorization in all versions up to and in…
|
— | Apr 9, 2026 |