🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-33332 | High | 7.5 |
NiceGUI is a Python-based UI framework. Prior to version 3.9.0, NiceGUI's app.add_media_file() and app.add_media_files()…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-33497 | High | 7.5 |
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.1, in the download_p…
|
⚡ Exploit | Mar 24, 2026 |
| CVE-2026-33498 | High | 7.5 |
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to version…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-33508 | High | 7.5 |
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to version…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-33509 | High | 7.5 |
pyLoad is a free and open-source download manager written in Python. From version 0.4.0 to before version 0.5.0b3.dev97,…
|
⚡ Exploit | Mar 24, 2026 |
| CVE-2026-33538 | High | 7.5 |
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to version…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-3509 | High | 7.5 |
An unauthenticated remote attacker may be able to control the format string of messages processed by the Audit Log of th…
|
— | Mar 24, 2026 |
| CVE-2026-4640 | High | 7.5 |
Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated re…
|
— | Mar 24, 2026 |
| CVE-2026-4662 | High | 7.5 |
The JetEngine plugin for WordPress is vulnerable to SQL Injection via the `listing_load_more` AJAX action in all version…
|
— | Mar 24, 2026 |
| CVE-2026-4685 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | Mar 24, 2026 |
| CVE-2026-4686 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | Mar 24, 2026 |
| CVE-2026-4693 | High | 7.5 |
Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability affects Firefox < 149, Firefox …
|
— | Mar 24, 2026 |
| CVE-2026-4694 | High | 7.5 |
Incorrect boundary conditions, integer overflow in the Graphics component. This vulnerability affects Firefox < 149, Fir…
|
— | Mar 24, 2026 |
| CVE-2026-4695 | High | 7.5 |
Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability affects Firefox < 149, Firefo…
|
— | Mar 24, 2026 |
| CVE-2026-4697 | High | 7.5 |
Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability affects Firefox < 149, Firefo…
|
— | Mar 24, 2026 |
| CVE-2026-4699 | High | 7.5 |
Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability affects Firefox < 149, Firefox…
|
— | Mar 24, 2026 |
| CVE-2026-4704 | High | 7.5 |
Denial-of-service in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thu…
|
— | Mar 24, 2026 |
| CVE-2026-4706 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | Mar 24, 2026 |
| CVE-2026-4707 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | Mar 24, 2026 |
| CVE-2026-4708 | High | 7.5 |
Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, …
|
— | Mar 24, 2026 |