🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2021-47824 | High | 7.5 |
iDailyDiary 4.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowin…
|
✅ Patch | Jan 16, 2026 |
| CVE-2021-47827 | High | 7.5 |
WebSSH for iOS 14.16.10 contains a denial of service vulnerability in the mashREPL tool that allows attackers to crash t…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-1018 | High | 7.5 |
Police Statistics Database System developed by Gotac has an Arbitrary File Read vulnerability, allowing Unauthenticated …
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-1022 | High | 7.5 |
Statistics Database System developed by Gotac has an Arbitrary File Read vulnerability, allowing unauthenticated remote …
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-1023 | High | 7.5 |
Statistics Database System developed by Gotac has a Missing Authentication vulnerability, allowing unauthenticated remot…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-22782 | High | 7.5 |
RustFS is a distributed object storage system built in Rust. From >= 1.0.0-alpha.1 to 1.0.0-alpha.79, invalid RPC signat…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2026-22816 | High | 7.4 |
Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. When resolving d…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-22865 | High | 7.4 |
Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. When resolving d…
|
✅ Patch | Jan 16, 2026 |
| CVE-2025-65117 | High | 7.4 |
The vulnerability, if exploited, could allow an authenticated miscreant
(Process Optimization Designer User) to embed O…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-23723 | High | 7.2 |
WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an authenticated SQL Injection vulnerability was ide…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2026-21223 | High | 7.1 |
Improper privilege management in Microsoft Edge (Chromium-based) allows an authorized attacker to bypass a security feat…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-23520 | Critical | 9.0 |
Arcane provides modern docker management. Prior to 1.13.0, Arcane has a command injection in the updater service. Arcane…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2026-23622 | High | 8.8 |
Easy!Appointments is a self hosted appointment scheduler. In 1.5.2 and earlier, application/core/EA_Security.php::csrf_v…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47757 | High | 8.8 |
Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup res…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47758 | High | 8.8 |
Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability that allows attac…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2025-13062 | High | 8.8 |
The Supreme Modules Lite plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and includin…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47775 | High | 8.4 |
YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vulnerability that allo…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47763 | High | 8.2 |
Aimeos 2021.10 LTS contains a SQL injection vulnerability in the json api 'sort' parameter that allows attackers to inje…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47777 | High | 8.2 |
Build Smart ERP 21.0817 contains an unauthenticated SQL injection vulnerability in the 'eidValue' parameter of the login…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47761 | High | 7.8 |
MilleGPG5 5.7.2 contains a local privilege escalation vulnerability that allows authenticated users to modify service ex…
|
✅ Patch | Jan 15, 2026 |