🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-13855 | High | 7.6 |
IBM Storage Protect Server 8.2.0 IBM Storage Protect Plus Server is vulnerable to SQL injection. A remote attacker could…
|
— | Apr 1, 2026 |
| CVE-2026-35092 | High | 7.5 |
A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a re…
|
⚡ Exploit | Apr 1, 2026 |
| CVE-2026-27489 | High | 7.5 |
Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2026-34543 | High | 7.5 |
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2025-71282 | High | 7.5 |
XenForo before 2.3.7 discloses filesystem paths through exception messages triggered by open_basedir restrictions. This …
|
— | Apr 1, 2026 |
| CVE-2026-5261 | High | 7.3 |
A vulnerability was identified in Shandong Hoteam InforCenter PLM up to 8.3.8. The impacted element is the function uplo…
|
— | Apr 1, 2026 |
| CVE-2026-5258 | High | 7.3 |
A vulnerability was found in Sanster IOPaint 1.5.3. Impacted is the function _get_file of the file iopaint/file_manager/…
|
— | Apr 1, 2026 |
| CVE-2026-5238 | High | 7.3 |
A weakness has been identified in itsourcecode Payroll Management System 1.0. Affected by this issue is some unknown fun…
|
— | Apr 1, 2026 |
| CVE-2026-34544 | High | 7.3 |
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2026-1345 | High | 7.3 |
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 …
|
— | Apr 1, 2026 |
| CVE-2026-20151 | High | 7.3 |
A vulnerability in the web interface of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an authenticated,…
|
— | Apr 1, 2026 |
| CVE-2026-34545 | High | 7.3 |
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the …
|
⚡ Exploit ✅ Patch | Apr 1, 2026 |
| CVE-2026-0932 | High | 7.3 |
Blind server-side request forgery (SSRF) vulnerability in legacy connection methods of document co-authoring features in…
|
— | Apr 1, 2026 |
| CVE-2026-35056 | High | 7.2 |
XenForo before 2.3.9 and before 2.2.18 allows remote code execution (RCE) by authenticated, but malicious, admin users. …
|
— | Apr 1, 2026 |
| CVE-2026-34603 | High | 7.1 |
Tina is a headless content management system. Prior to version 2.2.2, @tinacms/cli recently added lexical path-traversal…
|
✅ Patch | Apr 1, 2026 |
| CVE-2026-34604 | High | 7.1 |
Tina is a headless content management system. Prior to version 2.2.2, @tinacms/graphql uses string-based path containmen…
|
✅ Patch | Apr 1, 2026 |
| CVE-2026-5211 | High | 8.8 |
A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, D…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5156 | High | 8.8 |
A vulnerability was determined in Tenda CH22 1.0.0.1. This impacts the function formQuickIndex of the file /goform/Quick…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5213 | High | 8.8 |
A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-5212 | High | 8.8 |
A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, D…
|
⚡ Exploit | Mar 31, 2026 |