🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2018-25232 | Medium | 5.5 |
Softros LAN Messenger 9.2 contains a denial of service vulnerability that allows local attackers to crash the applicatio…
|
— | Mar 30, 2026 |
| CVE-2026-26352 | Medium | 5.4 |
Smoothwall Express versions prior to 3.1 Update 13 contain a stored cross-site scripting vulnerability in the /cgi-bin/v…
|
— | Mar 30, 2026 |
| CVE-2026-27508 | Medium | 5.4 |
Smoothwall Express versions prior to 3.1 Update 13 contain a reflected cross-site scripting vulnerability in the /redire…
|
— | Mar 30, 2026 |
| CVE-2026-5125 | Medium | 5.3 |
A vulnerability was detected in raine consult-llm-mcp up to 2.5.3. Affected by this vulnerability is the function child_…
|
— | Mar 30, 2026 |
| CVE-2026-2602 | Medium | 6.4 |
The Twentig plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'featuredImageSizeWidth' parameter…
|
— | Mar 29, 2026 |
| CVE-2026-5020 | Medium | 6.3 |
A vulnerability was detected in Totolink A3600R 4.1.2cu.5182_B20201102. Affected by this issue is the function setNotice…
|
— | Mar 29, 2026 |
| CVE-2026-5030 | Medium | 6.3 |
A vulnerability has been found in Totolink NR1800X 9.1.0u.6279_B20210910. This issue affects the function NTPSyncWithHos…
|
— | Mar 29, 2026 |
| CVE-2026-33574 | Medium | 6.2 |
OpenClaw before 2026.3.8 contains a path traversal vulnerability in the skills download installer that validates the too…
|
— | Mar 29, 2026 |
| CVE-2026-32919 | Medium | 6.1 |
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability allowing write-scoped callers to reach admin-on…
|
— | Mar 29, 2026 |
| CVE-2026-32923 | Medium | 5.4 |
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in Discord guild reaction ingestion that fails …
|
— | Mar 29, 2026 |
| CVE-2026-5023 | Medium | 5.3 |
A vulnerability has been found in DeDeveloper23 codebase-mcp up to 3ec749d237dd8eabbeef48657cf917275792fde6. This vulner…
|
— | Mar 29, 2026 |
| CVE-2026-1307 | Medium | 6.5 |
The Ninja Forms - The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to Sensitive Informati…
|
— | Mar 28, 2026 |
| CVE-2026-4999 | Medium | 6.3 |
A security vulnerability has been detected in z-9527 admin up to 72aaf2dd05cf4ec2e98f390668b41e128eec5ad2. This issue af…
|
— | Mar 28, 2026 |
| CVE-2026-5011 | Medium | 6.3 |
A vulnerability was detected in elecV2 elecV2P up to 3.8.3. This vulnerability affects the function runJSFile of the fil…
|
— | Mar 28, 2026 |
| CVE-2026-2595 | Medium | 5.4 |
The Quads Ads Manager for Google AdSense plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions u…
|
— | Mar 28, 2026 |
| CVE-2026-2442 | Medium | 5.3 |
The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Improper Neutralizatio…
|
— | Mar 28, 2026 |
| CVE-2026-4997 | Medium | 5.3 |
A security flaw has been discovered in Sinaptik AI PandasAI up to 3.0.0. This affects the function is_sql_query_safe of …
|
— | Mar 28, 2026 |
| CVE-2026-5003 | Medium | 5.3 |
A vulnerability was found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. This affects the fun…
|
— | Mar 28, 2026 |
| CVE-2026-5007 | Medium | 5.3 |
A vulnerability was identified in kazuph mcp-docs-rag up to 0.5.0. Affected is the function cloneRepository of the file …
|
— | Mar 28, 2026 |
| CVE-2026-5013 | Medium | 5.3 |
A vulnerability has been found in elecV2 elecV2P up to 3.8.3. Impacted is the function path.join of the file /store/:key…
|
— | Mar 28, 2026 |