🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-33182 | High | 7.5 |
Saloon is a PHP library that gives users tools to build API integrations and SDKs. Prior to version 4.0.0, when building…
|
— | Mar 26, 2026 |
| CVE-2026-32748 | High | 7.5 |
Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetim…
|
✅ Patch | Mar 26, 2026 |
| CVE-2026-26008 | High | 7.5 |
EVerest is an EV charging software stack. Versions prior to 2026.02.0 have an out-of-bounds access (std::vector) that le…
|
— | Mar 26, 2026 |
| CVE-2026-27664 | High | 7.5 |
A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.10), SICORE Base syst…
|
— | Mar 26, 2026 |
| CVE-2026-4850 | High | 7.3 |
A security flaw has been discovered in code-projects Simple Laundry System 1.0. Affected is an unknown function of the f…
|
— | Mar 26, 2026 |
| CVE-2026-4839 | High | 7.3 |
A vulnerability has been found in SourceCodester Food Ordering System 1.0. This affects an unknown function of the file …
|
— | Mar 26, 2026 |
| CVE-2025-55263 | High | 7.3 |
HCL Aftermarket DPC is affected by Hardcoded Sensitive Data which allows attacker to gain access to the source code or i…
|
— | Mar 26, 2026 |
| CVE-2026-4860 | High | 7.3 |
A security flaw has been discovered in 648540858 wvp-GB28181-pro up to 2.7.4. This affects the function GenericFastJsonR…
|
— | Mar 26, 2026 |
| CVE-2026-4841 | High | 7.3 |
A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the fil…
|
— | Mar 26, 2026 |
| CVE-2026-3328 | High | 7.2 |
The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to PHP Object Injection via deserialization of the '…
|
— | Mar 26, 2026 |
| CVE-2026-4329 | High | 7.2 |
The Blackhole for Bad Bots plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the User-Agent HTTP hea…
|
— | Mar 26, 2026 |
| CVE-2026-2231 | High | 7.2 |
The Fluent Booking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in all vers…
|
— | Mar 26, 2026 |
| CVE-2018-25207 | High | 7.1 |
Online Quiz Maker 1.0 contains SQL injection vulnerabilities in the catid and usern parameters that allow authenticated …
|
— | Mar 26, 2026 |
| CVE-2026-33645 | High | 7.1 |
Fireshare facilitates self-hosted media and link sharing. In version 1.5.1, an authenticated path traversal vulnerabilit…
|
— | Mar 26, 2026 |
| CVE-2026-3121 | Medium | 6.5 |
A flaw was found in Keycloak. An administrator with `manage-clients` permission can exploit a misconfiguration where thi…
|
— | Mar 26, 2026 |
| CVE-2026-27663 | Medium | 6.5 |
A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.10), RTUM85 RTU Base …
|
— | Mar 26, 2026 |
| CVE-2026-4075 | Medium | 6.4 |
The BWL Advanced FAQ Manager Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'baf_sbox' s…
|
— | Mar 26, 2026 |
| CVE-2026-4389 | Medium | 6.4 |
The DSGVO snippet for Leaflet Map and its Extensions plugin for WordPress is vulnerable to Stored Cross-Site Scripting v…
|
— | Mar 26, 2026 |
| CVE-2026-4278 | Medium | 6.4 |
The Simple Download Counter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sdc_menu' shortco…
|
— | Mar 26, 2026 |
| CVE-2026-4836 | Medium | 6.3 |
A vulnerability was detected in code-projects Accounting System 1.0. The affected element is an unknown function of the …
|
— | Mar 26, 2026 |