🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-4712 | High | 7.5 |
Information disclosure in the Widget: Cocoa component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Th…
|
— | Mar 24, 2026 |
| CVE-2026-4662 | High | 7.5 |
The JetEngine plugin for WordPress is vulnerable to SQL Injection via the `listing_load_more` AJAX action in all version…
|
— | Mar 24, 2026 |
| CVE-2026-4685 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | Mar 24, 2026 |
| CVE-2026-30653 | High | 7.5 |
An issue in Free5GC v.4.2.0 and before allows a remote attacker to cause a denial of service via the function HandleAuth…
|
⚡ Exploit | Mar 24, 2026 |
| CVE-2026-33176 | High | 7.5 |
Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Prior to v…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-33174 | High | 7.5 |
Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, a…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-33509 | High | 7.5 |
pyLoad is a free and open-source download manager written in Python. From version 0.4.0 to before version 0.5.0b3.dev97,…
|
⚡ Exploit | Mar 24, 2026 |
| CVE-2026-33497 | High | 7.5 |
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.1, in the download_p…
|
⚡ Exploit | Mar 24, 2026 |
| CVE-2026-4719 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Text component. This vulnerability affects Firefox < 149, Firefox ESR < 1…
|
— | Mar 24, 2026 |
| CVE-2026-4713 | High | 7.5 |
Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, …
|
— | Mar 24, 2026 |
| CVE-2026-33332 | High | 7.5 |
NiceGUI is a Python-based UI framework. Prior to version 3.9.0, NiceGUI's app.add_media_file() and app.add_media_files()…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-4704 | High | 7.5 |
Denial-of-service in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thu…
|
— | Mar 24, 2026 |
| CVE-2026-33306 | High | 7.5 |
bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt() password hashing algorithm. Prior to version 3.1.22, an integer o…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-33241 | High | 7.5 |
Salvo is a Rust web framework. Prior to version 0.89.3, Salvo's form data parsing implementations (`form_data()` method …
|
⚡ Exploit ✅ Patch | Mar 24, 2026 |
| CVE-2026-4727 | High | 7.5 |
Denial-of-service in the Libraries component in NSS. This vulnerability affects Firefox < 149 and Thunderbird < 149.
|
— | Mar 24, 2026 |
| CVE-2026-3509 | High | 7.5 |
An unauthenticated remote attacker may be able to control the format string of messages processed by the Audit Log of th…
|
— | Mar 24, 2026 |
| CVE-2026-4707 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | Mar 24, 2026 |
| CVE-2026-4714 | High | 7.5 |
Incorrect boundary conditions in the Audio/Video component. This vulnerability affects Firefox < 149, Firefox ESR < 140.…
|
— | Mar 24, 2026 |
| CVE-2026-4613 | High | 7.3 |
A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerability affects unknown code of the file /pr…
|
— | Mar 24, 2026 |
| CVE-2026-4615 | High | 7.3 |
A vulnerability was identified in SourceCodester Online Catering Reservation 1.0. Impacted is an unknown function of the…
|
— | Mar 24, 2026 |