🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-1023 | High | 7.5 |
Statistics Database System developed by Gotac has a Missing Authentication vulnerability, allowing unauthenticated remot…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-22782 | High | 7.5 |
RustFS is a distributed object storage system built in Rust. From >= 1.0.0-alpha.1 to 1.0.0-alpha.79, invalid RPC signat…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2025-65117 | High | 7.4 |
The vulnerability, if exploited, could allow an authenticated miscreant
(Process Optimization Designer User) to embed O…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-22816 | High | 7.4 |
Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. When resolving d…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-22865 | High | 7.4 |
Gradle is a build automation tool, and its native-platform tool provides Java bindings for native APIs. When resolving d…
|
✅ Patch | Jan 16, 2026 |
| CVE-2026-23723 | High | 7.2 |
WeGIA is a web manager for charitable institutions. Prior to 3.6.2, an authenticated SQL Injection vulnerability was ide…
|
⚡ Exploit ✅ Patch | Jan 16, 2026 |
| CVE-2026-21223 | High | 7.1 |
Improper privilege management in Microsoft Edge (Chromium-based) allows an authorized attacker to bypass a security feat…
|
✅ Patch | Jan 16, 2026 |
| CVE-2021-47757 | High | 8.8 |
Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability in the backup res…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47758 | High | 8.8 |
Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerability that allows attac…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2025-13062 | High | 8.8 |
The Supreme Modules Lite plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and includin…
|
✅ Patch | Jan 15, 2026 |
| CVE-2026-23622 | High | 8.8 |
Easy!Appointments is a self hosted appointment scheduler. In 1.5.2 and earlier, application/core/EA_Security.php::csrf_v…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47775 | High | 8.4 |
YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vulnerability that allo…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47763 | High | 8.2 |
Aimeos 2021.10 LTS contains a SQL injection vulnerability in the json api 'sort' parameter that allows attackers to inje…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47777 | High | 8.2 |
Build Smart ERP 21.0817 contains an unauthenticated SQL injection vulnerability in the 'eidValue' parameter of the login…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47761 | High | 7.8 |
MilleGPG5 5.7.2 contains a local privilege escalation vulnerability that allows authenticated users to modify service ex…
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47762 | High | 7.8 |
HTTPDebuggerPro 9.11 contains an unquoted service path vulnerability that allows local attackers to potentially execute …
|
✅ Patch | Jan 15, 2026 |
| CVE-2021-47755 | High | 7.5 |
Oliver Library Server v5 contains a file download vulnerability that allows unauthenticated attackers to access arbitrar…
|
⚡ Exploit ✅ Patch | Jan 15, 2026 |
| CVE-2021-47784 | High | 7.5 |
Cyberfox Web Browser 52.9.1 contains a denial of service vulnerability that allows attackers to crash the application by…
|
✅ Patch | Jan 15, 2026 |
| CVE-2025-60003 | High | 7.5 |
A Buffer Over-read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved …
|
✅ Patch | Jan 15, 2026 |
| CVE-2025-9014 | High | 7.5 |
A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-Link TL-WR841N v14, …
|
✅ Patch | Jan 15, 2026 |