Export limit exceeded: 358957 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Expected end of text, found ':' (at char 29), (line:1, col:30)
Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (358957 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2026-42385 2026-06-17 7.1 High
Unauthenticated Cross Site Scripting (XSS) in Profile Builder Pro <= 3.15.0 versions.
CVE-2026-41557 2026-06-17 7.1 High
Unauthenticated Cross Site Scripting (XSS) in Kapee < 1.7.1 versions.
CVE-2026-40768 2026-06-17 7.3 High
Unauthenticated Insecure Direct Object References (IDOR) in Salon booking system <= 10.30.24 versions.
CVE-2026-40765 2026-06-17 7.1 High
Unauthenticated Cross Site Scripting (XSS) in collectchat <= 2.4.9 versions.
CVE-2026-40753 2026-06-17 8.1 High
Unauthenticated PHP Object Injection in EasyMeals <= 1.5.1 versions.
CVE-2026-40748 2026-06-17 9.9 Critical
Subscriber Arbitrary File Upload in Kids Gift Shop <= 0.5.4 versions.
CVE-2026-40746 2026-06-17 9.9 Critical
Subscriber Arbitrary File Upload in Restaurant Zone <= 0.7.8 versions.
CVE-2026-40735 2026-06-17 8.1 High
Unauthenticated PHP Object Injection in Reina <= 2.1 versions.
CVE-2026-40731 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in ChapterOne <= 1.7 versions.
CVE-2026-40725 2026-06-17 9.8 Critical
Unauthenticated PHP Object Injection in WooCommerce Product Filters < 2.0.6 versions.
CVE-2026-40724 2026-06-17 6.5 Medium
CP Client Arbitrary File Download in Client Portal (Pro) <= 5.6.2 versions.
CVE-2026-40721 2026-06-17 7.5 High
Contributor Local File Inclusion in Element Pack Pro <= 9.0.6 versions.
CVE-2026-39582 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Hitek < 1.8.3 versions.
CVE-2026-39573 2026-06-17 8.1 High
Unauthenticated PHP Object Injection in Mildhill <= 1.5 versions.
CVE-2026-39558 2026-06-17 8.1 High
Unauthenticated Local File Inclusion in Malmö <= 2.2 versions.
CVE-2026-39545 2026-06-17 8.1 High
Unauthenticated PHP Object Injection in Zermatt <= 1.6.1 versions.
CVE-2026-34888 2026-06-17 7.5 High
Unauthenticated Sensitive Data Exposure in Bricksforge <= 3.1.8.4 versions.
CVE-2026-27400 2026-06-17 8.6 High
Unauthenticated Arbitrary File Deletion in BookPro <= 1.1.0 versions.
CVE-2026-25446 2026-06-17 9.9 Critical
Subscriber Arbitrary File Upload in WishList Member X <= 3.29.0 versions.
CVE-2026-24610 2026-06-17 4.3 Medium
Subscriber Broken Access Control in MetForm Pro <= 3.9.1 versions.