Export limit exceeded: 359226 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (359226 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-42357 | 2026-06-17 | 6.5 Medium | ||
| Incorrect Authorization vulnerability allows users to access workflow instance information belonging to projects they do not have permission to access. This issue affects Apache DolphinScheduler versions prior to 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes this issue. | ||||
| CVE-2026-32966 | 2026-06-17 | 7.5 High | ||
| DataSource API Missing Authorization Check Leads to Arbitrary Data Source Metadata Disclosure in Apache DolphinScheduler. This issue affects Apache DolphinScheduler: before 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes the issue. | ||||
| CVE-2026-22339 | 2026-06-17 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in WPJobster <= 6.3.5 versions. | ||||
| CVE-2024-49269 | 2026-06-17 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in my flatonica <= 0.0.8 versions. | ||||
| CVE-2026-22338 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in EcoBlue <= 1.15 versions. | ||||
| CVE-2025-59560 | 2026-06-17 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Sonaar <= 4.27.4 versions. | ||||
| CVE-2025-69117 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Ingenioso <= 1.14.0 versions. | ||||
| CVE-2026-22329 | 2026-06-17 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Skillate <= 1.2.10 versions. | ||||
| CVE-2025-69161 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Snowy <= 1.13 versions. | ||||
| CVE-2025-69179 | 2026-06-17 | 9.8 Critical | ||
| Unauthenticated Privilege Escalation in Support Ticket Management System <= 1.9 versions. | ||||
| CVE-2026-22326 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Reprizo <= 1.0.8 versions. | ||||
| CVE-2026-22330 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Right Way <= 4.0 versions. | ||||
| CVE-2026-22332 | 2026-06-17 | 9.3 Critical | ||
| Unauthenticated SQL Injection in Tutor LMS Pro <= 3.9.6 versions. | ||||
| CVE-2026-22342 | 2026-06-17 | 8.8 High | ||
| Unauthenticated Cross Site Request Forgery (CSRF) in WordPress Dating Theme <= 11.2.0 versions. | ||||
| CVE-2025-69145 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Gat <= 1.16 versions. | ||||
| CVE-2025-69127 | 2026-06-17 | 9.8 Critical | ||
| Unauthenticated PHP Object Injection in Plumbing <= 1.6 versions. | ||||
| CVE-2025-59554 | 2026-06-17 | 9.3 Critical | ||
| Unauthenticated SQL Injection in Advanced Ads – Tracking < 3.0.7 versions. | ||||
| CVE-2025-69106 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Imba <= 1.5.0 versions. | ||||
| CVE-2024-35648 | 2026-06-17 | 4.3 Medium | ||
| Cross-Site request forgery (CSRF) vulnerability in Andy Moyle Emergency Password Reset allows Cross Site Request Forgery. This issue affects Emergency Password Reset: from n/a through 8.0. | ||||
| CVE-2024-32729 | 2 Quantumcloud, Wordpress | 2 Conversational Forms For Chatbot, Wordpress | 2026-06-17 | 7.5 High |
| Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in QuantumCloud Conversational Forms for ChatBot allows Path Traversal. This issue affects Conversational Forms for ChatBot: from n/a through 1.1.8. | ||||