Vulnerability Intelligence

Track trending vulnerabilities and active exploitation signals in real-time.

Last updated: April 14, 2026 at 06:14 AM

Total

2,864

critical

889

high

1,565

medium

339

low

KEV

POCs

925

Remote

2,522

Showing 50 of 2864 vulnerabilities

CVE-2026-40313CriticalNEW•PraisonAI - Authentication Bypass

CVSS: 9.1Age: today

Click to expand

CVE-2026-40289CriticalNEW•PraisonAI - Authentication Bypass & Remote Session Hijacking

CVSS: 9.1Age: today

Click to expand

CVE-2026-40288CriticalNEW•PraisonAI - Command Injection

CVSS: 9.8Age: today

Click to expand

CVE-2026-40287HighNEW•PraisonAI - Command Injection

CVSS: 8.4Age: today

Click to expand

CVE-2026-6264CriticalNEW•Talend JobServer & Runtime - Remote Code Execution

CVSS: 9.8Age: today

Click to expand

CVE-2026-6227HighNEW•BackWPup WordPress Plugin - Local File Inclusion

CVSS: 7.2Age: today

PoCRemote

Click to expand

CVE-2026-4365CriticalNEW•LearnPress WordPress Plugin - Broken Access Control

CVSS: 9.1Age: today

Click to expand

CVE-2026-27681CriticalNEW•SAP Business Planning and Consolidation & SAP Business Warehouse - SQL Injection

CVSS: 9.9Age: today

Click to expand

CVE-2026-22564CriticalNEW•UniFi Play - Broken Access Control

CVSS: 9.8Age: today

Click to expand

CVE-2026-22563CriticalNEW•UniFi Play - Command Injection

CVSS: 9.8Age: today

Click to expand

CVE-2026-22562CriticalNEW•UniFi Play - Path Traversal & Remote Code Execution

CVSS: 9.8Age: today

Click to expand

CVE-2026-31280N/aNEW•Parani M10 Motorcycle Intercom - Denial of Service

CVSS: N/AAge: today

PoC

Click to expand

CVE-2026-6201MediumNEW•CodeAstro Online Job Portal - Broken Access Control

CVSS: 5.4Age: today

PoCRemote

Click to expand

CVE-2026-31048N/aNEW•Pyro - Remote Code Execution

CVSS: N/AAge: today

PoC

Click to expand

CVE-2026-6200HighNEW•Tenda F456 - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-6199HighNEW•Tenda F456 - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-6197HighNEW•Tenda F456 - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-6198HighNEW•Tenda F456 - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-40044CriticalNEW•Pachno - Remote Code Execution

CVSS: 9.8Age: today

Click to expand

CVE-2026-40042CriticalNEW•Pachno - XML External Entity Injection

CVSS: 9.8Age: today

Click to expand

CVE-2026-40040HighNEW•Pachno - Unrestricted File Upload

CVSS: 8.8Age: today

Click to expand

CVE-2026-29955N/aNEW•KubePlus - Command Injection

CVSS: N/AAge: today

PoC

Click to expand

CVE-2026-6194HighNEW•Totolink A3002MU - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-6195CriticalNEW•Totolink A7100RU - Command Injection

CVSS: 9.8Age: today

Click to expand

CVE-2026-6196HighNEW•Tenda F456 - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-32316HighNEW•jq - Integer Overflow & Heap-based Buffer Overflow

CVSS: 8.2Age: today

Click to expand

CVE-2026-28291HighNEW•simple-git - Command Injection

CVSS: 8.1Age: today

Click to expand

CVE-2026-6184LowNEW•code-projects Simple Content Management System - Stored XSS

CVSS: 2.4Age: today

PoCRemote

Click to expand

CVE-2026-6186HighNEW•UTT HiPER 1200GW - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-6183HighNEW•code-projects Simple Content Management System - SQL Injection

CVSS: 7.3Age: today

PoCRemote

Click to expand

CVE-2026-6182HighNEW•code-projects Simple Content Management System - SQL Injection

CVSS: 7.3Age: today

PoCRemote

Click to expand

CVE-2026-31282N/aNEW•Totara LMS - Broken Access Control

CVSS: N/AAge: today

PoC

Click to expand

CVE-2026-31283N/aNEW•Totara LMS - Denial of Service

CVSS: N/AAge: today

PoC

Click to expand

CVE-2026-33858HighNEW•Apache Airflow - Stored XSS

CVSS: 8.8Age: today

Click to expand

CVE-2026-31281N/aNEW•Totara LMS - Stored XSS

CVSS: N/AAge: today

PoC

Click to expand

CVE-2026-29628MediumNEW•tinyobjloader - Denial of Service

CVSS: 6.2Age: today

PoC

Click to expand

CVE-2026-1462HighNEW•Keras - Insecure Deserialization

CVSS: 8.8Age: today

Click to expand

CVE-2026-35337HighNEW•Apache Storm - Insecure Deserialization

CVSS: 8.8Age: today

Click to expand

CVE-2026-6168HighNEW•TOTOLINK A7000R - Buffer Overflow

CVSS: 8.8Age: today

Click to expand

CVE-2026-5936HighNEW•Generic Server - Server Side Request Forgery

CVSS: 8.5Age: today

Click to expand

CVE-2026-3830HighNEW•Product Filter for WooCommerce by WBW WordPress - SQL Injection

CVSS: 8.6Age: today

Click to expand

CVE-2026-5085CriticalNEW•Solstice::Session - Authentication Bypass

CVSS: 9.1Age: today

Click to expand

CVE-2026-25205HighNEW•Samsung Open Source Escargot - Buffer Overflow

CVSS: 8.1Age: 1 day

Click to expand

CVE-2026-25208HighNEW•Samsung Open Source Escargot - Integer Overflow

CVSS: 8.1Age: 1 day

Click to expand

CVE-2026-6157HighNEW•Totolink A800R - Buffer Overflow

CVSS: 8.8Age: 1 day

Click to expand

CVE-2026-6155CriticalNEW•Totolink A7100RU - Command Injection

CVSS: 9.8Age: 1 day

Click to expand

CVE-2026-6156CriticalNEW•Totolink A7100RU - Command Injection

CVSS: 9.8Age: 1 day

Click to expand

CVE-2026-6154CriticalNEW•Totolink A7100RU - Command Injection

CVSS: 9.8Age: 1 day

Click to expand

CVE-2026-6139CriticalNEW•Totolink A7100RU - Command Injection

CVSS: 9.8Age: 1 day

Click to expand

CVE-2026-6140CriticalNEW•Totolink A7100RU - Command Injection

CVSS: 9.8Age: 1 day

Click to expand

Check Your Domain for Exposed Credentials

Use our free scanner to check if credentials associated with your domain have been exposed in recent leaks or breaches.

Scan Your Domain