Vulnerability Intelligence
Track trending vulnerabilities and active exploitation signals in real-time.
Last updated: April 5, 2026 at 04:03 AM
Total
2,447
critical
748
high
1,315
medium
329
low
32
KEV
13
POCs
867
Remote
2,151
Showing 50 of 2447 vulnerabilities
CVE-2018-25251HighNEW•Snes9K - Buffer Overflow
CVSS: 8.4Age: today
Click to expand
CVE-2018-25254CriticalNEW•NICO-FTP - Remote Code Execution
CVSS: 9.8Age: today
Click to expand
CVE-2018-25255HighNEW•10-Strike LANState - Buffer Overflow
CVSS: 8.4Age: today
Click to expand
CVE-2016-20052CriticalNEW•Snews CMS - Unrestricted File Upload
CVSS: 9.8Age: today
Click to expand
CVE-2026-3666HighNEW•wpForo Forum - Arbitrary File Deletion
CVSS: 8.8Age: today
Click to expand
CVE-2026-4896HighNEW•WCFM Frontend Manager for WooCommerce - Broken Access Control
CVSS: 8.1Age: today
Click to expand
CVE-2026-35616CriticalNEW•Fortinet FortiClientEMS - Command Injection
CVSS: 9.8Age: 1 day
KEVPoCRemote
Click to expand
CVE-2026-34780HighNEW•Electron - Context Isolation Bypass
CVSS: 8.3Age: 1 day
Click to expand
CVE-2026-34955HighNEW•PraisonAI - Command Injection
CVSS: 8.8Age: 1 day
Click to expand
CVE-2026-34774HighNEW•Electron - Use After Free
CVSS: 8.1Age: 1 day
Click to expand
CVE-2026-34938CriticalNEW•PraisonAI praisonai-agents - Command Injection
CVSS: 10.0Age: 1 day
Click to expand
CVE-2026-34953CriticalNEW•PraisonAI - Authentication Bypass
CVSS: 9.1Age: 1 day
Click to expand
CVE-2026-34952CriticalNEW•PraisonAI - Broken Access Control
CVSS: 9.1Age: 1 day
Click to expand
CVE-2026-34954HighNEW•PraisonAI - Server Side Request Forgery
CVSS: 8.6Age: 1 day
Click to expand
CVE-2026-34934CriticalNEW•PraisonAI - SQL Injection
CVSS: 9.8Age: 1 day
Click to expand
CVE-2026-34935CriticalNEW•PraisonAI - Command Injection
CVSS: 9.8Age: 1 day
Click to expand
CVE-2026-34612CriticalNEW•Kestra - SQL Injection & Remote Code Execution
CVSS: 9.9Age: 1 day
Click to expand
CVE-2021-4477CriticalNEW•Hirschmann HiLCOS OpenBAT & BAT450 - Firewall Bypass
CVSS: 9.1Age: 1 day
Click to expand
CVE-2018-25236CriticalNEW•Hirschmann HiOS & HiSecOS - Authentication Bypass
CVSS: 9.8Age: 1 day
Click to expand
CVE-2017-20235CriticalNEW•ProSoft Technology ICX35-HWC - Authentication Bypass
CVSS: 9.1Age: 1 day
Click to expand
CVE-2017-20236CriticalNEW•ProSoft Technology ICX35-HWC - Command Injection
CVSS: 9.8Age: 1 day
Click to expand
CVE-2017-20234CriticalNEW•GarrettCom Magnum - Authentication Bypass
CVSS: 9.8Age: 1 day
Click to expand
CVE-2026-33175HighNEW•OAuthenticator - Authentication Bypass
CVSS: 8.8Age: 1 day
Click to expand
CVE-2016-15058HighNEW•Hirschmann HiLCOS Classic Platform - Credential Exposure
CVSS: 8.1Age: 1 day
Click to expand
CVE-2018-25237CriticalNEW•Hirschmann HiSecOS - Buffer Overflow
CVSS: 9.8Age: 1 day
Click to expand
CVE-2015-10148HighNEW•Hirschmann HiLCOS - Weak Cryptography
CVSS: 8.2Age: 1 day
Click to expand
CVE-2026-32662MediumNEW•CVE-2026-32662
CVSS: 5.3Age: 1 day
PoCRemote
Click to expand
CVE-2026-32646HighNEW•Device Management - Broken Access Control
CVSS: 7.5Age: 1 day
PoCRemote
Click to expand
CVE-2026-28767MediumNEW•Unspecified Product - Broken Access Control
CVSS: 5.3Age: 1 day
PoCRemote
Click to expand
CVE-2026-28766CriticalNEW•Gardyn - Broken Access Control
CVSS: 9.3Age: 1 day
PoCRemote
Click to expand
CVE-2026-22665HighNEW•prompts.chat - Authentication Bypass
CVSS: 8.1Age: 1 day
Click to expand
CVE-2026-25197CriticalNEW•Generic Product - Broken Access Control
CVSS: 9.1Age: 1 day
PoCRemote
Click to expand
CVE-2025-10681HighNEW•Mobile App & Device Firmware - Hardcoded Credentials
CVSS: 8.6Age: 1 day
PoCRemote
Click to expand
CVE-2026-22661HighNEW•prompts.chat - Path Traversal & Remote Code Execution
CVSS: 8.1Age: 1 day
Click to expand
CVE-2017-20237CriticalNEW•Hirschmann Industrial HiVision - Authentication Bypass
CVSS: 9.8Age: 1 day
Click to expand
CVE-2026-25726HighNEW•Cloudreve - Authentication Bypass
CVSS: 8.1Age: 1 day
Click to expand
CVE-2026-28798CriticalNEW•ZimaOS - Authentication Bypass
CVSS: 9.0Age: 1 day
Click to expand
CVE-2026-0545CriticalNEW•mlflow/mlflow - Authentication Bypass
CVSS: 9.1Age: 1 day
Click to expand
CVE-2026-28373CriticalNEW•Stackfield Desktop App - Path Traversal
CVSS: 9.6Age: 1 day
Click to expand
CVE-2026-35216CriticalNEW•Budibase - Remote Code Execution
CVSS: 9.0Age: 1 day
Click to expand
CVE-2026-35218HighNEW•Budibase - Stored XSS
CVSS: 8.7Age: 1 day
Click to expand
CVE-2026-35214HighNEW•Budibase - Path Traversal
CVSS: 8.7Age: 1 day
Click to expand
CVE-2026-31818CriticalNEW•Budibase - Server-Side Request Forgery
CVSS: 9.6Age: 1 day
Click to expand
CVE-2025-59711HighNEW•Biztalk360 - Directory Traversal
CVSS: 8.3Age: 1 day
Click to expand
CVE-2026-25773HighNEW•Focalboard - SQL Injection
CVSS: 8.1Age: 1 day
Click to expand
CVE-2026-4350HighNEW•Perfmatters WordPress Plugin - Path Traversal
CVSS: 8.1Age: 1 day
Click to expand
CVE-2026-5463HighNEW•pymetasploit3 - Command Injection
CVSS: 8.6Age: 1 day
Click to expand
CVE-2026-33105CriticalNEW•Microsoft Azure Kubernetes Service - Broken Access Control
CVSS: 10.0Age: 2 days
Click to expand
CVE-2026-33107CriticalNEW•Azure Databricks - Privilege Escalation & Server Side Request Forgery
CVSS: 10.0Age: 2 days
Click to expand
CVE-2026-26135CriticalNEW•Azure Custom Locations Resource Provider - Server Side Request Forgery
CVSS: 9.6Age: 2 days
Click to expand
Check Your Domain for Exposed Credentials
Use our free scanner to check if credentials associated with your domain have been exposed in recent leaks or breaches.
Scan Your Domain