cve.li

Recent

CVE-2026-4660CWE-200

Go-getter may allow to arbitrary filesystem reads through git operations

Published 2026-04-09 by HashiCorp

CVE-2026-2519CWE-472

Online Scheduling and Appointment Booking System – Bookly <= 27.0 - Unauthenticated Price Manipulation via 'tips'

Published 2026-04-09 by Wordfence

CVE-2026-3005CWE-79

List category posts <= 0.94.0 - Authenticated (Author+) Stored Cross-Site Scripting via 'catlist' Shortcode

Published 2026-04-09 by Wordfence

CVE-2025-57735CWE-613

Apache Airflow: Airflow Logout Not Invalidating JWT

Published 2026-04-09 by apache

CVE-2024-1490CWE-94

Wago: Vulnerability in WBM through Open VPN

Published 2026-04-09 by CERTVDE

CVE-2026-24661CWE-770

Unbounded Request Body Read in MS Teams Plugin {{/changes}} Webhook Endpoint

Published 2026-04-09 by Mattermost

CVE-2026-21388CWE-770

Unbounded Request Body Read in MS Teams Plugin {{/lifecycle}} Webhook Endpoint

Published 2026-04-09 by Mattermost

CVE-2026-34185CWE-89

SQL Injection in Hydrosystem Control System

Published 2026-04-09 by CERT-PL

CVE-2026-34184CWE-862

Missing Authorization in Hydrosystem Control System

Published 2026-04-09 by CERT-PL

CVE-2026-4901CWE-532

Insertion of Sesitive Information into Log File in Hydrosystem Control System

Published 2026-04-09 by CERT-PL

Load more ↓