|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6523
|
Adobe APSB26-64
|
CVE-2026-47929
|
Adobe ColdFusion Incorrect Authorization (APSB26-64: CVE-2026-47929)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6508
|
Adobe APSB26-64
|
CVE-2026-47932
|
Adobe ColdFusion Directory Traversal (APSB26-64: CVE-2026-47932)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2020-4722
|
Microsoft CVE-2020-17103
|
CVE-2020-17103
|
Microsoft Windows Cloud Files Mini Filter Driver Elevation of Privilege (CVE-2020-17103)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6034
|
Microsoft CVE-2026-45586
|
CVE-2026-45586
|
Microsoft Windows Collaborative Translation Framework (CTFMON) Elevation of Privilege (CVE-2026-45586)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6278
|
Microsoft CVE-2026-42980
|
CVE-2026-42980
|
Microsoft NT OS Kernel Elevation of Privilege (CVE-2026-42980)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6279
|
Microsoft CVE-2026-42989
|
CVE-2026-42989
|
Microsoft Winlogon Elevation of Privilege (CVE-2026-42989)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-5547
|
Microsoft CVE-2026-42905
|
CVE-2026-42905
|
Microsoft Windows DWM Core Library Elevation of Privilege (CVE-2026-42905)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6277
|
Microsoft CVE-2026-42986
|
CVE-2026-42986
|
Microsoft Microsoft Graphics Component Elevation of Privilege (CVE-2026-42986)
|
|
Medium
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6412
|
|
CVE-2026-42600
|
MinIO Path Traversal (CVE-2026-42600)
|
|
High
|
9 Jun 2026 |
9 Jun 2026 |
CPAI-2026-6027
|
|
CVE-2026-4020
|
WordPress Gravity SMTP Plugin Information Disclosure (CVE-2026-4020)
|
|
High
|
7 May 2026 |
9 Jun 2026 |
CPAI-2025-15915
|
|
CVE-2025-20352
|
Cisco Multiple Products Stack Overflow (CVE-2025-20352)
|
|
High
|
8 Jun 2026 |
8 Jun 2026 |
CPAI-2026-6154
|
|
CVE-2026-3300
|
WordPress Everest Forms Pro Plugin Remote Code Execution (CVE-2026-3300)
|
|
High
|
8 Jun 2026 |
8 Jun 2026 |
CPAI-2025-16451
|
|
CVE-2025-35996
|
KUNBUS PiCtory Cross-Site Scripting (CVE-2025-35996)
|
|
High
|
8 Jun 2026 |
8 Jun 2026 |
CPAI-2025-16448
|
|
CVE-2025-36558
|
KUNBUS PiCtory Cross-Site Scripting (CVE-2025-36558)
|
|
Critical
|
8 Jun 2026 |
8 Jun 2026 |
CPAI-2026-6192
|
|
CVE-2026-4195 CVE-2026-4196 CVE-2026-4197 CVE-2026-4203 CVE-2026-4204 CVE-2026-4205 CVE-2026-4206 CVE-2026-4207 CVE-2026-4209 CVE-2026-4210
|
D-Link DNS Command Injection (CVE-2026-4195; CVE-2026-4196; CVE-2026-4197; CVE-2026-4203; CVE-2026-4204; CVE-2026-4205; CVE-2026-4206; CVE-2026-4207; CVE-2026-4209; CVE-2026-4210)
|
|
Critical
|
14 May 2026 |
8 Jun 2026 |
CPAI-2026-6185
|
|
CVE-2026-42945 CVE-2026-9256
|
Nginx Heap Overflow (CVE-2026-42945; CVE-2026-9256)
|
|
High
|
30 Mar 2026 |
8 Jun 2026 |
CPAI-2026-6125
|
|
CVE-2026-25769
|
Wazuh Remote Code Execution (CVE-2026-25769)
|
|
Critical
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2026-6025
|
|
CVE-2026-34156
|
NocoBase Remote Code Execution (CVE-2026-34156)
|
|
High
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2026-6007
|
|
CVE-2026-34486
|
Apache Tomcat Remote Code Execution (CVE-2026-34486)
|
|
High
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2026-5610
|
|
CVE-2026-44578
|
Vercel Next.js Server-Side Request Forgery (CVE-2026-44578)
|
|
High
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2007-1051
|
|
CVE-2007-0656
|
phpBB2-MODificat Remote Code Execution (CVE-2007-0656)
|
|
Medium
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2007-1049
|
|
CVE-2007-0676
|
Exo ExoPHPDesk SQL Injection (CVE-2007-0676)
|
|
High
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2007-1016
|
|
CVE-2007-4498
|
Grandstream GXV-3000 Denial of Service (CVE-2007-4498)
|
|
Critical
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2007-1013
|
|
CVE-2007-3624
|
SAP Message Server Heap Overflow (CVE-2007-3624)
|
|
High
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2015-1965
|
|
CVE-2015-4748
|
Oracle Multiple Products Information Disclosure (CVE-2015-4748)
|
|
High
|
7 Jun 2026 |
7 Jun 2026 |
CPAI-2023-3946
|
|
CVE-2023-6702
|
Google Chrome Type Confusion (CVE-2023-6702)
|
|
High
|
24 May 2026 |
7 Jun 2026 |
CPAI-2026-6022
|
|
CVE-2026-48132
|
IKE Improper Length Validation (CVE-2026-48132)
|
|
High
|
11 May 2026 |
7 Jun 2026 |
CPAI-2026-6023
|
|
CVE-2026-48131
|
IKE Unsigned Underflow (CVE-2026-48131)
|
|
High
|
13 Apr 2026 |
7 Jun 2026 |
CPAI-2026-3335
|
|
CVE-2026-34197
|
Apache ActiveMQ Code Injection (CVE-2026-34197)
|
|
High
|
29 Mar 2026 |
7 Jun 2026 |
CPAI-2026-6017
|
|
CVE-2026-3055
|
Citrix NetScaler Out Of Bounds Read (CVE-2026-3055)
|
|
Critical
|
5 Jun 2026 |
5 Jun 2026 |
CPAI-2026-5974
|
|
|
IKE Authentication Bypass Active
|
|
Medium
|
4 Jun 2026 |
4 Jun 2026 |
CPAI-2000-0036
|
|
CVE-2000-0302
|
Microsoft Index Server Information Disclosure (CVE-2000-0302)
|
|
High
|
4 Jun 2026 |
4 Jun 2026 |
CPAI-2026-5922
|
|
CVE-2026-49975
|
HTTP/2 Denial of Service (CVE-2026-49975)
|
|
High
|
4 Jun 2026 |
4 Jun 2026 |
CPAI-2026-5927
|
|
CVE-2026-45247
|
Magento Mirasvit Cache Warmer Remote Code Execution (CVE-2026-45247)
|
|
High
|
4 Jun 2026 |
4 Jun 2026 |
CPAI-2025-16459
|
|
CVE-2025-46811
|
SUSE Manager Authentication Bypass (CVE-2025-46811)
|
|
High
|
4 Jun 2026 |
4 Jun 2026 |
CPAI-2026-5855
|
|
CVE-2026-32625
|
LibreChat Information Disclosure (CVE-2026-32625)
|
|
High
|
3 Jun 2026 |
3 Jun 2026 |
CPAI-2026-5787
|
|
CVE-2026-0826
|
HP Poly Multiple Products Buffer Overflow (CVE-2026-0826)
|
|
High
|
3 Jun 2026 |
3 Jun 2026 |
CPAI-2026-5760
|
|
CVE-2026-4840
|
Netcore POWER15AX Command Injection (CVE-2026-4840)
|
|
High
|
3 Jun 2026 |
3 Jun 2026 |
CPAI-2026-5741
|
|
CVE-2026-21852
|
Anthropic Claude Code Information Disclosure (CVE-2026-21852)
|
|
High
|
3 Jun 2026 |
3 Jun 2026 |
CPAI-2025-16151
|
|
CVE-2025-9132
|
Google Chrome Out of Bounds Write (CVE-2025-9132)
|
|
Critical
|
26 Apr 2026 |
3 Jun 2026 |
CPAI-2026-3291
|
|
CVE-2026-30824
|
FlowiseAI Flowise Authentication Bypass (CVE-2026-30824)
|
|
High
|
11 May 2026 |
2 Jun 2026 |
CPAI-2026-5732
|
|
CVE-2026-48131
|
IKE Unsigned Underflow (CVE-2026-48131)
|
|
High
|
2 Jun 2026 |
2 Jun 2026 |
CPAI-2026-5730
|
|
CVE-2026-10179
|
TRENDnet TEW-432BRP Buffer Overflow (CVE-2026-10179)
|
|
High
|
2 Jun 2026 |
2 Jun 2026 |
CPAI-2017-2183
|
|
CVE-2017-6737
|
Cisco Multiple Products Buffer Overflow (CVE-2017-6737)
|
|
High
|
2 Jun 2026 |
2 Jun 2026 |
CPAI-2026-5743
|
|
CVE-2025-44864 CVE-2025-44865 CVE-2025-44866 CVE-2026-24107
|
Tenda W20E Command Injection (CVE-2025-44864; CVE-2025-44865; CVE-2025-44866; CVE-2026-24107)
|
|
High
|
1 Jun 2026 |
1 Jun 2026 |
CPAI-2026-5690
|
|
CVE-2026-8732
|
WordPress WP Maps Pro Plugin Authentication Bypass (CVE-2026-8732)
|
|
High
|
1 Jun 2026 |
1 Jun 2026 |
CPAI-2026-5686
|
|
CVE-2026-27771
|
Gitea Authentication Bypass (CVE-2026-27771)
|
|
High
|
1 Jun 2026 |
1 Jun 2026 |
CPAI-2026-5682
|
|
CVE-2026-23918
|
Apache HTTP Server Remote Code Execution (CVE-2026-23918)
|
|
High
|
31 May 2026 |
31 May 2026 |
CPAI-2025-16207
|
|
CVE-2025-24485
|
MedDream PACS Server Premium Server-Side Request Forgery (CVE-2025-24485)
|
|
High
|
31 May 2026 |
31 May 2026 |
CPAI-2025-16369
|
|
CVE-2025-14884
|
D-Link DIR-605 Command Injection (CVE-2025-14884)
|