- CVE-2026-42167 - ProFTPD mod_sql Remote Code Execution Vulnerability
- CVE-2026-41446 - WattBox 800 & 820 Series < 2.10.0.0 RCE via Diagnostic Endpoints
- CVE-2026-42431 - OpenClaw < 2026.4.8 - Persistent Profile Mutation via node.invoke(browser.proxy) Bypass
- CVE-2026-42426 - OpenClaw < 2026.4.8 - Improper Authorization in node.pair.approve via operator.write Scope
- CVE-2026-41914 - OpenClaw < 2026.4.8 - Server-Side Request Forgery in QQ Bot Media Fetch Paths
- CVE-2026-42422 - OpenClaw < 2026.4.8 - Role Bypass in device.token.rotate Function
- CVE-2026-41405 - OpenClaw < 2026.3.31 - Resource Exhaustion via Unauthenticated MS Teams Webhook Body Parsing
- CVE-2026-41404 - OpenClaw < 2026.3.31 - Operator Admin Privilege Escalation via Trusted-Proxy Authentication
- CVE-2026-41396 - OpenClaw < 2026.3.31 - Environment Variable Override of Plugin Trust Root
- CVE-2026-41399 - OpenClaw < 2026.3.28 - Denial of Service via Unbounded Pre-auth WebSocket Upgrades
- CVE-2026-41394 - OpenClaw < 2026.3.31 - Unauthorized Operator Scope Access in Unauthenticated Plugin-Auth Routes
- CVE-2026-41395 - OpenClaw < 2026.3.28 - Webhook Replay via Query Parameter Reordering in Plivo V3
- CVE-2026-41386 - OpenClaw < 2026.3.22 - Privilege Escalation via Unbound Bootstrap Setup Codes
- CVE-2026-41387 - OpenClaw < 2026.3.22 - Supply Chain Redirection via Incomplete Host Environment Sanitization
- CVE-2026-41383 - OpenClaw < 2026.4.2 - Arbitrary Remote Directory Deletion via Mis-scoped Mirror Mode Paths
- CVE-2026-41384 - OpenClaw < 2026.3.24 - Environment Variable Injection via Workspace Config in CLI Backend
- CVE-2026-41378 - OpenClaw < 2026.3.31 - Privilege Escalation to Remote Code Execution via Unrestricted node.event Agent Dispatch
- CVE-2026-3893 - Carlson Software VASCO-B GNSS Receiver Missing Authentication for Critical Function
- CVE-2026-24178 - NVIDIA NVFlare Dashboard Unauthorized Access Bypass
- CVE-2026-24186 - NVIDIA FLARE SDK Deserialization Code Execution Vulnerability
- CVE-2026-24222 - NVIDIA NeMoClaw Information Disclosure Vulnerability
- CVE-2026-7288 - D-Link DIR-825M formVpnConfigSetup sub_4151FC buffer overflow
- CVE-2026-7289 - D-Link DIR-825M formWanConfigSetup sub_414BA8 buffer overflow
- CVE-2026-7321 - Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component
- CVE-2026-27760 - OpenCATS PHP Code Injection via installer AJAX endpoint
- CVE-2026-5779 - Multiple vulnerabilities in MphRx's Minerva
- CVE-2026-5780 - Multiple vulnerabilities in MphRx's Minerva
- CVE-2026-5781 - Multiple vulnerabilities in MphRx's Minerva
- CVE-2026-40551 - Use of Client-Side Authentication in mpGabinet
- CVE-2026-5944 - Cisco Intersight Device Connector for Nutanix Prism Central Unauthenticated API Access
- CVE-2026-7280 - eMPIA Technology|AVACAST - Unquoted Service Path
- CVE-2026-7279 - eMPIA Technology|AVACAST - DLL Hijacking
- CVE-2026-41636 - Apache Thrift: Node.js skip() recursion
- CVE-2026-7247 - D-Link DI-8100 File Extension file_exten.asp file_exten_asp buffer overflow
- CVE-2026-7248 - D-Link DI-8100 CGI Endpoint tgfile.htm tgfile_htm buffer overflow
- CVE-2026-7241 - Totolink A8000RU CGI cstecgi.cgi setWiFiBasicCfg os command injection
- CVE-2026-7242 - Totolink A8000RU CGI cstecgi.cgi setOpenVpnClientCfg os command injection
- CVE-2026-7243 - Totolink A8000RU CGI cstecgi.cgi setRadvdCfg os command injection
- CVE-2026-7244 - Totolink A8000RU CGI cstecgi.cgi setWiFiEasyGuestCfg os command injection
- CVE-2026-40978 - Spring AI CosmosDBVectorStore SQL Injection
- CVE-2026-40967 - Spring AI Unvalidated Filter Expression Converter Vulnerability (Code Injection)
- CVE-2024-54013 - Authentication Bypass
- CVE-2024-54012 - Command Injection
- CVE-2026-7218 - Totolink N300RT libapmib.so formWsc is_cmd_string_valid buffer overflow
- CVE-2026-7202 - Totolink A8000RU CGI cstecgi.cgi setWiFiWpsStart os command injection
- CVE-2026-7203 - Totolink A8000RU CGI cstecgi.cgi setUrlFilterRules os command injection
- CVE-2026-7204 - Totolink A8000RU CGI cstecgi.cgi setPptpServerCfg os command injection
- CVE-2026-20766 - Milesight Cameras Heap-based Buffer Overflow
- CVE-2026-32644 - Milesight Cameras Use of Hard-coded Cryptographic Key
- CVE-2026-27785 - Milesight Cameras Use of Hard-coded Credentials
- CVE-2026-40976 - "Spring Boot Default Web Security Bypass"
- CVE-2026-41371 - OpenClaw < 2026.3.28 - Privilege Escalation via chat.send Reset Command
- CVE-2026-41364 - OpenClaw < 2026.3.31 - Arbitrary File Write via Symlink Following in SSH Sandbox Tar Upload
- CVE-2026-7191 - Arbitrary Code Execution via Sandbox Bypass in the open source solution QnABot on AWS
- CVE-2026-7156 - Totolink A8000RU CGI cstecgi.cgi CsteSystem os command injection
- CVE-2026-7155 - Totolink A8000RU CGI cstecgi.cgi setLoginPasswordCfg os command injection
- CVE-2026-7154 - Totolink A8000RU CGI cstecgi.cgi setAdvancedInfoShow os command injection
- CVE-2025-69689 - Apache Fan Control Elevation of Privilege Vulnerability
- CVE-2026-7139 - Totolink A8000RU CGI cstecgi.cgi setWiFiAclRules os command injection
- CVE-2026-7140 - Totolink A8000RU CGI cstecgi.cgi CsteSystem os command injection
- CVE-2026-30352 - Leonvanzyl Autocoder RCE
- CVE-2026-40514 - SmarterTools SmarterMail < Build 9610 Cryptographic Weakness via Weak RNG
- CVE-2026-41463 - ProjeQtor < 12.4.4 ZipSlip Path Traversal via uploadPlugin.php
- CVE-2026-41462 - ProjeQtor < 12.4.4 Unauthenticated SQL Injection via Login
- CVE-2026-7125 - Totolink A8000RU CGI cstecgi.cgi setWiFiEasyCfg os command injection
- CVE-2026-7123 - Totolink A8000RU CGI cstecgi.cgi setIptvCfg os command injection
- CVE-2026-7124 - Totolink A8000RU CGI cstecgi.cgi setIpv6LanCfg os command injection
- CVE-2026-22337 - WordPress Directorist Social Login plugin < 2.1.4 - Privilege Escalation vulnerability
- CVE-2026-22336 - WordPress Directorist Booking plugin < 3.0.2 - SQL Injection vulnerability
- CVE-2026-41409 - Apache MINA: CWE-502 Deserialization of Untrusted Data
- CVE-2026-7099 - Tenda F456 httpd QuickIndex formQuickIndex buffer overflow
- CVE-2026-7100 - Tenda F456 httpd Natlimit fromNatlimitof buffer overflow
- CVE-2026-7101 - Tenda F456 httpd WrlclientSet fromWrlclientSet buffer overflow
- CVE-2026-7098 - Tenda F456 httpd DhcpListClient fromDhcpListClient buffer overflow
- CVE-2026-41635 - Apache MINA: AbstractIoBuffer.resolveClass() null-clazz Branch Skips acceptMatchers Filter — Full Object Deserialization RCE
- CVE-2026-3008 - Vulnerability in Notepad++
- CVE-2026-7080 - Tenda F456 httpd PPTPUserSetting fromPPTPUserSetting buffer overflow
- CVE-2026-7106 - Highland Software Custom Role Manager <= 1.0.0 - Authenticated (Subscriber+) Privilege Escalation
- CVE-2026-7078 - Tenda F456 httpd SetIpBind fromSetIpBind buffer overflow
- CVE-2026-7079 - Tenda F456 httpd AdvSetWan fromAdvSetWan buffer overflow
- CVE-2026-6785 - Memory safety bugs fixed in Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird ESR 140.10, Firefox 150 and Thunderbird 150
- CVE-2026-6786 - Memory safety bugs fixed in Firefox ESR 140.10, Thunderbird ESR 140.10, Firefox 150 and Thunderbird 150
- CVE-2018-25294 - CEWE Photoshow 6.3.4 Buffer Overflow Denial of Service
- CVE-2018-25283 - iSmartViewPro 1.5 Buffer Overflow via SavePath Parameter
- CVE-2018-25263 - Faleemi Desktop Software 1.8.2 Local Buffer Overflow SEH
- CVE-2026-7039 - tufantunc ssh-mcp index.ts shell.write command injection
- CVE-2026-7033 - Tenda F456 SafeClientFilter fromSafeClientFilter buffer overflow
- CVE-2026-7032 - Tenda F456 SafeEmailFilter buffer overflow
- CVE-2026-7029 - Tenda F456 addressNat fromaddressNat buffer overflow
- CVE-2026-7019 - Tenda F456 P2pListFilter fromP2pListFilter buffer overflow
- CVE-2026-6992 - Linksys MR9600 JNAP Action run_central2.sh BTRequestGetSmartConnectStatus os command injection
- CVE-2026-41473 - CyberPanel < 2.4.4 Unauthenticated API Access via AI Scanner Endpoints
- CVE-2026-41478 - Saltcorn: SQL Injection via Unparameterized Sync Endpoints (maxLoadedId)
- CVE-2026-41248 - Official Clerk JavaScript SDKs: Middleware-based route protection bypass
- CVE-2026-41492 - Unauthenticated Admin Token Disclosure Leading to Authentication Bypass via /debug/vars in Dgraph
- CVE-2026-41907 - uuid: Missing buffer bounds check in `v3`/`v5`/`v6` when `buf` is provided
- CVE-2026-41416 - PJSIP: Asymmetric ptime integer overflow in Media Stream
- CVE-2026-41421 - SiYuan Desktop Notification XSS Leads to Electron RCE
- CVE-2026-41326 - Kata Containers: CopyFile Policy Subversion via Symlinks
- CVE-2026-41327 - Dgraph: Pre-Auth Full Database Exfiltration via DQL Injection in Upsert Condition Field
Franck Ridel
