NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-45610	WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a cross-site request forgery vulnerability on the 2FA toggle. plugin/Login...	2026-05-29	5.7	NETWORK	MEDIUM	NVD
CVE-2026-45582	n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.51.3, the workflow telem...	2026-05-29	6.5	NETWORK	MEDIUM	NVD
CVE-2026-45580	WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a stored cross-site scripting vulnerability. The Live plugin's "YouTube-st...	2026-05-29	5.4	NETWORK	MEDIUM	NVD
CVE-2026-45578	WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a classic shell-metacharacter injection. The YPTSocket notification branch...	2026-05-29	8.8	NETWORK	HIGH	NVD
CVE-2026-45555	Roslyn CodeLens MCP Server is a Roslyn-based MCP server providing semantic code intelligence for .NET codebases. From 0.0.9 to 1.17.0, the get_diagnos...	2026-05-29	7.8	LOCAL	HIGH	NVD
CVE-2026-44698	Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.4.1 for iOS and 2026.4.4 for Android, ...	2026-05-29	8.3	NETWORK	HIGH	NVD
CVE-2026-44239	FreePBX is an open source IP PBX. Prior to 16.0.22 and 17.0.5, the Dashboard module's getcontent AJAX handler includes PHP files based on user-supplie...	2026-05-29	7.6	NETWORK	HIGH	NVD
CVE-2026-44238	FreePBX is an open source IP PBX. Prior to 16.0.50 and 17.0.11, the CDR Reports module page allows SQL injection through the order and sort POST param...	2026-05-29	8.5	NETWORK	HIGH	NVD
CVE-2026-44237	FreePBX is an open source IP PBX. Prior to 17.0.8, the FreePBX api module's OAuth2 implementation does not sufficiently validate client credentials du...	2026-05-29	7.6	NETWORK	HIGH	NVD
CVE-2026-40528	OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the do_key_value() function in src/pkcs15init...	2026-05-29	3.8	PHYSICAL	LOW	NVD
CVE-2026-40510	OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in piv_process_history() in src/libopensc/card-piv.c...	2026-05-29	3.8	PHYSICAL	LOW	NVD
CVE-2026-10061	A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. Affected is the function formWPS of the file /goform/formWPS. The manipulation of the argume...	2026-05-29	6.3	NETWORK	MEDIUM	NVD
CVE-2026-10060	A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetRoute of the file /goform/formSetRoute. The manipulati...	2026-05-29	6.3	NETWORK	MEDIUM	NVD
CVE-2026-45312	RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. In 0.24.0 and earlier, a Jinja2 template injection in the prompt generator (rag...	2026-05-29	9.9	NETWORK	CRITICAL	NVD
CVE-2025-41281	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Waterfall WF-5...	2026-05-29	7.5	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.