NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-5758	JavaScript is vulnerable to prototype pollution in Mafintosh's protocol-buffers-schema Version 3.6.0, where an attacker may alter the application logi...	2026-04-15	6.5	NETWORK	MEDIUM	NVD
CVE-2026-33214	Weblate is a web based localization tool. In versions prior to 5.17, the translation memory API exposed unintended endpoints, which in turn didn't enf...	2026-04-15	4.3	NETWORK	MEDIUM	NVD
CVE-2026-33212	Weblate is a web based localization tool. In versions prior to 5.17, the tasks API didn't verify user access for pending tasks. This could expose logs...	2026-04-15	3.1	NETWORK	LOW	NVD
CVE-2026-32631	Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 do not have protections that prevent attackers from obtaining a user's ...	2026-04-15	7.4	NETWORK	HIGH	NVD
CVE-2026-30993	Slah CMS v1.5.0 and below was discovered to contain a remote code execution (RCE) vulnerability in the session() function at config.php. This vulnerab...	2026-04-15	N/A	None	None	NVD
CVE-2026-6372	Missing Authorization vulnerability in Plisio Accept Cryptocurrencies with Plisio allows Exploiting Incorrectly Configured Access Control Security Lev...	2026-04-15	7.5	NETWORK	HIGH	NVD
CVE-2026-6370	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HashThemes Mini Ajax Cart for WooCommerce allows...	2026-04-15	5.9	NETWORK	MEDIUM	NVD
CVE-2026-30996	An issue in the file handling logic of the component download.php of SAC-NFe v2.0.02 allows attackers to execute a directory traversal and read arbitr...	2026-04-15	7.5	NETWORK	HIGH	NVD
CVE-2026-30995	Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parameter in the vereador_ver.php endpoint.	2026-04-15	8.6	NETWORK	HIGH	NVD
CVE-2026-30994	Incorrect access control in the config.php component of Slah v1.5.0 and below allows unauthenticated attackers to access sensitive information, includ...	2026-04-15	7.5	NETWORK	HIGH	NVD
CVE-2026-20186	A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying ...	2026-04-15	9.9	NETWORK	CRITICAL	NVD
CVE-2026-20184	A vulnerability in the integration of single sign-on (SSO) with Control Hub in Cisco Webex Services could have allowed an unauthenticated, remote atta...	2026-04-15	9.8	NETWORK	CRITICAL	NVD
CVE-2026-20180	A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying ...	2026-04-15	9.9	NETWORK	CRITICAL	NVD
CVE-2026-20170	A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have allowed an unauthenticated, remote attacker to conduct cro...	2026-04-15	6.1	NETWORK	MEDIUM	NVD
CVE-2026-20161	A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent could allow an authenticated, local attacker with low privileges to overwrite arbitr...	2026-04-15	5.5	LOCAL	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.