NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-31908	Header injection vulnerability in Apache APISIX. The attacker can take advantage of certain configuration in forward-auth plugin to inject malicious ...	2026-04-14	9.1	NETWORK	CRITICAL	NVD
CVE-2026-27668	A vulnerability has been identified in RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) (All versions < V5.8). User Administrators are allowed...	2026-04-14	8.8	NETWORK	HIGH	NVD
CVE-2026-25654	A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3). Affected products do not properly validate user authorization when process...	2026-04-14	8.8	NETWORK	HIGH	NVD
CVE-2026-24032	A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3 with UMC). The affected application contains an authentication weakness due ...	2026-04-14	7.3	NETWORK	HIGH	NVD
CVE-2025-40745	A vulnerability has been identified in Siemens Software Center (All versions < V3.5.8.2), Simcenter 3D (All versions < V2506.6000), Simcenter Femap (A...	2026-04-14	3.7	NETWORK	LOW	NVD
CVE-2026-2582	The The Germanized for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution via 'account_holder' parameter in all versions ...	2026-04-14	6.5	NETWORK	MEDIUM	NVD
CVE-2026-3017	The Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts plugin for WordPress is vulnerable to PHP Object Injection in all ver...	2026-04-14	7.2	NETWORK	HIGH	NVD
CVE-2026-4479	The WholeSale Products Dynamic Pricing Management WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in ...	2026-04-14	4.4	NETWORK	MEDIUM	NVD
CVE-2026-4059	The ShopLentor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the woolentor_quickview_button shortcode's button_text attribute ...	2026-04-14	6.4	NETWORK	MEDIUM	NVD
CVE-2026-40315	PraisonAI is a multi-agent teams system. Prior to 4.5.133, there is an SQL identifier injection vulnerability in SQLiteConversationStore where the tab...	2026-04-14	7.2	LOCAL	HIGH	NVD
CVE-2026-40313	PraisonAI is a multi-agent teams system. In versions 4.5.139 and below, the GitHub Actions workflows are vulnerable to ArtiPACKED attack, a known cred...	2026-04-14	9.1	NETWORK	CRITICAL	NVD
CVE-2026-40289	PraisonAI is a multi-agent teams system. In versions below 4.5.139 of PraisonAI and 1.5.140 of praisonaiagents, the browser bridge (praisonai browser ...	2026-04-14	9.1	NETWORK	CRITICAL	NVD
CVE-2026-40288	PraisonAI is a multi-agent teams system. In versions below 4.5.139 of PraisonAI and 1.5.140 of praisonaiagents, the workflow engine is vulnerable to a...	2026-04-14	9.8	NETWORK	CRITICAL	NVD
CVE-2026-40287	PraisonAI is a multi-agent teams system. Versions 4.5.138 and below are vulnerable to arbitrary code execution through automatic, unsanitized import o...	2026-04-14	8.4	LOCAL	HIGH	NVD
CVE-2026-1607	The Surbma \| Booking.com Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `surbma-bookingcom` shortcode in...	2026-04-14	6.4	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.