NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-6372	Missing Authorization vulnerability in Plisio Accept Cryptocurrencies with Plisio allows Exploiting Incorrectly Configured Access Control Security Lev...	2026-04-15	7.5	NETWORK	HIGH	NVD
CVE-2026-6370	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HashThemes Mini Ajax Cart for WooCommerce allows...	2026-04-15	5.9	NETWORK	MEDIUM	NVD
CVE-2026-30996	An issue in the file handling logic of the component download.php of SAC-NFe v2.0.02 allows attackers to execute a directory traversal and read arbitr...	2026-04-15	N/A	None	None	NVD
CVE-2026-30995	Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parameter in the vereador_ver.php endpoint.	2026-04-15	N/A	None	None	NVD
CVE-2026-30994	Incorrect access control in the config.php component of Slah v1.5.0 and below allows unauthenticated attackers to access sensitive information, includ...	2026-04-15	N/A	None	None	NVD
CVE-2026-20186	A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying ...	2026-04-15	9.9	NETWORK	CRITICAL	NVD
CVE-2026-20184	A vulnerability in the integration of single sign-on (SSO) with Control Hub in Cisco Webex Services could have allowed an unauthenticated, remote atta...	2026-04-15	9.8	NETWORK	CRITICAL	NVD
CVE-2026-20180	A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying ...	2026-04-15	9.9	NETWORK	CRITICAL	NVD
CVE-2026-20170	A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have allowed an unauthenticated, remote attacker to conduct cro...	2026-04-15	6.1	NETWORK	MEDIUM	NVD
CVE-2026-20161	A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent could allow an authenticated, local attacker with low privileges to overwrite arbitr...	2026-04-15	5.5	LOCAL	MEDIUM	NVD
CVE-2026-20152	A vulnerability in the authentication service feature of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote ...	2026-04-15	5.3	NETWORK	MEDIUM	NVD
CVE-2026-20148	A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to perform path traversal attacks on the underlying opera...	2026-04-15	4.9	NETWORK	MEDIUM	NVD
CVE-2026-20147	A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating...	2026-04-15	9.9	NETWORK	CRITICAL	NVD
CVE-2026-20136	A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticate...	2026-04-15	6.0	LOCAL	MEDIUM	NVD
CVE-2026-20132	Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker w...	2026-04-15	4.8	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.