CVE Find is a real-time vulnerability database indexing 363 126 security flaws (CVE) from MITRE, NVD, CISA KEV, CWE and CAPEC. 1823 new CVEs were published in the last 7 days.
Data aggregated from: MITRE Corporation (CVE, CWE, CAPEC), National Vulnerability Database – NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).
| CVE ID | Published | Description | Score | Severity | |
|---|---|---|---|---|---|
CVE-2026-14460 |
2026-07-03 15h16 +00:00 |
Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute pardu... Authorization problems |
8.8 |
High |
|
CVE-2026-14459 |
2026-07-03 15h16 +00:00 |
Improper neutralization of argument delimiters in a command ('argument injection') vulnerability in ... |
8.8 |
High |
|
CVE-2026-10055 |
2026-07-03 11h16 +00:00 |
In Eclipse Theia since version 1.26.0, the backend /services/request-service RPC accepts an attacker... Server-Side Request Forgery - SSRF |
8.5 |
High |
|
CVE-2026-10054 |
2026-07-03 11h16 +00:00 |
In affected versions of Eclipse Theia (1.8.1 and later), the browser backend exposes privileged term... Authorization problems |
8.8 |
High |
|
CVE-2026-4321 |
2026-07-03 10h16 +00:00 |
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability i... SQL Injection |
9.8 |
Critical |
|
CVE-2026-14544 |
2026-07-03 08h16 +00:00 |
A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplet... |
9.8 |
Critical |
|
CVE-2026-9725 |
2026-07-03 06h16 +00:00 |
The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress is vulnerable to Ar... Directory Traversal |
9.1 |
Critical |
|
CVE-2026-13768 |
2026-07-02 23h40 +00:00 |
Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user t... |
9.5 |
Critical |
|
CVE-2026-54998 |
2026-07-02 23h16 +00:00 |
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privil... Authorization problems |
8.8 |
High |
|
CVE-2026-45499 |
2026-07-02 23h16 +00:00 |
Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileg... Server-Side Request Forgery - SSRF |
9.9 |
Critical |