CVE Find is a real-time vulnerability database indexing 362 428 security flaws (CVE) from MITRE, NVD, CISA KEV, CWE and CAPEC. 2152 new CVEs were published in the last 7 days.
Data aggregated from: MITRE Corporation (CVE, CWE, CAPEC), National Vulnerability Database – NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).
| CVE ID | Published | Description | Score | Severity | |
|---|---|---|---|---|---|
CVE-2026-6070 |
2026-07-01 04h32 +00:00 |
The WP-BusinessDirectory plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Deleti... |
9.1 |
Critical |
|
CVE-2026-57995 |
2026-06-30 23h17 +00:00 |
phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermis... Improper Privilege Management |
8.8 |
High |
|
CVE-2026-56700 |
2026-06-30 23h17 +00:00 |
Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities. Three unsafe unserial... OS Command Injection |
9.8 |
Critical |
|
CVE-2026-56413 |
2026-06-30 23h17 +00:00 |
Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl ser... OS Command Injection |
10 |
Critical |
|
CVE-2026-56278 |
2026-06-30 23h17 +00:00 |
Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('f... |
9.1 |
Critical |
|
CVE-2026-56247 |
2026-06-30 23h17 +00:00 |
Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validat... Improper Privilege Management |
8.8 |
High |
|
CVE-2026-56233 |
2026-06-30 23h17 +00:00 |
Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allow... Directory Traversal |
8.3 |
High |
|
CVE-2026-56230 |
2026-06-30 23h17 +00:00 |
Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() ... Authorization problems |
8.8 |
High |
|
CVE-2026-55721 |
2026-06-30 23h17 +00:00 |
Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by t... SQL Injection |
9.3 |
Critical |
|
CVE-2026-50110 |
2026-06-30 23h17 +00:00 |
Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embed... |
9.2 |
Critical |