CVE Find is a real-time vulnerability database indexing 364 551 security flaws (CVE) from MITRE, NVD, CISA KEV, CWE and CAPEC. 1426 new CVEs were published in the last 7 days.
Data aggregated from: MITRE Corporation (CVE, CWE, CAPEC), National Vulnerability Database – NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).
| CVE ID | Published | Description | Score | Severity | |
|---|---|---|---|---|---|
CVE-2026-55500 |
2026-07-10 16h16 +00:00 |
9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows f... |
9.9 |
Critical |
|
CVE-2026-54149 |
2026-07-10 16h16 +00:00 |
MaxKB is an open-source AI assistant for enterprise. Prior to 2.10.0-lts, MaxKB tool import function... OS Command Injection |
8.8 |
High |
|
CVE-2026-15143 |
2026-07-10 16h16 +00:00 |
A flaw was found in the file_type content detector of guardrails-detectors. This vulnerability allow... Server-Side Request Forgery - SSRF |
9.3 |
Critical |
|
CVE-2026-61444 |
2026-07-10 15h16 +00:00 |
PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the a... Code Injection |
9.1 |
Critical |
|
CVE-2026-61434 |
2026-07-10 15h16 +00:00 |
PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command executio... OS Command Injection |
8.8 |
High |
|
CVE-2026-59793 |
2026-07-10 15h16 +00:00 |
In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integr... |
8.8 |
High |
|
CVE-2026-59792 |
2026-07-10 15h16 +00:00 |
In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project wor... |
9.6 |
Critical |
|
CVE-2026-56765 |
2026-07-10 15h16 +00:00 |
Vikunja before 2.2.1 contains an authorization flaw where the LinkSharing.ReadAll endpoint exposes s... Authorization problems |
9.8 |
Critical |
|
CVE-2026-56305 |
2026-07-10 15h16 +00:00 |
Capgo before 12.128.2 contains an authentication bypass vulnerability in the password change endpoin... |
8.3 |
High |
|
CVE-2026-56261 |
2026-07-10 15h16 +00:00 |
Crawl4AI before 0.8.7 contains a server-side request forgery (SSRF) vulnerability in the Docker API ... Server-Side Request Forgery - SSRF |
8.6 |
High |