CVEs classified under CWE-15, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2026-45087 — CVSS 10.0 (critical): Dalfox is a powerful open-source XSS scanner and utility focused on automation. Prior to 2.13.0, when dalfox is started in REST API server…
CVE-2024-4326 — CVSS 9.8 (critical): A vulnerability in parisneo/lollms-webui versions up to 9.3 allows remote attackers to execute arbitrary code. The vulnerability stems from…
CVE-2026-46399: HAX CMS helps manage microsite universe with PHP or NodeJs backends. The PHP version of HAX CMS prior to version 26.0.0 has an…
CVE-2024-39800 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup() functionality of Wavlink AC3000…
CVE-2024-39799 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup() functionality of Wavlink AC3000…
CVE-2024-39798 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup() functionality of Wavlink AC3000…
CVE-2024-39795 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exist in the nas.cgi set_nas() proftpd functionality of Wavlink AC3000 M33A8.V5030.210505…
CVE-2024-39794 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exist in the nas.cgi set_nas() proftpd functionality of Wavlink AC3000 M33A8.V5030.210505…
CVE-2024-39793 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exist in the nas.cgi set_nas() proftpd functionality of Wavlink AC3000 M33A8.V5030.210505…
CVE-2024-39790 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A…
CVE-2024-39789 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A…
CVE-2024-39788 — CVSS 9.1 (critical): Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A…
CVE-2024-39602 — CVSS 9.1 (critical): An external config control vulnerability exists in the nas.cgi set_nas() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially…
CVE-2024-39280 — CVSS 9.1 (critical): An external config control vulnerability exists in the nas.cgi set_smb_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A…
CVE-2024-38666 — CVSS 9.1 (critical): An external config control vulnerability exists in the openvpn.cgi openvpn_client_setup() functionality of Wavlink AC3000…
CVE-2021-38453 — CVSS 9.1 (critical): Some API functions allow interaction with the registry, which includes reading values as well as data modification.
CVE-2023-46248 — CVSS 9.0 (critical): Cody is an artificial intelligence (AI) coding assistant. The Cody AI VSCode extension versions 0.10.0 through 0.14.0 are vulnerable to…
CVE-2026-1784 — CVSS 8.8 (high): The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks…
CVE-2026-41489 — CVSS 8.8 (high): Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core…
CVE-2026-41294 — CVSS 8.6 (high): OpenClaw before 2026.3.28 loads the current working directory .env file before trusted state-dir configuration, allowing environment…
CVE-2025-0425: Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed…
CVE-2026-27203 — CVSS 8.3 (high): eBay API MCP Server is an open source local MCP server providing AI assistants with comprehensive access to eBay's Sell APIs. All versions…
CVE-2023-50252 — CVSS 8.3 (high): php-svg-lib is an SVG file parsing / rendering library. Prior to version 0.5.1, when handling `<use>` tag that references an `<image>` tag…
CVE-2024-51544 — CVSS 8.2 (high): Service Control vulnerabilities allow access to service restart requests and vm configuration settings. Affected products: ABB ASPECT -…
CVE-2024-51543 — CVSS 8.2 (high): Information Disclosure vulnerabilities allow access to application configuration information. Affected products: ABB ASPECT - Enterprise…
CVE-2023-32349 — CVSS 8.0 (high): Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter…
CVE-2026-41384 — CVSS 7.8 (high): OpenClaw before 2026.3.24 contains an environment variable injection vulnerability in the CLI backend runner that allows attackers to…
CVE-2026-33092 — CVSS 7.8 (high): Local privilege escalation due to improper handling of environment variables. The following products are affected: Acronis True Image OEM…
CVE-2021-31338 — CVSS 7.8 (high): A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.0 SP1). Affected devices allow to modify…
CVE-2026-35650 — CVSS 7.5 (high): OpenClaw before 2026.3.22 contains an environment variable override handling vulnerability that allows attackers to bypass the shared host…
CVE-2026-22750 — CVSS 7.5 (high): When configuring SSL bundles in Spring Cloud Gateway by using the configuration property spring.ssl.bundle, the configuration was silently…
CVE-2022-41582 — CVSS 7.5 (high): The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability.
CVE-2026-43531 — CVSS 7.3 (high): OpenClaw before 2026.4.9 contains an environment variable injection vulnerability allowing malicious workspace .env files to set…
CVE-2025-64726: Socket Firewall is an HTTP/HTTPS proxy server that intercepts package manager requests and enforces security policies by blocking dangerous…
CVE-2024-54097 — CVSS 7.3 (high): Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementation and…
CVE-2024-50358 — CVSS 7.2 (high): A CWE-15 "External Control of System or Configuration Setting" was discovered affecting the following devices manufactured by Advantech…
CVE-2025-62527 — CVSS 7.1 (high): Taguette is an open source qualitative research tool. An issue has been discovered in Taguette versions prior to 1.5.0. It was possible for…
CVE-2024-11166: For TCAS II systems using transponders compliant with MOPS earlier than RTCA DO-181F, an attacker can impersonate a ground station and…
CVE-2023-3321 — CVSS 7.0 (high): A vulnerability exists by allowing low-privileged users to read and update the data in various directories used by the Zenon system. An…
CVE-2025-41452: Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1…
CVE-2019-25716 — CVSS 6.5 (medium): Dräger Infinity Delta, Delta XL, and Kappa patient monitors contain a denial-of-service vulnerability that allows remote attackers to…
CVE-2025-30512 — CVSS 6.5 (medium): Unauthenticated attackers can send configuration settings to device and possible perform physical actions remotely (e.g., on/off).
CVE-2023-43323 — CVSS 6.5 (medium): mooSocial 3.1.8 is vulnerable to external service interaction on post function. When executed, the server sends a HTTP and DNS request to…
CVE-2026-22177 — CVSS 6.1 (medium): OpenClaw versions prior to 2026.2.21 fail to filter dangerous process-control environment variables from config env.vars, allowing…
CVE-2025-27253 — CVSS 6.1 (medium): A CWE-15 "External Control of System or Configuration Setting" in GE Vernova UR IED family devices from version 7.0 up to 8.60 allows an…
CVE-2021-3707 — CVSS 5.5 (medium): D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthorized configuration modification. An…
CVE-2025-43792 — CVSS 5.3 (medium): Remote staging in Liferay Portal 7.4.0 through 7.4.3.105, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through…
CVE-2023-46764 — CVSS 5.3 (medium): Unauthorized startup vulnerability of background apps. Successful exploitation of this vulnerability may cause background apps to start…
CVE-2026-0495 — CVSS 5.1 (medium): SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to send uploaded files to arbitrary emails which…
CVE-2024-23639 — CVSS 5.1 (medium): Micronaut Framework is a modern, JVM-based, full stack Java framework designed for building modular, easily testable JVM applications with…