Advanced Threat Data Export
Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.
Data export is locked. Upgrade your package to enable filtering and downloading.
π Premium Features
π Filter Threats
| Title | Severity | EPSS (30-Day) | PoC | Actively Exploited | Source | Date |
|---|---|---|---|---|---|---|
| CVE-2026-10074 DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to ... | MEDIUM | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-44238 FreePBX is an open source IP PBX. Prior to 16.0.50 and 17.0.11, the CDR Reports module page allows SQL injection through the order and sort POST param... | UNKNOWN | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-44239 FreePBX is an open source IP PBX. Prior to 16.0.22 and 17.0.5, the Dashboard module's getcontent AJAX handler includes PHP files based on user-su... | UNKNOWN | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-49317 Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-n... | LOW | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-46376 FreePBX is an open source IP PBX. From 15.0.42 to before 16.0.45 and 17.0.7, unauthenticated users may be able to access the User Control Panel (UCP) ... | UNKNOWN | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-10073 DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversa... | HIGH | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-49316 Expected behavior violation in the in-vehicle network of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker... | MEDIUM | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-49325 Improper handling of physical conditions in the bike-shutdown control of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows a physical a... | MEDIUM | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-10072 DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell bac... | HIGH | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-45551 Group-Office is an enterprise customer relationship management and groupware tool. Prior to 26.0.25, 25.0.100, and 6.8.165, GroupOffice allows authent... | UNKNOWN | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-49324 Uncontrolled resource consumption in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent... | MEDIUM | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-10071 DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shel... | CRITICAL | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-49323 Weak authentication between the Wireless Control Module (WCM) and the Engine Control Module (ECM) of the Indian Motorcycle Scout Bobber + Tech 2025 mo... | MEDIUM | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-45043 RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, improper validation in the PUT /rustfs/admin/v3/import-iam endpoin... | UNKNOWN | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-9811 A stored Cross-Site Scripting (XSS) vulnerability exists in the project selector component of Mautic 7. When rendering selection menus for associating... | MEDIUM | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-9809 A stored Cross-Site Scripting (XSS) vulnerability exists in the Projects component of Mautic 7. When displaying project tags and popovers on administr... | HIGH | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-9808 An authorization bypass vulnerability exists in the Mautic 7 API v2 endpoints (utilizing API Platform). Under certain conditions, roles configured wit... | HIGH | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-9559 A path traversal vulnerability exists in the campaign import feature of Mautic 7. When extracting uploaded ZIP files during campaign imports, a flaw i... | CRITICAL | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-9509 An unhandled exception in Suprema BioStar 2 (Server), versions 2.9.8, 2.9.10, and 2.9.11, that allows an unauthenticated remote attacker to cause a de... | UNKNOWN | π LOCKED | ????? | ????? | NVD | 6 days ago |
| CVE-2026-9508 Incorrect permission settings on a critical resource in Suprema BioStar 2 (versions 2.9.3 through 2.9.11) that allow backup files to be publicly expos... | UNKNOWN | π LOCKED | ????? | ????? | NVD | 6 days ago |