988 items
Unread (2116) All Dismissed
HIGH
CVE-2026-44825 (CVSS 8.1) — Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enable) in Apache Solr v...
NVD CVE-2026-44825 4d ago
HIGH
CVE-2026-10243 (CVSS 7.3) — A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an...
NVD CVE-2026-10243 4d ago
HIGH
CVE-2026-10236 (CVSS 7.3) — A vulnerability has been found in SourceCodester Water Billing Management System 1.0. This issue aff...
NVD CVE-2026-10236 4d ago
HIGH
CVE-2026-35563 (CVSS 8.5) — It was identified that the LDAP client implementation in version 2.1.7 does not verify if the server...
NVD CVE-2026-35563 4d ago
HIGH
CVE-2026-10227 (CVSS 7.3) — A vulnerability has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013...
NVD CVE-2026-10227 4d ago
HIGH
CVE-2026-10226 (CVSS 7.3) — A flaw has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9...
NVD CVE-2026-10226 4d ago
HIGH
CVE-2026-10225 (CVSS 7.3) — A vulnerability was detected in raisulislamg4 student_management_system_by_php up to 310d950e09013d5...
NVD CVE-2026-10225 4d ago
HIGH
CVE-2026-10221 (CVSS 7.3) — A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerabi...
NVD CVE-2026-10221 4d ago
HIGH
CVE-2026-10220 (CVSS 7.3) — A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the functio...
NVD CVE-2026-10220 4d ago
HIGH
CVE-2026-10219 (CVSS 7.3) — A vulnerability was found in nextlevelbuilder GoClaw up to 3.11.3. This impacts the function FsBridg...
NVD CVE-2026-10219 4d ago
HIGH
CVE-2026-10214 (CVSS 7.3) — A weakness has been identified in zhayujie chatgpt-on-wechat up to 2.0.8. This issue affects the fun...
NVD CVE-2026-10214 4d ago
HIGH
CVE-2026-10208 (CVSS 7.3) — A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the fun...
NVD CVE-2026-10208 4d ago
HIGH
CVE-2026-10206 (CVSS 8.8) — A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of...
NVD CVE-2026-10206 5d ago
HIGH
CVE-2026-10192 (CVSS 8.8) — A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function set_...
NVD CVE-2026-10192 5d ago
HIGH
CVE-2026-10191 (CVSS 8.8) — A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function cgiWifiMacFilter...
NVD CVE-2026-10191 5d ago
HIGH
CVE-2026-10189 (CVSS 8.8) — A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the function c...
NVD CVE-2026-10189 5d ago
HIGH
CVE-2026-10188 (CVSS 8.8) — A flaw has been found in Tenda W12 3.0.0.7(4763). This affects the function cgistaKickOff of the fil...
NVD CVE-2026-10188 5d ago
HIGH
CVE-2026-10186 (CVSS 7.3) — A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. A...
NVD CVE-2026-10186 5d ago
HIGH
CVE-2026-10185 (CVSS 7.3) — A weakness has been identified in SourceCodester Hospitals Patient Records Management System 1.0. Af...
NVD CVE-2026-10185 5d ago
HIGH
CVE-2026-10184 (CVSS 7.3) — A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1....
NVD CVE-2026-10184 5d ago
HIGH
CVE-2026-10183 (CVSS 8.8) — A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. This affects the function formWlanSet...
NVD CVE-2026-10183 5d ago
HIGH
CVE-2026-49490 (CVSS 8.1) — OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid filter handling tha...
NVD CVE-2026-49490 5d ago
HIGH
CVE-2026-49489 (CVSS 8.5) — OpenCATS through 0.9.7.4 contains a sql injection vulnerability in the sortDirection parameter of th...
NVD CVE-2026-49489 5d ago
HIGH
CVE-2026-10181 (CVSS 8.8) — A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formS...
NVD CVE-2026-10181 5d ago
HIGH
CVE-2026-10179 (CVSS 8.8) — A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue affects the function formSetWlanEnc...
NVD CVE-2026-10179 5d ago
HIGH
CVE-2026-10178 (CVSS 7.3) — A vulnerability was detected in code-projects Online Music Site 1.0. This vulnerability affects unkn...
NVD CVE-2026-10178 5d ago
HIGH
CVE-2026-10167 (CVSS 7.3) — A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e...
NVD CVE-2026-10167 5d ago
HIGH
CVE-2026-10165 (CVSS 8.8) — A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWa...
NVD CVE-2026-10165 5d ago
HIGH
CVE-2026-10164 (CVSS 8.8) — A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the fi...
NVD CVE-2026-10164 5d ago
HIGH
CVE-2026-10163 (CVSS 8.8) — A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAcco...
NVD CVE-2026-10163 5d ago
HIGH
CVE-2026-10162 (CVSS 8.8) — A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSe...
NVD CVE-2026-10162 5d ago
HIGH
CVE-2026-10161 (CVSS 8.8) — A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. This affects the function formResetStat...
NVD CVE-2026-10161 5d ago
HIGH
CVE-2026-10160 (CVSS 8.8) — A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is...
NVD CVE-2026-10160 5d ago
HIGH
CVE-2026-10159 (CVSS 8.8) — A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the...
NVD CVE-2026-10159 5d ago
HIGH
CVE-2026-10158 (CVSS 8.8) — A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPor...
NVD CVE-2026-10158 5d ago
HIGH
CVE-2026-10157 (CVSS 7.3) — A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file ...
NVD CVE-2026-10157 5d ago
HIGH
CVE-2026-10126 (CVSS 8.8) — A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function...
NVD CVE-2026-10126 6d ago
HIGH
CVE-2026-10125 (CVSS 8.8) — A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the funct...
NVD CVE-2026-10125 6d ago
HIGH
CVE-2026-10124 (CVSS 8.8) — A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function rip_zebra_read_...
NVD CVE-2026-10124 6d ago
HIGH
CVE-2026-10123 (CVSS 8.8) — A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFil...
NVD CVE-2026-10123 6d ago
HIGH
CVE-2026-10122 (CVSS 8.8) — A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProt...
NVD CVE-2026-10122 6d ago
HIGH
CVE-2026-10121 (CVSS 8.8) — A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUr...
NVD CVE-2026-10121 6d ago
HIGH
CVE-2018-25426 (CVSS 7.5) — WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the applicatio...
NVD CVE-2018-25426 6d ago
HIGH
CVE-2018-25425 (CVSS 8.2) — Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execu...
NVD CVE-2018-25425 6d ago
HIGH
CVE-2018-25424 (CVSS 8.2) — Gate Pass Management System 2.1 contains an SQL injection vulnerability that allows unauthenticated ...
NVD CVE-2018-25424 6d ago
HIGH
CVE-2018-25422 (CVSS 8.2) — MOGG web simulator Script contains an SQL injection vulnerability that allows unauthenticated attack...
NVD CVE-2018-25422 6d ago
HIGH
CVE-2018-25420 (CVSS 8.2) — AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to...
NVD CVE-2018-25420 6d ago
HIGH
CVE-2018-25419 (CVSS 8.2) — AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to...
NVD CVE-2018-25419 6d ago
HIGH
CVE-2018-25418 (CVSS 8.2) — AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to...
NVD CVE-2018-25418 6d ago
HIGH
CVE-2018-25417 (CVSS 8.2) — AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to...
NVD CVE-2018-25417 6d ago
HIGH NVD Mon, 01 Jun 2026 09:16:19 UTC
CVE-2026-44825 (CVSS 8.1) — Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enable) in Apache Solr v...
https://nvd.nist.gov/vuln/detail/CVE-2026-44825
TL;DR
Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enable) in Apache Solr versions 9.4.0 through 9.10.1 and 10.0.0 allows a remote attacker to gain full administrative access to the cluster via publicly known default credentials installed silently alongside the user-specified account. As an immediate workaround without upgrading, delete the template users (superadmin, admi…
CVE-2026-44825
Read full story ↗