| CVE-2026-22586 | CVE-2026-22586: Critical Vulnerability in Salesforce Marketing Cloud Engagement | CRITICAL | Other | Marketing Cloud Engagement | -- | Jan 24, 2026 |
| CVE-2026-22585 | CVE-2026-22585: Critical Vulnerability in Salesforce Marketing Cloud Engagement | CRITICAL | Broken Cryptography | Marketing Cloud Engagement | -- | Jan 24, 2026 |
| CVE-2026-22582 | CVE-2026-22582: Critical Vulnerability in Salesforce Marketing Cloud Engagement | CRITICAL | Injection | Marketing Cloud Engagement | -- | Jan 24, 2026 |
| CVE-2026-24423 | CVE-2026-24423: Critical Vulnerability in SmarterTools SmarterMail | CRITICAL | Missing Authentication | Smartermail | Yes | Jan 23, 2026 |
| CVE-2026-0773 | CVE-2026-0773: Critical Vulnerability in Upsonic Cloudpickle | CRITICAL | Insecure Deserialization | — | -- | Jan 23, 2026 |
| CVE-2026-0756 | CVE-2026-0756: Critical Vulnerability in github-kanban-mcp-server | CRITICAL | Command Injection | — | -- | Jan 23, 2026 |
| CVE-2026-0755 | CVE-2026-0755: Critical Vulnerability in gemini-mcp-tool | CRITICAL | Command Injection | — | -- | Jan 23, 2026 |
| CVE-2026-24304 | CVE-2026-24304: Critical Vulnerability in Microsoft Azure Resource Manager | CRITICAL | Access Control | Azure Resource Manager | -- | Jan 23, 2026 |
| CVE-2026-24307 | CVE-2026-24307: Critical Vulnerability in Microsoft 365 Copilot | CRITICAL | Other | 365 Copilot | -- | Jan 22, 2026 |
| CVE-2026-24306 | CVE-2026-24306: Critical Vulnerability in Microsoft Azure Front Door | CRITICAL | Access Control | Azure Front Door | Yes | Jan 22, 2026 |
| CVE-2026-24305 | CVE-2026-24305: Critical Vulnerability in Microsoft Entra ID | CRITICAL | Improper Authorization | Entra Id | -- | Jan 22, 2026 |
| CVE-2026-21264 | CVE-2026-21264: Critical Vulnerability in Microsoft Account | CRITICAL | XSS | Account | -- | Jan 22, 2026 |
| CVE-2026-20750 | CVE-2026-20750: Critical Vulnerability in Gitea | CRITICAL | Access Control | Gitea | -- | Jan 22, 2026 |
| CVE-2025-50002 | CVE-2025-50002: Critical Vulnerability in Farost Energia | CRITICAL | Unrestricted File Upload | — | -- | Jan 22, 2026 |
| CVE-2026-23760 | CVE-2026-23760: Critical Vulnerability in SmarterTools SmarterMail | CRITICAL | Other | Smartermail | Yes | Jan 22, 2026 |
| CVE-2026-1331 | CVE-2026-1331: Critical Vulnerability in HAMASTAR MeetingHub | CRITICAL | Unrestricted File Upload | Meetinghub Paperless Meetings | -- | Jan 22, 2026 |
| CVE-2026-0920 | CVE-2026-0920: Critical Vulnerability in LA-Studio Element Kit for Elementor | CRITICAL | Privilege Escalation | — | Yes | Jan 22, 2026 |
| CVE-2026-24042 | CVE-2026-24042: Critical Vulnerability in Appsmith | CRITICAL | Missing Authorization | Appsmith | -- | Jan 22, 2026 |
| CVE-2026-24002 | CVE-2026-24002: Critical Vulnerability in Grist | CRITICAL | Injection | Grist-Core | -- | Jan 22, 2026 |
| CVE-2026-23524 | CVE-2026-23524: Critical Vulnerability in Laravel Reverb | CRITICAL | Insecure Deserialization | Reverb | -- | Jan 21, 2026 |
.webp)