Casky.AI
BlogFree GuideAboutEnterpriseCommunityContributeCVE WatchCareers
Sign inGet Access
Get Access
Updated daily · NVD + CISA KEV

CVE Watch

Investigate real vulnerabilities with AI guidance. Every major CVE is MITRE-tagged, CVSS-scored, and paired with an Evidence Mode investigation — so you understand the threat, not just the patch number.

CVE-2026-121928.8 HIGHJun 15, 2026

Buffer Overflow in GALAYOU Y4 Web Server Component

255skills
CVE-2026-121937.8 HIGHJun 15, 2026

Heap Buffer Overflow in VS Revo RevoUninstaller IOCTL Handler

255skills
CVE-2026-121977.2 HIGHJun 15, 2026

Remote Command Injection in Ruijie Router Diagnostic Endpoint

419skills
CVE-2026-121987.3 HIGHJun 15, 2026

Path Traversal in Microweber API Thumbnail Cache Parameter

331skills
CVE-2026-122007.3 HIGHJun 15, 2026

Stack Overflow in TinyWeb Server Authorization Header Processing

255skills
CVE-2026-122047.3 HIGHJun 15, 2026

ShopXO Scheduled Task Endpoint Authorization Bypass

261skills
CVE-2026-89359.8 CRITICALJun 15, 2026

WP MAPS PRO Unauthenticated Admin Account Creation Flaw

0skills
CVE-2026-122147.8 HIGHJun 15, 2026

Qihoo 360 Total Security Local Protection Bypass Flaw

0skills
CVE-2026-122177.8 HIGHJun 15, 2026

Kernel Driver Privilege Escalation in DVDFab Virtual Drive

203skills
CVE-2026-122188 HIGHJun 15, 2026

Stack Buffer Overflow in Yealink SIP Phone Web Service

255skills
CVE-2026-122208 HIGHJun 15, 2026

Stack Buffer Overflow in Yealink SIP Phone Firmware Upload

255skills
CVE-2026-122218 HIGHJun 15, 2026

Yealink SIP Phone Firmware Upload Stack Buffer Overflow

255skills
CVE-2026-122228 HIGHJun 15, 2026

Yealink SIP Phone Stack Buffer Overflow in Web Service

255skills
CVE-2026-120578.6 HIGHJun 15, 2026

PDF JavaScript Sandbox Escape Enables Arbitrary Code Execution

419skills
CVE-2016-200698.2 HIGHJun 15, 2026

Unauthenticated SQL Injection in WordPress Booking Calendar

301skills
CVE-2016-200817.5 HIGHJun 15, 2026

WordPress HB Audio Gallery Path Traversal File Download

331skills
CVE-2026-501007.8 HIGHJun 15, 2026

Ricoh and Konica Minolta Printer Driver Privilege Escalation

0skills
CVE-2016-200667.2 HIGHJun 15, 2026

WordPress CP Polls Persistent XSS via File Upload

301skills
CVE-2016-200688.2 HIGHJun 15, 2026

WordPress Booking Calendar Unauthenticated SQL Injection

301skills
CVE-2016-200767.5 HIGHJun 15, 2026

WordPress Simple-Backup Directory Traversal File Access

331skills
CVE-2016-200847.2 HIGHJun 15, 2026

WordPress Calendar Plugin Unauthenticated XSS and Privilege Escalation

301skills
CVE-2026-365379.8 CRITICALJun 15, 2026

ThingsBoard OAuth Authorization Code Exchange Authentication Bypass

0skills
CVE-2016-200718.2 HIGHJun 15, 2026

Unauthenticated SQL Injection in WordPress Redirection Plugin

301skills
CVE-2016-200728.2 HIGHJun 15, 2026

SQL Injection in BBS e-Franchise WordPress Plugin

301skills
CVE-2016-200738.2 HIGHJun 15, 2026

SQL Injection in WordPress Answer My Question Plugin

301skills
CVE-2016-200758.8 HIGHJun 15, 2026

WordPress Ultimate Product Catalog Arbitrary File Upload

261skills
CVE-2018-254369.8 CRITICALJun 15, 2026

Unrestricted File Upload in WordPress Shipping Plugin

419skills
CVE-2019-257467.1 HIGHJun 15, 2026

Authenticated SQL Injection in WordPress Sliced Invoices

301skills
CVE-2026-490628.8 HIGHJun 15, 2026

Authentication Bypass in WP Engine Faust.js Password Recovery

0skills
CVE-2026-490647.5 HIGHJun 15, 2026

Sensitive Data Exposure in GetPaid Payment Processing

0skills

Investigate every CVE — not just patch it

Casky's skills investigate the attack patterns behind every major CVE. Run your first investigation free — no simulation, your actual security work.

Start investigating CVEs free →
XInstagramLinkedIn
TikTok
TermsPrivacyLegal Disclaimer

© 2026 Casky.AI, Inc. · AI Security Investigation