CVE-2026-58519 Medium 6.9

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension

01 Jul 2026, 03:59 UTC View advisory →
CVE-2026-58518 Medium 6.9

Cross-Site request forgery (CSRF) vulnerability in The Wikimedia Foundation Mediawiki - RedirectManager Extension allows Cross Site Request Forgery. This i

01 Jul 2026, 03:52 UTC View advisory →
CVE-2026-58450 Medium 5.3

Invoice Ninja through 5.13.26 contains an open redirect vulnerability in the client portal login that allows unauthenticated attackers to redirect authenti

30 Jun 2026, 21:07 UTC View advisory →
CVE-2026-58449 Critical 9.3

txtai through 9.10.0, fixed in commit 11b32da, exposes an API /reindex endpoint whose function body parameter is resolved through txtai.util.Resolver, whic

30 Jun 2026, 21:06 UTC View advisory →
CVE-2026-58448 High 7.1

yudao-cloud before 2026.06 contains a broken access control vulnerability in the BPM module that allows any authenticated user to access arbitrary process

30 Jun 2026, 21:06 UTC View advisory →
CVE-2026-58447 High 7.1

Invidious through 2.20260626.0, fixed in commit 77ad416, contains a broken object level authorization vulnerability that allows authenticated attackers to

30 Jun 2026, 21:05 UTC View advisory →
CVE-2026-58446 Medium 6.9

Presenton before 0.8.8-beta bundles an MCP server that, on server/Docker deployments configured with session authentication (AUTH_USERNAME/AUTH_PASSWORD),

30 Jun 2026, 21:05 UTC View advisory →
CVE-2026-58377 High 8.6

JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege users to perform full create, read, update,

30 Jun 2026, 15:59 UTC View advisory →
CVE-2026-58376 High 7.2

Dolibarr through 23.0.3, fixed in commit 14db36e, contains a sql injection vulnerability that allows authenticated API users to exfiltrate arbitrary databa

30 Jun 2026, 15:59 UTC View advisory →
CVE-2026-58375 High 8.7

JimuReport through 2.5.0 exposes the POST /jmreport/auto/export endpoint without authentication: the handler is annotated @JimuNoLoginRequired, so JimuRepo

30 Jun 2026, 15:58 UTC View advisory →
CVE-2026-58374 Medium 6.5

In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 (IEEE 802.11be) Multi-Link Operation (MLO) association request processing allows an unaut

30 Jun 2026, 12:35 UTC View advisory →
CVE-2026-58373 Medium 5.3

CVAT before 2.69.0 contains an improper authorization vulnerability in QualityReportViewSet.get_queryset that allows authenticated attackers to enumerate q

30 Jun 2026, 15:58 UTC View advisory →
CVE-2026-58372 High 7.2

SeaweedFS before 4.34 contains a path traversal vulnerability in the S3 gateway DeleteMultipleObjectsHandler that allows authenticated S3 principals with w

30 Jun 2026, 15:57 UTC View advisory →
CVE-2026-58371 Low 2.3

SeaweedFS before 4.30 reflects the callback query parameter verbatim into responses served with Content-Type application/javascript in the shared writeJson

30 Jun 2026, 15:57 UTC View advisory →
CVE-2026-58370 Critical 9.2

Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author. For the GitLab forge driver, pipeline.Author is populated fr

30 Jun 2026, 15:57 UTC View advisory →
CVE-2026-58369 Medium 6.9

Woodpecker before 3.15.0 registers the /api/orgs/lookup/*org_full_name endpoint without authentication middleware, and the LookupOrg handler unconditionall

30 Jun 2026, 15:56 UTC View advisory →
CVE-2026-58302 High 8.4

rtapi_app in linuxcnc-uspace in LinuxCNC before 2.9.9 allows privilege escalation. It is installed SUID root and loads shared library modules via dlopen()

30 Jun 2026, 01:09 UTC View advisory →
CVE-2026-58176 High 7.1

RuoYi-Vue-Plus through 5.6.2, fixed in commit 88d03d9, exposes workflow task management endpoints under /workflow/task (FlwTaskController) without any perm

30 Jun 2026, 15:56 UTC View advisory →
CVE-2026-58174 Medium 6

Hermes WebUI before 0.51.521 validates the workspace of an imported session under the active named profile but constructs the Session object without settin

30 Jun 2026, 15:55 UTC View advisory →
CVE-2026-58173 Medium 6

Vibe-Trading before 0.1.10 contains a path traversal vulnerability that allows attackers to write files outside the intended memory root directory by suppl

30 Jun 2026, 15:55 UTC View advisory →
CVE-2026-58172 Critical 9.3

Ocelot through 24.1.0, fixed in commit f156fd4, contains a security control bypass vulnerability that allows denied clients to circumvent IP-based access r

30 Jun 2026, 15:54 UTC View advisory →
CVE-2026-58171 Low 2.3

Vibe-Trading before 0.1.10 constructs the swarm run directory by joining a caller-supplied run identifier onto the runs base directory without validation i

30 Jun 2026, 15:54 UTC View advisory →
CVE-2026-58170 High 7.2

Vibe-Trading before 0.1.10 builds the proposal file path by joining a caller-supplied proposal identifier onto the broker proposals directory without sanit

30 Jun 2026, 15:53 UTC View advisory →
CVE-2026-58169 High 7.7

Vibe-Trading before 0.1.10 contains a DNS rebinding authentication bypass vulnerability that allows remote attackers to bypass bearer-token authentication

30 Jun 2026, 15:52 UTC View advisory →
CVE-2026-58168 High 7.7

DeepTutor before version 1.4.10 contains an authorization bypass vulnerability that allows low-privilege users to invoke unrestricted MCP tools due to the

30 Jun 2026, 15:52 UTC View advisory →
CVE-2026-58167 High 7.1

Nightingale (n9e) before 9.0.0-beta.2 exposes full datasource configurations, including plaintext database passwords, HTTP bearer tokens, HTTP basic-auth p

30 Jun 2026, 15:51 UTC View advisory →
CVE-2026-58166 High 8.8

OpenBMB ChatDev through 2.2.0, fixed in commit 4fd4da6, contains a path traversal vulnerability that allows unauthenticated remote attackers to write or de

30 Jun 2026, 15:51 UTC View advisory →
CVE-2026-58165 High 8.7

OpenZiti through 2.0.0, fixed in commit 3027fdf, contains a privilege escalation vulnerability that allows authenticated non-admin identities with fine-gra

30 Jun 2026, 15:49 UTC View advisory →
CVE-2026-58138 Critical 9.3

Orkes Conductor 3.21.21 before 3.30.2 contains an unauthenticated remote code execution vulnerability that allows remote attackers to execute arbitrary OS

30 Jun 2026, 18:44 UTC View advisory →
CVE-2026-58116 Critical 9.3

LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI access to execute arbitrary Python code by supp

30 Jun 2026, 12:54 UTC View advisory →
CVE-2026-58058 Medium 6.9

Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in ipv6_get_data_primitive (libnetutil/netutil.cc), so the pointe

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58057 Low 2.3

Flowise before 3.1.3 validates Custom MCP stdio environment variables against a denylist using a case-sensitive comparison, so on Windows, where environmen

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58056 High 7.2

RustDesk gates incoming control messages on per-capability flags rather than on the session's authorized connection type, and a file-transfer session does

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58055 Medium 6.3

nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive bac

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58054 High 8.6

MyBB 1.8.40 does not restrict which usergroup a limited Admin Control Panel user may assign when creating or editing users; the user module offers the Admi

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58053 Critical 9.4

Gitea act_runner with the Docker backend (through act 0.262.0) passes a workflow's container.options string to the Docker job container's HostConfig and, w

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58052 Medium 4.8

7-Zip for Windows through 26.02 fails to preserve the Mark-of-the-Web when extracting a crafted RAR5 archive, because its guard that suppresses an archive-

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58051 High 8.3

libssh2 through 1.11.1 grows its publickey list with SSH2_REALLOC but does not zero-initialize new entries before parsing populates them, so a parse failur

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58050 High 8.3

libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation num_attrs * si

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58049 High 8.8

FFmpeg's RASC video decoder (decode_dlta in libavcodec/rasc.c) performs 32-bit reads and writes at the row cursor before the NEXT_LINE row-boundary check a

28 Jun 2026, 01:32 UTC View advisory →
CVE-2026-58016 High 7.5

A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusintrospection.c file when processing malformed D

30 Jun 2026, 13:02 UTC View advisory →
CVE-2026-58015 Medium 5.9

A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_context p

30 Jun 2026, 13:02 UTC View advisory →
CVE-2026-58014 High 7.3

A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key file wi

30 Jun 2026, 12:57 UTC View advisory →
CVE-2026-58013 Medium 6.5

A flaw was found in GLib. A buffer over-read can occur in g_io_channel_read_line_backend() in the giochannel.c file when a custom line terminator with a le

30 Jun 2026, 12:57 UTC View advisory →
CVE-2026-58012 Medium 6.5

A flaw was found in GLib. A buffer over-read can occur in the g_regex_replace function when used with the `G_REGEX_RAW` compile flag and case-change replac

30 Jun 2026, 12:57 UTC View advisory →
CVE-2026-58011 Medium 6.5

A flaw was found in GLib. An out-of-bounds read of only 2 bytes can occur in the g_date_time_get_ymd function in the glib/gdatetime.c file when an invalid

30 Jun 2026, 12:57 UTC View advisory →
CVE-2026-58010 Medium 6.5

A flaw was found in GLib. An off-by-one error can occur in the gvs_tuple_is_normal function in the glib/gvariant-serialiser.c file when doing an alignment

30 Jun 2026, 12:57 UTC View advisory →
CVE-2026-58000 High 8.7

luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the generateKey ubus method where the cl_meta par

29 Jun 2026, 18:16 UTC View advisory →
CVE-2026-57999 High 7.7

luci-app-tailscale-community contains a command injection vulnerability in the tailscale.do_login RPC method that allows authenticated users to execute arb

29 Jun 2026, 18:16 UTC View advisory →
CVE-2026-57997 Medium 6.3

Strapi users-permissions plugin fails to restrict JWT algorithms when plugin::users-permissions.jwt.algorithm is not explicitly configured, allowing accept

29 Jun 2026, 21:16 UTC View advisory →
CVE-2026-57995 High 8.7

phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that allows GROUP_EDIT administrators to grant ar

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-57966 Medium 4.4

A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location

29 Jun 2026, 07:53 UTC View advisory →
CVE-2026-57965 Medium 5.1

A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This vulne

29 Jun 2026, 07:53 UTC View advisory →
CVE-2026-57963 Unscored

An attacker who can send HTML chat messages (via Matrix or XMPP) can inject arbitrary styled content, phishing links, and CSS that manipulates the chat UI.

01 Jul 2026, 00:58 UTC View advisory →
CVE-2026-57962 Unscored

A malicious LDAP server, which a Thunderbird user is configured to query for address-book autocomplete, can stash arbitrarily large amounts of attacker-sup

01 Jul 2026, 00:58 UTC View advisory →
CVE-2026-57960 High 8.3

Hi.Events through 1.9.0 public check-in list endpoints use short_id as sole access control, allowing unauthenticated access to retrieve full attendee lists

29 Jun 2026, 17:24 UTC View advisory →
CVE-2026-57959 High 8.2

Hi.Events through 1.9.0 contains a promo code validation vulnerability where reservation validates usage count before asynchronous UpdateEventStatisticsJob

29 Jun 2026, 17:24 UTC View advisory →
CVE-2026-57958 Medium 5.1

Mixpost through 2.6.0 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript in auth

29 Jun 2026, 17:23 UTC View advisory →
CVE-2026-57957 Low 2.3

Papermark through 0.22.0 contains a cross-origin resource sharing (CORS) misconfiguration vulnerability that allows unauthenticated remote attackers to per

29 Jun 2026, 17:23 UTC View advisory →
CVE-2026-57956 Medium 6.1

SigNoz through 0.130.1 contains a broken access control vulnerability that allows authenticated users to access other organizations' alert rules by supplyi

29 Jun 2026, 17:22 UTC View advisory →
CVE-2026-57955 High 8.3

SigNoz through 0.130.1 contains a SQL injection vulnerability that allows authenticated attackers to execute arbitrary ClickHouse queries by injecting URL-

29 Jun 2026, 17:22 UTC View advisory →
CVE-2026-57954 Medium 5.3

Elide through 7.1.17 fails to enforce @ReadPermission on client-supplied sort expressions in SortingImpl.getValidSortingRules, allowing attackers to sort c

29 Jun 2026, 17:21 UTC View advisory →
CVE-2026-57953 Medium 5.3

Mythic before 3.4.0.60 contains an authorization bypass vulnerability that allows authenticated spectator-role users to perform unauthorized write operatio

29 Jun 2026, 17:21 UTC View advisory →
CVE-2026-57952 Medium 6

Mythic before 3.4.0.60 contains an authorization bypass vulnerability in four REST endpoints (c2profile_config_check_webhook, c2profile_redirect_rules_webh

29 Jun 2026, 17:21 UTC View advisory →
CVE-2026-57951 High 7.1

Mythic before 3.4.0.60 contains a broken hasura permission filter on the payload_build_step table with an always-satisfied _or condition that bypasses oper

29 Jun 2026, 17:20 UTC View advisory →
CVE-2026-57950 High 8.6

ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSaleOrderController that allows attackers with

29 Jun 2026, 17:20 UTC View advisory →
CVE-2026-57949 High 7.1

ruoyi-vue-pro through 2026.05, fixed in commit c779a47, contains a missing authorization vulnerability in the CRM module's GET /admin-api/crm/follow-up-rec

29 Jun 2026, 17:19 UTC View advisory →
CVE-2026-57948 High 7.6

Pinpoint through version 3.1.0 contains an insecure session management vulnerability that allows attackers to access the pinpointJwt session cookie due to

29 Jun 2026, 17:19 UTC View advisory →
CVE-2026-57947 Medium 6.3

Pinpoint through 3.1.0 contains a server-side request forgery vulnerability in the webhook registration endpoint that allows authenticated users to registe

29 Jun 2026, 17:18 UTC View advisory →
CVE-2026-57946 Medium 6.3

Invidious before version 2.20260626.0 contains a broken access control vulnerability that allows unauthenticated attackers to retrieve private playlist con

29 Jun 2026, 17:18 UTC View advisory →
CVE-2026-57945 Medium 5.3

PhotoPrism before 260601-a7d098548 contains a broken access control vulnerability that allows authenticated non-admin users to modify other users' profile

29 Jun 2026, 17:18 UTC View advisory →
CVE-2026-57943 Medium 6

LibrePhotos before 1.0.0 contains a broken object level authorization vulnerability in the SetPhotosShared endpoint that allows authenticated users to gran

29 Jun 2026, 17:17 UTC View advisory →
CVE-2026-57942 Medium 6.9

LibreTranslate through 1.9.7, fixed in commit 397fd22, contains an IP spoofing vulnerability in the get_remote_address() function that allows unauthenticat

29 Jun 2026, 17:17 UTC View advisory →
CVE-2026-57940 Low 2.1

HTMLy 3.1.1 contains a Server-Side Request Forgery (SSRF) vulnerability in the RSS feed import functionality. The function get_feed() in system/admin/admin

26 Jun 2026, 13:08 UTC View advisory →
CVE-2026-57926 Low 2.6

In JetBrains YouTrack before 2026.2.16593 the websandbox bridge was vulnerable to a prototype pollution attack

26 Jun 2026, 12:38 UTC View advisory →
CVE-2026-57925 Medium 4.3

In JetBrains YouTrack before 2026.2.16593 improper access control allowed reading saved queries and tags

26 Jun 2026, 12:38 UTC View advisory →
CVE-2026-57924 Medium 4.3

In JetBrains YouTrack before 2026.2.16593 default role configuration exposed excessive user profile details

26 Jun 2026, 12:38 UTC View advisory →
CVE-2026-57923 Medium 5.3

In JetBrains YouTrack before 2026.2.16593 improper authorisation in the app configurations endpoint allowed modifying project settings

26 Jun 2026, 12:38 UTC View advisory →
CVE-2026-57922 Low 3.1

In JetBrains YouTrack before 2026.2.16593 project settings disclosure via the MCP was possible

26 Jun 2026, 12:38 UTC View advisory →
CVE-2026-57921 Medium 4.3

In JetBrains YouTrack before 2026.2.16593 improper access control allowed reading users' private data via the comment templates endpoint

26 Jun 2026, 12:38 UTC View advisory →
CVE-2026-57920 High 7.7

Peplink InControl 2 through 2.14.2 before 2026-06-03 allows use of a semicolon to bypass access-control rules for certain /rest/o/{orgId} endpoints.

26 Jun 2026, 12:20 UTC View advisory →
CVE-2026-57918 High 7.1

libnfs through 6.0.2 before 935b8db has an xid integer underflow in READ_IOVEC in rpc_read_from_socket in lib/socket.c during a connection to a crafted NFS

26 Jun 2026, 10:54 UTC View advisory →
CVE-2026-57915 High 7.3

It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an unrecognized or unsupported type. Users are rec

26 Jun 2026, 12:09 UTC View advisory →
CVE-2026-57914 Medium 6.5

By sending a deeply nested ASN1 structure to a Apache Kerby client or service, it's possible to trigger a StackOverFlow Exception which can lead to denial

26 Jun 2026, 11:28 UTC View advisory →
CVE-2026-57913 High 7.5

Johnson & Johnson Audit Tracking Management System (ATMS) before 2026-04-21 allows viewing of meeting minutes and transcripts.

26 Jun 2026, 10:06 UTC View advisory →
CVE-2026-57912 High 7.5

Johnson & Johnson Campus Recruiting before 2025-10-31 allows viewing of data provided by recruited students, and notes entered about students by interviewe

26 Jun 2026, 10:04 UTC View advisory →
CVE-2026-57881 Critical 9.8

An unauthenticated stack-based buffer overflow vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57880 Critical 9.8

An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57879 Critical 9.8

An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57878 Critical 9.8

An unauthenticated stack-based buffer overflow vulnerability exists in thttpd in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability i

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57877 High 8.6

An unauthenticated format string vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by imp

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57876 High 7.5

An unauthenticated out-of-bounds write vulnerability exists in onvif.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is cau

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57875 High 7.5

An unauthenticated NULL pointer dereference vulnerability exists in the HTTP request parsing logic of multiple CGI components in GeoVision GV-LPC2011 and G

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57874 High 7.5

An unauthenticated buffer overflow vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57873 High 7.5

An unauthenticated NULL pointer dereference vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vuln

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57872 High 7.5

An unauthenticated directory traversal vulnerability exists in get_fcont.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is

26 Jun 2026, 07:17 UTC View advisory →
CVE-2026-57700 Critical 10

Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files. This issue affects OMGF Pro: from n/a thro

25 Jun 2026, 17:29 UTC View advisory →
CVE-2026-57676 Medium 4.3

Authorization Bypass Through User-Controlled Key vulnerability in Matteo Manna Simple User Avatar allows Exploiting Incorrectly Configured Access Control S

29 Jun 2026, 08:19 UTC View advisory →
CVE-2026-57667 High 8.5

Sales Representative SQL Injection in Groundhogg <= 4.5 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57665 Medium 5.3

Unauthenticated Insecure Direct Object References (IDOR) in GravityView <= 3.0.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57664 Medium 4.3

Unauthenticated Sensitive Data Exposure in Bopo – WooCommerce Product Bundle Builder <= 1.1.6 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57663 High 8.5

Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes <= 8.2.7 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57662 High 8.5

Contributor SQL Injection in Contest Gallery <= 30.0.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57661 Medium 5.4

Subscriber Broken Access Control in WPComplete <= 2.9.5.5 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57660 Medium 5.3

Unauthenticated Broken Access Control in Booking and Rental Manager <= 2.7.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57659 High 8.8

Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin <= 0.7.2 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57658 Critical 9.1

Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57657 Medium 4.3

Unauthenticated Cross Site Request Forgery (CSRF) in Gmail SMTP <= 1.2.3.19 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57656 Medium 5.9

Author Cross Site Scripting (XSS) in Hester Core <= 1.1.8 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57655 High 8.2

Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard <= 1.4 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57654 Medium 6.5

Affiliate Broken Access Control in Affiliates Manager <= 2.9.49 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57653 High 8.5

Contributor SQL Injection in WP Job Portal <= 2.5.2 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57652 Medium 5.3

Unauthenticated Insecure Direct Object References (IDOR) in JS Help Desk <= 3.1.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57651 Medium 6.5

Contributor Cross Site Scripting (XSS) in Ghost Kit <= 3.6.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57650 Medium 6.5

Contributor Cross Site Scripting (XSS) in Magazine Blocks <= 1.8.3 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57649 Medium 4.3

Subscriber Broken Access Control in Shoppable Images Lite <= 1.3 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57648 Medium 4.3

Contributor Broken Access Control in Nelio Content <= 4.3.4 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57647 High 7.5

Contributor Local File Inclusion in Panorama Viewer – 360 Degree Image + Video Viewer <= 1.6.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57646 Medium 5.4

Subscriber Insecure Direct Object References (IDOR) in Majestic Support <= 1.1.7 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57645 High 8.1

newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57644 High 8.5

Contributor SQL Injection in Restaurant Menu by MotoPress <= 2.4.10 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57643 High 8.5

Contributor SQL Injection in WP Post Author <= 3.9.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57642 High 8.5

Contributor SQL Injection in Gallery <= 4.7.8 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57641 Medium 6.5

Unauthenticated Cross Site Request Forgery (CSRF) in Real Estate 7 <= 3.5.9 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57640 Medium 4.3

Subscriber Broken Access Control in MasterStudy LMS <= 3.7.30 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57638 Medium 6.5

Contributor Cross Site Scripting (XSS) in Fluent Booking <= 2.1.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57637 Medium 4.3

Unauthenticated Cross Site Request Forgery (CSRF) in Abandoned Cart Lite for WooCommerce <= 6.8.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57636 High 8.5

Contributor SQL Injection in wpForo Forum <= 3.0.9 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57635 Medium 6.5

Unauthenticated Cross Site Request Forgery (CSRF) in FunnelKit Payment Gateway for Stripe WooCommerce <= 1.14.0.3 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57634 Medium 4.3

Contributor Insecure Direct Object References (IDOR) in PPWP <= 1.9.19 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57633 Medium 5.3

Unauthenticated Sensitive Data Exposure in WCBoost – Products Compare <= 1.1.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57632 Medium 5.4

Subscriber Broken Access Control in Email Marketing for WooCommerce by Omnisend <= 1.19.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57631 High 7.6

Administrator SQL Injection in Popup box <= 6.0.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57630 Medium 5.3

Unauthenticated Insecure Direct Object References (IDOR) in Blocksy Companion Pro <= 2.1.46 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57629 Medium 6.5

Contributor Cross Site Scripting (XSS) in StatCounter <= 2.1.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57628 High 7.6

Administrator SQL Injection in WP All Import <= 4.0.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57627 Medium 4.9

Subscriber Server Side Request Forgery (SSRF) in Kirki <= 6.0.11 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57622 Medium 4.3

Subscriber Broken Access Control in WPCafe <= 3.0.14 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57620 Medium 6.5

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tim Strifler Exclusive Addons Elementor allows Stored

26 Jun 2026, 11:41 UTC View advisory →
CVE-2026-57619 Medium 6.5

Contributor Sensitive Data Exposure in Elementor Website Builder <= 4.1.3 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-57618 Medium 6.5

Contributor Cross Site Scripting (XSS) in Neve PRO <= 3.1.2 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57617 Medium 6.5

Contributor Cross Site Scripting (XSS) in SeedProd Pro < 6.19.5 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57589 High 7.4

sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root. This is a context switch use-after-free after

25 Jun 2026, 00:33 UTC View advisory →
CVE-2026-57588 Low 1.6

A SQL injection vulnerability in Nessus allows an attacker to craft a malicious scan result file that, when imported by a privileged user, injects maliciou

25 Jun 2026, 13:47 UTC View advisory →
CVE-2026-57587 Low 2.1

A SQL injection vulnerability in Nessus allows a remote, unauthenticated attacker who controls reverse DNS records for a scanned host to inject malicious S

25 Jun 2026, 13:47 UTC View advisory →
CVE-2026-57585 High 7.5

MessagePack is the serializer implementation for Python msgpack.org. Prior to 1.2.1, there is an Out-of-bounds read/crash on Unpacker reuse after a caught

30 Jun 2026, 21:36 UTC View advisory →
CVE-2026-57536 Medium 6.3

Our payment integration with Mollie did not properly validate payment status responses. An attacker could use a successful payment status response from one

25 Jun 2026, 14:08 UTC View advisory →
CVE-2026-57535 Low 2.1

Content injected to PDF rendering contexts could, in many places, include HTML content including tags. If the src attribute of these images pointed to an U

25 Jun 2026, 14:29 UTC View advisory →
CVE-2026-57534 Low 2.1

Malicious HTML content could be injected into the content of a page in the pretix-pages plugin.

25 Jun 2026, 14:11 UTC View advisory →
CVE-2026-57533 Low 2.1

Malicious HTML content could be injected into the page pretix shows when redirection to an untrusted page occurs. Since this page has a Content-Security-Po

25 Jun 2026, 14:31 UTC View advisory →
CVE-2026-57532 High 8.8

Malicious HTML content contained in the layout specification of a PDF ticket or badge layout was executed when the PDF editor is opened in the browser. Thi

25 Jun 2026, 14:32 UTC View advisory →
CVE-2026-57527 High 8.7

Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an insecure deserialization vulnerability that allows attackers who control a proxied web

26 Jun 2026, 14:43 UTC View advisory →
CVE-2026-57525 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

30 Jun 2026 View advisory →
CVE-2026-57523 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

30 Jun 2026 View advisory →
CVE-2026-57522 Low 2.3

Bitwarden Server before 2026.5.0 contains a JSON injection vulnerability in IntegrationTemplateProcessor.ReplaceTokens(), which substitutes user-controlled

25 Jun 2026, 19:09 UTC View advisory →
CVE-2026-57521 Medium 5.3

Bitwarden Server before 2026.5.0 contains a broken access control vulnerability that allows any authenticated user to access arbitrary organization billing

25 Jun 2026, 19:09 UTC View advisory →
CVE-2026-57520 High 7.1

Bitwarden Server before 2026.5.0 contains a privilege escalation vulnerability that allows authenticated Custom users with ManageUsers permission to remove

25 Jun 2026, 19:08 UTC View advisory →
CVE-2026-57518 High 8.7

Pagekit CMS 1.0.18 contains a privilege escalation vulnerability that allows authenticated users with the 'user: manage users' permission to escalate privi

26 Jun 2026, 15:58 UTC View advisory →
CVE-2026-57498 Critical 9.6

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.474, Coolify's API controllers cons

29 Jun 2026, 20:12 UTC View advisory →
CVE-2026-57473 Medium 5.8

A vulnerability exists in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) due to the possibility of brute-fo

26 Jun 2026, 10:47 UTC View advisory →
CVE-2026-57456 High 8.4

Vim is an open source, command line text editor. Prior to 9.2.0699, Vim's Python omni-completion (runtime/autoload/python3complete.vim and the legacy pytho

25 Jun 2026, 15:16 UTC View advisory →
CVE-2026-57455 Medium 4

Vim is an open source, command line text editor. Prior to 9.2.0698, the single-byte branch of spell_soundfold_sofo() in src/spell.c translates a word throu

25 Jun 2026, 15:22 UTC View advisory →
CVE-2026-57454 Medium 6.8

Vim is an open source, command line text editor. From 9.2.0320 until 9.2.0679, a crafted undo or swap file can store a virtual-text property whose offset a

25 Jun 2026, 15:24 UTC View advisory →
CVE-2026-57453 Medium 6.5

Vim is an open source, command line text editor. From 9.1.1784 until 9.2.0678, when the bundled zip plugin autoload/zip.vim falls back to PowerShell to bro

25 Jun 2026, 15:26 UTC View advisory →
CVE-2026-57452 Medium 5.5

Vim is an open source, command line text editor. Prior to 9.2.0671, when Vim opens a file encrypted with the VimCrypt~04! or VimCrypt~05! method (xchacha20

25 Jun 2026, 15:27 UTC View advisory →
CVE-2026-57451 Medium 5.3

Vim is an open source, command line text editor. Prior to 9.2.0670, get_text_props() in src/textprop.c reads a uint16 property count stored inline after a

25 Jun 2026, 15:28 UTC View advisory →
CVE-2026-57438 Low 2.2

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, XInclude substitution performed by Nokogiri::XML::Node#

25 Jun 2026, 14:39 UTC View advisory →
CVE-2026-57437 Low 1.7

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::XPathContext did not keep its source doc

25 Jun 2026, 14:34 UTC View advisory →
CVE-2026-57436 Low 1.7

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Document#root= validated only that the n

25 Jun 2026, 14:33 UTC View advisory →
CVE-2026-57435 Low 1.7

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri’s CRuby native extension could leave a Ruby wr

25 Jun 2026, 14:32 UTC View advisory →
CVE-2026-57434 Low 1.7

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri contains a bug when calling certain methods on

25 Jun 2026, 14:32 UTC View advisory →
CVE-2026-57431 Medium 6.5

Author Cross Site Scripting (XSS) in Featured Image <= 2.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57430 Medium 4.3

Contributor Broken Access Control in SEOPress PRO <= 9.1.1 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57429 Medium 6.5

Contributor Broken Access Control in Slim SEO <= 4.6.2 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-57346 High 7.1

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Epiphyt Embed Privacy allows Path Traversal. This issue aff

29 Jun 2026, 09:50 UTC View advisory →
CVE-2026-57341 Medium 6.5

Unauthenticated Insecure Direct Object References (IDOR) in Colissimo Officiel : Méthodes de livraison pour WooCommerce <= 2.9.0 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57340 Medium 6.5

Unauthenticated Broken Access Control in Japanized For WooCommerce <= 2.9.12 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57339 Medium 6.6

Unauthenticated Broken Access Control in Business Directory <= 6.4.23 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57338 High 7.1

Unauthenticated Cross Site Scripting (XSS) in ARForms <= 7.1.2 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57337 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Landing Page Builder <= 1.5.3.5 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57336 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Jobify <= 4.3.2 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57335 Medium 6.5

Subscriber Broken Access Control in Ads by WPQuads <= 3.0.3 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57334 Medium 6.5

Unauthenticated Broken Access Control in WP User Frontend <= 4.3.7 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57333 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Link Whisper Free <= 0.9.4 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57332 High 7.1

Subscriber Broken Access Control in Wallet System for WooCommerce <= 2.7.6 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57331 Critical 9.9

Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57330 Medium 6.5

Subscriber Cross Site Scripting (XSS) in MasterStudy LMS <= 3.7.27 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57329 Medium 6.5

Subscriber Cross Site Scripting (XSS) in WooCommerce Designer Pro <= 1.9.34 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57328 Medium 6.5

Subscriber Cross Site Scripting (XSS) in Business Directory <= 6.4.22 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57327 Medium 6.3

Subscriber Broken Access Control in MainWP <= 6.1.1 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57326 Medium 6.5

Unauthenticated Cross Site Scripting (XSS) in Business Directory <= 6.4.22 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57325 High 7.1

Unauthenticated Cross Site Scripting (XSS) in NanoMag <= 1.8 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57324 Medium 6.5

Unauthenticated Broken Access Control in GIFT4U <= 1.0.10 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57323 Medium 5.8

Unauthenticated Broken Access Control in Flash & HTML5 Video <= 2.11.0 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57322 High 7.1

Unauthenticated Cross Site Scripting (XSS) in weMail <= 2.1.2 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57321 High 7.1

Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57320 High 7.1

Unauthenticated Cross Site Scripting (XSS) in BEAR <= 1.1.8 versions.

29 Jun 2026, 13:36 UTC View advisory →
CVE-2026-57319 High 7.1

Unauthenticated Cross Site Scripting (XSS) in FOX <= 1.4.8 versions.

26 Jun 2026, 14:53 UTC View advisory →
CVE-2026-57318 Medium 6.5

Subscriber Sensitive Data Exposure in Site Reviews <= 8.0.11 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-57317 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Simply Schedule Appointments <= 1.6.12.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-57316 Medium 6.5

Subscriber Sensitive Data Exposure in GetGenie <= 4.4.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-57315 High 8.5

Contributor Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.45 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-57314 High 7.1

Unauthenticated Cross Site Scripting (XSS) in SureCart <= 4.3.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-57313 Medium 6.5

Subscriber Cross Site Scripting (XSS) in SureCart <= 4.2.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-57312 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Everest Forms <= 3.4.8 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-57307 Medium 4.2

A missing permission check in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers with Overall/Read permission to connect to

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57306 Medium 4.2

A cross-site request forgery (CSRF) vulnerability in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers to connect to an att

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57305 Medium 5.4

A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Plugin 1.4 and earlier allows attackers to connect to an attacker-specified URL using

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57304 Medium 5.4

A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57303 High 7.1

Jenkins Assembla Plugin 1.4 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks, allowing attackers able to control

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57302 Medium 4.3

Jenkins FitNesse Plugin 1.36 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57301 High 8.8

Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build operations on the Jenkins controller rather than the assigned agent, allowing attackers with Item

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57300 Medium 4.3

A missing permission check in Jenkins MCP Server Plugin 0.177.v629fdb_2557fe and earlier allows attackers with Item/Read permission to read the Pipeline re

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57299 Unscored

Missing permission checks in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allow attackers with Overall/Read permission to enume

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57298 Medium 5.4

A cross-site request forgery (CSRF) vulnerability in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allows attackers to have Jenk

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57297 Unscored

A missing permission check in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allows attackers with Overall/Read permission to con

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57296 High 8.8

Jenkins External Workspace Manager Plugin 1.3.2 and earlier does not reject path traversal sequences in the custom workspace path provided to the exwsAlloc

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57295 Medium 5.4

A cross-site request forgery (CSRF) vulnerability in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers to connect to an attack

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57294 Medium 5.4

A missing permission check in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers with Overall/Read permission to connect to an

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57293 Medium 4.3

An incorrect permission check in Jenkins Gitee Plugin 1288.v18b_deb_c9069b_ and earlier allows attackers with global Item/Configure permission (while lacki

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57292 Medium 5.4

A cross-site request forgery (CSRF) vulnerability in Jenkins Gitee Plugin 1288.v18b_deb_c9069b_ and earlier allows attackers to connect to an attacker-spec

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57291 Medium 5.4

Missing permission checks in Jenkins Gitee Plugin 1288.v18b_deb_c9069b_ and earlier allow attackers with Overall/Read permission to connect to an attacker-

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57290 Medium 4.3

A cross-site request forgery (CSRF) vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b_84449 and earlier allows attackers to overwrite the global

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57289 Medium 4.8

Jenkins Bitbucket Push and Pull Request Plugin 3.3.8 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections sendi

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57288 Low 3.7

Jenkins Active Directory Plugin 2.41.1 and earlier does not escape the user name before building the LDAP search filter in the Windows native (ADSI) authen

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57287 Medium 4.3

Jenkins Job Configuration History Plugin 1356.ve360da_6c523a_ and earlier does not redact the encrypted values of secrets when displaying historical job an

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57286 Medium 4.3

A missing permission check in Jenkins Git Parameter Plugin 462.vdcf3df2ed2ca_ and earlier allows attackers with Item/Read permission to obtain information

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57285 Medium 4.3

A missing permission check in Jenkins GitHub Branch Source Plugin 1967.1969.v205fd594c821 and earlier allows attackers with Overall/Read permission to obta

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57284 Medium 4.3

Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier does not restrict the types that can be instantiated through the Pipeline Snippet Generator,

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57283 Medium 4.3

A cross-site request forgery (CSRF) vulnerability in Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier allows attackers to instantiate types r

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57282 Medium 5

Jenkins Git client Plugin 6.6.0 and earlier does not correctly escape the workspace directory name when it is embedded into a generated SSH wrapper script,

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57281 High 7.5

Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annotations carrying an extensions member, allowing

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57280 High 8.8

Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not intercept the implicit type casts applied to the elements of typed for-each loops in

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-57236 Low 1.7

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, calling Document#encoding= with an invalid encoding (e.

25 Jun 2026, 14:29 UTC View advisory →
CVE-2026-57235 Medium 6.3

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::NodeSet#[] (and its alias #slice) checke

25 Jun 2026, 14:31 UTC View advisory →
CVE-2026-57234 Low 2.6

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, the NONET parse option, which Nokogiri turns on by defa

25 Jun 2026, 14:30 UTC View advisory →
CVE-2026-57231 High 7.5

Podman is a tool for managing OCI containers and pods. From 1.8.1 until 5.8.4, a container image that contains a environment variable with just a key and n

26 Jun 2026, 16:29 UTC View advisory →
CVE-2026-57204 Medium 6.9

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.3, a maliciously crafted PDF can cause DoS. An attacker who uses this vulnerability

30 Jun 2026, 21:59 UTC View advisory →
CVE-2026-57082 Medium 5.9

Net::BitTorrent versions through 2.0.1 for Perl generate the MSE Diffie-Hellman private key with a non-cryptographic PRNG. The MSE (Message Stream Encrypti

30 Jun 2026, 11:05 UTC View advisory →
CVE-2026-57081 High 7.5

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via deeply nested bencoded input. bdecode recurses once per nested list or d

30 Jun 2026, 11:05 UTC View advisory →
CVE-2026-57080 High 7.5

Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire message-length prefix. The peer-wire framing in _p

30 Jun 2026, 11:04 UTC View advisory →
CVE-2026-57079 Medium 5.3

Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata. Net::BitTorrent va

30 Jun 2026, 11:04 UTC View advisory →
CVE-2026-57062 Low 2.9

CMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2.5.20 mishandles the CMS format for AES-GCM because aes-ICVlen is supposed to be 12 b

23 Jun 2026, 17:26 UTC View advisory →
CVE-2026-57053 Medium 4

GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs because of mishandling in idna_to_unicode_internal. Th

23 Jun 2026, 16:40 UTC View advisory →
CVE-2026-56968 Low 3.7

GNU SASL before 2.2.4 lacks sanitization of a short challenge in _gsasl_ntlm_client_step in the NTLM client, which could result in memory disclosure via a

23 Jun 2026, 16:18 UTC View advisory →
CVE-2026-56876 High 8.6

extract-zip does not validate symlink targets when extracting zip archives. When processing a malicious zip file containing a symlink with a relative path

26 Jun 2026, 16:44 UTC View advisory →
CVE-2026-56823 Medium 5.4

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to , the `POST /api/integr

26 Jun 2026, 16:02 UTC View advisory →
CVE-2026-56815 High 7.4

pwnlift before d7a9544, in a privileged deployment, contains a symlink following vulnerability in the upload handler in Components/Pages/Home.razor.

23 Jun 2026, 13:57 UTC View advisory →
CVE-2026-56790 High 7

CANBoat through 6.22, fixed in commit a5a22b7, contains an off-by-one global buffer overflow in the searchForPgn() function in analyzer/pgn.c that allows r

25 Jun 2026, 18:14 UTC View advisory →
CVE-2026-56789 High 7.1

RTKLIB through 2.4.3 contains a heap buffer overflow vulnerability in the readrnxobsb function in src/rinex.c that allows attackers to trigger memory corru

25 Jun 2026, 18:14 UTC View advisory →
CVE-2026-56788 Medium 4.8

RTKLIB through 2.4.3 contains an out-of-bounds read vulnerability in getcodepri function when processing unrecognized RINEX observation codes, allowing att

25 Jun 2026, 18:13 UTC View advisory →
CVE-2026-56787 Medium 6.9

RTKLIB through 2.4.3 contains an off-by-one out-of-bounds read vulnerability in the decode_ssr3 function at src/rtcm3.c:1446 that allows remote attackers t

25 Jun 2026, 18:12 UTC View advisory →
CVE-2026-56786 Critical 9.3

RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to clamp length counters to destination buffer si

25 Jun 2026, 18:11 UTC View advisory →
CVE-2026-56785 High 8.4

FlatPress versions prior to commit 10be83c, contains a stored cross-site scripting vulnerability in comment and contact forms where name, URL, and email fi

23 Jun 2026, 22:09 UTC View advisory →
CVE-2026-56784 High 8.6

OpenRemote before 1.25.0 contains an insecure direct object reference (IDOR) vulnerability in the bulk alarm deletion endpoint that allows authenticated us

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56783 High 7.1

Parseable before 2.9.2 contains an information disclosure vulnerability in the notification-target API endpoints that returns webhook tokens and basic-auth

29 Jun 2026, 17:16 UTC View advisory →
CVE-2026-56782 Critical 9.3

Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoints that allows unauthenticated attackers to ac

29 Jun 2026, 17:16 UTC View advisory →
CVE-2026-56781 Medium 6.9

Teable before 2026-06-15T04-43-24Z.1912 contains an improper access control vulnerability that allows anonymous attackers to access hidden field data by su

29 Jun 2026, 17:15 UTC View advisory →
CVE-2026-56780 High 7.7

Modoboa before 2.9.0 contains an insecure direct object reference vulnerability in the PUT /api/v1/accounts/{pk}/password/ endpoint that allows domain admi

29 Jun 2026, 17:14 UTC View advisory →
CVE-2026-56779 Medium 5.3

MaxKB before 2.10.0 contains a server-side request forgery vulnerability in tool creation and update endpoints that allows authenticated users to make arbi

25 Jun 2026, 18:11 UTC View advisory →
CVE-2026-56777 Medium 5.3

n8n before 2.25.7 and 2.26.x before 2.26.2 contains an abstract syntax tree (AST) security validator bypass in the Python Code node. An authenticated user

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56774 Medium 5.3

Kanboard through 1.2.52, fixed in commit 928c68a, UserViewController::removeSession fails to validate the session id parameter before passing it to Remembe

25 Jun 2026, 18:10 UTC View advisory →
CVE-2026-56773 High 8.7

Teable's v2 REST API controller lacks @Permissions metadata on ORPC endpoints, allowing any authenticated user to bypass authorization checks. Attackers ca

26 Jun 2026, 14:38 UTC View advisory →
CVE-2026-56772 Medium 5.3

NewsBlur before 14.5.0 contains a broken access control vulnerability that allows authenticated users to read private notification feeds by supplying arbit

25 Jun 2026, 18:08 UTC View advisory →
CVE-2026-56771 Medium 6.3

NewsBlur before version 14.5.0 contains a server-side request forgery vulnerability in the add_url endpoint that allows authenticated users to make arbitra

25 Jun 2026, 18:07 UTC View advisory →
CVE-2026-56770 High 8.7

libais through 0.15 VdmStream::AddLine uses an unchecked sentinel value as a vector index when processing AIS sentences with empty or out-of-range sequenti

25 Jun 2026, 18:06 UTC View advisory →
CVE-2026-56769 Medium 6.3

Huly Platform through 0.7.423, fixed in commit 68cbf8a contains an authenticated server-side request forgery vulnerability in the /import endpoint of front

25 Jun 2026, 18:05 UTC View advisory →
CVE-2026-56768 High 8.7

Seahub before 13.0.23 does not enforce SHARE_LINK_LOGIN_REQUIRED on GET /api/v2.1/share-link-zip-task/, allowing unauthenticated users to bypass authentica

25 Jun 2026, 18:05 UTC View advisory →
CVE-2026-56767 High 8.7

Maxun before 0.0.42 contains a cross-tenant insecure direct object reference vulnerability in storage and webhook API handlers that allows authenticated us

25 Jun 2026, 18:03 UTC View advisory →
CVE-2026-56766 High 8.6

Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMTP, POP3, IMAP, NNTP, HTTP, HTTP-Proxy, and HT

25 Jun 2026, 18:01 UTC View advisory →
CVE-2026-56762 Medium 6.9

Hono before 4.12.12 does not validate cookie names on the write path in the setCookie(), serialize(), and serializeSigned() functions, allowing invalid cha

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56761 Medium 5.3

hono before 4.12.14 contains an html injection vulnerability in jsx server-side rendering that allows attackers to inject unintended html by using malforme

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56701 High 7.1

Grav before 2.0.0-beta.2 contains an XML external entity injection vulnerability in SVG file upload processing that allows authenticated attackers to read

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56700 Critical 9.3

Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities. Three unsafe unserialize() calls - in Scheduler\JobQueue, Framework\Cache\Ad

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56698 Medium 5.3

Nuxt versions 4.0.0 before 4.4.7 and 3.x before 3.21.7 fail to validate script-capable URLs in the navigateTo open option, allowing client-side script exec

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56697 Medium 5.3

Nuxt versions 4.0.0 before 4.4.7 and 3.x before 3.21.7 accept protocol-relative paths such as //evil.com in the reloadNuxtApp function; these pass the scri

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56696 Medium 5.3

OpenHarness /issue and /pr_comments slash commands lack remote_invocable=False protection, allowing remote channel senders to write attacker-controlled Mar

23 Jun 2026, 15:36 UTC View advisory →
CVE-2026-56695 High 7.1

OpenHarness ohmo gateway /resume and /summary slash commands default remote_invocable to True, allowing admitted remote senders to enumerate and load arbit

23 Jun 2026, 15:36 UTC View advisory →
CVE-2026-56694 Medium 5.3

NanoClaw before 2.1.0 contains a privilege escalation vulnerability in the channel-registration approval flow where handleChannelApprovalResponse fails to

23 Jun 2026, 15:35 UTC View advisory →
CVE-2026-56693 Medium 6.8

NanoClaw before 2.1.17 contains a privilege escalation vulnerability in the create_agent delivery-action handler that performs privileged central-database

23 Jun 2026, 15:35 UTC View advisory →
CVE-2026-56692 Medium 6.8

NanoClaw before 2.1.17 contains a symlink following vulnerability in forwardAttachedFiles that allows container-controlled agents to exfiltrate host-readab

23 Jun 2026, 15:34 UTC View advisory →
CVE-2026-56663 High 8.5

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.52, an authenticate

26 Jun 2026, 16:04 UTC View advisory →
CVE-2026-56457 Medium 4.3

HCL DevOps Deploy / HCL Launch is susceptible to an exposure of sensitive information vulnerability in output logs. This exposure could allow an attacker w

29 Jun 2026, 13:18 UTC View advisory →
CVE-2026-56450 Medium 5.1

AIL did not restrict repeated failed attempts to verify a two-factor authentication (OTP) code. An attacker who had reached the 2FA verification step, such

22 Jun 2026, 13:02 UTC View advisory →
CVE-2026-56448 High 8.3

A path traversal vulnerability exists in AIL Framework before the release containing commit 0041456af25da0cdea1c1c4624e46baff2731d8f. An authenticated AIL

22 Jun 2026, 12:54 UTC View advisory →
CVE-2026-56447 Critical 9.3

MISP allowed an authenticated site administrator to set the Kafka_rdkafka_config setting to an arbitrary filesystem path. MISP subsequently parsed the refe

22 Jun 2026, 12:39 UTC View advisory →
CVE-2026-56446 High 8.7

MISP allowed a site administrator to configure an arbitrary filesystem path for the NDJSON error log used by JsonLogTool. Because log entries can include a

22 Jun 2026, 12:31 UTC View advisory →
CVE-2026-56445 High 8.8

The qrscp application's C-STORE handler uses a specific instance from attacker-supplied DICOM datasets directly in os.path.join() without sanitization, all

25 Jun 2026, 20:46 UTC View advisory →
CVE-2026-56425 Critical 9.3

The Azure Active Directory (AAD) authentication implementation contained multiple weaknesses in its OAuth 2.0 authorization flow that could allow attackers

22 Jun 2026, 12:25 UTC View advisory →
CVE-2026-56424 High 7.1

MISP core contained multiple broken access-control flaws where authorization checks were performed against the wrong entity, or where ownership/editability

22 Jun 2026, 12:17 UTC View advisory →
CVE-2026-56423 Critical 9.4

MISP Core contained broken access-control checks in the bulk deletion flows for Event Reports and Sharing Groups. The affected deleteSelection handlers aut

22 Jun 2026, 11:56 UTC View advisory →
CVE-2026-56422 Critical 9.4

Multiple MISP core controllers and model capture paths accepted client-controlled request fields such as primary keys (id) and ownership/scope foreign keys

22 Jun 2026, 11:43 UTC View advisory →
CVE-2026-56415 Critical 10

Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is reachable without authentication. A remote a

30 Jun 2026, 22:40 UTC View advisory →
CVE-2026-56414 High 8.6

A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to store arbitrary file content to fixed, persi

26 Jun 2026, 23:00 UTC View advisory →
CVE-2026-56413 Critical 10

Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, which listens on TCP port 9000 by default and acc

30 Jun 2026, 22:50 UTC View advisory →
CVE-2026-56412 Medium 4.9

libexpat before 2.8.2 does not consider XML_TOK_DATA_CHARS in doCdataSection and thus lacks handler call depth tracking for various calls from within handl

21 Jun 2026, 15:58 UTC View advisory →
CVE-2026-56411 Medium 6.9

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations.

21 Jun 2026, 15:56 UTC View advisory →
CVE-2026-56410 Medium 6.9

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId.

21 Jun 2026, 15:55 UTC View advisory →
CVE-2026-56409 Medium 6.5

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used.

21 Jun 2026, 15:52 UTC View advisory →
CVE-2026-56408 Medium 6.9

libexpat before 2.8.2 has an integer overflow in copyString.

21 Jun 2026, 15:51 UTC View advisory →
CVE-2026-56407 Medium 6.9

libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen.

21 Jun 2026, 15:49 UTC View advisory →
CVE-2026-56406 Medium 6.9

libexpat before 2.8.2 has an integer overflow in XML_ParseBuffer because it lacked a check that was present in XML_Parse.

21 Jun 2026, 15:48 UTC View advisory →
CVE-2026-56405 Medium 6.9

libexpat before 2.8.2 has an integer overflow in getAttributeId.

21 Jun 2026, 15:47 UTC View advisory →
CVE-2026-56404 Medium 6.9

libexpat before 2.8.2 has an integer overflow in addBinding.

21 Jun 2026, 15:45 UTC View advisory →
CVE-2026-56403 Medium 6.9

libexpat before 2.8.2 has an integer overflow in storeAtts.

21 Jun 2026, 15:43 UTC View advisory →
CVE-2026-56402 High 7.1

NanoClaw before 2.1.17 contains a privilege escalation vulnerability in the handleApprovalsResponse function that fails to verify responder role authorizat

23 Jun 2026, 15:34 UTC View advisory →
CVE-2026-56399 Medium 5.3

Open WebUI before 0.6.27 contains a server-side request forgery vulnerability in the /api/v1/retrieval/process/web endpoint that allows authenticated users

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56379 None 0

ImageMagick before 7.1.2-15 and 6.9.13-40 contains a command injection vulnerability in the SVG decoder that allows attackers to inject arbitrary MVG drawi

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56377 Medium 4.8

ImageMagick before 7.1.2-24 contains an incorrect policy check that allows attackers to create or truncate files disallowed by security policies. Remote at

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56376 Medium 6.3

ImageMagick before 7.1.2-15 and 6.9.13-40 contains a heap use-after-free in the meta coder: when memory allocation fails, a single byte is written to a sta

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56371 None 0

ImageMagick before 7.1.2-15 and 6.9.13-40 contains a memory leak in coders/txt.c when processing TXT files with texture attributes: the texture object allo

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56370 Medium 4.8

ImageMagick before 7.1.2-19 contains an out-of-bounds access vulnerability in ConnectedComponentsImage() when processing connected-components artifacts wit

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56369 Medium 6.3

ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in the PasskeyEncipherImage method due to AES-CTR nonce reuse. Attackers can e

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56368 Medium 6.3

ImageMagick before 7.1.2-15 contains a memory leak vulnerability in multiple coders that write raw pixel data where allocated objects are not properly free

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56365 Medium 6.3

ImageMagick before 7.1.2-19 contains a memory leak vulnerability in the PNG encoder when writing MNG images. Attackers can trigger the encoder failure cond

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56364 Low 1.8

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark() function when parsing malformed OpenCL device profile XML f

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56363 Medium 4.8

ImageMagick before 7.1.2-22 contains a division by zero vulnerability in binomial kernel processing that allows attackers to cause denial of service. An at

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56361 Medium 4.8

ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation allowing out-of-bounds heap buffer reads. Attackers can trigger heap buff

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56358 Medium 5.1

n8n before 1.123.25 (1.x) and before 2.11.2 (2.x), with the fix also included in 2.12.0, contains a stored cross-site scripting vulnerability in the Form T

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56357 Medium 6.3

n8n before 1.123.15 and 2.5.0 contains a webhook forgery vulnerability in the GitHub Webhook Trigger node that fails to implement HMAC-SHA256 signature ver

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56356 Medium 5.1

n8n contains a stored cross-site scripting vulnerability in the Chat Trigger node's Custom CSS field due to a misconfiguration of the sanitize-html library

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56351 Medium 5.3

n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes that allows authenticated users to inject arb

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56350 Medium 6

n8n before 2.8.0 contains an authentication bypass vulnerability allowing authenticated SSO users to disable SSO enforcement through the API. Attackers can

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56348 Medium 5.3

n8n before 2.20.0 contains a credential exfiltration vulnerability in the POST /rest/dynamic-node-parameters/options endpoint that allows authenticated use

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56338 Medium 6.9

Capgo before 12.128.2 contains a denial of service vulnerability in the /auth/v1/otp endpoint that prevents email verification for two-factor authenticatio

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56337 Medium 6.9

Capgo before 12.128.2 contains an information disclosure vulnerability in the public.exist_app_v2 RPC function that allows unauthenticated attackers to enu

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56334 Medium 5.3

Capgo before 12.128.2 lacks an UPDATE row-level security policy for the build_requests table, preventing API-key and anonymous access from persisting build

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56333 Medium 5.3

Capgo before 12.128.2 contains a server-side validation bypass vulnerability in organization security settings that allows authenticated org admins to pers

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56331 Medium 6.9

Capgo before 12.128.2 contains improper error handling in the /private/accept_invitation endpoint that returns HTTP 500 instead of safe 4xx errors when mag

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56328 High 7.1

Capgo before 12.128.2 allows multiple public channels for the same app and platform to coexist simultaneously, while unnamed /updates requests without defa

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56327 Medium 6.9

Capgo before 12.128.2 contains an information disclosure vulnerability in the public.invite_user_to_org RPC function that allows unauthenticated attackers

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56326 Medium 5.3

Nuxt versions 4.0.0 before 4.4.7 and 3.x before 3.21.7 contain a server-side open redirect vulnerability in navigateTo that fails to properly validate path

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56324 High 8.8

Capgo before 12.128.2 contains a rate limit bypass vulnerability in the channel_self endpoint that allows attackers to circumvent rate limiting by rotating

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56323 High 8.7

Capgo before 12.128.2 contains an information disclosure vulnerability in the /functions/v1/channel_self endpoint that allows unauthenticated attackers to

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56322 High 8.7

Capgo before 12.128.2 contains an information disclosure vulnerability in the unauthenticated /updates endpoint that resolves the defaultChannel parameter

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56321 Medium 6.9

Capgo (backend Supabase edge functions) before 12.128.2 does not apply the global authentication middleware to the GET /private/role_bindings/:org_id endpo

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56320 High 7.1

Capgo before 12.128.2 contains an authorization flaw in POST /private/create_device that accepts a caller-supplied org_id parameter without validating it m

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56318 Medium 6.9

Capgo before 12.128.2 contains an information disclosure vulnerability in the /private/validate_password_compliance endpoint that returns different error r

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56315 Critical 9.3

picklescan before 1.0.4 fails to block at least seven Python standard library modules (including uuid, _osx_support, _aix_support, _pyrepl.pager, and imapl

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56314 High 7.1

Capgo before 12.128.12 fails to filter deleted app versions when joining channels during /updates resolution, allowing deleted bundles to remain selectable

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56311 Medium 6.9

Capgo before 12.128.2 contains an authorization bypass vulnerability in the public.get_current_plan_max_org RPC function that allows unauthenticated attack

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56310 Medium 5.3

Cap-go before 12.128.2 contains an authorization bypass vulnerability in the GET /organization/members endpoint that allows org-limited API keys to bypass

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56306 Medium 5.3

Capgo before 12.128.2 contains a weak parsing vulnerability in the x-limited-key-id header that allows attackers to bypass subkey enforcement by submitting

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56302 Medium 6.9

Capgo before 12.128.2 contains an unsecured images bucket lacking any row level security controls, allowing unauthenticated attackers to read, insert, and

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56301 Medium 6.8

Nuxt 4.0.0 before 4.4.7 and 3.18.0 before 3.21.7, when running the development server (nuxt dev) on Linux, binds the vite-node IPC server to an abstract-na

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56300 High 8.7

Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and get_org_perm_for_apikey that expose API key validity oracles

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56290 Critical 10

The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files and leads to full RCE

29 Jun 2026, 14:31 UTC View advisory →
CVE-2026-56286 High 7

Capgo before 12.128.2 contains an authentication bypass vulnerability in the account deletion endpoint that allows deletion without password re-authenticat

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56285 High 7.7

Nitter's /video media proxy endpoint fails to validate target URLs against Twitter/X domains and uses a hardcoded default HMAC key, allowing unauthenticate

29 Jun 2026, 17:13 UTC View advisory →
CVE-2026-56280 High 7.1

Cap-go before 12.128.2 contains a privilege inversion vulnerability in GET /build/logs/:jobId that allows read-only API key holders to cancel running nativ

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56278 Critical 9.3

Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') for the express-session middleware when the EX

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56277 Medium 6.9

Flowise before 3.1.2 sets Access-Control-Allow-Origin to a hardcoded wildcard (*) on its text-to-speech (TTS) generation endpoint (packages/server/src/cont

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56275 Medium 6

Flowise before 3.1.0 contains a server-side request forgery vulnerability in the Execute Flow node that allows attackers to bypass security validation by p

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56274 High 8.7

Flowise before 3.1.2 contains multiple OS command injection vulnerabilities in the Custom MCP Server feature due to incomplete command-flag validation and

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56272 Medium 5.6

Flowise before 3.0.13 uses bcrypt with default salt rounds of 5, providing only 32 iterations instead of the OWASP-recommended minimum of 10 rounds. Attack

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56270 High 8.7

Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a missing authentication vulnerability in the /api/v1/loginmethod endpoint that allows unauthen

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56269 Medium 4.3

Flowise before 3.1.0 (npm package flowise, versions 3.0.13 and earlier) uses a weak hardcoded default value 'Secre$t' for the TOKEN_HASH_SECRET environment

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56268 Medium 5.3

Flowise before 3.1.2 contains an information disclosure vulnerability in the /api/v1/chatflows/apikey/:apikey endpoint. When the keyonly query parameter is

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56266 Critical 9.2

Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md, and /llm endpoints that fetch arbitrary user-

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56264 Critical 9.2

Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /execute_js endpoint, which accepts and executes

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56263 Medium 5.3

Crawl4AI before 0.8.7 contains a stored cross-site scripting vulnerability in the monitor dashboard that renders crawl URLs and error messages via innerHTM

23 Jun 2026, 12:13 UTC View advisory →
CVE-2026-56262 Medium 6.9

Crawl4AI before 0.8.7 contains an authentication bypass vulnerability in the monitor router endpoints that allows unauthenticated attackers to access destr

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56258 Critical 9.2

Crawl4AI before 0.8.8 contains an arbitrary file write vulnerability in the screenshot and PDF endpoints that allows unauthenticated attackers to write fil

23 Jun 2026, 12:12 UTC View advisory →
CVE-2026-56257 High 7.1

Capgo before 12.128.2 allows direct patching of public.apps.owner_org through PostgREST, bypassing the transfer_app() workflow and creating split-brain own

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56256 High 7.1

Capgo before 12.128.2 enforces mandatory two-factor authentication only at the UI level. Sensitive Organization (ORG) management API endpoints (e.g., editi

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56255 Medium 5.3

Capgo before 12.128.2 contains a denial of service vulnerability in the POST /app/demo endpoint that allows authenticated users with org write permissions

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56249 High 7.2

Capgo before 12.128.2 contains an authorization bypass vulnerability in the channel creation endpoint that allows authenticated users to overwrite existing

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56248 High 8.7

Cap-go capgo (capgo-backend) before 12.128.12 contains an unauthenticated denial-of-service vulnerability arising from the audit_logs table's Row-Level Sec

23 Jun 2026, 12:12 UTC View advisory →
CVE-2026-56247 High 8.7

Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validating role scope compatibility, including to pending invi

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56245 High 8.8

Supabase Capgo before 12.128.2 contains an authorization bypass vulnerability in the SECURITY DEFINER record_build_time RPC function that allows unauthenti

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56244 High 7.1

Capgo before 12.128.2 allows non-admin API keys to read webhook signing secrets via Supabase REST due to insufficient row-level security policies on the we

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56243 High 8.6

Capgo before 12.128.2 contains a security control bypass vulnerability where the PostgREST/RLS plane accepts plaintext API keys through the capgkey header

23 Jun 2026, 12:12 UTC View advisory →
CVE-2026-56237 Critical 9.3

Capgo before 12.128.2 contains a broken authentication vulnerability in its API key generation mechanism. API keys are exposed in frontend requests, and th

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56234 Medium 6.9

Capgo before 12.128.2 contains a credential validation vulnerability in the POST /functions/v1/private/validate_password_compliance endpoint that is callab

23 Jun 2026, 12:12 UTC View advisory →
CVE-2026-56233 High 8.7

Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allows authenticated users with build permissions to bypass

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56232 High 8.7

Capgo before 12.128.2 fails to enforce limited_to_orgs and limited_to_apps constraints on subkeys provided via x-limited-key-id header in middlewareKey fun

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56231 High 7.2

Capgo before 12.128.2 contains a broken object level authorization (BOLA) vulnerability in the POST /build/start/:jobId and POST /build/cancel/:jobId endpo

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56230 High 8.7

Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accepts the client-controlled x-limited-key-id hea

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56225 High 8.7

Capgo before 12.128.2 contains an authorization bypass vulnerability in its public API key management handlers (get/put/delete/post). API keys created with

23 Jun 2026, 12:12 UTC View advisory →
CVE-2026-56224 Medium 5.1

Capgo console.capgo.app/login before 12.128.2 accepts access_token and refresh_token in URL query parameters, automatically authenticating users without co

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56223 Critical 9.3

Capgo before 12.128.2 contains a cross-domain SSO account takeover vulnerability in the provision-user endpoint that allows attackers to merge arbitrary vi

24 Jun 2026, 11:53 UTC View advisory →
CVE-2026-56222 High 8.6

Capgo before 12.128.2 contains an authorization bypass vulnerability in POST /private/role_bindings that fails to verify app_id ownership during app-scoped

23 Jun 2026, 12:12 UTC View advisory →
CVE-2026-56221 High 7.1

Cap-go before 12.128.2 contains multiple SQL injection vulnerabilities in cloudflare.ts where user-controlled values from API request bodies are interpolat

22 Jun 2026, 21:04 UTC View advisory →
CVE-2026-56219 High 8.7

Capgo before 12.128.2 contains a NULL-auth bypass vulnerability in the public.get_org_user_access_rbac function that allows unauthenticated attackers to re

30 Jun 2026, 22:08 UTC View advisory →
CVE-2026-56130 Low 2

"Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, even aft

25 Jun 2026, 08:44 UTC View advisory →
CVE-2026-56129 Medium 6.8

Generic IO & Memory Access driver for PCs provided by TOSHIBA CORPORATION and Dynabook Inc. exposes its IOCTL with insufficient access control. A logged-in

25 Jun 2026, 07:03 UTC View advisory →
CVE-2026-56124 High 8.7

phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote attackers to access the full contents of the u

29 Jun 2026, 13:47 UTC View advisory →
CVE-2026-56123 Critical 9.2

socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malicious SOCKS5 proxy server to overwrite adjacent

25 Jun 2026, 15:43 UTC View advisory →
CVE-2026-56122 High 8.7

Winstone Servlet Engine through 0.9.10 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by sending HTT

25 Jun 2026, 13:34 UTC View advisory →
CVE-2026-56121 Critical 9.3

Feast before 0.63.0 contains an unsafe deserialization vulnerability that allows unauthenticated or unauthorized attackers to achieve remote code execution

24 Jun 2026, 14:49 UTC View advisory →
CVE-2026-56120 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as it's a duplicate of CVE-2026-56784.

23 Jun 2026, 20:54 UTC View advisory →
CVE-2026-56119 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

25 Jun 2026 View advisory →
CVE-2026-56118 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

25 Jun 2026 View advisory →
CVE-2026-56117 Medium 5.7

dhcpcd through 10.3.2, fixed in commit 78ea09e, contains a heap use-after-free vulnerability in the control socket handling within src/control.c that allow

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-56116 High 7.1

dhcpcd through 10.3.2, fixed in commit 708b4a5, contains a memory leak vulnerability in the IPv6 Router Advertisement route information handling that allow

23 Jun 2026, 16:11 UTC View advisory →
CVE-2026-56115 Medium 6

dhcpcd through 10.3.2, fixed in commit 2f00c7b, contains a one-byte stack out-of-bounds write vulnerability in dhcp6_makemessage() in src/dhcp6.c that allo

23 Jun 2026, 16:08 UTC View advisory →
CVE-2026-56114 Medium 6

dhcpcd through 10.3.2, fixed in commit 2f00c7b, contains a one-byte stack out-of-bounds write vulnerability in dhcp6_makemessage() in src/dhcp6.c that allo

23 Jun 2026, 16:08 UTC View advisory →
CVE-2026-56113 Medium 6

dhcpcd through 10.3.2, fixed in commit 5733d3c, contains a heap use-after-free vulnerability that allows unauthenticated same-link attackers to crash the d

23 Jun 2026, 16:05 UTC View advisory →
CVE-2026-56111 High 8.3

Marlin Firmware through 2.1.2.7, fixed in commit 1f255d1, when built with MESH_BED_LEVELING enabled, contains an out-of-bounds write vulnerability in the M

24 Jun 2026, 14:31 UTC View advisory →
CVE-2026-56109 High 7

The Advanced Linux Sound Architecture (ALSA) library before 1.2.16.1 contains a double-free vulnerability in parse_def() in src/conf.c that allows attacker

22 Jun 2026, 15:58 UTC View advisory →
CVE-2026-56104 Critical 9.1

Chainlit before 2.10.1 contains a session hijacking vulnerability that allows unauthenticated attackers to restore and inherit authenticated user sessions

22 Jun 2026, 14:17 UTC View advisory →
CVE-2026-56091 High 8.2

When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. This vul

25 Jun 2026, 08:45 UTC View advisory →
CVE-2026-56072 High 7.1

Unauthenticated Cross Site Scripting (XSS) in WoodMart <= 8.5.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56071 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Forminator <= 1.53.1 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56070 Critical 9.3

Unauthenticated SQL Injection in Advance Product Search <= 1.4.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56069 High 7.5

Unauthenticated Insecure Direct Object References (IDOR) in Toolset Forms <= 2.6.24 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56068 Critical 9.3

Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56067 Critical 9.3

Unauthenticated SQL Injection in JetSmartFilters <= 3.8.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56066 Medium 5.8

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images <= 3.11.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56064 High 8.5

Subscriber SQL Injection in Tourfic <= 2.22.5 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56063 High 8.3

Unauthenticated Broken Access Control in MailChimp Block <= 1.1.15 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56062 Critical 9.3

Unauthenticated SQL Injection in Quotes llama <= 3.1.5 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56061 High 7.5

Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1.9.5 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56060 High 7.5

Unauthenticated Sensitive Data Exposure in Print Invoice & Delivery Notes for WooCommerce <= 7.1.1 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56059 Critical 9.9

Subscriber Arbitrary File Upload in Travel Booking <= 2.2.5 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56058 Critical 9.9

Subscriber Arbitrary File Upload in Quform <= 2.23.0 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56057 Critical 9.8

Subscriber PHP Object Injection in Uncanny Automator Pro <= 7.3.0.6 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56055 High 8.8

Subscriber PHP Object Injection in RealHomes <= 4.5.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56054 High 7.7

Subscriber Arbitrary File Deletion in JS Help Desk <= 3.1.1 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56053 High 8.8

Subscriber PHP Object Injection in EventPrime <= 4.3.4.1 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56052 High 7.6

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FunnelKit Funnel Builder by FunnelKit allows Blind SQ

24 Jun 2026, 07:23 UTC View advisory →
CVE-2026-56051 High 7.1

Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56050 Medium 6.5

Improper Access Control vulnerability in Themeisle PPOM for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue

25 Jun 2026, 13:34 UTC View advisory →
CVE-2026-56049 High 8.5

Contributor Remote Code Execution (RCE) in Post Snippets <= 4.0.19 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56048 Medium 6.5

Unauthenticated Insecure Direct Object References (IDOR) in Payment Gateway Based Fees and Discounts for WooCommerce <= 3.0.0 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56047 High 7.1

Unauthenticated Cross Site Scripting (XSS) in perfmatters <= 2.6.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56046 Medium 6.5

Subscriber Cross Site Scripting (XSS) in ListingPro <= 2.9.11 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56045 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Automatic < 3.135.1 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56044 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Blog2Social <= 8.9.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56043 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Customer Reviews for WooCommerce <= 5.110.1 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56042 High 7.1

Customer Cross Site Scripting (XSS) in Advanced Order Export For WooCommerce <= 4.0.9 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56041 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56040 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Gutenverse Form <= 2.4.7 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56039 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Quick Interest Slider <= 3.1.6 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56038 High 8.8

Contributor Privilege Escalation in Frisbii Pay <= 1.8.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56036 Critical 9.3

Unauthenticated SQL Injection in 워드프레스 결제 심플페이 <= 5.5.6 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56035 High 8.6

Unauthenticated Multiple Vulnerabilities in BitFire Security <= 5.0.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56034 Critical 9.3

Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56033 Critical 9.8

Unauthenticated Privilege Escalation in Dokan Pro <= 5.0.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56032 Critical 9.8

Subscriber PHP Object Injection in Buddyboss Platform <= 3.0.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56031 High 8.1

Unauthenticated PHP Object Injection in Uncanny Automator <= 7.3.1.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56030 Critical 9.8

Unauthenticated Privilege Escalation in Paytium <= 5.0.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56029 High 7.5

Unauthenticated Broken Authentication in CorvusPay WooCommerce Payment Gateway <= 2.7.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56028 Critical 9.8

Unauthenticated Privilege Escalation in Easy Elements for Elementor – Addons & Website Templates <= 1.4.9 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56027 Critical 9.9

Customer Arbitrary File Upload in Booster for WooCommerce <= 8.0.1 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56026 Medium 6.4

Subscriber Server Side Request Forgery (SSRF) in utm.codes <= 1.9.0 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56025 High 7.5

Unauthenticated Broken Access Control in Paymob for WooCommerce <= 4.1.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56023 Medium 5.4

Customer Broken Access Control in UPI QR Code Payment Gateway for WooCommerce <= 1.6.2 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56018 High 7.5

JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbounded memory growth. In JsMinify (XS.xs) the cle

29 Jun 2026, 19:38 UTC View advisory →
CVE-2026-56017 High 7.5

JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The r

29 Jun 2026, 19:38 UTC View advisory →
CVE-2026-56014 High 7.1

Unauthenticated Cross Site Scripting (XSS) in Master Slider <= 3.11.2 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56013 Medium 6.5

Unauthenticated Insecure Direct Object References (IDOR) in License Manager for WooCommerce <= 3.0.15 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56011 High 7.1

Unauthenticated Cross Site Scripting (XSS) in MapPress Maps for WordPress <= 2.97.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56010 High 8.8

Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce <= 10.4.0 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56008 High 8.8

Contributor Privilege Escalation in Fusion Builder <= 3.15.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-56006 High 7.1

Unauthenticated Cross Site Scripting (XSS) in H5P <= 1.17.6 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-56005 High 7.1

Subscriber Cross Site Scripting (XSS) in WP Activity Log <= 5.6.3.1 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-55975 High 8.6

A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation

26 Jun 2026, 22:58 UTC View advisory →
CVE-2026-55967 Low 2

AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly rejected by the streaming APIs, allowing cou

25 Jun 2026, 16:53 UTC View advisory →
CVE-2026-55964 Medium 6.3

Chain intermediate CA:TRUE without keyCertSign accepted as a signing CA. Intermediate CA certificates are required to have the keyCertSign key usage when a

25 Jun 2026, 19:30 UTC View advisory →
CVE-2026-55962 Medium 6

TLS 1.3 post-handshake authentication (PHA) issue where a server could accept a client's Finished message without the client having sent a Certificate and

25 Jun 2026, 21:12 UTC View advisory →
CVE-2026-55961 High 8.2

wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer. Such an object has empty signerInfos, so the

25 Jun 2026, 16:51 UTC View advisory →
CVE-2026-55960 High 8.2

Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing chain validation. A raw public key has no chain, so ParseCertR

25 Jun 2026, 19:31 UTC View advisory →
CVE-2026-55958 High 8.3

Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer. In tsip_StoreMessage() the capacity check guarding the fixed message bag (MSGBAG_SIZE) s

25 Jun 2026, 19:35 UTC View advisory →
CVE-2026-55957 Unscored

Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to authenticate binds using GSSAPI allowed attacke

29 Jun 2026, 20:47 UTC View advisory →
CVE-2026-55956 Unscored

Improper Authorization vulnerability in Apache Tomcat leads to security constraints specified for the default servlet ignoring any method or method omissio

29 Jun 2026, 20:46 UTC View advisory →
CVE-2026-55955 Unscored

Improper Authentication vulnerability in Apache Tomcat allowed a replay attack against the EncryptionInterceptor in the cluster component. This issue affec

29 Jun 2026, 20:44 UTC View advisory →
CVE-2026-55895 Medium 5.7

Vim is an open source, command line text editor. Prior to 9.2.0663, a Vimscript code injection vulnerability exists in s:NetrwLocalRmFile() in the netrw pl

25 Jun 2026, 15:31 UTC View advisory →
CVE-2026-55892 Medium 5.5

Vim is an open source, command line text editor. Prior to 9.2.0662, the dump_prefixes() function in src/spell.c walks a spell-file prefix trie iteratively

25 Jun 2026, 15:32 UTC View advisory →
CVE-2026-55844 High 7.5

Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2025.5.0, The iOS companion app ignores the SSID

29 Jun 2026, 14:19 UTC View advisory →
CVE-2026-55838 Medium 4.3

RustFS is a distributed object storage system built in Rust. In 1.0.0-beta.7 and earlier, the real-time metrics endpoint at /rustfs/admin/v3/metrics is acc

26 Jun 2026, 19:57 UTC View advisory →
CVE-2026-55767 Medium 5.8

Guzzle is an extensible PHP HTTP client. Prior to 7.12.1, CookieJar incorrectly accepts cookies with a dot-only Domain attribute and whitespace-padded vari

23 Jun 2026, 15:05 UTC View advisory →
CVE-2026-55766 Medium 4.8

guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Prior to 2.12.1, guzzlehttp/psr7 did not reject CR/LF characters in certain first-pa

23 Jun 2026, 15:07 UTC View advisory →
CVE-2026-55762 High 8.1

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6, 8.0.7, and 7.10.13, the POST

24 Jun 2026, 21:08 UTC View advisory →
CVE-2026-55759 High 7.4

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6, 8.0.7, and 7.10.13, Rocket.C

24 Jun 2026, 21:07 UTC View advisory →
CVE-2026-55736 Medium 5.9

Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in ash-project ash allows a user to set the value of a private

23 Jun 2026, 18:21 UTC View advisory →
CVE-2026-55721 Critical 9.2

Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.pl and debug.pl scripts. The cookie value is i

30 Jun 2026, 22:36 UTC View advisory →
CVE-2026-55700 High 7.1

pnpm is a package manager. From 11.3.0 until 11.5.3, `pnpm stage download` derived a local filename from registry-controlled package name and version field

25 Jun 2026, 16:47 UTC View advisory →
CVE-2026-55699 Medium 6.5

pnpm is a package manager. Prior to 10.34.2 and 11.5.3, Manifest bin object keys such as "", ".", and ".." passed pnpm's bin-name guard. When a malicious p

25 Jun 2026, 16:44 UTC View advisory →
CVE-2026-55698 High 8.8

pnpm is a package manager. Prior to 10.34.2 and 11.5.3, pnpm can persist package-manager bootstrap metadata in the first YAML document of pnpm-lock.yaml. B

25 Jun 2026, 16:43 UTC View advisory →
CVE-2026-55697 High 7.5

pnpm is a package manager. Prior to 10.34.2 and 11.5.3, pnpm can install configDependencies declared in pnpm-workspace.yaml before command dispatch. Before

25 Jun 2026, 16:42 UTC View advisory →
CVE-2026-55693 Medium 5.7

Vim is an open source, command line text editor. Prior to 9.2.0653, the tree_count_words() function in src/spellfile.c fills in the word-count fields of a

25 Jun 2026, 15:34 UTC View advisory →
CVE-2026-55686 Medium 5.3

Podman is a tool for managing OCI containers and pods. From 3.0.0 until 5.7.1, running a malicious container image where the WORKDIR path contains a symlin

26 Jun 2026, 16:30 UTC View advisory →
CVE-2026-55677 High 7.5

Echo is a Go web framework. Prior to 4.15.3 and 5.2.0, Echo's router and static file handler disagree on URL path decoding. The router matches routes using

26 Jun 2026, 16:15 UTC View advisory →
CVE-2026-55667 High 8.2

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.16,

25 Jun 2026, 17:32 UTC View advisory →
CVE-2026-55666 Critical 9.3

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6, 8.0.7, and 7.10.13, in apps/

24 Jun 2026, 21:06 UTC View advisory →
CVE-2026-55655 Medium 5

A flaw was found in OpenSSH. A local unprivileged attacker on a Linux client host can hijack client-side X11 forwarding connections. This is possible by pr

23 Jun 2026, 03:36 UTC View advisory →
CVE-2026-55654 Low 3.7

A flaw was found in OpenSSH. This vulnerability, a heap out-of-bounds read, occurs during the cleanup of GSSAPI (Generic Security Service Application Progr

23 Jun 2026, 03:37 UTC View advisory →
CVE-2026-55653 Medium 4.3

A flaw was found in OpenSSH. A malicious SSH server can exploit a double free vulnerability in the Diffie-Hellman Group Exchange (DH-GEX) client path. This

23 Jun 2026, 03:36 UTC View advisory →
CVE-2026-55611 None 0

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. From 1.11.1 until 1.14.1, userI

24 Jun 2026, 17:17 UTC View advisory →
CVE-2026-55607 High 7.7

Claude Code is an agentic coding tool. From 2.1.38 until 2.1.163, Claude Code's worktree handling allowed creation of worktrees named ".git" and navigation

29 Jun 2026, 14:04 UTC View advisory →
CVE-2026-55603 High 7.5

http-proxy-middleware is node.js http-proxy middleware. From 3.0.4 until 3.0.7 and 4.1.1, fixRequestBody() is the library's documented helper for re-emitti

22 Jun 2026, 20:07 UTC View advisory →
CVE-2026-55602 Medium 6.9

http-proxy-middleware is node.js http-proxy middleware. From 0.16.0 until 2.0.10, 3.0.6, and 4.1.0, http-proxy-middleware documents router proxy-table entr

22 Jun 2026, 15:58 UTC View advisory →
CVE-2026-55599 Medium 5.8

phpseclib is a PHP secure communications library. From 0.1.1 until 1.0.30, 2.0.55, and 3.0.54, when an application validates an untrusted X.509 certificate

22 Jun 2026, 20:00 UTC View advisory →
CVE-2026-55583 High 7.6

Twenty is an open-source CRM (customer relationship management) platform. Prior to 2.9.0, Twenty was vulnerable to a cross-workspace insecure direct object

24 Jun 2026, 19:21 UTC View advisory →
CVE-2026-55570 Critical 9

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, it does not escape the untrusted fields (name, version, author, description)

24 Jun 2026, 21:24 UTC View advisory →
CVE-2026-55568 Medium 5.9

Guzzle is an extensible PHP HTTP client. Prior to 7.12.1, in certain configurations, traffic expected to be protected by TLS on the hop to the proxy is tra

23 Jun 2026, 14:54 UTC View advisory →
CVE-2026-55517 Medium 4.3

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.7.5, a Deno program that opens a client WebSocket connection could be crashed by the

23 Jun 2026, 17:24 UTC View advisory →
CVE-2026-55488 High 7.7

motionEye (mEye) is an online interface for a piece of software called "motion," which is a video surveillance program with motion detection. Versions prio

24 Jun 2026, 15:03 UTC View advisory →
CVE-2026-55487 High 7.5

pnpm is a package manager. Prior to 10.34.2 and 11.5.3, the generic peer-suffix normalizer also stripped parenthesized text from git, URL, tarball, file, a

25 Jun 2026, 16:41 UTC View advisory →
CVE-2026-55477 High 7.2

3X-UI is a web control panel for managing Xray-core servers. Prior to 3.3.1, an authenticated administrator can abuse the database import functionality to

25 Jun 2026, 15:00 UTC View advisory →
CVE-2026-55455 Medium 5.3

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the outbound HTTP host filter applied by WebClientUtils (used b

24 Jun 2026, 21:36 UTC View advisory →
CVE-2026-55454 Critical 9.9

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the bundled Caddy reverse-proxy's admin API — which has no auth

24 Jun 2026, 21:38 UTC View advisory →
CVE-2026-55450 Critical 9.3

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, unauthenticated users can upload any amount of data to the s

23 Jun 2026, 16:17 UTC View advisory →
CVE-2026-55448 Medium 6.3

mise manages dev tools like node, python, cmake, and terraform. From 2026.3.15 until 2026.6.4, mise loads github.credential_command from local project conf

26 Jun 2026, 16:46 UTC View advisory →
CVE-2026-55447 Critical 9.6

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, by controlling a files that are digested into the RAG, an at

23 Jun 2026, 16:21 UTC View advisory →
CVE-2026-55446 High 7.5

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.0.19, an attacker can send a /api/v1/files/upload/ request withou

23 Jun 2026, 16:26 UTC View advisory →
CVE-2026-55443 Medium 5.1

LangChain is a framework for building agents and LLM-powered applications. Prior to 1.3.9, several LangChain components that resolve filesystem paths or ex

22 Jun 2026, 17:21 UTC View advisory →
CVE-2026-55441 High 8.6

mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.4, mise's trust feature gates config files (mise.toml, .tool-versions) thro

26 Jun 2026, 16:48 UTC View advisory →
CVE-2026-55439 Medium 5.5

Halo is an open source website building tool. Prior to 2.24.3, a path traversal vulnerability in the backup download endpoint allows authenticated administ

25 Jun 2026, 15:57 UTC View advisory →
CVE-2026-55423 Medium 6.1

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.7.0, the logout button does not clear the session. The previous u

23 Jun 2026, 16:27 UTC View advisory →
CVE-2026-55413 Critical 9.4

ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, any

25 Jun 2026, 16:03 UTC View advisory →
CVE-2026-55412 High 8.3

ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, ther

25 Jun 2026, 16:07 UTC View advisory →
CVE-2026-55411 Medium 6.8

ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.1780-lts, the

25 Jun 2026, 16:08 UTC View advisory →
CVE-2026-55409 High 7.6

Filament is a collection of full-stack components for accelerated Laravel development. From 3.0.0 until 3.3.53, a disabled RichEditor field rendered its ra

22 Jun 2026, 21:47 UTC View advisory →
CVE-2026-55388 High 8.1

piscina is a node.js worker pool implementation. Prior to 6.0.0-rc.2, 5.2.0, and 4.9.3, piscina's constructor and run() paths read the filename option via

22 Jun 2026, 16:50 UTC View advisory →
CVE-2026-55276 Unscored

Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat meant that special roles and empty authorisation constraints were not included

29 Jun 2026, 20:42 UTC View advisory →
CVE-2026-55255 Critical 9.9

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, an Insecure Direct Object Reference (IDOR) vulnerability in

23 Jun 2026, 16:28 UTC View advisory →
CVE-2026-55249 Medium 6.3

@rtk-ai/rtk-rewrite transparently rewrites shell commands executed via OpenClaw's exec tool to their RTK equivalents. In 1.0.0, the @rtk-ai/rtk-rewrite Ope

23 Jun 2026, 18:33 UTC View advisory →
CVE-2026-55223 Medium 6.3

c3p0 is a JDBC Connection pooling library. In versions prior to 0.14.0, c3p0 in combination with other libraries, can compose to a "sink" for deserializati

30 Jun 2026, 22:56 UTC View advisory →
CVE-2026-55189 High 7.7

RustFS is a distributed object storage system built in Rust. From 1.0.0-alpha.1 until 1.0.0-beta.9, when the FTP frontend is enabled, the FTP read and prob

26 Jun 2026, 19:59 UTC View advisory →
CVE-2026-55188 High 8.2

RustFS is a distributed object storage system built in Rust. From 1.0.0-alpha.1 until 1.0.0-beta.9, RustFS contains an authorization bypass in the bucket r

26 Jun 2026, 20:03 UTC View advisory →
CVE-2026-55180 Medium 6.5

pnpm is a package manager. Prior to 10.34.2 and 11.5.3, pnpm and pacquet expanded ${ENV_VAR} placeholders from repository-controlled .npmrc and pnpm-worksp

25 Jun 2026, 17:00 UTC View advisory →
CVE-2026-55092 High 7

Trivy is a security scanner. Prior to 0.71.1, when Trivy downloads an OCI artifact, it uses the org.opencontainers.image.title annotation from the artifact

25 Jun 2026, 16:26 UTC View advisory →
CVE-2026-55069 High 8.7

Kestra is an open-source, event-driven orchestration platform. Prior to 1.3.24, this vulnerability exists in the BasicAuth authentication component of the

26 Jun 2026, 20:50 UTC View advisory →
CVE-2026-54917 High 7.8

SeaweedFS is a distributed storage system for object storage (S3), file systems, and Iceberg tables. Prior to 4.30, the S3 API gateway and the Iceberg REST

25 Jun 2026, 18:41 UTC View advisory →
CVE-2026-54911 Medium 6.5

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Prior to 5.13.0, ujson.dumps() (or ujson.dump() or ujson.enco

22 Jun 2026, 20:53 UTC View advisory →
CVE-2026-54906 Low 2.1

concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::ReadWriteLock#release_write_lock does not verify that the calling threa

24 Jun 2026, 15:46 UTC View advisory →
CVE-2026-54905 Low 2

concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::ReentrantReadWriteLock can incorrectly grant a write lock after one thr

24 Jun 2026, 15:42 UTC View advisory →
CVE-2026-54904 High 8.2

concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::AtomicReference#update can enter a permanent busy retry loop when the c

24 Jun 2026, 15:44 UTC View advisory →
CVE-2026-54903 Medium 6.3

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.load is vulnerable to heap corruption wh

30 Jun 2026, 23:42 UTC View advisory →
CVE-2026-54902 Medium 6.3

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to version 3.17.2, is vulnerable to Use-After-Free when in SAJ mod

30 Jun 2026, 23:40 UTC View advisory →
CVE-2026-54901 Medium 6.3

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj::Parser in usual mode does not mark arra

30 Jun 2026, 23:36 UTC View advisory →
CVE-2026-54900 Medium 6.3

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, when in usual mode with create_id enabled,

30 Jun 2026, 23:34 UTC View advisory →
CVE-2026-54899 Medium 6.3

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to version 3.17.2, disabling symbol_keys on a reused Oj::Parser in

30 Jun 2026, 23:03 UTC View advisory →
CVE-2026-54898 Low 2.1

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2,Oj::Parser#parse is vulnerable to a heap use

30 Jun 2026, 23:24 UTC View advisory →
CVE-2026-54897 Low 2.1

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to 3.17.2, Oj::Doc iterators (each_value, each_child, each_leaf) w

30 Jun 2026, 23:22 UTC View advisory →
CVE-2026-54896 Low 2.1

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, when in object mode, Oj.dump is vulnerable

30 Jun 2026, 23:20 UTC View advisory →
CVE-2026-54892 High 8.7

Inefficient algorithmic complexity in Plug's nested-parameter decoder allows an unauthenticated remote attacker to cause denial of service. Plug.Conn.Query

23 Jun 2026, 12:31 UTC View advisory →
CVE-2026-54889 Medium 5.1

Improper Neutralization of Input During Web Page Generation (XSS) vulnerability in leandrocp mdex allows cross-site scripting via unsanitized URL schemes i

29 Jun 2026, 19:10 UTC View advisory →
CVE-2026-54888 Medium 6.9

Uncontrolled Recursion vulnerability in leandrocp mdex allows denial of service via deeply nested Markdown input. mdex converts between an Elixir %MDEx.Doc

29 Jun 2026, 19:10 UTC View advisory →
CVE-2026-54849 Critical 9.3

Unauthenticated SQL Injection in Premmerce Wishlist for WooCommerce <= 1.1.11 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54848 High 8.3

Insertion of Sensitive Information Into Sent Data vulnerability in Saad Iqbal APIExperts Square for WooCommerce allows Retrieve Embedded Sensitive Data. Th

25 Jun 2026, 13:26 UTC View advisory →
CVE-2026-54847 High 7.5

Unauthenticated Broken Access Control in Stylish Cost Calculator <= 8.3.9 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54846 High 7.5

Unauthenticated Broken Access Control in Syncee Premium Dropshipping & Wholesale <= 1.0.27 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54845 High 8.1

Unauthenticated Local File Inclusion in MDTF <= 1.3.8 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54844 High 7.5

Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54843 Critical 9.3

Unauthenticated SQL Injection in MDTF <= 1.3.7 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54842 High 8.1

Missing Authorization vulnerability in Royal Plugins Royal MCP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects

25 Jun 2026, 13:16 UTC View advisory →
CVE-2026-54841 High 7.5

Unauthenticated Sensitive Data Exposure in Vitepos <= 3.4.2 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54840 High 7.3

Unauthenticated Broken Access Control in Newsletters <= 4.13 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54839 High 7.5

Unauthenticated Sensitive Data Exposure in Trinity Backup – Backup, Migrate, Restore, Clone & Schedule Backups <= 2.0.9 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54838 High 8.5

Subscriber SQL Injection in WC Vendors Marketplace <= 2.6.8 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54837 High 7.5

Unauthenticated Broken Access Control in Intranet & Private Site – All-In-One Intranet <= 1.8.1 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54836 Critical 9.3

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YMC Filter allows SQL Injection. This issue affects Y

25 Jun 2026, 13:17 UTC View advisory →
CVE-2026-54835 High 7.5

Unauthenticated Broken Access Control in Five Star Restaurant Menu <= 2.5.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54834 High 7.5

Unauthenticated Sensitive Data Exposure in Object Cache 4 everyone <= 2.3.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54833 High 7.4

Unauthenticated Backdoor in Enable CORS <= 2.0.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54832 High 7.5

Unauthenticated Broken Access Control in Gutenverse Companion <= 2.5.0 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54831 Critical 9.3

Unauthenticated SQL Injection in GeoDirectory <= 2.8.162 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54830 High 7.5

Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54829 High 7.5

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Jacob N. Breetvelt WP Photo Album Plus allows Blind S

25 Jun 2026, 13:25 UTC View advisory →
CVE-2026-54828 High 7.5

Unauthenticated Broken Access Control in Motors <= 1.4.109 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54827 Critical 9.3

Unauthenticated SQL Injection in Real Estate 7 <= 3.5.9 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54826 High 7.6

Subscriber Insecure Direct Object References (IDOR) in SupportCandy <= 3.4.6 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54825 Critical 9.3

Unauthenticated SQL Injection in wpDataTables <= 7.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54824 High 7.5

Unauthenticated Sensitive Data Exposure in Ads by WPQuads <= 3.0.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54823 Critical 9.9

Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54822 High 8.5

Subscriber SQL Injection in SALESmanago & Leadoo <= 3.11.2 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54821 High 7.4

Subscriber Sensitive Data Exposure in Visual Link Preview <= 2.3.1 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-54820 Critical 9.3

Unauthenticated SQL Injection in JetBooking <= 4.0.4.1 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-54762 Medium 5.9

Traefik is an HTTP reverse proxy and load balancer. From 3.7.0-ea.1 until 3.7.5, there is a medium severity vulnerability in Traefik's Kubernetes Ingress N

23 Jun 2026, 19:17 UTC View advisory →
CVE-2026-54761 Medium 6

Traefik is an HTTP reverse proxy and load balancer. Prior to 3.6.21 and 3.7.5, there is a high severity vulnerability in Traefik's Kubernetes Gateway provi

23 Jun 2026, 19:15 UTC View advisory →
CVE-2026-54759 High 8.7

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, Lute's HTML sanitizer does not remove elements. Combined with the SiYuan Ele

24 Jun 2026, 21:21 UTC View advisory →
CVE-2026-54753 Medium 5.9

Nx is a monorepo solution for TypeScript and polyglot codebases. From 17.0.4 until 22.7.2 and 23.0.0-beta.2, the local HTTP server started by nx graph sent

26 Jun 2026, 18:13 UTC View advisory →
CVE-2026-54699 High 7.7

Warp is an agentic development environment. From 0.2024.03.12.08.02.stable_01 until 0.2026.05.06.15.42.stable_01, Warp contains an OS command injection vul

24 Jun 2026, 17:26 UTC View advisory →
CVE-2026-54696 Low 3.7

Ruby JSON is a JSON implementation for Ruby. Versions 2.9.0 through 2.19.8 are vulnerable to heap buffer overflow when the JSON generator is provided with

30 Jun 2026, 22:05 UTC View advisory →
CVE-2026-54686 Medium 4.3

Warp is an agentic development environment. From 0.2021.04.25.23.05.stable_00 until 0.2026.05.06.15.42.stable_01, Warp accepted certain state-mutating term

24 Jun 2026, 17:28 UTC View advisory →
CVE-2026-54679 Medium 6.9

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvp_string_append has a chance of integer/multiple overflowing and then causing a mas

25 Jun 2026, 17:16 UTC View advisory →
CVE-2026-54673 High 8.2

electron-updater allows for automatic updates for Electron apps. Prior to 9.7.0, the HTTP redirect handler (HttpExecutor.prepareRedirectUrlOptions) only st

30 Jun 2026, 22:11 UTC View advisory →
CVE-2026-54672 High 7.8

electron-updater allows for automatic updates for Electron apps. Prior to 26.15.0, AppImage targets built by app-builder-lib could use an empty path compon

30 Jun 2026, 22:15 UTC View advisory →
CVE-2026-54665 Medium 6.3

Apache NiFi 0.0.1 through 2.9.0 support building qualified URLs from one of several HTTP request headers that provide an alternative to the standard Host h

22 Jun 2026, 07:34 UTC View advisory →
CVE-2026-54651 Medium 6.9

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.1, an attacker who uses this vulnerability can craft a PDF which leads to an infinit

22 Jun 2026, 20:28 UTC View advisory →
CVE-2026-54639 High 8.8

Style Dictionary, a build system for creating cross-platform styles, has a prototype pollution vulnerability starting in version 4.3.0 and prior to version

24 Jun 2026, 00:17 UTC View advisory →
CVE-2026-54636 Critical 9

Dokku is a docker-powered PaaS. Prior to 0.38.7, the cron plugin utilizes commands in the app.json file to manage system cron running as the Dokku user. An

26 Jun 2026, 16:23 UTC View advisory →
CVE-2026-54592 High 7.5

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.3, Oj::Doc#each_child, when invoked recursivel

30 Jun 2026, 23:16 UTC View advisory →
CVE-2026-54588 Critical 9.6

Poweradmin is a web-based DNS administration tool for PowerDNS server. Versions prior to 4.2.4 and 4.3.3 use the attacker-controlled `HTTP_HOST` request he

23 Jun 2026, 22:09 UTC View advisory →
CVE-2026-54573 Medium 5.3

Outline is a service that allows for collaborative documentation. Prior to 1.8.0, the AuthenticationHelper.canAccess function uses ctx.originalUrl to verif

25 Jun 2026, 15:59 UTC View advisory →
CVE-2026-54557 Medium 5.5

mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install symlink destination from the ra

26 Jun 2026, 16:47 UTC View advisory →
CVE-2026-54555 High 7.8

rtk filters and compresses command outputs before they reach your LLM context. Prior to 0.42.2, the permission splitter did not conservatively split or rej

23 Jun 2026, 19:05 UTC View advisory →
CVE-2026-54531 Medium 6.9

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which leads to an infinit

22 Jun 2026, 20:26 UTC View advisory →
CVE-2026-54530 Medium 6.9

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which leads to an infinit

22 Jun 2026, 20:25 UTC View advisory →
CVE-2026-54518 Medium 6.5

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21.0 until 2.21.4 and 3.1.4, Unw

23 Jun 2026, 21:02 UTC View advisory →
CVE-2026-54517 Medium 5.3

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21.0 until 2.21.4 and 3.1.4, in

23 Jun 2026, 20:47 UTC View advisory →
CVE-2026-54516 Medium 5.3

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.21.0 until 2.21.4 and 3.1.4, POJ

23 Jun 2026, 20:48 UTC View advisory →
CVE-2026-54515 Medium 5.3

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.8.0 until 2.18.9, 2.21.5, and 3.

23 Jun 2026, 20:50 UTC View advisory →
CVE-2026-54514 Medium 5.3

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.0.0 until 2.18.8, 2.21.4, and 3.

23 Jun 2026, 20:51 UTC View advisory →
CVE-2026-54513 High 8.1

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.10.0 until 2.18.8, 2.21.4, and 3

23 Jun 2026, 20:53 UTC View advisory →
CVE-2026-54512 High 8.1

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.10.0 until 2.18.8, 2.21.4, and 3

23 Jun 2026, 20:56 UTC View advisory →
CVE-2026-54502 Medium 6.3

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.dump is vulnerable to a stack-based buff

30 Jun 2026, 23:10 UTC View advisory →
CVE-2026-54500 Medium 5.3

Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.3, Oj.load in :object mode reads uninitialized

30 Jun 2026, 23:08 UTC View advisory →
CVE-2026-54479 Medium 6.9

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session iden

25 Jun 2026, 20:56 UTC View advisory →
CVE-2026-54475 High 7.5

Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic temporary destinations are exp

30 Jun 2026, 09:48 UTC View advisory →
CVE-2026-54448 Medium 6.9

Trivy is a security scanner. Prior to 0.71.0, when Trivy scans a Helm chart archive (.tgz), its custom tar unpacker reads each entry with io.ReadAll(tr) an

25 Jun 2026, 16:27 UTC View advisory →
CVE-2026-54371 High 8.4

attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities that allows local attackers to escalate privile

29 Jun 2026, 12:39 UTC View advisory →
CVE-2026-54370 High 7.2

acl before version 2.4.0 contains a time-of-check to time-of-use (TOCTOU) race condition vulnerability that allows local attackers to escalate privileges b

29 Jun 2026, 12:38 UTC View advisory →
CVE-2026-54369 High 8.4

acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl_get_file(), acl_set_file(), acl_extended_fil

29 Jun 2026, 12:37 UTC View advisory →
CVE-2026-54353 High 8.5

Budibase is an open-source low-code platform. Prior to 3.39.9, authenticated users with automation permissions can bypass Budibase's SSRF blacklist through

26 Jun 2026, 20:44 UTC View advisory →
CVE-2026-54352 Critical 9.6

Budibase is an open-source low-code platform. Prior to 3.39.9, `POST /api/pwa/process-zip` at packages/server/src/api/routes/static.ts:24 accepts a builder

26 Jun 2026, 20:32 UTC View advisory →
CVE-2026-54351 High 8.2

Budibase is an open-source low-code platform. Prior to 3.39.9, the webhook trigger endpoint in Budibase is publicly accessible and passes the full HTTP req

26 Jun 2026, 20:45 UTC View advisory →
CVE-2026-54350 Critical 10

Budibase is an open-source low-code platform. Prior to 3.39.12, an unauthenticated visitor of any published Budibase app reads every document of the backin

26 Jun 2026, 20:44 UTC View advisory →
CVE-2026-54341 High 7.5

Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.0, a crafted RESTORE payload triggers an out-of-bounds read in D

26 Jun 2026, 16:42 UTC View advisory →
CVE-2026-54328 High 7.3

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi versions with temporary npm or git extension package installs used predictable paths

23 Jun 2026, 19:25 UTC View advisory →
CVE-2026-54327 Low 2.2

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi stored API keys and OAuth credentials in auth.json. A race condition in the file writ

23 Jun 2026, 19:28 UTC View advisory →
CVE-2026-54326 Low 2.5

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi HTML exports render session Markdown into a static HTML file. It did not consistently

23 Jun 2026, 19:26 UTC View advisory →
CVE-2026-54325 Medium 4.4

Pi is a minimal terminal coding harness. Pi before 0.79.0 loaded project-local configuration and resources from a repository's .pi directory without first

23 Jun 2026, 19:22 UTC View advisory →
CVE-2026-54324 Medium 6.5

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.185.0, a cross-tenant authorization

23 Jun 2026, 18:07 UTC View advisory →
CVE-2026-54323 Medium 5.9

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.185.0, the daemon's git clone implem

23 Jun 2026, 18:06 UTC View advisory →
CVE-2026-54322 High 7.7

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.185.0, Daytona's organization role u

23 Jun 2026, 18:07 UTC View advisory →
CVE-2026-54321 High 7

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. From 0.101.0 until 0.184.0, sandbox previews th

23 Jun 2026, 18:10 UTC View advisory →
CVE-2026-54320 High 8.4

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.184.0, organization invitations coul

23 Jun 2026, 18:11 UTC View advisory →
CVE-2026-54319 Medium 4.2

Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.186, a sandbox volume reference (vol

23 Jun 2026, 18:08 UTC View advisory →
CVE-2026-54318 High 7.1

Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.5.3, the LocationSensorManager BroadcastRec

23 Jun 2026, 17:40 UTC View advisory →
CVE-2026-54317 High 7.6

Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.6.0, the Konnected integration registers an

23 Jun 2026, 17:39 UTC View advisory →
CVE-2026-54316 Medium 6

Claude Code is an agentic coding tool. From 0.2.54 until 2.1.163, because the hostname huggingface.co was pre-approved as a bare hostname for the WebFetch

23 Jun 2026, 17:06 UTC View advisory →
CVE-2026-54314 Medium 6.3

n8n is an open source workflow automation platform. Prior to 2.24.0, the Compression node's Decompress operation expanded attacker-controlled archives into

23 Jun 2026, 15:33 UTC View advisory →
CVE-2026-54313 Medium 6.5

n8n is an open source workflow automation platform. Prior to 2.24.0, an authenticated user with workflow edit access could supply a malicious filter value

23 Jun 2026, 15:31 UTC View advisory →
CVE-2026-54312 High 7.2

n8n is an open source workflow automation platform. Prior to 2.24.0, an authenticated user with permission to create or modify workflows could achieve glob

23 Jun 2026, 15:33 UTC View advisory →
CVE-2026-54311 Medium 6

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could p

23 Jun 2026, 15:41 UTC View advisory →
CVE-2026-54310 Medium 6.5

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows could s

23 Jun 2026, 15:40 UTC View advisory →
CVE-2026-54309 High 8.8

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, when @n8n/mcp-browser is run in HTTP transport mode, the MCP endpoint accep

23 Jun 2026, 15:36 UTC View advisory →
CVE-2026-54308 Medium 6.3

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, the MicrosoftAgent365Trigger and StripeTrigger node did not validate that i

23 Jun 2026, 15:42 UTC View advisory →
CVE-2026-54307 High 8.5

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, a member-level user with editor access to a shared workflow coul

23 Jun 2026, 15:47 UTC View advisory →
CVE-2026-54306 Medium 6.3

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, a prototype pollution vulnerability allowed a crafted public webhook payloa

23 Jun 2026, 15:43 UTC View advisory →
CVE-2026-54305 High 8.9

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, three EE endpoints used by the Dynamic Credentials feature accep

23 Jun 2026, 15:45 UTC View advisory →
CVE-2026-54304 High 7.1

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.1, an authenticated user with permission to create or modify workfl

23 Jun 2026, 15:48 UTC View advisory →
CVE-2026-54303 Medium 6.8

n8n is an open source workflow automation platform. Prior to 2.24.0, an endpoint in the Meta and Microsoft Teams trigger nodes reflects a query parameter i

23 Jun 2026, 15:32 UTC View advisory →
CVE-2026-54302 High 7

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access could inject arb

23 Jun 2026, 15:46 UTC View advisory →
CVE-2026-54301 High 7

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access could configure

23 Jun 2026, 15:44 UTC View advisory →
CVE-2026-54300 Medium 5.3

@astrojs/netlify is an adapter that allows Astro to deploy your hybrid or server rendered site to Netlify. Prior to 7.0.13, @astrojs/netlify converts Astro

22 Jun 2026, 17:30 UTC View advisory →
CVE-2026-54299 High 7.5

Astro is a web framework. Prior to 6.4.6, Astro SSR apps with prerendered error pages (/404 or /500 using export const prerender = true) fetch those pages

22 Jun 2026, 17:33 UTC View advisory →
CVE-2026-54298 Medium 4.2

Astro is a web framework. Prior to 6.4.6, the spreadAttributes function in Astro's server-side rendering pipeline iterates over object keys and passes them

22 Jun 2026, 17:33 UTC View advisory →
CVE-2026-54297 High 7.5

Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters. From 1.0.0 until 1.10.6 and 2.14.3, Faraday::Neste

24 Jun 2026, 15:50 UTC View advisory →
CVE-2026-54293 High 7.5

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language

22 Jun 2026, 17:25 UTC View advisory →
CVE-2026-54290 High 7.1

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, with credentials: true and no explicit origin (the

22 Jun 2026, 17:15 UTC View advisory →
CVE-2026-54289 Medium 4.8

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, on AWS Lambda@Edge, CloudFront delivers a request h

22 Jun 2026, 17:16 UTC View advisory →
CVE-2026-54288 Medium 6.5

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, the Body Limit Middleware trusts the request's Cont

22 Jun 2026, 17:18 UTC View advisory →
CVE-2026-54287 Medium 5.3

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, on AWS Lambda, the ALB single-header response and t

22 Jun 2026, 17:13 UTC View advisory →
CVE-2026-54286 Medium 5.9

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, on Windows hosts, an encoded backslash (%5C) in the

22 Jun 2026, 17:14 UTC View advisory →
CVE-2026-54285 Medium 5.3

opentelemetry-js is the OpenTelemetry JavaScript Client. Prior to 2.8.0, W3CBaggagePropagator.extract() in @opentelemetry/core does not enforce size limits

22 Jun 2026, 16:52 UTC View advisory →
CVE-2026-54283 High 7.5

Starlette is a lightweight ASGI framework/toolkit. From 0.4.1 until 1.3.1, request.form() accepts max_fields and max_part_size to bound resource consumptio

22 Jun 2026, 16:46 UTC View advisory →
CVE-2026-54282 Low 3.7

Starlette is a lightweight ASGI framework/toolkit. Prior to 1.3.0, the HTTP request path is not validated before being used to reconstruct request.url. Bec

22 Jun 2026, 16:45 UTC View advisory →
CVE-2026-54281 High 8.7

Nest is a framework for building scalable Node.js server-side applications. Prior to 11.1.24, an authentication bypass vulnerability exists in @nestjs/plat

22 Jun 2026, 20:48 UTC View advisory →
CVE-2026-54280 Low 1.7

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, payload resources are not closed correctly when a client d

22 Jun 2026, 16:40 UTC View advisory →
CVE-2026-54279 Low 1.3

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, host-only cookies that are saved with CookieJar.save() and

22 Jun 2026, 16:32 UTC View advisory →
CVE-2026-54278 Medium 6.6

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, during cleanup it is possible for a compressed request bod

22 Jun 2026, 16:38 UTC View advisory →
CVE-2026-54277 Medium 6.6

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, it is possible to bypass the max_line_size check in parts

22 Jun 2026, 16:37 UTC View advisory →
CVE-2026-54276 Medium 6.3

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, DigestAuthMiddleware can send an authentication response a

22 Jun 2026, 16:36 UTC View advisory →
CVE-2026-54275 Low 2.7

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, the server_hostname TLS SNI check can be bypassed when an

22 Jun 2026, 16:34 UTC View advisory →
CVE-2026-54274 Medium 6.6

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, if an attacker sends large incomplete websocket frame payl

22 Jun 2026, 16:33 UTC View advisory →
CVE-2026-54273 Medium 6.6

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, no limit was present on the number of pipelined requests t

22 Jun 2026, 16:41 UTC View advisory →
CVE-2026-54271 High 8.2

protobufjs-cli is the command line add-on for protobuf.js. Prior to 1.3.2 and 2.5.0, a previous fix for unsafe name handling in pbjs static / static-module

22 Jun 2026, 16:16 UTC View advisory →
CVE-2026-54270 Medium 5.3

protobufjs compiles protobuf definitions into JavaScript (JS) functions. From 8.2.0 to 8.4.2, protobufjs preserved unknown wire elements in message.$unknow

22 Jun 2026, 16:19 UTC View advisory →
CVE-2026-54269 Medium 5.3

protobufjs compiles protobuf definitions into JavaScript (JS) functions. Prior to 8.6.0 and 7.6.3, protobufjs accepted certain schema-derived names that co

22 Jun 2026, 16:23 UTC View advisory →
CVE-2026-54268 High 8.2

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.1

22 Jun 2026, 15:31 UTC View advisory →
CVE-2026-54267 High 8.6

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.1

22 Jun 2026, 15:30 UTC View advisory →
CVE-2026-54266 High 8.8

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.1

22 Jun 2026, 15:28 UTC View advisory →
CVE-2026-54265 Medium 5.3

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.1

22 Jun 2026, 15:27 UTC View advisory →
CVE-2026-54264 High 8.3

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.1

22 Jun 2026, 15:32 UTC View advisory →
CVE-2026-54257 Critical 9.3

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From 42.3.1 until 42.3.3, Buffer performs incorrect

23 Jun 2026, 17:08 UTC View advisory →
CVE-2026-54250 Medium 5.8

K3s is a fully conformant production-ready Kubernetes distribution. Prior to 1.35.3+k3s1, 1.34.6+k3s1, v1.33.10+k3s1, a path traversal vulnerability exists

25 Jun 2026, 17:56 UTC View advisory →
CVE-2026-54236 Medium 5.3

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, the fix for CVE-2026-22778, which introduced a sanitize_messa

22 Jun 2026, 22:09 UTC View advisory →
CVE-2026-54235 Medium 6.9

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, ll temperature validation gates use comparison operators (<,

22 Jun 2026, 21:59 UTC View advisory →
CVE-2026-54233 Medium 6.5

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, vLLM's /v1/audio/transcriptions endpoint limits compressed up

22 Jun 2026, 22:10 UTC View advisory →
CVE-2026-54232 High 8.8

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.1, the vLLM Dockerfile is vulnerable to a dependency confusion atta

22 Jun 2026, 22:16 UTC View advisory →
CVE-2026-54226 Medium 6.4

A vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.6.0 through 2.15.0. Users are recommended to upgrade to version 2.16.0, which

25 Jun 2026, 07:59 UTC View advisory →
CVE-2026-54158 Critical 9.9

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the attribute-view (database) cell renderer genAVValueHTML interpolates cell

24 Jun 2026, 21:19 UTC View advisory →
CVE-2026-54157 Critical 9

LobeHub is a work-and-lifestyle space to find, build, and collaborate with agent teammates that grow with you. Prior to 2.1.57, the /webapi/proxy endpoint

23 Jun 2026, 17:43 UTC View advisory →
CVE-2026-54100 High 8.3

A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. WMCO establishes SSH connections to Windows worker

22 Jun 2026, 12:46 UTC View advisory →
CVE-2026-54099 High 8.8

A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. The WICD CSR auto-approver validates that a Certif

22 Jun 2026, 12:46 UTC View advisory →
CVE-2026-54097 High 7.2

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, a

25 Jun 2026, 17:40 UTC View advisory →
CVE-2026-54096 High 8.4

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.7, `

25 Jun 2026, 17:35 UTC View advisory →
CVE-2026-54094 High 7.5

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.14,

25 Jun 2026, 17:37 UTC View advisory →
CVE-2026-54093 Medium 6.8

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, f

25 Jun 2026, 17:39 UTC View advisory →
CVE-2026-54092 Medium 6.5

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, u

25 Jun 2026, 17:41 UTC View advisory →
CVE-2026-54091 High 7.5

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, F

25 Jun 2026, 17:43 UTC View advisory →
CVE-2026-54090 High 8.7

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.33.8, w

25 Jun 2026, 17:51 UTC View advisory →
CVE-2026-54089 Critical 9.1

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Starting with 2.0.

25 Jun 2026, 17:46 UTC View advisory →
CVE-2026-54088 Critical 9.3

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, t

25 Jun 2026, 17:49 UTC View advisory →
CVE-2026-54070 High 7.1

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, renderPackageREADME in kernel/bazaar/readme.go renders a Bazaar package READ

24 Jun 2026, 21:18 UTC View advisory →
CVE-2026-54069 Critical 9.2

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan Note's kernel HTTP server unconditionally trusts all chrome-extension

24 Jun 2026, 21:17 UTC View advisory →
CVE-2026-54068 Medium 5.9

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the /api/icon/getDynamicIcon endpoint is explicitly excluded from authentica

24 Jun 2026, 21:15 UTC View advisory →
CVE-2026-54067 Critical 9.9

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, CSS snippet body containing breaks out of its surrounding tag when renderSni

24 Jun 2026, 21:14 UTC View advisory →
CVE-2026-54066 High 7.5

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the patch for CVE-2026-41894 ("Path Traversal via Double URL Encoding") sani

24 Jun 2026, 21:13 UTC View advisory →
CVE-2026-54040 Medium 5.9

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the POST /api/auth/2fa/backup/regenerate endpoint regenerat

25 Jun 2026, 15:45 UTC View advisory →
CVE-2026-54037 Medium 6.5

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the fix for CVE-2025-7105 added forkIpLimiter and forkUserL

25 Jun 2026, 15:49 UTC View advisory →
CVE-2026-54036 Medium 5.3

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the GET /api/auth/2fa/enable endpoint can be called by an a

25 Jun 2026, 15:39 UTC View advisory →
CVE-2026-54033 High 7.7

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, LibreChat allows users to configure custom OpenAI-compatibl

25 Jun 2026, 15:50 UTC View advisory →
CVE-2026-54030 High 8

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.5, LibreChat's MCP OAuth implementation does not validate that the

25 Jun 2026, 15:48 UTC View advisory →
CVE-2026-54029 Medium 5.3

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the DELETE /api/messages/:conversationId/:messageId endpoin

25 Jun 2026, 15:51 UTC View advisory →
CVE-2026-54027 Medium 6.5

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the POST /api/files/images endpoint allows any authenticate

25 Jun 2026, 15:52 UTC View advisory →
CVE-2026-54025 Medium 5.4

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, there is a vulnerability in LibreChat's markdown artifact p

25 Jun 2026, 15:53 UTC View advisory →
CVE-2026-54024 Medium 6.5

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the fix for CVE-2024-11171 (commit bb58a2d0) added limits:

25 Jun 2026, 15:54 UTC View advisory →
CVE-2026-54022 Medium 5.3

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the ydoc:document:join Socket.IO handle

23 Jun 2026, 16:38 UTC View advisory →
CVE-2026-54021 Medium 6.3

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several direct, index-addressed Ollama p

23 Jun 2026, 16:39 UTC View advisory →
CVE-2026-54019 Medium 6.5

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI added collection-level ACL ch

23 Jun 2026, 16:41 UTC View advisory →
CVE-2026-54018 High 7.7

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, the SafePlaywrightURLLoader implements a

23 Jun 2026, 16:42 UTC View advisory →
CVE-2026-54016 Medium 4.3

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI has a Broken Object Level Aut

23 Jun 2026, 16:43 UTC View advisory →
CVE-2026-54015 Medium 6.4

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI's prompt version-history endp

23 Jun 2026, 16:44 UTC View advisory →
CVE-2026-54014 Medium 4.3

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, a path traversal vulnerability exists in

23 Jun 2026, 16:45 UTC View advisory →
CVE-2026-54013 High 7.6

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI patched SVG XSS in user profi

23 Jun 2026, 16:46 UTC View advisory →
CVE-2026-54012 High 7.1

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI lets a user who can create, u

23 Jun 2026, 16:47 UTC View advisory →
CVE-2026-54011 High 8.7

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6,Open WebUI renders Mermaid blocks from Ma

23 Jun 2026, 16:47 UTC View advisory →
CVE-2026-54010 High 8.3

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI lets an authenticated user at

23 Jun 2026, 16:48 UTC View advisory →
CVE-2026-54009 Medium 6.5

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/chat/completions accepts an im

23 Jun 2026, 16:49 UTC View advisory →
CVE-2026-54008 High 8.5

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, backend/open_webui/utils/oauth.py::_proc

23 Jun 2026, 16:50 UTC View advisory →
CVE-2026-54007 High 7.1

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, the chat message listener allows non-sam

23 Jun 2026, 16:51 UTC View advisory →
CVE-2026-54006 Medium 4.3

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/v1/calendars/events/{event_id}

23 Jun 2026, 16:50 UTC View advisory →
CVE-2026-53950 High 7.5

@tryghost/activitypub is Ghost’s social/federation client app. Prior to 3.1.0, the ActivityPub client in Ghost was vulnerable to JavaScript injection on po

24 Jun 2026, 18:04 UTC View advisory →
CVE-2026-53949 Medium 5.3

Ghost is a Node.js content management system. From 5.46.1 until 6.21.2, the validation applied to filters on the public API endpoints could be partially by

24 Jun 2026, 18:05 UTC View advisory →
CVE-2026-53948 Medium 5.4

Ghost is a Node.js content management system. From 6.19.4 until 6.21.1, insufficient validation of the client-supplied Content-Type on Ghost's Admin API fi

24 Jun 2026, 18:06 UTC View advisory →
CVE-2026-53947 Medium 5.3

Ghost is a Node.js content management system. From 5.18.0 until 6.21.1, a discrepancy in responses from the members signin endpoints made it possible for a

24 Jun 2026, 18:07 UTC View advisory →
CVE-2026-53946 Medium 5.4

Ghost is a Node.js content management system. From 6.19.4 until 6.21.1, when re-rendering posts, Ghost would refetch missing image dimensions by issuing an

24 Jun 2026, 18:08 UTC View advisory →
CVE-2026-53945 Medium 4

Ghost is a Node.js content management system. From 6.0.9 until 6.21.1, Ghost’s private-IP check for outbound HTTP requests could be bypassed via DNS rebind

24 Jun 2026, 18:09 UTC View advisory →
CVE-2026-53944 Medium 5.8

Ghost is a Node.js content management system. From 6.0.9 until 6.21.1, when making an external request, it is possible to bypass the IP filter that ensures

24 Jun 2026, 18:10 UTC View advisory →
CVE-2026-53943 Critical 9.6

Ghost is a Node.js content management system. From until 6.37.0, when Ghost is behind a shared caching layer that results in cached content being shared be

24 Jun 2026, 18:13 UTC View advisory →
CVE-2026-53931 Medium 6.9

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the spreadsheet-import endpoint axiosRequestMake could be used as a generic

23 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53930 Medium 5.1

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the base-migration endpoint accepted a caller-supplied URL that the migratio

23 Jun 2026, 19:42 UTC View advisory →
CVE-2026-53929 Medium 5.1

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, with NC_SECURE_ATTACHMENTS=true, an authenticated uploader could deliver .ht

23 Jun 2026, 19:44 UTC View advisory →
CVE-2026-53928 Medium 6.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a stolen refresh token survived a password-forgot flow and could be used to

23 Jun 2026, 20:03 UTC View advisory →
CVE-2026-53927 Medium 5.1

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the spreadsheet-fetch endpoint (axiosRequestMake) accepted URLs whose path c

23 Jun 2026, 20:05 UTC View advisory →
CVE-2026-53926 Medium 6.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, revokeAllOAuthTokensByUser in the users service is an empty stub being calle

23 Jun 2026, 20:08 UTC View advisory →
CVE-2026-53925 High 7.8

Glances is an open-source system cross-platform monitoring tool. From 4.0.8 until 4.5.5, the secure_popen() function in glances/secure.py interprets > (fil

25 Jun 2026, 18:03 UTC View advisory →
CVE-2026-53923 Medium 5.3

vLLM is an inference and serving engine for large language models (LLMs). From 0.5.5 until 0.23.1rc0, integer truncation of tensor dimensions in vLLM's GGU

22 Jun 2026, 21:55 UTC View advisory →
CVE-2026-53917 High 7.5

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Client, Apache ActiveMQ Broker. An authe

30 Jun 2026, 09:49 UTC View advisory →
CVE-2026-53916 High 7.5

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp. An unauthenticated client that op

30 Jun 2026, 09:49 UTC View advisory →
CVE-2026-53914 Medium 6.7

In JetBrains Kotlin before 2.4.20 code execution was possible via unsafe deserialization in the build cache metadata

26 Jun 2026, 13:01 UTC View advisory →
CVE-2026-53779 High 8.7

WebP Server Go through 0.14.4 contains a path traversal vulnerability on Windows that allows unauthenticated attackers to read files outside the configured

22 Jun 2026, 18:22 UTC View advisory →
CVE-2026-53778 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

23 Jun 2026 View advisory →
CVE-2026-53766 Medium 6.1

Chrome DevTools for agents (chrome-devtools-mcp) lets your coding agent control and inspect a live Chrome browser. From 0.24.0 until 1.1.0, McpContext.vali

24 Jun 2026, 21:29 UTC View advisory →
CVE-2026-53765 Medium 6.1

Chrome DevTools for agents (chrome-devtools-mcp) lets your coding agent control and inspect a live Chrome browser. From 0.20.0 until 1.1.0, The chrome-devt

24 Jun 2026, 21:30 UTC View advisory →
CVE-2026-53755 High 8.6

Crawl4AI is an open-source LLM friendly web crawler & scraper. Prior to 0.8.9, the Docker API server applied its SSRF destination check to the crawl target

23 Jun 2026, 18:15 UTC View advisory →
CVE-2026-53754 High 7.5

Crawl4AI is an open-source LLM friendly web crawler & scraper. Prior to 0.8.8, the Docker API server's SSRF protection (validate_webhook_url / validate_url

23 Jun 2026, 18:16 UTC View advisory →
CVE-2026-53753 Critical 9.8

Crawl4AI is an open-source LLM friendly web crawler & scraper. Prior to 0.8.7, the _safe_eval_expression() function in the computed fields feature uses an

23 Jun 2026, 18:17 UTC View advisory →
CVE-2026-53692 Medium 5.9

Redeight CMS version 1.0 uses the MD5 algorithm without a salt to store user passwords. Because MD5 is a cryptographically broken algorithm and lacks salti

30 Jun 2026, 11:20 UTC View advisory →
CVE-2026-53691 High 8.6

An Unrestricted File Upload vulnerability in Redeight CMS version 1.0 allows authenticated attackers to achieve Remote Code Execution via the POST "/admin/

30 Jun 2026, 11:19 UTC View advisory →
CVE-2026-53690 Critical 9.3

An SQL Injection vulnerability exists in Redeight CMS version 1.0 via the "userEmail" parameter in the POST "/admin/index.php" login endpoint. The applicat

30 Jun 2026, 11:19 UTC View advisory →
CVE-2026-53663 Low 3.1

React Router is a router for React. From 7.12.0 until 7.15.1, certain CSRF checks in React Router v7 Framework Mode were insufficient and run on POST reque

22 Jun 2026, 17:39 UTC View advisory →
CVE-2026-53662 Critical 9.6

immich is a high performance self-hosted photo and video management solution. From commit 4ffa26c9 until 4eb1003, a reflected cross-site scripting (XSS) vu

23 Jun 2026, 17:36 UTC View advisory →
CVE-2026-53655 Medium 6.9

node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (node-tar) applies a PAX extended header's size= record (and other PAX overrides) to the

22 Jun 2026, 14:55 UTC View advisory →
CVE-2026-53632 Medium 5.5

launch-editor allows users to open files with line numbers in editor from Node.js. Prior to 2.14.1, the launch-editor NPM package accesses arbitrary paths

22 Jun 2026, 15:54 UTC View advisory →
CVE-2026-53622 High 7.8

Traefik is an HTTP reverse proxy and load balancer. Prior to 3.7.3, there is a critical vulnerability in Traefik's HTTP/3 (QUIC) TLS configuration selectio

23 Jun 2026, 19:13 UTC View advisory →
CVE-2026-53577 Medium 6.5

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, the previewFileFromExecution endpoint (GET /api/v1/{tenant}/exec

26 Jun 2026, 20:52 UTC View advisory →
CVE-2026-53576 Critical 10

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, the authentication filter for the REST API (@Filter("/api/v1/**"

26 Jun 2026, 20:54 UTC View advisory →
CVE-2026-53571 High 8.2

Vite is a frontend tooling framework for JavaScript. Prior to 8.0.16, 7.3.5, and 6.4.3, the contents of files that are specified by server.fs.deny can be r

22 Jun 2026, 16:10 UTC View advisory →
CVE-2026-53550 Medium 5.3

js-yaml is a JavaScript YAML parser and dumper. Prior to 4.2.0, a crafted YAML document can trigger algorithmic CPU exhaustion in js-yaml merge-key process

22 Jun 2026, 14:59 UTC View advisory →
CVE-2026-53540 Low 3.7

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.31, parse_form() did not validate the Content-Length header before using it to bo

22 Jun 2026, 16:58 UTC View advisory →
CVE-2026-53539 High 7.5

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, when parsing application/x-www-form-urlencoded bodies, QuerystringParser loca

22 Jun 2026, 16:55 UTC View advisory →
CVE-2026-53538 Low 3.7

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, QuerystringParser treated ; as a field separator in application/x-www-form-ur

22 Jun 2026, 16:56 UTC View advisory →
CVE-2026-53537 Low 3.7

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, parse_options_header parsed Content-Disposition (and Content-Type) headers wi

22 Jun 2026, 16:57 UTC View advisory →
CVE-2026-53488 Critical 9.4

containerd is an open-source container runtime. In versions prior to 1.7.33, 2.3.2, 2.2.5, 2.1.9, and 2.0.10 the CRI plugin propagates labels from an image

01 Jul 2026, 00:11 UTC View advisory →
CVE-2026-53434 Unscored

Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs for a FFM based connector. This issue affects Apache Tomca

29 Jun 2026, 20:41 UTC View advisory →
CVE-2026-53433 Medium 5.7

fzf is vulnerable to a Denial of Service (DoS) due to inefficient HTTP body processing in the --listen mode due to inefficient HTTP body processing using r

30 Jun 2026, 12:01 UTC View advisory →
CVE-2026-53432 Medium 5.6

fzf is vulnerable to Integer Overflow leading to crash in FuzzyMatchV2 function. When input line length is approximately 2,200,000 bytes and pattern length

30 Jun 2026, 12:01 UTC View advisory →
CVE-2026-53429 Medium 6.9

Missing Release of Memory after Effective Lifetime vulnerability in leandrocp mdex and mdex_native allows an attacker who controls a rendered document to c

29 Jun 2026, 19:07 UTC View advisory →
CVE-2026-53428 Medium 6.9

Memory Allocation with Excessive Size Value vulnerability in leandrocp mdex allows an unauthenticated attacker to cause a denial of service through unbound

29 Jun 2026, 18:52 UTC View advisory →
CVE-2026-53427 Low 2.3

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in leandrocp MDEx allows stored or reflected cross-site

29 Jun 2026, 18:50 UTC View advisory →
CVE-2026-53426 High 8.2

Allocation of Resources Without Limits or Throttling vulnerability in leandrocp MDEx allows Excessive Allocation. MDEx.parse_document/2 accepts a {:json, j

29 Jun 2026, 19:11 UTC View advisory →
CVE-2026-53404 Unscored

Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat's rewrite valve meant that if the first condition in an OR chain matched, subse

29 Jun 2026, 20:39 UTC View advisory →
CVE-2026-53325 Unscored

In the Linux kernel, the following vulnerability has been resolved: agp/amd64: Fix broken error propagation in agp_amd64_probe() A NULL pointer dereference

29 Jun 2026, 04:53 UTC View advisory →
CVE-2026-53324 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: mana: Use pci_name() for debugfs directory naming Use pci_name(pdev) for the per-d

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53323 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: dsa: remove redundant netdev_lock_ops() from conduit ethtool ops DSA replaces the

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53322 Unscored

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disabling function On device shutdown, make vfio_pci_

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53321 Unscored

In the Linux kernel, the following vulnerability has been resolved: io_uring/napi: cap busy_poll_to 10 msec Currently there's no cap on the maximum amount

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53320 Unscored

In the Linux kernel, the following vulnerability has been resolved: nilfs2: reject zero bd_oblocknr in nilfs_ioctl_mark_blocks_dirty() nilfs_ioctl_mark_blo

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53319 Unscored

In the Linux kernel, the following vulnerability has been resolved: blk-wbt: remove WARN_ON_ONCE from wbt_init_enable_default() wbt_init_enable_default() u

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53318 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr() Move the

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53317 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: Place upper limit on station AID Any station configured with an AID

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53316 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in ras_core_ras_interrupt_detected() Fixes a NULL pointer d

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53315 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in ras_core_get_utc_second_timestamp() ras_core_get_utc_sec

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53314 Unscored

In the Linux kernel, the following vulnerability has been resolved: padata: Put CPU offline callback in ONLINE section to allow failure syzbot reported the

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53313 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths In dc_dmub_srv_log_d

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53312 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign ext

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53311 Unscored

In the Linux kernel, the following vulnerability has been resolved: fuse: fix uninit-value in fuse_dentry_revalidate() fuse_dentry_revalidate() may be call

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53310 Unscored

In the Linux kernel, the following vulnerability has been resolved: soc/tegra: cbb: Fix cross-fabric target timeout lookup When a fabric receives an error

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53309 Unscored

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_regions() region comparison The local-vs-remote

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53308 Unscored

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Free allocated workqueue and fix removal order Use devm interf

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53307 Unscored

In the Linux kernel, the following vulnerability has been resolved: pinctrl: pinconf-generic: Fully validate 'pinmux' property The pinconf_generic_parse_dt

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53306 Unscored

In the Linux kernel, the following vulnerability has been resolved: tty: hvc_iucv: fix off-by-one in number of supported devices MAX_HVC_IUCV_LINES == HVC_

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53305 Unscored

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ps883x: Fix Oops at unbind When trying to unbind a device in order to bind

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53304 Unscored

In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Resolve soft lockup issue when opening /dev/sgX The parameter def_reserved_si

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-53303 Unscored

In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extension_list reading with sb_lock in f2fs_sbi_show() In f2fs_sbi_show()

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53302 Unscored

In the Linux kernel, the following vulnerability has been resolved: crypto: eip93 - fix hmac setkey algo selection eip93_hmac_setkey() allocates a temporar

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53301 Unscored

In the Linux kernel, the following vulnerability has been resolved: reset: amlogic: t7: Fix null reset ops Fix missing reset ops causing kernel null pointe

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53300 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free issue The AI-generated review reported a potent

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53299 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airoha_qdma_init_tx() If queue entry l

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53298 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airoha_qdma_init_rx_queue() If queue e

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53297 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard mana_remove against double invocation If PM resume fails (e.g., mana_a

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53296 Unscored

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on probe error On probe error, free the previously

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53295 Unscored

In the Linux kernel, the following vulnerability has been resolved: mailbox: add sanity check for channel array Fail gracefully if there is no channel arra

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53294 Unscored

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reused channel The RX channel can be aliased to t

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53293 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG There were multiple issues in that code. First

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53292 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: phonet: do not BUG_ON() in pn_socket_autobind() on failed bind syzbot reported a k

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53291 Unscored

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/conexant: Fix missing error check for jack detection In cx_probe(), the retur

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53290 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/xe/eustall: Fix drm_dev_put called before stream disable in close In xe_eu_stall_st

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53289 Unscored

In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in ice_reset_all_vfs() ice_reset_all_vfs() ignores th

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53288 Unscored

In the Linux kernel, the following vulnerability has been resolved: arm64: Reserve an extra page for early kernel mapping The final part of [data, end) seg

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53287 Unscored

In the Linux kernel, the following vulnerability has been resolved: audit: fix incorrect inheritable capability in CAPSET records __audit_log_capset() reco

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53286 Unscored

In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free in aux device error paths When auxiliary_devic

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53285 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wrap DCN32 phantom-plane allocation in DC_RUN_WITH_PREEMPTION_ENABLED

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53284 Unscored

In the Linux kernel, the following vulnerability has been resolved: btrfs: only release the dirty pages io tree after successful writes [WARNING] With extr

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53283 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in __rlookup_amd_iommu() iommu_device_register() walks ev

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53282 Unscored

In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Push kjump return address even for non-kjump kexec The version of purgatory

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53281 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference or refcount corruption Commit 60f030f7418d (

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53280 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix NULL group->domain dereference in pci_dev_reset_iommu_done() Local sashiko r

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53279 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/gma500/oaktrail_lvds: fix hang on init failure The LVDS init code looks up an I2C a

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53278 Unscored

In the Linux kernel, the following vulnerability has been resolved: arm_mpam: Check whether the config array is allocated before destroying it __destroy_co

26 Jun 2026, 19:40 UTC View advisory →
CVE-2026-53277 Unscored

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation

25 Jun 2026, 08:40 UTC View advisory →
CVE-2026-53276 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix a use-after-free of the hci_conn pointer In iso_sock_rebind_bc(), t

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53275 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when processing MLD queries When processing an MLD quer

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53274 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix sleep-inside-lock in __smc_setsockopt() causing local DoS A logic flaw in

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53273 Unscored

In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when the client exits before the supplicant Commit 7

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53272 Unscored

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi->sync_decompress z_erofs_decompress_kickoff() can race

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53271 Unscored

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix NULL-deref of opinfo->conn in oplock/lease break notifiers smb2_oplock_break

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53270 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on edit ip_vs_edit_service() while unbinding th

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53269 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: add mutex to guard hook reference counting As the synproxy infrast

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53268 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack_irc: fix possible out-of-bounds read When parsing fails after we'v

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53267 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: bail out on template ct in get eval I noticed this issue while looki

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53266 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebt_snat ARP rewrite writable The ebtables SNAT target keeps th

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53265 Unscored

In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: check allocation under invalidate lock commit 2d1f7b65f5de ("dm ca

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53264 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: use RCU with deferred freeing for action lifecycle When NEWTFILTER

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53263 Unscored

In the Linux kernel, the following vulnerability has been resolved: 6lowpan: fix off-by-one in multicast context address compression The second memcpy in l

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53262 Unscored

In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session in pppol2tp_ioctl() pppol2tp_ioctl() read soc

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53261 Unscored

In the Linux kernel, the following vulnerability has been resolved: devlink: Release nested relation on devlink free devlink relation state is normally rel

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53260 Unscored

In the Linux kernel, the following vulnerability has been resolved: tcp: Add preempt_{disable,enable}_nested() in reqsk_queue_hash_req(). syzbot reported a

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53259 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash under idev->lock syzbot reported a splat [1]

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53258 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: fix leak if split 6 GHz scanning fails rdev->int_scan_req is leaked if cfg80211_s

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53257 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: enforce HE/EHT cap/oper consistency Xiang Mei reports that mac80211 cou

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53256 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: hold listener socket in rfcomm_connect_ind() rfcomm_get_sock_by_chan

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53255 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate advertising TLV before type checks tlv_data_is_valid() reads

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53254 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: validate skb length in MCC handlers The RFCOMM MCC handlers cast skb

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53253 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: reject short frames before parsing A BNEP peer can send a short BNEP S

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53252 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix memory leak in error path of hci_alloc_dev() Early failures in Bluetooth

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53251 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix not releasing hdev reference on iso_conn_big_sync hci_get_route() r

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53250 Unscored

In the Linux kernel, the following vulnerability has been resolved: xsk: cache csum_start/csum_offset to fix TOCTOU in xsk_skb_metadata() The TX metadata a

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53249 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipv4: restrict IPOPT_SSRR and IPOPT_LSRR options This patch restricts setting Loose Sou

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53248 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix use-after-free in metadata dst teardown airoha_metadata_dst_free() run

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53247 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: Fix use-after-free in metadata dst teardown mtk_free_dev()

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53246 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk length in COOKIE_ECHO processing When a listening

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53245 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattr In mrp_pdu_parse_vec

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53244 Unscored

In the Linux kernel, the following vulnerability has been resolved: VFS: fix possible failure to unlock in nfsd4_create_file() atomic_create() in fs/namei.

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53243 Unscored

In the Linux kernel, the following vulnerability has been resolved: rseq: Fix using an uninitialized stack variable in rseq_exit_user_update() There is an

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53242 Unscored

In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams snd_pcm_

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53241 Unscored

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53240 Unscored

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix use-after-free on first_skb in __input_process_payload __input_process

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53239 Unscored

In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexact bin in xfrm_policy_bysel_ctx() Fix the race

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53238 Unscored

In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlbl_unlabel_addrinfo

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53237 Unscored

In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix NULL pointer dereference in suspend/resume mvebu_pwm_suspend() and mve

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53236 Unscored

In the Linux kernel, the following vulnerability has been resolved: tcp: restrict SO_ATTACH_FILTER to priv users This patch restricts the use of SO_ATTACH_

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53235 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receive_list() skb_gro_receive_list() calls skb_pul

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53234 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during device removal The driver was using devm_regi

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53233 Unscored

In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_rx_doit() Sashiko flags that genlmsg_reply()

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53232 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy probing fails Sashiko reported that we don't ca

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53231 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: phy: don't try to setup PHY-driven SFP cages when using genphy We don't have suppo

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53230 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list mlx5_query_nic_vport_

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53229 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdp_frame leak on XDP_TX xmit failure In the XSK branch of

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53228 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after GSO offloads ipip6_tunnel_xmit() caches the i

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53227 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix possible kfree_skb of ERR_PTR After the patch in the "Fixes" tag,

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53226 Unscored

In the Linux kernel, the following vulnerability has been resolved: gpio: rockchip: fix generic IRQ chip leak on remove The driver allocates domain generic

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53225 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: fix uninit-value in __sctp_rcv_asconf_lookup() __sctp_rcv_asconf_lookup() in net/

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53224 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: validate embedded INIT chunk and address list lengths in cookie sctp_unpack_cooki

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53223 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error queue skbs skb_is_err_queue() treats PACKET_OU

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53222 Unscored

In the Linux kernel, the following vulnerability has been resolved: ptp: ocp: fix resource freeing order Commit a60fc3294a37 ("ptp: rework ptp_clock_unregi

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53221 Unscored

In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix incorrect tunnel matching in vti6_tnl_lookup() In vti6_tnl_lookup(), when

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53220 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: revalidate bridge ports ebt_redirect_tg() dereferences br_port_get_rcu() ret

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53219 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: avoid leaking percpu counter pointers The native and compat get-en

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53218 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_exthdr: fix register tracking for F_PRESENT flag nft_exthdr_init() passe

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53217 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware packet offset mvpp2 programs the RX queue pack

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53216 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: limit XDP frame size to the RX buffer mvpp2 has short and long BM pools, an

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53215 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP or skb use The RX error path returns the curre

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53214 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix a potential NPD in cleanup_prefix_route() addrconf_get_prefix_route() can ret

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53213 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: fix krealloc() memory leak Don't just overwrite the original pointer passed to

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53212 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix use-after-free on object destroy nft_tunnel_obj_destroy() ca

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53211 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_meta_bridge: fix stale stack leak via IIFHWADDR register NFT_META_BRI_II

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53210 Unscored

In the Linux kernel, the following vulnerability has been resolved: tee: shm: fix shm leak in register_shm_helper() register_shm_helper() allocates shm bef

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53209 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broadcast Announcement prepend Existing advertisi

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53208 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2cap_core.

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53207 Unscored

In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix hugetlb_lock AA deadlock in get_huge_page_for_hwpoison Two concu

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53206 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds check for firmware runtime memory Validate that the firmware run

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53205 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware log indices Add validation that read and wri

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53204 Unscored

In the Linux kernel, the following vulnerability has been resolved: firmware: stratix10-rsu: Fix NULL deref on rsu_send_msg() timeout in probe rsu_send_msg

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53203 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in MS get_info_ioctl Add validation that the info

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53202 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation in IPC receive Fix potential buffer overflow

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53201 Unscored

In the Linux kernel, the following vulnerability has been resolved: Revert "drm/xe: Skip exec queue schedule toggle if queue is idle during suspend" This r

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53200 Unscored

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX XN has already been extracted from

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53199 Unscored

In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: use kmap_local_page in netvsc_copy_to_send_buf netvsc_copy_to_send_buf() cop

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53198 Unscored

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of a deferred file_lock on double SMB2_CANCEL A deferred byte

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53197 Unscored

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix ABBA deadlock in iptfs_destroy_state() iptfs_destroy_state() calls hrt

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53196 Unscored

In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_ti: fix heap overflow in get_manuf_info() get_manuf_info() reads le16_t

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53195 Unscored

In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() build_i2c_fw_hdr() allocate

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53194 Unscored

In the Linux kernel, the following vulnerability has been resolved: USB: serial: kl5kusb105: fix bulk-out buffer overflow klsi_105_prepare_write_buffer() i

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53193 Unscored

In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Forcibly close timer instances at closing When snd_timer object is freed v

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53192 Unscored

In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at snd_timer_user_params() At releasing a timer object, e.g. when

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53191 Unscored

In the Linux kernel, the following vulnerability has been resolved: io_uring/net: inherit IORING_CQE_F_BUF_MORE across bundle recv retries When a bundle re

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53190 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() dma_fen

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53189 Unscored

In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter before folio_put() __split_huge_pmd_locked() up

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53188 Unscored

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate the passed in fops for ib_get_ucaps() Sashiko pointed out it is not

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53187 Unscored

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpu_id against nr_cpu_ids in DMAH alloc The cpu_id attribute suppli

25 Jun 2026, 08:39 UTC View advisory →
CVE-2026-53186 Unscored

In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRP_RSP sense copy by the received length srp_process_rsp() copies sens

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53185 Unscored

In the Linux kernel, the following vulnerability has been resolved: zram: fix use-after-free in zram_bvec_write_partial() zram_read_page() picks the sync o

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53184 Unscored

In the Linux kernel, the following vulnerability has been resolved: udp: clear skb->dev before running a sockmap verdict On the UDP receive path skb->dev i

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53183 Unscored

In the Linux kernel, the following vulnerability has been resolved: mptcp: allow subflow rcv wnd to shrink In MPTCP connection, the `window` field in the T

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53182 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject oversized EMA RNR lists nl80211_parse_rnr_elems() stores the pars

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53181 Unscored

In the Linux kernel, the following vulnerability has been resolved: vsock/vmci: fix sk_ack_backlog leak on failed handshake When vmci_transport_recv_connec

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53180 Unscored

In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix livelock in tmigr_handle_remote_up() tmigr_handle_remote_cpu() sk

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53179 Unscored

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix buffer over-read in rtw_update_protection rtw_update_protection

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53178 Unscored

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: rtw_mlme: add bounds checks before ie_length subtraction Add guards

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53177 Unscored

In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix NULL pointer dereference PCIe errors detected by a Root Port or Downstream

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53176 Unscored

In the Linux kernel, the following vulnerability has been resolved: IB/isert: Reject login PDUs shorter than ISER_HEADERS_LEN In drivers/infiniband/ulp/ise

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53175 Unscored

In the Linux kernel, the following vulnerability has been resolved: inet: frags: fix use-after-free caused by the fqdir_pre_exit() flush On netns teardown,

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53174 Unscored

In the Linux kernel, the following vulnerability has been resolved: ovl: keep err zero after successful ovl_cache_get() ovl_iterate_merged() stores PTR_ERR

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53173 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix OOB write in ethosu_gem_cmdstream_copy_and_validate() The command str

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53172 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix IFM region index out-of-bounds in command stream parser NPU_SET_IFM_R

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53171 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma_length() dma_length() derives DMA region usa

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53170 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uninitialized length cmd_state_init() initialize

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53169 Unscored

In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject NPU_OP_RESIZE commands from userspace NPU_OP_RESIZE is a U85-only

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53168 Unscored

In the Linux kernel, the following vulnerability has been resolved: fuse: reject fuse_notify() pagecache ops on directories The operations FUSE_NOTIFY_STOR

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53167 Unscored

In the Linux kernel, the following vulnerability has been resolved: fuse: limit FUSE_NOTIFY_RETRIEVE to uptodate folios FUSE_NOTIFY_RETRIEVE must be limite

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53166 Unscored

In the Linux kernel, the following vulnerability has been resolved: futex/requeue: Prevent NULL pointer dereference in remove_waiter() on self-deadlock Whe

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53165 Unscored

In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping deref during error reporting When a buffered

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53164 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu/dma: Do not try to iommu_map a 0 length region in swiotlb iommu_dma_iova_link_swi

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53163 Unscored

In the Linux kernel, the following vulnerability has been resolved: locking/rtmutex: Skip remove_waiter() when waiter is not enqueued syzbot triggered the

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53162 Unscored

In the Linux kernel, the following vulnerability has been resolved: memcg: use round-robin victim selection in refill_stock Harry Yoo reported that get_ran

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53161 Unscored

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context There is a race

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53160 Unscored

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in fastrpc_map_create fastrpc_map_lookup returns

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53159 Unscored

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix DMA address corruption due to find_vma misuse fastrpc_get_args() use

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53158 Unscored

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix NULL pointer dereference in rpmsg callback A NULL pointer dereferenc

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53157 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU grace period phonet_device_destroy() removes

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53156 Unscored

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after-free bugs in error paths Fix several instances of error path

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53155 Unscored

In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: use correct flags for device private PMD entry Commit 65edfda6f3f2 ("mm

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53154 Unscored

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: restore reservation on error in hugetlb folio copy paths Two sites in mm/hu

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53153 Unscored

In the Linux kernel, the following vulnerability has been resolved: mm/list_lru: drain before clearing xarray entry on reparent memcg_reparent_list_lrus()

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53152 Unscored

In the Linux kernel, the following vulnerability has been resolved: mmc: dw_mmc-rockchip: Add missing private data for very old controllers The really old

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53151 Unscored

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the SACK table for parsing Fix modification of the

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53150 Unscored

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Reject zero-length property entries in validator tb_property_entry_valid()

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53149 Unscored

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Bound root directory content to block size __tb_property_parse_dir() does

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53148 Unscored

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data copy to allocation size tb_xdp_properties_requ

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53147 Unscored

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tb_xdp_handle_reques

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53146 Unscored

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Limit XDomain response copy to actual frame size tb_xdomain_copy() copies

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53145 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Try to fix change_handle ioctl, attempt 4 [airlied: just added some comments o

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53144 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: fix NULL dereference in get_queue_ids() When usr_queue_id_array is NULL and

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53143 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix buffer overflow in SDMA queue checkpoint/restore on GFX11 The v11 MQD m

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53142 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/xe/display: fix oops in suspend/shutdown without display The xe driver keeps track

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53141 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix global performance monitor reference counting In the SET_GLOBAL ioctl, v3d

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53140 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups v3d_rewrite_csd_job_wg_

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53139 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its w

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53138 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain walk loops [Why & How] All record-chain walk

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53137 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp HDMI HDCP2 rx_id_list read to buffer size [Why & How] During HDC

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53136 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer register count to array size [Why & How] The

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53135 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs [Why & How] dp_sdp_

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53134 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_fib: fix stale stack leak via the OIFNAME register For NFT_FIB_RESULT_OI

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53133 Unscored

In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix truncation for block sizes >= 4G When the iommu is used the linearizatio

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53132 Unscored

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb queue virtio_transport_inc_rx_pkt() checks vv

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53131 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header before using eth_hdr() `ip6t_eui64`, `xt_mac`, t

25 Jun 2026, 08:38 UTC View advisory →
CVE-2026-53130 Unscored

In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject s_sys_blocksize smaller than OMFS_DIR_START omfs_fill_super() rejects o

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53129 Unscored

In the Linux kernel, the following vulnerability has been resolved: fs/mbcache: cancel shrink work before destroying the cache mb_cache_destroy() calls shr

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53128 Unscored

In the Linux kernel, the following vulnerability has been resolved: drbd: Balance RCU calls in drbd_adm_dump_devices() Make drbd_adm_dump_devices() call rc

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53127 Unscored

In the Linux kernel, the following vulnerability has been resolved: block: fix zones_cond memory leak on zone revalidation error paths When blk_revalidate_

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53126 Unscored

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current() Add the missing p

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53125 Unscored

In the Linux kernel, the following vulnerability has been resolved: md: fix array_state=clear sysfs deadlock When "clear" is written to array_state, md_att

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53124 Unscored

In the Linux kernel, the following vulnerability has been resolved: ublk: reset per-IO canceled flag on each fetch If a ublk server starts recovering devic

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53123 Unscored

In the Linux kernel, the following vulnerability has been resolved: md: wake raid456 reshape waiters before suspend During raid456 reshape, direct IO acros

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53122 Unscored

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix deadlock between reflink and transaction commit when using flushoncommit Whe

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53121 Unscored

In the Linux kernel, the following vulnerability has been resolved: amd-pstate: Fix memory leak in amd_pstate_epp_cpu_init() On failure to set the epp, the

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53120 Unscored

In the Linux kernel, the following vulnerability has been resolved: PCI: use generic driver_override infrastructure When a driver is probed through __drive

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53119 Unscored

In the Linux kernel, the following vulnerability has been resolved: platform/wmi: use generic driver_override infrastructure When a driver is probed throug

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53118 Unscored

In the Linux kernel, the following vulnerability has been resolved: vdpa: use generic driver_override infrastructure When a driver is probed through __driv

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53117 Unscored

In the Linux kernel, the following vulnerability has been resolved: s390/cio: use generic driver_override infrastructure When a driver is probed through __

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53116 Unscored

In the Linux kernel, the following vulnerability has been resolved: s390/ap: use generic driver_override infrastructure When the AP masks are updated via a

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53115 Unscored

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: use generic driver_override infrastructure When a driver is probed through

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53114 Unscored

In the Linux kernel, the following vulnerability has been resolved: perf/amd/ibs: Avoid calling perf_allow_kernel() from the IBS NMI handler Calling perf_a

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53113 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix memory leaks in beacon template setup The functions ath11k_mac_setup_

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53112 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_ta

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53111 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: test_run: Fix the null pointer dereference issue in bpf_lwt_xmit_push_encap The bp

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53110 Unscored

In the Linux kernel, the following vulnerability has been resolved: s390/bpf: Zero-extend bpf prog return values and kfunc arguments s390x ABI requires cal

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53109 Unscored

In the Linux kernel, the following vulnerability has been resolved: powerpc/pgtable-frag: Fix bad page state in pte_frag_destroy powerpc uses pt_frag_refco

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53108 Unscored

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix unmap race with PMD migration entries The following race is possible w

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53107 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: don't kill URBs in interrupt context Serialization for the TX path was

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53106 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not allow deleting local storage in NMI Currently, local storage may deadlock w

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53105 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL vif dereference in mt7925_mac_write_txwi Check for a N

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53104 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix memory leak destroying device All MT76 rx queues have an associated pag

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53103 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix potential deadlock in mt7925_roc_abort_sync roc_abort_sync() ca

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53102 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix memory leak after mt76_connac_mcu_alloc_sta_req() mt76_connac_mcu_alloc

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53101 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix potential deadlock in mt7921_roc_abort_sync roc_abort_sync() ca

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53100 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: fix deadlock in remain-on-channel mt76_remain_on_channel() and mt76_roc_com

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53099 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Switch CONFIG_CFI_CLANG to CONFIG_CFI This was renamed in commit 23ef9d439769 ("kc

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53098 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() When the mt7915 p

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53097 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix use-after-free bugs in mt7996_mac_dump_work() When the mt7996 p

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53096 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Use RCU-safe iteration in dev_map_redirect_multi() SKB path The DEVMAP_HASH branch

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53095 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix abuse of kprobe_write_ctx via freplace uprobe programs are allowed to modify s

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53094 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stale offload->prog pointer after constant blinding When a dev-bound-only BPF

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53093 Unscored

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix error pointer dereference The function brcmf_chip_add_core() can re

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53092 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when src_reg == dst_reg Consider the case of rX += r

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53091 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: pull headers in qdisc_pkt_len_segs_init() Most ndo_start_xmit() methods expects he

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53090 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ld_{abs,ind} failure path analysis in subprogs Usage of ld_{abs,ind} instructi

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53089 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in offloaded map/prog info fill When querying info for an offlo

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53088 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix off-by-one in bcmgenet_put_txcb The write_ptr points to the next ope

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53087 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix leaking free_bds While reclaiming the tx queue we fast forward the w

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53086 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix racing timeout handler The bcmgenet_timeout handler tries to take do

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53085 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded task_vma iterator The open-coded task_vma iterator

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53084 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: return VMA snapshot from task_vma iterator Holding the per-VMA lock across the BPF

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53083 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix RCU stall in bpf_fd_array_map_clear() Add a missing cond_resched() in bpf_fd_a

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53082 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: hamradio: 6pack: fix uninit-value in sixpack_receive_buf sixpack_receive_buf() doe

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53081 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency for BPF_ADD_CONST scalars When regsafe() compa

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53080 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/sched: cls_fw: fix NULL dereference of "old" filters before change() Like pointed o

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53079 Unscored

In the Linux kernel, the following vulnerability has been resolved: net_sched: fix skb memory leak in deferred qdisc drops When the network stack cleans up

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53078 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix same-register dst/src OOB read and pointer leak in sock_ops When a BPF sock_op

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53077 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/rds: Restrict use of RDS/IB to the initial network namespace Prevent using RDS/IB i

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53076 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix OOB in pcpu_init_value An out-of-bounds read occurs when copying element from

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53075 Unscored

In the Linux kernel, the following vulnerability has been resolved: ppp: require CAP_NET_ADMIN in target netns for unattached ioctls /dev/ppp open is curre

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53074 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: reject short IPv4/IPv6 inputs in bpf_prog_test_run_skb bpf_prog_test_run_skb() cal

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53073 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error When hci_register_dev() fails

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53072 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER When protocol set

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53071 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp l2cap_ecred_reconf_rs

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53070 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: disable BH before calling udp_tunnel_xmit_skb() udp_tunnel_xmit_skb() / udp_tunne

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53069 Unscored

In the Linux kernel, the following vulnerability has been resolved: net, bpf: fix null-ptr-deref in xdp_master_redirect() for down master syzkaller reporte

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53068 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/komeda: fix integer overflow in AFBC framebuffer size check The AFBC framebuffer si

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53067 Unscored

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-ep-msi: Fix error unwind and prevent double alloc pci_epf_alloc_door

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53066 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/sun4i: backend: fix error pointer dereference The function drm_atomic_get_plane_sta

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53065 Unscored

In the Linux kernel, the following vulnerability has been resolved: ASoC: sti: use managed regmap_field allocations The regmap_field objects allocated at p

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53064 Unscored

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix null-deref with concurrent writes in passthrough mode In passthrough mode

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53063 Unscored

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix write hang in passthrough mode The invalidate_remove() function has incom

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53062 Unscored

In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: fix missing locks in invalidating cache blocks In passthrough mode

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53061 Unscored

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix dirty mapping checking in passthrough mode switching As mentioned in comm

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53060 Unscored

In the Linux kernel, the following vulnerability has been resolved: dm cache metadata: fix memory leak on metadata abort retry When failing to acquire the

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53059 Unscored

In the Linux kernel, the following vulnerability has been resolved: dm log: fix out-of-bounds write due to region_count overflow The local variable region_

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53058 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enabl

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53057 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Add IOTINVAL after updating DDT/PDT entries Add riscv_iommu_iodir_iotinval

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53056 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: fix mismatch between power and frequency During DPU runtime suspend, calli

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53055 Unscored

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec2 - prevent req used-after-free for sec During packet transmission

24 Jun 2026, 16:30 UTC View advisory →
CVE-2026-53054 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix VM_BIND UNMAP locking Wrong argument meant that the objs involved in UNMAP

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53053 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix clone_alias() to use the original device's devid Currently clone_alias()

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53052 Unscored

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: qdsp6: topology: check widget type before accessing data Check widget type

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53051 Unscored

In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Fix CBB timeout caused by DBI access before core power-on When PERST# is

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53050 Unscored

In the Linux kernel, the following vulnerability has been resolved: quota: Fix race of dquot_scan_active() with quota deactivation dquot_scan_active() can

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53049 Unscored

In the Linux kernel, the following vulnerability has been resolved: gfs2: add some missing log locking Function gfs2_logd() calls the log flushing function

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53048 Unscored

In the Linux kernel, the following vulnerability has been resolved: gfs2: prevent NULL pointer dereference during unmount When flushing out outstanding glo

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53047 Unscored

In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect sizeof in phys array reallocation The krealloc() call

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53046 Unscored

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free from async crypto on Qualcomm crypto engine ksmbd_crypt_messa

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53045 Unscored

In the Linux kernel, the following vulnerability has been resolved: memory: tegra124-emc: Fix dll_change check The code checking whether the specified memo

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53044 Unscored

In the Linux kernel, the following vulnerability has been resolved: soc/tegra: cbb: Fix incorrect ARRAY_SIZE in fabric lookup tables Fix incorrect ARRAY_SI

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53043 Unscored

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: validate qr_numregions in dlm_match_regions() Patch series "ocfs2/dlm: fix t

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53042 Unscored

In the Linux kernel, the following vulnerability has been resolved: fwctl: Fix class init ordering to avoid NULL pointer dereference on device removal CXL

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53041 Unscored

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix listxattr handling when the buffer is full [BUG] If an OCFS2 inode has both

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53040 Unscored

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate bg_bits during freefrag scan [BUG] A crafted filesystem can trigger an

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53039 Unscored

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate group add input before caching [BUG] OCFS2_IOC_GROUP_ADD can trigger a

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53038 Unscored

In the Linux kernel, the following vulnerability has been resolved: ima_fs: Correctly create securityfs files for unsupported hash algos ima_tpm_chip->allo

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53037 Unscored

In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix deadlock in hid_post_reset() You can build a USB device that includes

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53036 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix off-by-one in check_imm signed range check check_imm(bits, imm) is used

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53035 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix af_unix iter deadlock bpf_iter_unix_seq_show() may deadlock when lock

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53034 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix af_unix null-ptr-deref in proto update unix_stream_connect() sets sk_

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53033 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for af_unix iter When a BPF iterator program updates a so

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53032 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL deref in map_kptr_match_type for scalar regs Commit ab6c637ad027 ("bpf: F

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53031 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate node_id in arena_alloc_pages() arena_alloc_pages() accepts a plain int no

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53030 Unscored

In the Linux kernel, the following vulnerability has been resolved: i3c: master: renesas: Fix memory leak in renesas_i3c_i3c_xfers() The xfer structure all

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53029 Unscored

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: prevent uninitialized lcn caused by zero len syzbot reported a uninit-value i

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53028 Unscored

In the Linux kernel, the following vulnerability has been resolved: usb: typec: Fix error pointer dereference The variable tps->partner is checked for an e

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53027 Unscored

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: fix missing run load for vcn0 in attr_data_get_block_locked() When a compress

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53026 Unscored

In the Linux kernel, the following vulnerability has been resolved: NFSD: fix nfs4_file access extra count in nfsd4_add_rdaccess_to_wrdeleg In nfsd4_add_rd

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53025 Unscored

In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free on cdev close This addresses a use-after-free bug when

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53024 Unscored

In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free if write is called after disconnect If a user writes t

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53023 Unscored

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: terminate the cached volume label after UTF-8 conversion ntfs_fill_super() lo

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53022 Unscored

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populate_enum_data(

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53021 Unscored

In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix integer overflow in UNMAP bounds check sbc_execute_unmap() chec

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53020 Unscored

In the Linux kernel, the following vulnerability has been resolved: um: Fix potential race condition in TLB sync During the TLB sync, we need to traverse a

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53019 Unscored

In the Linux kernel, the following vulnerability has been resolved: clk: spacemit: ccu_mix: fix inverted condition in ccu_mix_trigger_fc() Fix inverted con

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53018 Unscored

In the Linux kernel, the following vulnerability has been resolved: f2fs: avoid reading already updated pages during GC We found the following issue during

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53017 Unscored

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix data loss caused by incorrect use of nat_entry flag Data loss can occur when

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53016 Unscored

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsize AF_ALG rfc3686-ctr-aes-ccp requests pass an

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53015 Unscored

In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported [1], `lcn` was typed a

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53014 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mirred: fix wrong device for mac_header_xmit check in tcf_blockcast_redi

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53013 Unscored

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix macvlan_get_size() not reserving space for IFLA_MACVLAN_BC_CUTOFF macvlan_

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53012 Unscored

In the Linux kernel, the following vulnerability has been resolved: nexthop: fix IPv6 route referencing IPv4 nexthop syzbot reported a panic [1] [2]. When

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53011 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix use-after-free in advance_sched() on schedule switch In advance_

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53010 Unscored

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2_open during durable reconnect In smb2_open, the call

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53009 Unscored

In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_tso() or ice_tx_csum() fail, the error path i

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53008 Unscored

In the Linux kernel, the following vulnerability has been resolved: ice: fix race condition in TX timestamp ring cleanup Fix a race condition between ice_f

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53007 Unscored

In the Linux kernel, the following vulnerability has been resolved: ice: fix potential NULL pointer deref in error path of ice_set_ringparam() ice_set_ring

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53006 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Caching saddr and daddr before pskb_pull() is pr

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53005 Unscored

In the Linux kernel, the following vulnerability has been resolved: af_unix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AF_UNIX

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53004 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: fix OOB write to userspace in sctp_getsockopt_peer_auth_chunks sctp_getsockopt_pe

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53003 Unscored

In the Linux kernel, the following vulnerability has been resolved: pppoe: drop PFC frames RFC 2516 Section 7 states that Protocol Field Compression (PFC)

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53002 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage Replace it with scnprintf, the buffer sizes

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53001 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict several matches to inet family This is a partial revert of

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-53000 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release ops Florian Westphal says: "Historically this

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52999 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix out-of-bounds read on option matching In nf_osf_match(),

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52998 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix potential NULL dereference in ttl check The nf_osf_ttl()

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52997 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_dualpi2: drain both C-queue and L-queue in dualpi2_change() Fix dualpi2_

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52996 Unscored

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix durable fd leak on ClientGUID mismatch in durable v2 open ksmbd_lookup_fd_cg

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52995 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/rds: zero per-item info buffer before handing it to visitors rds_for_each_conn_info

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52994 Unscored

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix MSG_ZEROCOPY pinned-pages accounting virtio_transport_init_zcopy_skb(

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52993 Unscored

In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipc_buf_append() tipc_msg_validate() can potentially realloca

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52992 Unscored

In the Linux kernel, the following vulnerability has been resolved: fs/adfs: validate nzones in adfs_validate_bblk() Reject ADFS disc records with a zero z

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52991 Unscored

In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release and pressure write A potential race condition

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52990 Unscored

In the Linux kernel, the following vulnerability has been resolved: fsnotify: fix inode reference leak in fsnotify_recalc_mask() fsnotify_recalc_mask() fai

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52989 Unscored

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers Currently, when

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52988 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: join hook list via splice_list_rcu() in commit phase Publish new

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52987 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid double drm_exec_fini() in userq validate When new_addition is true, a

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52986 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_sip: don't use simple_strtoul Replace unsafe port parsing in ep

24 Jun 2026, 16:29 UTC View advisory →
CVE-2026-52985 Unscored

In the Linux kernel, the following vulnerability has been resolved: netdevsim: zero initialize struct iphdr in dummy sk_buff Syzbot reports a KMSAN uninit-

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52984 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/sched: netem: fix queue limit check to include reordered packets The queue limit ch

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52983 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: airoha: fix BQL imbalance in TX path Fix a possible BQL imbalance in airoha_dev_xm

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52982 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() syzbot reported a KASAN s

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52981 Unscored

In the Linux kernel, the following vulnerability has been resolved: neigh: let neigh_xmit take skb ownership neigh_xmit always releases the skb, except whe

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52980 Unscored

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Clear rel_deadline when initializing forked entities A yield-triggered cras

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52979 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: psp: check for device unregister when creating assoc psp_assoc_device_get_locked()

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52978 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: psp: require admin permission for dev-set and key-rotate The dev-set and key-rotat

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52977 Unscored

In the Linux kernel, the following vulnerability has been resolved: futex: Prevent lockup in requeue-PI during signal/ timeout wakeup During wait-requeue-p

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52976 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xe_exec_queue_create_ioctl() Two error handling issues exi

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52975 Unscored

In the Linux kernel, the following vulnerability has been resolved: bonding: 3ad: implement proper RCU rules for port->aggregator syzbot found a data-race

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52974 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: tls: fix strparser anchor skb leak on offload RX setup failure When tls_set_device

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52973 Unscored

In the Linux kernel, the following vulnerability has been resolved: futex: Drop CLONE_THREAD requirement for private default hash alloc Currently need_fute

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52972 Unscored

In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overfl

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52971 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in get_timestamp Move the phc->active check

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52970 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: fix missing expect put in obj eval nft_ct_expect_obj_eval() allocate

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52969 Unscored

In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() kvm_reset_dirty_gfn() guards the gf

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52968 Unscored

In the Linux kernel, the following vulnerability has been resolved: KVM: s390: pci: fix GAIT table indexing due to double-scaling pointer arithmetic kvm_s3

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52967 Unscored

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlink_data() On 32-bit archite

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52966 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm: Replace old pointer to new idr Commit 5e28b7b94408 introduced a logical error by f

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52965 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttm_bo_swapout() infinite LRU walk on swapout failure When ttm_tt_swapout(

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52964 Unscored

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans The USB MIDI 2.0 endpoint par

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52963 Unscored

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Bound MIDI endpoint descriptor scans snd_usbmidi_get_ms_info() validat

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52962 Unscored

In the Linux kernel, the following vulnerability has been resolved: ceph: fix a buffer leak in __ceph_setxattr() The old_blob in __ceph_setxattr() can stor

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52961 Unscored

In the Linux kernel, the following vulnerability has been resolved: ceph: fix BUG_ON in __ceph_build_xattrs_blob() due to stale blob size The generic/642 t

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52960 Unscored

In the Linux kernel, the following vulnerability has been resolved: ceph: put folios not suitable for writeback The batch holds references to the folios (s

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52959 Unscored

In the Linux kernel, the following vulnerability has been resolved: virt: sev-guest: Do not use host-controlled page order in cleanup path When issuing an

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52958 Unscored

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in osdmap_decode() When decoding osd_state

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52957 Unscored

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential null-ptr-deref in decode_choose_args() A message of type CEPH_MS

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52956 Unscored

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in __ceph_x_decrypt() In __ceph_x_decrypt()

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52955 Unscored

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in crush_decode() A message of type CEPH_MS

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52954 Unscored

In the Linux kernel, the following vulnerability has been resolved: libceph: handle rbtree insertion error in decode_choose_args() A message of type CEPH_M

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52953 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix oops due to out of scope access Below oops triggers when kill QEMU proc

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52952 Unscored

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARN_ON in __iommu_group_set_domain_nofail() due to reset In __iommu_group_s

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52951 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: handle empty bo and UAF races There look to be some nasty races here wh

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52950 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since bo will be freed

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52949 Unscored

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttm_bo_shrink() infinite LRU walk on backup failure Apply the same fix as

24 Jun 2026, 16:28 UTC View advisory →
CVE-2026-52948 Unscored

In the Linux kernel, the following vulnerability has been resolved: i2c: dev: prevent integer overflow in I2C_TIMEOUT ioctl While fuzzing with Syzkaller, a

24 Jun 2026, 16:26 UTC View advisory →
CVE-2026-52947 Unscored

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: fix refcount saturation and potential UAF in qrtr_port_remove In qrtr_port_r

24 Jun 2026, 16:26 UTC View advisory →
CVE-2026-52946 Unscored

In the Linux kernel, the following vulnerability has been resolved: fs/fcntl: fix SOFTIRQ-unsafe lock order in fasync signaling A SOFTIRQ-safe to SOFTIRQ-u

24 Jun 2026, 16:26 UTC View advisory →
CVE-2026-52945 Unscored

In the Linux kernel, the following vulnerability has been resolved: Revert "wireguard: device: enable threaded NAPI" This reverts commit 933466fc50a8e4eb16

24 Jun 2026, 16:26 UTC View advisory →
CVE-2026-52942 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_log: validate MAC header was set before dumping it The fallback path of d

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52941 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid NULL deref of conn->lnk in smc_msg_event tracepoint The smc_msg_event tr

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52940 Unscored

In the Linux kernel, the following vulnerability has been resolved: tun: zero the whole vnet header in tun_put_user() tun_put_user() declares an on-stack s

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52939 Unscored

In the Linux kernel, the following vulnerability has been resolved: net/rds: fix NULL deref in rds_ib_send_cqe_handler() on masked atomic completion rds_ib

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52938 Unscored

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL pointer dereference in bpf_sk_storage_clone and diag paths bpf_selem_unli

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52937 Unscored

In the Linux kernel, the following vulnerability has been resolved: tap: fix stack info leak in tap_ioctl() SIOCGIFHWADDR In the SIOCGIFHWADDR path, tap_io

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52936 Unscored

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jent_kcapi_random() seria

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52935 Unscored

In the Linux kernel, the following vulnerability has been resolved: xfrm: espintcp: do not reuse an in-progress partial send espintcp keeps a single in-fli

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52934 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: tvlv: reject oversized TVLV packets batadv_tvlv_container_ogm_append() buil

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52933 Unscored

In the Linux kernel, the following vulnerability has been resolved: io_uring/poll: fix signed comparison in io_poll_get_ownership() io_poll_get_ownership()

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52932 Unscored

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the out_free_req label up by

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52931 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: tp_meter: avoid use of uninit sender vars batadv_tp_recv_ack() and batadv_t

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52930 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipc/shm: serialize orphan cleanup with shm_nattch updates shm_destroy_orphaned() walks

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52929 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: stream: fully roll back denied add-stream state When ADD_OUT_STREAMS is denied, S

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52928 Unscored

In the Linux kernel, the following vulnerability has been resolved: af_unix: Reject SIOCATMARK on non-stream sockets SIOCATMARK reports whether the receive

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52927 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compat_mtw_from_user Luxiao Xu says: The function

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52926 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: clear current gateway during teardown batadv_gw_node_free() removes the gat

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52925 Unscored

In the Linux kernel, the following vulnerability has been resolved: vrf: Fix a potential NPD when removing a port from a VRF RCU readers that identified a

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52924 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctp_stream_update() is only invoked

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52923 Unscored

In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid ID range The checkpoint/restore sysctl path

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52922 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: dat: handle forward allocation error batadv_dat_forward_data() calls pskb_c

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52921 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: stop hash:* range iteration at end The following hash set variants: h

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52920 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_policy: fix strict mode inbound policy matching match_policy_in() walks s

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52919 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix tp_meter counter underflow during shutdown batadv_tp_sender_shutdown()

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52918 Unscored

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: serialize accept_q access bt_sock_poll() walks the accept queue without sync

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52917 Unscored

In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dump_one path The SCTP exact sock_diag lookup

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52916 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: frag: disallow unicast fragment in fragment batadv_frag_skb_buffer() is cal

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52915 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_hbh: reject oversized option lists struct ip6t_opts stores at most IP6T

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52914 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payloa

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52913 Unscored

In the Linux kernel, the following vulnerability has been resolved: batman-adv: v: stop OGMv2 on disabled interface When a batadv_hard_iface is disabled, i

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52912 Unscored

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: hold bridge skb->dev while queued br_pass_frame_up() rewrites skb-

24 Jun 2026, 07:14 UTC View advisory →
CVE-2026-52885 High 7.5

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.4, NppCommands.cpp checks the HMAC of the on-disk shortcuts.xml at the moment a user

26 Jun 2026, 20:19 UTC View advisory →
CVE-2026-52884 High 7.8

Notepad++ is a free and open-source source code editor. In v8.9.6.1, isInTrustedDirectory() does NOT canonicalize the path before checking. It uses a prefi

26 Jun 2026, 20:11 UTC View advisory →
CVE-2026-52868 High 8.8

An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist storage area. In a multi-area deployment, this

30 Jun 2026, 21:06 UTC View advisory →
CVE-2026-52846 Medium 4.2

Caddy is an extensible server platform that uses TLS by default. Prior to 2.11.4, Caddy’s stripHTML template function cannot reliably remove all HTML tags

23 Jun 2026, 17:47 UTC View advisory →
CVE-2026-52845 High 8.1

Caddy is an extensible server platform that uses TLS by default. Prior to 2.11.4, forward_auth copy_headers deletes the exact client-supplied identity head

23 Jun 2026, 17:52 UTC View advisory →
CVE-2026-52844 High 7.5

Caddy is an extensible server platform that uses TLS by default. Prior to 2.11.4, on Windows, Caddy path matchers treat /private\secret.txt as outside /pri

23 Jun 2026, 17:50 UTC View advisory →
CVE-2026-52816 Medium 5.4

Gogs is an open source self-hosted Git service. Prior to 0.14.3, the Jupyter Notebook (ipynb) sanitizer endpoint at POST /-/api/sanitize_ipynb allows arbit

24 Jun 2026, 20:26 UTC View advisory →
CVE-2026-52815 Medium 5.5

Gogs is an open source self-hosted Git service. Prior to 0.14.3, Gogs has an unauthenticated information disclosure vulnerability. The GET /api/v1/orgs/:or

24 Jun 2026, 20:01 UTC View advisory →
CVE-2026-52814 Medium 5.5

Gogs is an open source self-hosted Git service. Prior to 0.14.3, the Gogs built-in Go SSH server is vulnerable to an unauthenticated, asymmetric Denial of

24 Jun 2026, 20:15 UTC View advisory →
CVE-2026-52813 Critical 10

Gogs is an open source self-hosted Git service. Prior to 0.14.3, organization names containing path traversal sequences (../) are accepted by Gogs, and rep

24 Jun 2026, 20:33 UTC View advisory →
CVE-2026-52812 High 7.1

Gogs is an open source self-hosted Git service. Prior to 0.14.3, Git LFS storage is content-addressed by OID alone (///) but per-repo authorization lives i

24 Jun 2026, 20:32 UTC View advisory →
CVE-2026-52811 Critical 9

Gogs is an open source self-hosted Git service. Prior to 0.14.3, (*Repository).UploadRepoFiles checks for symlinks only on the leaf of the upload target (o

24 Jun 2026, 20:31 UTC View advisory →
CVE-2026-52810 High 7.1

Gogs is an open source self-hosted Git service. Prior to 0.14.3, Git smart HTTP authorizes POST …/git-receive-pack using the client-supplied service query

24 Jun 2026, 20:30 UTC View advisory →
CVE-2026-52809 Medium 6.8

Gogs is an open source self-hosted Git service. Prior to 0.14.3, password-reset tokens are generated using conf.Auth.ActivateCodeLives (the account-activat

24 Jun 2026, 20:29 UTC View advisory →
CVE-2026-52808 High 7.1

Gogs is an open source self-hosted Git service. Prior to 0.14.3, three API endpoints — PATCH /api/v1/repos/:owner/:repo/issue-tracker, PATCH /api/v1/repos/

24 Jun 2026, 20:27 UTC View advisory →
CVE-2026-52807 Medium 4.8

Gogs is an open source self-hosted Git service. Prior to 0.14.3, in new_form.tmpl, milestone names are rendered with Go's default auto-escaping ({{.Name}})

24 Jun 2026, 20:25 UTC View advisory →
CVE-2026-52806 Critical 9.9

Gogs is an open source self-hosted Git service. Prior to 0.14.3, Gogs allows authenticated users to achieve Remote Code Execution (RCE) on the server by cr

24 Jun 2026, 20:21 UTC View advisory →
CVE-2026-52805 High 8.7

Gogs is an open source self-hosted Git service. Prior to 0.14.3, a Server-Side Request Forgery (SSRF) vulnerability exists in the repository migration func

24 Jun 2026, 20:22 UTC View advisory →
CVE-2026-52804 Medium 5.5

Gogs is an open source self-hosted Git service. Prior to 0.14.3, a repository admin collaborator can escalate their privileges to owner-level access by exp

24 Jun 2026, 20:20 UTC View advisory →
CVE-2026-52802 Medium 5.4

Gogs is an open source self-hosted Git service. Prior to 0.14.3, an open redirect vulnerability exists in Gogs where attacker-controlled redirect_to parame

24 Jun 2026, 20:17 UTC View advisory →
CVE-2026-52801 High 8.1

Gogs is an open source self-hosted Git service. Prior to 0.14.3, the Gogs Mirror Settings functionality provide an alternative way from the well protected

24 Jun 2026, 20:18 UTC View advisory →
CVE-2026-52800 High 8.8

Gogs is an open source self-hosted Git service. Prior to 0.14.3, organization team member management can be performed via GET requests without CSRF protect

24 Jun 2026, 20:18 UTC View advisory →
CVE-2026-52799 High 7.5

Gogs is an open source self-hosted Git service. Prior to 0.14.3, GET /attachments/:uuid returns the raw attachment file without verifying whether the reque

24 Jun 2026, 20:19 UTC View advisory →
CVE-2026-52798 High 8.9

Gogs is an open source self-hosted Git service. Prior to 0.14.3, although .ipynb previews are sanitized on the server side via /-/api/sanitize_ipynb, the i

24 Jun 2026, 20:14 UTC View advisory →
CVE-2026-52797 High 8.5

Gogs is an open source self-hosted Git service. Prior to 0.14.0, as an authorized user, an intruder can dictate the value which is passed to the git diff c

24 Jun 2026, 20:35 UTC View advisory →
CVE-2026-52796 Low 3.5

Gogs is an open source self-hosted Git service. Prior to 0.14.3, specially crafted issue index pattern can cause a panic when rendering, resulting in denia

24 Jun 2026, 20:13 UTC View advisory →
CVE-2026-52795 Medium 4.3

Gogs is an open source self-hosted Git service. In 0.14.3 and earlier, any authenticated user can watch a private repository they have no access to, becaus

24 Jun 2026, 20:06 UTC View advisory →
CVE-2026-52794 High 7.5

Sentry is an error tracking and performance monitoring tool. From 24.4.0 until 26.5.2, a Regular Expression Denial of Service (ReDoS) vulnerability exists

24 Jun 2026, 21:26 UTC View advisory →
CVE-2026-52785 Critical 9.9

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is a SQL injection in timestamps functionality. OpenPr

26 Jun 2026, 18:54 UTC View advisory →
CVE-2026-52784 High 8.8

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is a CSRF on TARGET through /users/:id via POST parame

26 Jun 2026, 18:56 UTC View advisory →
CVE-2026-52783 High 8.2

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, OpenProject's Storages module writes the OneDrive/SharePoint

26 Jun 2026, 18:57 UTC View advisory →
CVE-2026-52782 Critical 9.9

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is an IDOR through /projects//settings/project_storage

26 Jun 2026, 18:59 UTC View advisory →
CVE-2026-52781 Medium 6.4

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, the HTML sanitizer grants elements unrestricted data-* attri

26 Jun 2026, 19:00 UTC View advisory →
CVE-2026-52780 Critical 9.6

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, cache store poisoning leads to Remote Code Execution (RCE).

26 Jun 2026, 19:09 UTC View advisory →
CVE-2026-52779 Medium 5.4

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, a cross-project IDOR / authorization context confusion in th

26 Jun 2026, 19:02 UTC View advisory →
CVE-2026-52760 Medium 6.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache ActiveMQ, Apache ActiveMQ Web Console. The bro

30 Jun 2026, 09:50 UTC View advisory →
CVE-2026-52725 Medium 5.3

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:18 UTC View advisory →
CVE-2026-52701 Medium 6.5

Unauthenticated Broken Access Control in User Registration <= 5.2.2 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-52690 Medium 5.9

Spoofing replies to Recursor might mark an IP of an authoritative server as not supporting EDNS, causing valdiation of DNSSEC records served by that server

25 Jun 2026, 13:01 UTC View advisory →
CVE-2026-50750 High 7.5

Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. Following the fix for CVE-2026-49270 an

30 Jun 2026, 09:51 UTC View advisory →
CVE-2026-50745 Medium 4.7

A missing sanitisation vulnerability exists with user input in the stats-video.php script. The way URLs to this script were constructed did not follow best

26 Jun 2026, 01:11 UTC View advisory →
CVE-2026-50744 Medium 4.3

A bypass to the admin‑only restriction of the XML‑RPC API in Revive Adserver 6.0.7. The API response for the ox.login method returned a session ID cookie i

26 Jun 2026, 01:11 UTC View advisory →
CVE-2026-50742 Medium 4.4

A stored XSS vulnerabilities exists in the `maintenance-acl-check.php` and `maintenance-banners-check.php` tools of Revive Adserver 6.0.7. The issue was ca

26 Jun 2026, 01:11 UTC View advisory →
CVE-2026-50741 High 8.8

Bypass to the fix for CVE-2026-34916. Variants of such vectors have been also reported by phucrio and offsetmd. The fix can be bypassed either by sending a

26 Jun 2026, 01:11 UTC View advisory →
CVE-2026-50740 Medium 6.1

A missing sanitisation vulnerability of user input in the zone-include.php script exists in Revive Adserver 6.0.7 and earlier. A low‑privileged user could

26 Jun 2026, 01:11 UTC View advisory →
CVE-2026-50739 Medium 4.3

A bypass for CVE‑2026‑34913 exists with proper ownership validation that had not been applied to the reverse operation of linking campaigns and trackers th

26 Jun 2026, 01:11 UTC View advisory →
CVE-2026-50734 High 7.5

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache ActiveMQ All. An unauthenticated network attac

30 Jun 2026, 09:53 UTC View advisory →
CVE-2026-50712 Medium 4.8

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in

24 Jun 2026, 15:26 UTC View advisory →
CVE-2026-50711 Medium 4.6

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in

24 Jun 2026, 15:18 UTC View advisory →
CVE-2026-50710 Medium 4.6

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to unsafe evaluation of user-controlled data in the Num

24 Jun 2026, 15:08 UTC View advisory →
CVE-2026-50709 Medium 4.8

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in

24 Jun 2026, 15:04 UTC View advisory →
CVE-2026-50708 Medium 4.8

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in

24 Jun 2026, 14:58 UTC View advisory →
CVE-2026-50705 Medium 4.6

A Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of untrusted input in the Form Dash

24 Jun 2026, 14:51 UTC View advisory →
CVE-2026-50704 Medium 4.6

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in

24 Jun 2026, 14:46 UTC View advisory →
CVE-2026-50703 Medium 4.8

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in

24 Jun 2026, 14:42 UTC View advisory →
CVE-2026-50701 Medium 5.1

A Reflected Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input

24 Jun 2026, 14:33 UTC View advisory →
CVE-2026-50700 Medium 4.6

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input in

24 Jun 2026, 14:27 UTC View advisory →
CVE-2026-50699 Medium 4.6

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev. An authenticated attacker with write access to Auto Repeat

24 Jun 2026, 14:20 UTC View advisory →
CVE-2026-50698 Medium 4.6

A Stored Cross-Site Scripting (XSS) vulnerability exists in Frappe Framework version 17.0.0-dev due to improper neutralization of user-controlled input bef

24 Jun 2026, 14:17 UTC View advisory →
CVE-2026-50574 High 8.3

yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, if aria2c is used as an external downloader for a fragmented manifest format (such as

23 Jun 2026, 16:09 UTC View advisory →
CVE-2026-50573 Medium 6.8

pnpm is a package manager. Prior to 10.34.0 and 11.4.0, `pnpm install` in non-frozen mode can accept new remote package content after detecting that the do

25 Jun 2026, 16:50 UTC View advisory →
CVE-2026-50557 Medium 5.3

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:11 UTC View advisory →
CVE-2026-50556 High 8.6

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:38 UTC View advisory →
CVE-2026-50555 High 8.6

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:37 UTC View advisory →
CVE-2026-50551 Critical 9.9

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan contains a stored cross-site scripting (XSS) vulnerability in the Att

24 Jun 2026, 21:20 UTC View advisory →
CVE-2026-50549 Critical 9.3

Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default. Before a Write, the agent

25 Jun 2026, 18:47 UTC View advisory →
CVE-2026-50548 Critical 9.3

Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default, and the sandbox grants wr

25 Jun 2026, 18:47 UTC View advisory →
CVE-2026-50269 Low 2.7

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.0, attacker-controlled input included into multipart/payload

22 Jun 2026, 16:30 UTC View advisory →
CVE-2026-50254 High 8.7

An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Against storescp in its default single-process m

30 Jun 2026, 21:14 UTC View advisory →
CVE-2026-50229 Unscored

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in the number guess example for Apache Tomcat. This issue affec

29 Jun 2026, 20:36 UTC View advisory →
CVE-2026-50221 Medium 5.3

In OpenStack Swift before 2.37.2, proxy-server does not strip internal update headers (X-Container-Host, X-Container-Device, X-Delete-At-Host, X-Delete-At-

23 Jun 2026, 17:03 UTC View advisory →
CVE-2026-50193 Medium 6.3

jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.13.0 until 2.14.0, a potential D

23 Jun 2026, 21:00 UTC View advisory →
CVE-2026-50189 High 8.9

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, Appsmith's bundled supervisord exposes an XML-RPC interface on

24 Jun 2026, 21:35 UTC View advisory →
CVE-2026-50184 Medium 5.7

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:42 UTC View advisory →
CVE-2026-50178 High 8.7

The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. the client-side Angular Language Service VS Code e

22 Jun 2026, 15:20 UTC View advisory →
CVE-2026-50176 High 8.7

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an att

25 Jun 2026, 20:58 UTC View advisory →
CVE-2026-50171 High 8.2

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:49 UTC View advisory →
CVE-2026-50170 High 8.2

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:39 UTC View advisory →
CVE-2026-50169 Medium 5.7

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:41 UTC View advisory →
CVE-2026-50168 High 8.8

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 2

22 Jun 2026, 15:39 UTC View advisory →
CVE-2026-50146 High 7.1

Astro is a web framework. Prior to 6.3.3, when a component uses a client:* directive, Astro inserts named slot content into a data-astro-template attribute

22 Jun 2026, 17:31 UTC View advisory →
CVE-2026-50137 High 8.2

Budibase is an open-source low-code platform. Prior to 3.39.0, an anonymous attacker who knows or can enumerate a workspace id (app_...) and an S3-source d

26 Jun 2026, 20:41 UTC View advisory →
CVE-2026-50136 High 7.4

Budibase is an open-source low-code platform. Prior to 3.39.3, the application server exposes an unauthenticated endpoint that generates S3 PutObject presi

26 Jun 2026, 20:36 UTC View advisory →
CVE-2026-50132 High 7.3

Budibase is an open-source low-code platform. Prior to 3.39.0, `GET /api/chat-links/:instance/:token/handoff` is a public endpoint (no auth required) that

26 Jun 2026, 20:34 UTC View advisory →
CVE-2026-50129 High 7.5

Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.11, 4.4.18, and 4.3.24, a DoS can be triggered by (Uncaught Except

24 Jun 2026, 19:50 UTC View advisory →
CVE-2026-50128 Medium 5.3

Mastodon is a free, open-source social network server based on ActivityPub. From 4.3.0 until 4.5.11 and 4.4.18, Mastodon has a feature to let websites cred

24 Jun 2026, 19:48 UTC View advisory →
CVE-2026-50110 Critical 9.3

Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within a configuration file. While the credentials

30 Jun 2026, 22:54 UTC View advisory →
CVE-2026-50040 Medium 5.1

Storage Concentrator (SC & SCVM) is vulnerable to reflected cross-site scripting due to unsanitized content being echoed back in 404 error pages. An attack

30 Jun 2026, 22:27 UTC View advisory →
CVE-2026-50023 High 8.3

yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, a vulnerability exists in yt-dlp that allows a remote attacker to write arbitrary OS-

23 Jun 2026, 16:08 UTC View advisory →
CVE-2026-50021 Medium 6.8

pnpm is a package manager. Prior to 10.34.0 and 11.4.0, pnpm's tarball extraction worker skips integrity verification when the integrity field is absent fr

25 Jun 2026, 16:48 UTC View advisory →
CVE-2026-50019 Medium 6.1

yt-dlp is a command-line audio/video downloader. From 2023.09.24 until 2026.06.09, if curl is used as an external downloader for yt-dlp, cookies may be lea

23 Jun 2026, 16:13 UTC View advisory →
CVE-2026-50017 Medium 6.9

pnpm is a package manager. Prior to 10.34.0 and 11.4.0, pnpm can send user-level unscoped npm authentication credentials to a registry chosen by a reposito

25 Jun 2026, 16:56 UTC View advisory →
CVE-2026-50016 High 8.8

pnpm is a package manager. Prior to 10.34.0 and 11.4.0, pnpm allows a transitive dependency alias from registry package metadata to contain path traversal

25 Jun 2026, 16:53 UTC View advisory →
CVE-2026-50015 High 7.3

pnpm is a package manager. Prior to 10.34.0 and 11.4.0, pnpm's patch application pipeline (@pnpm/patch-package) performs no path validation on file paths e

25 Jun 2026, 16:52 UTC View advisory →
CVE-2026-50014 Medium 6.4

pnpm is a package manager. Prior to 10.34.0 and 11.4.0, pnpm passes the lockfile-controlled git resolution.commit value to git fetch without a -- separator

25 Jun 2026, 16:51 UTC View advisory →
CVE-2026-50003 Critical 9.3

A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files outside the chosen output directory, using bo

30 Jun 2026, 21:27 UTC View advisory →
CVE-2026-49991 High 8.6

RustFS is a distributed object storage system built in Rust. In 1.0.0-beta.4, authenticated users with only PutObject permission on their own bucket can ex

26 Jun 2026, 20:01 UTC View advisory →
CVE-2026-49984 High 7.7

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.23, the local internal-storage backend validates user-supplied paths

26 Jun 2026, 20:55 UTC View advisory →
CVE-2026-49983 Medium 5.2

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, environment access is gated by the env permission. You can deny it with --deny-e

23 Jun 2026, 17:16 UTC View advisory →
CVE-2026-49980 Critical 9.8

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. From 1.46.0 until 1.74.3, rclone rcd --rc-ser

24 Jun 2026, 17:52 UTC View advisory →
CVE-2026-49979 Medium 5.1

Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accepts attack

24 Jun 2026, 21:38 UTC View advisory →
CVE-2026-49877 High 8.1

Improper Authorization vulnerability in Apache ActiveMQ. An authenticated low-privilege Web Console user by default can access /admin/* paths in the Web Co

30 Jun 2026, 09:53 UTC View advisory →
CVE-2026-49869 Critical 10

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, AuthenticationFilter in Kestra OSS uses request.getPath().endsWi

26 Jun 2026, 20:58 UTC View advisory →
CVE-2026-49860 Medium 5.2

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, when a WebSocket connection was opened, Deno checked the destination hostname ag

23 Jun 2026, 17:15 UTC View advisory →
CVE-2026-49859 Medium 5.2

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, when fetch() was called, Deno checked the destination hostname against --deny-ne

23 Jun 2026, 17:14 UTC View advisory →
CVE-2026-49851 High 8.7

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, Mistune is vulnerable to a CPU exhaustion DoS due to superlinear (approxima

24 Jun 2026, 17:05 UTC View advisory →
CVE-2026-49839 High 7.1

jq is a command-line JSON processor. Prior to 1.8.2,` jq --rawfile` can turn a handled oversized-string error into invalid-state reuse and a real heap out-

25 Jun 2026, 17:17 UTC View advisory →
CVE-2026-49506 High 7.2

Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulner

25 Jun 2026, 13:23 UTC View advisory →
CVE-2026-49486 High 7.5

The Apache Airflow FTP provider's `FTPSHook.get_conn()` created an `ftplib.FTP_TLS` connection but never called `prot_p()`, so although the control channel

26 Jun 2026, 07:05 UTC View advisory →
CVE-2026-49468 Critical 9.5

LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.84.0, This vulnerability is fixed in 1.84.0.

22 Jun 2026, 20:37 UTC View advisory →
CVE-2026-49465 Medium 6

n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create or modify workfl

23 Jun 2026, 15:49 UTC View advisory →
CVE-2026-49461 Medium 6.9

pypdf is a free and open-source pure-python PDF library. Prior to 6.12.2, an attacker who uses this vulnerability can craft a PDF which leads to large memo

22 Jun 2026, 20:27 UTC View advisory →
CVE-2026-49460 Medium 5.1

pypdf is a free and open-source pure-python PDF library. Prior to 6.12.2, an attacker who uses this vulnerability can craft a PDF which leads to long runti

22 Jun 2026, 20:28 UTC View advisory →
CVE-2026-49451 High 7.5

The OpenAPI.NET SDK contains a useful object model for OpenAPI documents in .NET along with common serializers to extract raw OpenAPI JSON and YAML documen

30 Jun 2026, 16:01 UTC View advisory →
CVE-2026-49444 High 7.1

n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create or modify workfl

23 Jun 2026, 15:50 UTC View advisory →
CVE-2026-49440 High 7.4

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, node:crypto.checkPrime(candidate[, options][, callback]) and crypto.checkPrimeSy

23 Jun 2026, 17:13 UTC View advisory →
CVE-2026-49434 High 7.5

Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. An attacker that has access to publish or modify e

30 Jun 2026, 09:55 UTC View advisory →
CVE-2026-49432 High 7.5

Improper Input Validation vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp. A remote unauthenticated peer that can reach an exp

30 Jun 2026, 09:54 UTC View advisory →
CVE-2026-49417 Unscored

Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping remained valid. The freed memory could then be

27 Jun 2026, 08:48 UTC View advisory →
CVE-2026-49416 Unscored

The CONS_HISTORY ioctl handler did not adequately validate the requested history size. A large value caused an integer overflow in the buffer size calculat

27 Jun 2026, 09:25 UTC View advisory →
CVE-2026-49414 Unscored

The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that computes the PIE base address, rather than before

27 Jun 2026, 09:22 UTC View advisory →
CVE-2026-49413 Unscored

The Linuxulator determined whether a binary was set-user-ID or set-group-ID by checking the P_SUGID process flag. During execve(2), this flag is not yet se

27 Jun 2026, 09:08 UTC View advisory →
CVE-2026-49412 Unscored

The kernel handler for IPV6_MSFILTER dropped a serializing lock in order to copy the source-filter list from userspace, then reacquired the lock. During th

27 Jun 2026, 09:02 UTC View advisory →
CVE-2026-49411 Medium 6.5

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.0, the Node.js compatibility TCP path checked the permission against the original h

23 Jun 2026, 17:18 UTC View advisory →
CVE-2026-49406 Medium 5.5

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.7.12, when Deno was run in BYONM mode (nodeModulesDir: "manual"), the module resolver

23 Jun 2026, 17:19 UTC View advisory →
CVE-2026-49402 High 8.1

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.7.10, Deno's node:child_process implementation provided an escapeShellArg() helper us

23 Jun 2026, 17:20 UTC View advisory →
CVE-2026-49401 High 7.3

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.7.14, Deno's permission system enforces filesystem and execution restrictions by comp

23 Jun 2026, 17:22 UTC View advisory →
CVE-2026-49356 Low 3.2

Babel is a compiler for writing next generation JavaScript. Prior to 8.0.0-rc.6 and 7.29.6, @babel/core affected by an arbitrary file read via a sourceMapp

22 Jun 2026, 16:07 UTC View advisory →
CVE-2026-49355 Medium 4.3

OpenProject is open-source, web-based project management software. Prior to 17.4.0, `GET /api/v3/meetings/:meeting_id/agenda_items/:agenda_item_id` disclos

26 Jun 2026, 19:29 UTC View advisory →
CVE-2026-49319 Medium 6.9

Remote Keyless Entry System (RKES), using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back a

25 Jun 2026, 14:11 UTC View advisory →
CVE-2026-49278 Medium 6.7

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.2, 8.3.4, 8.2.4, 8.1.5, 8.0.6, 7.13.8, and 7.10.12,

24 Jun 2026, 21:05 UTC View advisory →
CVE-2026-49277 Low 2.3

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.2, 8.3.4, 8.2.4, 8.1.5, 8.0.6, 7.13.8, and 7.10.12,

24 Jun 2026, 21:04 UTC View advisory →
CVE-2026-49247 High 8.8

Jellyfin is an open source self hosted media server. From 10.9.0 until 10.11.10, the POST /ClientLog/Document endpoint accepts the Authorization header's C

24 Jun 2026, 18:18 UTC View advisory →
CVE-2026-49246 Low 1.7

Jellyfin is an open source self hosted media server. Prior to 10.11.10, a specifically crafted MKV file containing forged filename tags can be leveraged to

24 Jun 2026, 18:21 UTC View advisory →
CVE-2026-49241 High 8.7

The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Prior to 21.2.4, the client-side Angular Language

22 Jun 2026, 15:16 UTC View advisory →
CVE-2026-49220 Medium 5.7

Jellyfin is an open source self hosted media server. Prior to 10.11.9, a potential XSS attack exists in Jellyfin which can allow a non-privileged user to e

24 Jun 2026, 18:23 UTC View advisory →
CVE-2026-49049 High 7.5

The Helix3 plugin for Joomla exposes an ajax handler task, that allows unauthenticated attackers to delete arbitrary files, write arbitrary JSON files and

29 Jun 2026, 14:34 UTC View advisory →
CVE-2026-49048 Unscored

The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly concatenating a user-supplied request paramete

28 Jun 2026, 18:37 UTC View advisory →
CVE-2026-48995 Medium 4.8

pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whatever tarball it wants and pnpm will install it

25 Jun 2026, 16:58 UTC View advisory →
CVE-2026-48946 Medium 6.3

The K2 frontend article-attachment upload path accepts files whose extension is `.php`, and Apache's standard mod_php matches `\.php$` and executes them un

25 Jun 2026, 15:25 UTC View advisory →
CVE-2026-48945 Medium 5.3

The K2 article gallery upload path accepts a zip/tar archive, extracts it under `/media/k2/galleries//`, and only renames image files (gif/jpg/jpeg/png/web

25 Jun 2026, 15:26 UTC View advisory →
CVE-2026-48944 Medium 6.5

The K2 frontend article-save handler accepts an `attachment[N][existing]` POST field that is concatenated with `JPATH_SITE/` and passed to `JFile::copy()`.

25 Jun 2026, 15:24 UTC View advisory →
CVE-2026-48943 Medium 6.5

K2 ≤ 2.24 contains a mass-assignment defect in the K2 system user plugin `plg_user_k2`. A Registered Joomla user, by including the field `K2UserForm=1` in

25 Jun 2026, 15:22 UTC View advisory →
CVE-2026-48942 Medium 6.1

K2 ≤ 2.26 renders the `#__k2_users.image` column directly into HTML `src` attributes via two distinct templates, in both cases without HTML escaping.

25 Jun 2026, 15:23 UTC View advisory →
CVE-2026-48941 Medium 6.5

The K2 frontend `item.checkin` task accepts an unauthenticated `sigProFolder` query parameter and uses it directly to address a `JFolder::delete()` call un

25 Jun 2026, 15:25 UTC View advisory →
CVE-2026-48940 Low 3.4

A Joomla user with K2 "create item" rights (Author tier by default) can submit an article whose `embedVideo` POST field contains a raw `` tag; K2 stores it

25 Jun 2026, 15:26 UTC View advisory →
CVE-2026-48936 Low 3.3

A flaw in Node.js Permission API can cause a local server to be started (via a Unix domain socket), even without the `--allow-net` permission. This vulnera

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48935 Low 3.3

A flaw in Node.js Permission API can cause a file metadata to be modified even on a path that was set as read-only with e.g. `--allow-fs-read`. This vulner

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48934 Medium 4.3

A flaw in Node.js TLS host verification can cause an attacker to bypass certification validation. This vulnerability affects all supported release lines: *

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48933 High 7.5

A flaw in Node.js WebCrypto implementation can crash the process if the input of `subtle.encrypt()` is a multiple of 2GiB. This vulnerability affects all s

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48931 Low 3.7

A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affec

22 Jun 2026, 18:59 UTC View advisory →
CVE-2026-48930 Medium 5.6

A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver bind

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48928 Medium 4.2

A inconsistency in Node.js hostname matching can cause a trust-policy bypass in multi-context mTLS setups. This vulnerability affects all supported release

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48800 High 7.8

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the tag text content inside in shortcuts.xml is read by NppXml::value(aNode) (Par

26 Jun 2026, 20:12 UTC View advisory →
CVE-2026-48793 High 8.8

Jellyfin is an open source self hosted media server. Prior to 10.11.10, a potential FFmpeg argument injection vulnerability exists in the subtitle conversi

24 Jun 2026, 18:22 UTC View advisory →
CVE-2026-48789 Medium 4.3

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, on Windows, th

24 Jun 2026, 17:13 UTC View advisory →
CVE-2026-48778 High 7.8

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the tag in config.xml is read by NppXml::value() (Parameters.cpp:6430) and stored

26 Jun 2026, 20:21 UTC View advisory →
CVE-2026-48770 Medium 5

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, a local process in the same interactive Windows session can send a malformed WM_C

26 Jun 2026, 20:22 UTC View advisory →
CVE-2026-48746 Critical 9.1

vLLM is an inference and serving engine for large language models (LLMs). From 0.3.0 until 0.22.0, a vulnerability in ASGI web servers and starlette's trus

22 Jun 2026, 21:57 UTC View advisory →
CVE-2026-48743 High 7.5

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, Envoy can translate a

26 Jun 2026, 17:34 UTC View advisory →
CVE-2026-48732 High 8.8

Warp is an agentic development environment. From 0.2023.03.21.08.02.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command injection issue i

24 Jun 2026, 17:29 UTC View advisory →
CVE-2026-48731 High 7.8

Warp is an agentic development environment. From 0.2024.02.20.08.01.stable_01 until 0.2026.05.06.15.42.stable_01, Warp contains a command injection issue i

24 Jun 2026, 17:30 UTC View advisory →
CVE-2026-48725 High 8.1

Warp is an agentic development environment. From 0.2021.04.25.23.05.stable_00 until 0.2026.05.06.15.42.stable_01, Warp allows terminal output to request ac

24 Jun 2026, 17:22 UTC View advisory →
CVE-2026-48721 High 8.6

Warp is an agentic development environment. From 0.2025.10.08.08.12.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command execution permiss

24 Jun 2026, 17:31 UTC View advisory →
CVE-2026-48720 High 8.8

Warp is an agentic development environment. From 0.2025.03.05.08.02.stable_00 until 0.2026.05.06.15.42.stable_01, Warp accepts non-inline `OSC 1337;File` p

24 Jun 2026, 17:32 UTC View advisory →
CVE-2026-48719 High 8

Warp is an agentic development environment. From 0.2025.08.06.08.12.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command injection in the

24 Jun 2026, 17:33 UTC View advisory →
CVE-2026-48712 High 7.5

protobufjs compiles protobuf definitions into JavaScript (JS) functions. Prior to 7.6.1 and 8.4.1, protobufjs could recurse without a depth limit while con

22 Jun 2026, 16:21 UTC View advisory →
CVE-2026-48706 Medium 5.9

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, a vulnerabili

26 Jun 2026, 17:38 UTC View advisory →
CVE-2026-48704 High 8.8

Warp is an agentic development environment. From 0.2023.10.24.08.03.stable_00 until 0.2026.05.06.15.42.stable_01, Warp may open executable local files thro

24 Jun 2026, 17:35 UTC View advisory →
CVE-2026-48703 High 7.8

Warp is an agentic development environment. From 0.2025.04.09.08.11.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command execution policy

24 Jun 2026, 17:25 UTC View advisory →
CVE-2026-48619 Medium 5.3

A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead to an Out of Memory error on the client. Thi

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48618 High 7.7

A flaw in Node.js TLS hostname handling can cause Node.js unicode dot separator handling can lead to tls wildcard-depth authentication bypass due to resolv

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48615 Medium 5.9

A flaw in Node.js proxy tunnel error handling could expose proxy credentials in `ERR_PROXY_TUNNEL` error messages. When proxy credentials are embedded in t

26 Jun 2026, 01:14 UTC View advisory →
CVE-2026-48529 Medium 6

GitHub MCP Server is GitHub's official MCP Server. From 0.22.0 until 1.1.2, when running in HTTP mode with --lockdown-mode enabled, the RepoAccessCache is

26 Jun 2026, 16:33 UTC View advisory →
CVE-2026-48520 Medium 6.1

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) cont

23 Jun 2026, 16:31 UTC View advisory →
CVE-2026-48519 Critical 9.6

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, the "Shareable Playground" (or "Public Flows" in code) conta

23 Jun 2026, 16:25 UTC View advisory →
CVE-2026-48517 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePack-CSharp's typeless deserialization includes MessagePackSerial

22 Jun 2026, 21:03 UTC View advisory →
CVE-2026-48516 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, InterfaceLookupFormatter constructs an internal Dictionary<TKey, IGroupi

22 Jun 2026, 21:09 UTC View advisory →
CVE-2026-48515 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePack-CSharp's multi-dimensional array formatters read dimension l

22 Jun 2026, 21:10 UTC View advisory →
CVE-2026-48514 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, UnsafeBlitFormatterBase.Deserialize reads an attacker-controlled byteLen

22 Jun 2026, 21:11 UTC View advisory →
CVE-2026-48513 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, runtime-generated union deserializers emitted by DynamicUnionResolver do

22 Jun 2026, 21:12 UTC View advisory →
CVE-2026-48512 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePack-CSharp's JSON conversion helpers contain multiple recursion

22 Jun 2026, 21:14 UTC View advisory →
CVE-2026-48511 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, ExpandoObjectFormatter.Deserialize populates System.Dynamic.ExpandoObjec

22 Jun 2026, 21:14 UTC View advisory →
CVE-2026-48510 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, when MessagePack-CSharp decompresses Lz4Block or Lz4BlockArray payloads,

22 Jun 2026, 21:16 UTC View advisory →
CVE-2026-48509 Medium 6.3

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, the parameterless MessagePackInputFormatter() constructor uses default s

22 Jun 2026, 21:16 UTC View advisory →
CVE-2026-48506 High 7.5

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePackReader.TrySkip() recursively descends into nested arrays and

22 Jun 2026, 21:17 UTC View advisory →
CVE-2026-48505 High 7.4

Filament is a collection of full-stack components for accelerated Laravel development. From 4.0.0 until 4.11.5 and 5.6.5, a flaw in the handling of recover

22 Jun 2026, 21:39 UTC View advisory →
CVE-2026-48502 High 8.2

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePackReader.ReadDateTime() can allocate stack memory based on an a

22 Jun 2026, 21:18 UTC View advisory →
CVE-2026-48500 Medium 6.5

Filament is a collection of full-stack components for accelerated Laravel development. From 3.0.0 until 3.3.52, 4.11.5, and 5.6.5, any schema can contain a

22 Jun 2026, 21:41 UTC View advisory →
CVE-2026-48497 Medium 5.9

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS

26 Jun 2026, 17:32 UTC View advisory →
CVE-2026-48493 Medium 5.5

Snipe-IT is an IT asset/license management system. In versions prior to 8.6.0, a user with only users.edit can send a PATCH to /api/v1/users/{their_own_id}

23 Jun 2026, 22:11 UTC View advisory →
CVE-2026-48491 High 7.8

Traefik is an HTTP reverse proxy and load balancer. From 3.7.0 until 3.7.3, there is a high severity vulnerability in Traefik's domain-fronting protection

23 Jun 2026, 19:12 UTC View advisory →
CVE-2026-48315 Critical 9.3

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in

30 Jun 2026, 15:12 UTC View advisory →
CVE-2026-48314 Medium 6.5

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerabi

30 Jun 2026, 15:11 UTC View advisory →
CVE-2026-48313 Critical 9.3

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerabi

30 Jun 2026, 15:12 UTC View advisory →
CVE-2026-48307 High 8.8

ColdFusion versions 2025.9, 2023.20 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulner

30 Jun 2026, 15:11 UTC View advisory →
CVE-2026-48286 Critical 10

Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary

30 Jun 2026, 15:08 UTC View advisory →
CVE-2026-48285 High 8.6

ColdFusion versions 2025.9, 2023.20 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in a Security feature

30 Jun 2026, 15:12 UTC View advisory →
CVE-2026-48283 Critical 10

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbit

30 Jun 2026, 15:11 UTC View advisory →
CVE-2026-48282 Critical 10

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerabi

30 Jun 2026, 15:11 UTC View advisory →
CVE-2026-48281 Critical 10

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in

30 Jun 2026, 15:12 UTC View advisory →
CVE-2026-48277 Critical 10

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in

30 Jun 2026, 15:12 UTC View advisory →
CVE-2026-48276 Critical 10

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in arbit

30 Jun 2026, 15:11 UTC View advisory →
CVE-2026-48192 Medium 6.8

A vulnerability has been identified in Mendix Studio Pro 10.11 (All versions), Mendix Studio Pro 10.12 (All versions), Mendix Studio Pro 10.13 (All version

30 Jun 2026, 14:30 UTC View advisory →
CVE-2026-48167 Medium 6.4

Filament is a collection of full-stack components for accelerated Laravel development. From 4.0.0 until 4.11.5 and 5.6.5, the ImageColumn and ImageEntry co

22 Jun 2026, 21:43 UTC View advisory →
CVE-2026-48166 Medium 5.3

Filament is a collection of full-stack components for accelerated Laravel development. From 4.0.0 until 4.11.5 and 5.6.5, the login page has an observable

22 Jun 2026, 21:40 UTC View advisory →
CVE-2026-48109 High 8.2

MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, A vulnerability exists in the optional LZ4 decompression path used by Me

22 Jun 2026, 21:19 UTC View advisory →
CVE-2026-48090 Medium 5.9

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.37.0 until 1.37.5 and 1.38.3, the HTTP OAuth2 filter (envoy.f

26 Jun 2026, 18:03 UTC View advisory →
CVE-2026-48067 Medium 6.5

Filament is a collection of full-stack components for accelerated Laravel development. From filament/actions 4.0.0 until 4.11.4 and 5.6.4 and from filament

22 Jun 2026, 21:46 UTC View advisory →
CVE-2026-48044 High 7.5

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.23.0 until 1.35.11, 1.36.7, 1.37.3, and 1.38.1, a vulnerabili

26 Jun 2026, 17:31 UTC View advisory →
CVE-2026-48042 High 7.5

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, destructor of JSON Obj

26 Jun 2026, 17:29 UTC View advisory →
CVE-2026-48028 Medium 6.5

Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.10, 4.4.17, and 4.3.23, Mastodon's normalization of incoming activ

24 Jun 2026, 19:43 UTC View advisory →
CVE-2026-48020 High 7.8

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.48, 3.6.19, and 3.7.3, there is a high severity vulnerability in Traefik's StripPrefix mi

23 Jun 2026, 19:10 UTC View advisory →
CVE-2026-47778 Medium 4.4

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, a structural flaw was

26 Jun 2026, 17:27 UTC View advisory →
CVE-2026-47775 Medium 6.8

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, the OAuth2 HTTP filter

26 Jun 2026, 17:23 UTC View advisory →
CVE-2026-47770 Medium 6.8

jq is a command-line JSON processor. Prior to 1.8.2, comparing two sufficiently deeply nested arrays with the == operator exhausts the C stack on jq's ordi

25 Jun 2026, 17:22 UTC View advisory →
CVE-2026-47733 Medium 4.4

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, the ImageElement component in packages/gazzodown renders

24 Jun 2026, 20:51 UTC View advisory →
CVE-2026-47693 Medium 6.9

Poweradmin is a web-based DNS administration tool for PowerDNS server. Versions prior to 4.2.4 and 4.3.3 are vulnerable to CSV Injection (Formula Injection

23 Jun 2026, 22:07 UTC View advisory →
CVE-2026-47692 Medium 4.8

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, PROXY Protoco

26 Jun 2026, 17:59 UTC View advisory →
CVE-2026-47389 High 8.6

Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.10, 4.4.17, and 4.3.23, when using Ruby versions older than 3.4, P

24 Jun 2026, 19:41 UTC View advisory →
CVE-2026-47388 Low 2.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a low-privilege MCP token holder with knowledge of an attachment path could

23 Jun 2026, 20:09 UTC View advisory →
CVE-2026-47387 High 8.4

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the shared form-view submit handler (packages/nc-gui/composables/useSharedFo

23 Jun 2026, 20:11 UTC View advisory →
CVE-2026-47386 Medium 6.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, two concurrent token-exchange requests using the same OAuth authorization co

23 Jun 2026, 20:12 UTC View advisory →
CVE-2026-47385 Medium 5.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, an authenticated user with base-create permission can attach a SQLite source

23 Jun 2026, 20:13 UTC View advisory →
CVE-2026-47384 Medium 5.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, an authenticated user with column-create permission can inject SQL into the

23 Jun 2026, 20:15 UTC View advisory →
CVE-2026-47383 High 7.4

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, an authenticated commenter could store HTML in row comments that executed as

23 Jun 2026, 20:15 UTC View advisory →
CVE-2026-47382 Medium 5.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the connection-test endpoint opened a raw TCP socket to the user-supplied da

23 Jun 2026, 20:19 UTC View advisory →
CVE-2026-47381 Medium 6.9

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a user in one workspace could exercise another workspace's integration throu

23 Jun 2026, 20:17 UTC View advisory →
CVE-2026-47380 Medium 6.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, sign-in response timing differed between known and unknown email addresses b

23 Jun 2026, 20:33 UTC View advisory →
CVE-2026-47379 Medium 6.9

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the shared-view password check fell back to strict-equality (===) comparison

23 Jun 2026, 20:17 UTC View advisory →
CVE-2026-47378 Medium 6.9

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, Public shared-view endpoints exposed values from columns that the view owner

23 Jun 2026, 20:34 UTC View advisory →
CVE-2026-47377 Medium 5.1

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the client-side hashRedirect plugin called window.location.replace() on a pa

23 Jun 2026, 20:35 UTC View advisory →
CVE-2026-47376 Medium 5.1

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the password-reset page rendered the URL token directly into a JavaScript st

23 Jun 2026, 20:35 UTC View advisory →
CVE-2026-47375 Medium 6

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, an authenticated user with columnAdd permission on a Postgres-backed base ca

23 Jun 2026, 20:36 UTC View advisory →
CVE-2026-47279 Medium 6.9

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the public shared-view relation endpoints accepted a caller-supplied column

23 Jun 2026, 20:18 UTC View advisory →
CVE-2026-47267 High 8.3

Gogs is an open source self-hosted Git service. Prior to 0.14.3, the fix for CVE-2022-1285 prevents adding webooks or running webhooks with URLs with a hos

24 Jun 2026, 20:09 UTC View advisory →
CVE-2026-47242 Medium 5.8

Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to 0.6.5 and 0.5.15, when Net::IMAP#id is called with a ha

22 Jun 2026, 20:19 UTC View advisory →
CVE-2026-47241 Low 2.1

Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to 0.6.5 and 0.5.15, several Net::IMAP commands accept a r

22 Jun 2026, 20:11 UTC View advisory →
CVE-2026-47240 Medium 5.8

Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to 0.6.5 and 0.5.15, several Net::IMAP commands accept a "

22 Jun 2026, 20:17 UTC View advisory →
CVE-2026-47221 Medium 5.9

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.18.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, the router fi

26 Jun 2026, 17:35 UTC View advisory →
CVE-2026-47220 High 7.5

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.37.0 until 1.37.5 and 1.38.3, when the %REQUESTED_SERVER_NAME

26 Jun 2026, 18:02 UTC View advisory →
CVE-2026-47214 High 7.1

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. Prior to 2.94.0, the HTML ba

26 Jun 2026, 15:45 UTC View advisory →
CVE-2026-47207 Medium 6.5

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, Envoy crashes

26 Jun 2026, 17:52 UTC View advisory →
CVE-2026-47206 Low 2.3

Dragonfly is an in-memory data store built for modern application workloads. Prior to 1.39.9, Dragonfly has a RESP Protocol Injection via Lua redis.error_r

26 Jun 2026, 16:39 UTC View advisory →
CVE-2026-47205 Medium 5.9

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.36.0 until 1.36.9, 1.37.5, and 1.38.3, a Use-After-Free (UAF)

26 Jun 2026, 18:01 UTC View advisory →
CVE-2026-47204 Medium 6.5

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.26.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, the envoy.fil

26 Jun 2026, 17:37 UTC View advisory →
CVE-2026-47193 High 7.5

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, the journal diff endpoint discloses hidden historical field

26 Jun 2026, 19:01 UTC View advisory →
CVE-2026-47155 Medium 6.5

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.0, vLLM's revision pinning controls do not consistently apply to al

22 Jun 2026, 22:20 UTC View advisory →
CVE-2026-47154 High 7.1

In EmberZNet v9.0.2 and earlier, a malformed GetProfileResponse message can trigger out-of-bounds reads while iterating interval entries and terminate the

25 Jun 2026, 13:43 UTC View advisory →
CVE-2026-47153 High 7.1

In EmberZNet v9.0.2 and earlier, a malformed Level Control Step command can terminate the process through a divide-by-zero fault. This command must come fr

25 Jun 2026, 13:42 UTC View advisory →
CVE-2026-47152 High 7.1

In EmberZNet v9.0.2 and earlier, a malformed Level Control Move command can terminate the process through a divide-by-zero fault. This command must come fr

25 Jun 2026, 13:41 UTC View advisory →
CVE-2026-47151 High 7.1

In EmberZNet v9.0.2 and earlier, malformed ClearWeekdaySchedule messages can trigger out-of-bounds writes into Door Lock schedule state. The size and locat

25 Jun 2026, 13:40 UTC View advisory →
CVE-2026-47150 High 7.1

In EmberZNet v9.0.2 and earlier, malformed IAS Zone enrollment messages can trigger an out-of-bounds state-table write and terminate the process. The size

25 Jun 2026, 13:39 UTC View advisory →
CVE-2026-47149 High 7.1

In EmberZNet v9.0.2 and earlier, malformed or out-of-range Door Lock user identifiers can trigger out-of-bounds table reads and terminate the process. Thes

25 Jun 2026, 13:38 UTC View advisory →
CVE-2026-47148 High 7.1

In EmberZNet v9.0.2 and earlier, malformed GetGroupMembership commands can trigger repeated reads past the end of the message payload and terminate the pro

25 Jun 2026, 13:37 UTC View advisory →
CVE-2026-47147 High 7.1

In EmberZNet v9.0.2 and earlier, malformed OTA requests can drive the OTA server parser into out-of-bounds reads. A limited amount of data from RAM is read

25 Jun 2026, 13:36 UTC View advisory →
CVE-2026-47146 High 7.1

In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device th

25 Jun 2026, 13:35 UTC View advisory →
CVE-2026-47145 High 7.1

In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device th

25 Jun 2026, 13:34 UTC View advisory →
CVE-2026-47110 High 7.1

Tiptap for PHP before version 2.1.1 contains an input validation vulnerability that allows authenticated attackers to cause a denial of service by submitti

24 Jun 2026, 21:21 UTC View advisory →
CVE-2026-47105 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

01 Jul 2026 View advisory →
CVE-2026-47093 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

25 Jun 2026 View advisory →
CVE-2026-46752 Critical 10

Redis Lua HEAP overflow in cjson library vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.0.4 through 2.15.0. Users are recommend

25 Jun 2026, 08:00 UTC View advisory →
CVE-2026-46751 Medium 5.5

A vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.2.0 through 2.15.0. Users are recommended to upgrade to version 2.16.0, which

25 Jun 2026, 08:01 UTC View advisory →
CVE-2026-46735 High 7.8

Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Co

25 Jun 2026, 13:48 UTC View advisory →
CVE-2026-46734 High 7.3

Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validation vulnerability. A low privileged attacker

25 Jun 2026, 13:43 UTC View advisory →
CVE-2026-46733 High 7.8

Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control vulnerability. A low privileged attacker with

25 Jun 2026, 13:17 UTC View advisory →
CVE-2026-46732 Medium 6.7

Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain a Concurrent Execution using Shared Resource with Improper Synchronization (

25 Jun 2026, 13:36 UTC View advisory →
CVE-2026-46710 High 7.5

Notepad++ is a free and open-source source code editor. From 8.9.4 until 8.9.6, Notepad++ contains a local privilege escalation vulnerability in the instal

26 Jun 2026, 20:16 UTC View advisory →
CVE-2026-46611 Medium 5.3

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances XML-RPC server (glances -s, implemented in glances/server.py)

25 Jun 2026, 18:00 UTC View advisory →
CVE-2026-46608 High 7.4

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances XML-RPC server (glances -s) introduced a configurable CORS ori

25 Jun 2026, 18:05 UTC View advisory →
CVE-2026-46607 High 7.8

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, glances/outdated.py uses pickle.load() to read a version-check cache file

25 Jun 2026, 18:04 UTC View advisory →
CVE-2026-46606 High 7.8

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances KVM/QEMU monitoring engine (glances/plugins/vms/engines/virsh.

25 Jun 2026, 18:02 UTC View advisory →
CVE-2026-46604 Unscored

The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset.

26 Jun 2026, 20:22 UTC View advisory →
CVE-2026-46602 Unscored

The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause u

25 Jun 2026, 19:47 UTC View advisory →
CVE-2026-46601 Unscored

The webp decoder can panic when processing a VP8 chunk with dimensions that do not match the canvas size.

25 Jun 2026, 19:47 UTC View advisory →
CVE-2026-46554 Low 2.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.4, deleted API tokens continued to authenticate requests until their cache entr

23 Jun 2026, 20:30 UTC View advisory →
CVE-2026-46553 Low 2.1

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the upload-by-URL path did not enforce NC_ATTACHMENT_FIELD_SIZE against eith

23 Jun 2026, 20:37 UTC View advisory →
CVE-2026-46552 Medium 5.8

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, shared-base sessions were granted the same base-member capabilities as authe

23 Jun 2026, 20:38 UTC View advisory →
CVE-2026-46551 Medium 6.5

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.4, the uploadViaURL path in the v1/v2 attachment API did not enforce NC_ATTACHM

23 Jun 2026, 20:31 UTC View advisory →
CVE-2026-46550 Medium 5.4

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the refresh-token cookie was set with httpOnly: true but missing both the se

23 Jun 2026, 20:39 UTC View advisory →
CVE-2026-46549 Low 2

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the OAuth token strategy attached oauth_scope and oauth_granted_resources to

23 Jun 2026, 20:40 UTC View advisory →
CVE-2026-46548 Medium 4.3

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, the request-filtering-agent SSRF protection was non-functional in the four n

23 Jun 2026, 20:41 UTC View advisory →
CVE-2026-46547 Medium 6.1

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, a reflected XSS vulnerability exists in the Page Leaving Warning page. The n

23 Jun 2026, 20:42 UTC View advisory →
CVE-2026-46423 Critical 9.3

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.1, 8.3.3, 8.2.3, 8.1.4, 8.0.5, 7.13.7, and 7.10.11,

24 Jun 2026, 20:58 UTC View advisory →
CVE-2026-46417 High 8.8

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-next.12

22 Jun 2026, 15:40 UTC View advisory →
CVE-2026-46406 Medium 4.4

Claude Code is an agentic coding tool. From 2.1.59 until 2.1.128, the Claude Code /copy command wrote responses to a hardcoded, predictable path (/tmp/clau

29 Jun 2026, 14:03 UTC View advisory →
CVE-2026-46386 Critical 9.9

OpenProject is open-source, web-based project management software. Prior to , the official openproject/openproject Docker image ships ENV SECRET_KEY_BASE=O

26 Jun 2026, 19:26 UTC View advisory →
CVE-2026-46349 Medium 5.3

Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.10, 4.4.17, and 4.3.23, Mastodon's normalization of incoming activ

24 Jun 2026, 19:40 UTC View advisory →
CVE-2026-46348 High 8.7

Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.10, 4.4.17, and 4.3.23, the list of disallowed IP address ranges w

24 Jun 2026, 19:39 UTC View advisory →
CVE-2026-45822 Medium 6.6

decode-uri-component through 0.4.1 is vulnerable to denial of service. The decode() function splits input on '%' producing N tokens and calls decodeCompone

30 Jun 2026, 08:05 UTC View advisory →
CVE-2026-45807 High 7.7

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.43 and 1.3.19, several Kestra API endpoints accept a kestra:// URI from the cli

26 Jun 2026, 20:57 UTC View advisory →
CVE-2026-45792 Medium 6.9

rtk filters and compresses command outputs before they reach your LLM context. Prior to 0.32.0, RTK (Rust Token Killer) improperly trusts project-local con

23 Jun 2026, 19:02 UTC View advisory →
CVE-2026-45757 Low 2.3

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.2, 8.3.4, 8.2.4, 8.1.5, 8.0.6, 7.13.8, and 7.10.12,

24 Jun 2026, 21:01 UTC View advisory →
CVE-2026-45732 High 8.3

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, the OAuth1 and OAuth2 credential reconnect endpoints authorized

23 Jun 2026, 15:52 UTC View advisory →
CVE-2026-45692 Medium 5.4

Caddy is an extensible server platform that uses TLS by default. From 2.4.0 until 2.11.3, the authorization layer and the /config traversal layer do not ag

23 Jun 2026, 17:55 UTC View advisory →
CVE-2026-45689 Critical 9.1

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.1, 8.3.3, 8.2.3, 8.1.4, 8.0.5, 7.13.7, and 7.10.11,

24 Jun 2026, 20:57 UTC View advisory →
CVE-2026-45688 Critical 9.1

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.1, 8.3.3, 8.2.3, 8.1.4, 8.0.5, 7.13.7, and 7.10.11,

24 Jun 2026, 20:56 UTC View advisory →
CVE-2026-45687 High 8.5

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.1, 8.3.3, 8.2.3, 8.1.4, 8.0.5, 7.13.7, and 7.10.11,

24 Jun 2026, 20:55 UTC View advisory →
CVE-2026-45677 High 8.7

Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.1, 8.3.3, 8.2.3, 8.1.4, 8.0.5, 7.13.7, and 7.10.11,

24 Jun 2026, 20:54 UTC View advisory →
CVE-2026-45408 Critical 9

Dokku is a docker-powered PaaS. Prior to 0.38.2, the app name validation regex (^[a-z0-9][^/:_A-Z]*$) permits shell metacharacters. When an authenticated u

26 Jun 2026, 16:19 UTC View advisory →
CVE-2026-45407 Medium 5

Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:auth command creates $DOKKU_ROOT/.netrc using bash's touch command, which applies the default umas

26 Jun 2026, 16:21 UTC View advisory →
CVE-2026-45406 Critical 9

Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openresty/http-includes/ git repository directory t

26 Jun 2026, 16:22 UTC View advisory →
CVE-2026-45405 Critical 9

Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supplied tar/zip archives into temporary director

26 Jun 2026, 16:23 UTC View advisory →
CVE-2026-45259 Unscored

sigqueue(2) was marked as permitted in capability mode with the introduction of Capsicum in 2011, but the implementation of kern_sigqueue did not include a

27 Jun 2026, 08:59 UTC View advisory →
CVE-2026-45258 Unscored

dsp_mmap_single() validated the requested mapping by checking the sum of the user-supplied offset and length against the buffer size. This addition could o

27 Jun 2026, 08:50 UTC View advisory →
CVE-2026-45257 High 7.8

The KTLS receive path decrypted each record in place, assuming that the mbufs holding received data were anonymous and safe to modify. This assumption does

26 Jun 2026, 14:50 UTC View advisory →
CVE-2026-45256 Medium 5.5

When used to deliver a signal to a specific thread, thr_kill2(2) called p_cansignal() to determine whether the operation was permitted but did not check th

26 Jun 2026, 14:43 UTC View advisory →
CVE-2026-45233 High 7.2

HTMLy CMS through 3.1.1 contains a path traversal vulnerability that allows low-privileged authenticated attackers to relocate arbitrary files by supplying

25 Jun 2026, 15:50 UTC View advisory →
CVE-2026-45195 High 7.8

Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a memory read or write outside the permitt

26 Jun 2026, 15:18 UTC View advisory →
CVE-2026-45188 Low 2.4

Relative Path Traversal vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 1.0.0 through 2.15.0. Users are recommended to upgrade to

25 Jun 2026, 08:01 UTC View advisory →
CVE-2026-45135 High 8.1

Caddy is an extensible server platform that uses TLS by default. From 2.7.0 until 2.11.3, the FastCGI transport's splitPos() in modules/caddyhttp/reversepr

23 Jun 2026, 17:56 UTC View advisory →
CVE-2026-45034 Critical 9.2

PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Prior to 1.30.5, CVE-2026-34084 was patched by the helper File::prohibitWra

22 Jun 2026, 20:32 UTC View advisory →
CVE-2026-44961 None 0

The XML‑RPC API addUser method has a validation bypass introduced in the fix for CVE‑2025‑55129. As a result, API users could create usernames that enabled

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-44960 None 0

A stored XSS can be exploited by leveraging the usernames as an attack vector. When an admin user viewed the audit log details for affected entries, any ma

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-44959 High 8.8

A missing validation of user input exists when saving delivery limitations in Revive Adserver 6.0.6 and earlier. A low‑privileged user could add an unexpec

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-44958 Medium 5.4

An access control bypass allows an advertiser‑level user to activate or deactivate a banner in Revive Adserver 6.0.6 and earlier, even when such permission

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-44957 Medium 4.3

A missing access control check when invoking various modify methods in the XML‑RPC API of Revive Adserver 6.0.6 and earlier. The API allowed entities to be

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-44956 None 0

Low‑privileged users could use their Full Name as a vector for a stored XSS attack. The name is included in system‑generated emails, whose content is store

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-44949 High 7

A Rancher FleetWorkspace admission path allowed side effects to occur in the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.

30 Jun 2026, 14:41 UTC View advisory →
CVE-2026-44948 Medium 5.3

A path traversal vulnerability was found in Fleet's ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 an

30 Jun 2026, 15:12 UTC View advisory →
CVE-2026-44947 Medium 6.9

A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed us

30 Jun 2026, 14:21 UTC View advisory →
CVE-2026-44946 Critical 9.5

A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentiall

30 Jun 2026, 12:14 UTC View advisory →
CVE-2026-44914 High 7.5

Apache NiFi 1.12.0 through 2.9.0 are missing authorization when replacing Process Groups that include extension components with specific Required Permissio

22 Jun 2026, 07:38 UTC View advisory →
CVE-2026-44913 Medium 5.2

Improper escaping of database table names in the CaptureChangeMySQL Processor included with Apache NiFi 1.2.0 through 2.9.0 allows for injecting SQL comman

22 Jun 2026, 07:36 UTC View advisory →
CVE-2026-44911 Low 2.3

Authorization handling for component configuration verification requests in Apache NiFi 1.15.0 through 2.9.0 allows clients with read access to submit prop

22 Jun 2026, 07:37 UTC View advisory →
CVE-2026-44889 Medium 6.1

WebOb provides objects for HTTP requests and responses. Prior to 1.8.10, the normalization of the HTTP Location header during a redirect is vulnerable to a

22 Jun 2026, 21:30 UTC View advisory →
CVE-2026-44792 High 8.9

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an attacker with write access to the git repository connected to

23 Jun 2026, 15:55 UTC View advisory →
CVE-2026-44791 Critical 9.4

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workfl

23 Jun 2026, 15:54 UTC View advisory →
CVE-2026-44790 Critical 9.4

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workfl

23 Jun 2026, 15:53 UTC View advisory →
CVE-2026-44789 Critical 9.4

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workfl

23 Jun 2026, 15:52 UTC View advisory →
CVE-2026-44736 Medium 6.5

OpenProject is open-source, web-based project management software. Prior to 17.4.0, the GET /api/v3/relations endpoint allows any authenticated user to ret

26 Jun 2026, 19:27 UTC View advisory →
CVE-2026-44735 Medium 6.5

OpenProject is open-source, web-based project management software. Prior to 17.3.2 and 17.4.0, the GET /api/v3/shares endpoint returns share details for AL

26 Jun 2026, 19:32 UTC View advisory →
CVE-2026-44734 Medium 6.5

OpenProject is open-source, web-based project management software. Prior to 17.3.2 and 17.4.0, a Missing Authorization vulnerability exists in OpenProject'

26 Jun 2026, 19:33 UTC View advisory →
CVE-2026-44733 Medium 5.9

OpenProject is open-source, web-based project management software. Prior to 17.3.2 and 17.4.0, Business Logic Error on OpenProject through PATCH request to

26 Jun 2026, 19:47 UTC View advisory →
CVE-2026-44732 Medium 4.3

OpenProject is open-source, web-based project management software. Prior to 17.3.2 and 17.4.0, OpenProject exposes a document update endpoint used to modif

26 Jun 2026, 19:39 UTC View advisory →
CVE-2026-44731 Medium 4.3

OpenProject is open-source, web-based project management software. Prior to 17.3.2 and 17.4.0, the web application's meetings filter feature leaks whether

26 Jun 2026, 19:41 UTC View advisory →
CVE-2026-44727 Critical 9.3

Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyter_server render user-authored notebook HTML

22 Jun 2026, 19:56 UTC View advisory →
CVE-2026-44726 High 7.4

Deno is a JavaScript, TypeScript, and WebAssembly runtime. From 2.0.0 until 2.7.8, a flaw in Deno's Node.js tls compatibility layer could cause a TLS clien

23 Jun 2026, 17:24 UTC View advisory →
CVE-2026-44696 Medium 5.7

OpenProject is open-source, web-based project management software. Prior to 17.4.0, OpenProject's rich text (markdown) rendering pipeline uses Sanitize::Co

26 Jun 2026, 19:30 UTC View advisory →
CVE-2026-44628 High 8.7

An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a valid Called AE Title / storage directory, the

30 Jun 2026, 20:54 UTC View advisory →
CVE-2026-44622 Medium 6.9

Charging station authentication identifiers are publicly accessible via web-based mapping platforms.

25 Jun 2026, 20:53 UTC View advisory →
CVE-2026-44311 Medium 5.4

Fabric.js is a Javascript HTML5 canvas library. Prior to 7.4.0, a potential Cross-Site Scripting (XSS) vulnerability exists in Fabric.js due to improper es

22 Jun 2026, 20:50 UTC View advisory →
CVE-2026-44274 High 7.8

Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attack

22 Jun 2026, 18:47 UTC View advisory →
CVE-2026-44273 Medium 6

Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain a Use of Default Credentials vulnerability. A high privileged attacker with local acc

22 Jun 2026, 18:51 UTC View advisory →
CVE-2026-44272 High 8.8

Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection

22 Jun 2026, 18:56 UTC View advisory →
CVE-2026-44271 High 8.1

Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection

22 Jun 2026, 19:00 UTC View advisory →
CVE-2026-44089 Critical 9.4

Totolink EX1200L router is vulnerable to Buffer Overflow in the login functionality in cgi-bin/cstecgi.cgi endpoint. This vulnerability could be exploited

23 Jun 2026, 12:08 UTC View advisory →
CVE-2026-44042 Low 3.7

UltraVNC repeater through 1.8.2.2 contains an off-by-one error in the Base64 decode helper used for HTTP Basic authentication. In repeater/webgui/webutils.

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-44041 Medium 4.3

UltraVNC through 1.8.2.2 contains an out-of-bounds read in the wide-string to multibyte conversion helper. In rfb/dh.cpp:204, the vncWc2Mb() function passe

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-44040 Medium 4.8

UltraVNC through 1.8.2.2 uses a cryptographically weak pseudo-random number generator to produce VNC authentication challenge bytes. In rfb/vncauth.c:119-1

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-44022 Medium 5.5

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.73.0 until 2.91.0, he

24 Jun 2026, 17:47 UTC View advisory →
CVE-2026-44020 High 7.5

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.13.0 until 2.74.0, th

24 Jun 2026, 17:45 UTC View advisory →
CVE-2026-44018 Medium 5.5

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.45.0 until 2.91.0, th

26 Jun 2026, 15:40 UTC View advisory →
CVE-2026-44017 High 7.5

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. Prior to 2.91.0, the EasyOCR

24 Jun 2026, 17:48 UTC View advisory →
CVE-2026-44016 High 8.2

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. FIn versions >= 2.82.0, < 2.

24 Jun 2026, 17:42 UTC View advisory →
CVE-2026-43920 Medium 6.9

FOSSBilling is a free, open-source billing and client management system. In versions 0.5.4 through 0.7.2, the /run-patcher maintenance endpoint in FOSSBill

25 Jun 2026, 23:06 UTC View advisory →
CVE-2026-43746 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43745 Medium 6.5

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43743 Medium 4.7

A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43742 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43740 Medium 6.5

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing m

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43735 Unscored

The issue was addressed with improved checks. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website m

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43734 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43732 Medium 6.5

A path handling issue was addressed with improved validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Proce

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43731 High 8.8

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43727 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43726 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43725 High 7.1

The issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43724 Unscored

The issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to ca

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43722 Unscored

The issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to le

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43721 Unscored

This issue was addressed through improved state management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malic

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43720 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43718 Medium 6.5

A stack overflow was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Proc

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43717 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43716 Medium 6.5

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing m

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43715 High 8.8

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43713 Unscored

A permissions issue was addressed with additional restrictions. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Vis

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43712 Medium 6.5

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing m

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43709 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43708 Medium 4.3

The issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43707 Unscored

A memory corruption issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43706 Medium 6.5

A double free issue was addressed with improved memory management. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing mali

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43705 High 8.8

A type confusion issue was addressed with improved checks. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processi

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43704 Medium 5.3

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43703 Medium 6.5

The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously craf

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43701 Unscored

The issue was addressed with improved checks. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website m

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43700 Medium 6.5

A cross-origin issue was addressed with improved tracking of security origins. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Ta

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-43699 Medium 6.5

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43676 Medium 6.5

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-43663 Medium 6.5

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing m

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-42867 Medium 6.5

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Traversal in the Knowledge Ba

23 Jun 2026, 16:29 UTC View advisory →
CVE-2026-42450 High 8.4

OpenColorIO is a color management framework for visual effects and animation. Prior to version 2.5.2, `FileFormatSpi3D.cpp:163` uses `sscanf` with `%s` int

24 Jun 2026, 13:20 UTC View advisory →
CVE-2026-42390 Medium 5.3

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation.

25 Jun 2026, 13:01 UTC View advisory →
CVE-2026-42389 Medium 5.3

This fix provides extra hardening for the 5.4.x branch by doing extra validation of incoming answers from authoritative servers.

25 Jun 2026, 13:16 UTC View advisory →
CVE-2026-42388 Medium 5.9

Incomplete validation of the SOA record present in a catalog zone might lead to a crash.

25 Jun 2026, 12:59 UTC View advisory →
CVE-2026-42387 Medium 5.9

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input valida

25 Jun 2026, 12:59 UTC View advisory →
CVE-2026-42129 High 7.7

The Loki datasource plugin's callResource handler contains a path traversal vulnerability. An authenticated Viewer-role user can escape the plugin's resour

22 Jun 2026, 13:18 UTC View advisory →
CVE-2026-42127 High 7.5

The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticated attackers to trigger excessive memory allo

22 Jun 2026, 16:31 UTC View advisory →
CVE-2026-42005 Medium 4.3

An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web ser

25 Jun 2026, 11:57 UTC View advisory →
CVE-2026-42004 Low 3.7

An attacker can send a crafted EDNS OPT record that will be ignored by DNSdist’s filtering rules, but will be rewritten as a valid OPT record when EDNS Cli

25 Jun 2026, 12:24 UTC View advisory →
CVE-2026-41992 Medium 6.9

GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reuse of shared global state between different d

29 Jun 2026, 10:15 UTC View advisory →
CVE-2026-41991 Low 2

GNU gzip contains a vulnerability in the gzexe utility related to insecure temporary file handling. When the mktemp utility is not available in the user’s

29 Jun 2026, 10:15 UTC View advisory →
CVE-2026-41896 High 7.5

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.474, the HMAC key is the applicatio

29 Jun 2026, 20:16 UTC View advisory →
CVE-2026-41862 High 8.8

Spring Statemachine's Kryo-based persistence backends (JPA, MongoDB, Redis and ZooKeeper) deserialise persisted state-machine contexts without enforcing a

23 Jun 2026, 20:59 UTC View advisory →
CVE-2026-41579 Low 3.3

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions prior to 1.3.6, 1.4.0-rc.1, 1.4.0-rc.12, 1.5.0-rc.1,

01 Jul 2026, 00:02 UTC View advisory →
CVE-2026-41566 Critical 9.4

Improper Handling of Insufficient Permissions or Privileges vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: 2.8.0. Users are recommende

25 Jun 2026, 08:04 UTC View advisory →
CVE-2026-41523 High 7.5

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.0, an assert-based security check in vLLM's activation function loa

22 Jun 2026, 22:18 UTC View advisory →
CVE-2026-41479 Medium 5.4

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.10 and 1.7.1, Authlib's OAuth 2.0 authorization endpoint can be tur

22 Jun 2026, 20:35 UTC View advisory →
CVE-2026-41120 Critical 9.8

Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability. A low privil

25 Jun 2026, 13:28 UTC View advisory →
CVE-2026-41053 High 8.8

Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any

30 Jun 2026, 11:38 UTC View advisory →
CVE-2026-41052 Critical 9.4

Improper privilege handling could be used by users with Project Owner role to escalate privileges, in Rancher versions 2.14 before 2.14.2, 2.13 before 2.13

29 Jun 2026, 15:41 UTC View advisory →
CVE-2026-41049 High 8.4

Incorrect caching of authentication between different users of the qSnapper dbus service before version 1.3.3 allowed any local attacker to use dbus functi

22 Jun 2026, 15:32 UTC View advisory →
CVE-2026-41048 High 8.4

Incorrect caching of authentication between different polkit methods in qSnapper before version 1.3.3 allowed a local attacker to use functions like "resto

22 Jun 2026, 15:31 UTC View advisory →
CVE-2026-41047 Medium 6.9

Lack of authentication when using the "snapshot diff" functions in qSnapper before version 1.3.3 allowed a local attacker to see otherwise read protected i

22 Jun 2026, 15:25 UTC View advisory →
CVE-2026-41046 High 7.3

A path traversal attack when using a "configName" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files for sna

22 Jun 2026, 15:20 UTC View advisory →
CVE-2026-41045 High 8.1

A time-to-check-time-of-use in polkit authentication of qSnapper before version 1.3.3 allowed a local attacker to bypass qSnappers authentication mechanism

22 Jun 2026, 15:16 UTC View advisory →
CVE-2026-40941 High 7.1

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have a package import signature validation bypass allows whic

25 Jun 2026, 23:01 UTC View advisory →
CVE-2026-40711 High 8

Dell Dell Container Storage Modules, version(s) csi-powerstore v2.16.0, csi-unity v2.16.0, csi-powerflex v2.16.0, csi-powermax v2.16.0, contain(s) an Impro

26 Jun 2026, 12:31 UTC View advisory →
CVE-2026-40702 Critical 9.3

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to impersonate charging stations. As a result, attackers can exploit this wea

25 Jun 2026, 20:59 UTC View advisory →
CVE-2026-40524 High 7.2

FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the get_gl_transactions() function where the filter_type parameter is concatenated

29 Jun 2026, 12:27 UTC View advisory →
CVE-2026-40523 High 7.2

FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Audit Trail report handler that allows authenticated attackers with SA_GLANALYT

29 Jun 2026, 12:29 UTC View advisory →
CVE-2026-40522 High 7.1

FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Bank Statement report handler that allows authenticated attackers to extract ar

29 Jun 2026, 12:29 UTC View advisory →
CVE-2026-40521 High 8.7

FrontAccounting before 2.4.20 contains a path traversal vulnerability in the attachment upload handler that allows authenticated attackers to execute arbit

29 Jun 2026, 12:30 UTC View advisory →
CVE-2026-40211 Medium 5.3

An attacker can send crafted DNS over HTTP/3 queries, triggering an exception that prevents some buffer from being freed right away. The buffer will be fre

25 Jun 2026, 12:23 UTC View advisory →
CVE-2026-40210 Medium 4.8

An out-of-bounds read might happen when SetMacAddrAction is used, potentially resulting in uninitialized memory being sent over the network or a crash.

25 Jun 2026, 12:23 UTC View advisory →
CVE-2026-40209 Medium 5.3

An attacker might be able to cause outgoing TCP connections to backend to be stuck until a timeout occurs instead of being released immediately, by sending

25 Jun 2026, 12:23 UTC View advisory →
CVE-2026-40208 Low 3.7

An attacker might be able to delay the processing of DoH3 queries by sending DoH3 GET queries with an invalid DATA frame.

25 Jun 2026, 12:22 UTC View advisory →
CVE-2026-40084 Medium 6.5

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Path Traversal through the Report format_fi

25 Jun 2026, 22:43 UTC View advisory →
CVE-2026-40083 High 7.2

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have SQL Injection through unsanitized unserialize+implode in

25 Jun 2026, 22:39 UTC View advisory →
CVE-2026-40082 Medium 5.4

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have missing session_regenerate_id() after login, leading to

25 Jun 2026, 22:33 UTC View advisory →
CVE-2026-40080 Medium 6.1

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Open Redirect through a substring check rat

25 Jun 2026, 22:29 UTC View advisory →
CVE-2026-40079 High 8.6

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Command Injection due to lack of sanitizati

24 Jun 2026, 23:26 UTC View advisory →
CVE-2026-40012 Medium 5.3

ECS zero scoped answers are stored in the packet cache while they should not. This impacts only configurations that have ECS enabled;

25 Jun 2026, 12:58 UTC View advisory →
CVE-2026-40011 Low 3.7

An attacker sending a large number of crafted DNS queries might be able to trigger a dynamic block being inserted with a value causing invalid output to be

25 Jun 2026, 12:22 UTC View advisory →
CVE-2026-39955 Critical 9.8

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have pre-authentication SQL Injection via unanchored FILTER_V

24 Jun 2026, 22:49 UTC View advisory →
CVE-2026-39951 High 7.6

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have a Stored SQL Injection vulnerability through graph_name_

24 Jun 2026, 23:14 UTC View advisory →
CVE-2026-39948 Critical 9.3

Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request parameter is retrieved via the raw ac

24 Jun 2026, 23:06 UTC View advisory →
CVE-2026-39938 Critical 9.8

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have unauthenticated LFI through graph_theme and rrdtool IPC

24 Jun 2026, 22:41 UTC View advisory →
CVE-2026-39904 High 7.1

Gophish through 0.12.1 contains a denial of service vulnerability that allows authenticated users with the User role to exhaust server memory by uploading

22 Jun 2026, 20:11 UTC View advisory →
CVE-2026-39900 Medium 5.3

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Reflected XSS via tab parameter in the auth

24 Jun 2026, 22:37 UTC View advisory →
CVE-2026-39899 Medium 6.9

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Path Traversal via filename parameter in pa

24 Jun 2026, 22:33 UTC View advisory →
CVE-2026-39897 Medium 5.3

Cacti is an open source performance and fault management framework. Versions 1.2.30 and below contain a Reflected XSS vulnerability in the html_auth_footer

24 Jun 2026, 22:00 UTC View advisory →
CVE-2026-39894 Low 2.9

Cacti is an open source performance and fault management framework. In versions 1.2.30 and below, the locale-dependent decimal formatting in rrdtool_functi

24 Jun 2026, 21:55 UTC View advisory →
CVE-2026-39893 Critical 9.8

Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request variable was concatenated into a RLIK

24 Jun 2026, 21:45 UTC View advisory →
CVE-2026-39872 Medium 6.5

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing m

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-39868 Unscored

This issue was addressed with improved input validation. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cau

29 Jun 2026, 19:43 UTC View advisory →
CVE-2026-35505 High 8.7

An unauthenticated remote attacker can repeatedly send crafted connection requests to leak memory. In single-process deployments the memory grows until the

30 Jun 2026, 21:09 UTC View advisory →
CVE-2026-35098 Medium 6.9

KTM System e-BOK does not implement any limit or timeout on consecutive login attempts, allowing an attacker to perform unlimited authentication requests.

30 Jun 2026, 13:37 UTC View advisory →
CVE-2026-35097 Medium 6.9

KTM System e-BOK enforces a maximum password length of six numeric digits and does not permit the use of any alphabetic, special, or extended characters. T

30 Jun 2026, 13:37 UTC View advisory →
CVE-2026-35096 Medium 5.1

KTM System e-BOK is vulnerable to Cross‑Site Request Forgery (CSRF) in both the email-change and password-change functionalities. An attacker can craft a m

30 Jun 2026, 13:37 UTC View advisory →
CVE-2026-35095 Medium 4.8

KTM System e-BOK allows the session identifier to be set by the client prior to authentication. If a cookie with a valid name is set, its value remains unc

30 Jun 2026, 13:37 UTC View advisory →
CVE-2026-35025 High 8.6

ProFTPD through 1.3.9b and 1.3.10rc2 contains an access control bypass vulnerability that allows authenticated FTP users to circumvent Directory ACL restri

24 Jun 2026, 13:21 UTC View advisory →
CVE-2026-35019 Critical 9.2

NetComm NF20MESH routers running firmware R6B031 and earlier contain an authentication bypass vulnerability that allows unauthenticated attackers to gain a

23 Jun 2026, 13:48 UTC View advisory →
CVE-2026-35018 High 8.7

NetComm NF20MESH routers running firmware R6B031 and earlier contain an authenticated remote code execution vulnerability that allows authenticated attacke

23 Jun 2026, 13:46 UTC View advisory →
CVE-2026-34917 Medium 4.3

Low‑privileged session IDs generated for the web admin console could be reused in the XML‑RPC API, whose authentication is normally restricted to admin use

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-34916 High 8.8

A missing validation of user input when saving delivery limitations in Revive Adserver 6.0.6 and earlier could allow a low‑privileged user to use the logic

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-34915 Medium 6.1

A missing sanitisation of user input in the zone-include.php script of Revive Adserver 6.0.6 and earlier could allow a low‑privileged user to exploit the c

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-34914 High 8.3

A missing sanitisation of user input in the zone-include.php script of Revive Adserver 6.0.6 and earlier. A low‑privileged user could exploit the clientid

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-34913 Medium 4.3

A missing access control check when linking trackers to campaigns through the campaign-trackers.php script of Revive Adserver 6.0.6 and earlier could allow

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-34912 Medium 4.3

A missing access control check when linking banners or campaigns to a zone through the zone-include.php script of Revive Adserver 6.0.6 and earlier, or via

23 Jun 2026, 16:14 UTC View advisory →
CVE-2026-34597 High 8.8

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.470, a critical Authenticated Host

29 Jun 2026, 20:18 UTC View advisory →
CVE-2026-34594 High 8.8

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, an authenticated command injec

29 Jun 2026, 20:21 UTC View advisory →
CVE-2026-34592 High 7.7

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, Coolify server and project loo

29 Jun 2026, 21:47 UTC View advisory →
CVE-2026-33760 High 8.8

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow's /api/v1/monitor router exposes 7 endpoints that p

23 Jun 2026, 16:30 UTC View advisory →
CVE-2026-33646 Critical 9.6

mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.3.10, mise processes .tool-versions files through the Tera template engine du

26 Jun 2026, 16:51 UTC View advisory →
CVE-2026-33612 High 7.5

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning.

25 Jun 2026, 12:58 UTC View advisory →
CVE-2026-33560 High 8.4

The DMP-5000 file service exposes authenticated arbitrary file upload functionality. There are exposed endpoints which allows authenticated users to upload

26 Jun 2026, 22:48 UTC View advisory →
CVE-2026-33543 Critical 9.3

FOSSBilling is a free, open-source billing and client management system. Versions 0.7.2 and prior expose a guest API endpoint, /api/guest/staff/create, int

24 Jun 2026, 21:01 UTC View advisory →
CVE-2026-33235 High 7.7

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions prior to 0.6.52, the

24 Jun 2026, 20:52 UTC View advisory →
CVE-2026-32833 High 8.7

Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that allows authenticated attackers to execute arbit

26 Jun 2026, 19:54 UTC View advisory →
CVE-2026-32315 Medium 5.5

motionEye (mEye) is an online interface for motion software, a video surveillance program with motion detection. Versions prior to 0.44.0 create the config

24 Jun 2026, 20:45 UTC View advisory →
CVE-2026-31978 Medium 6.5

motionEye (mEye) is an online interface for motion software, which is a video surveillance program with motion detection. Versions prior to 0.44.0 are vuln

24 Jun 2026, 20:28 UTC View advisory →
CVE-2026-31928 Critical 9.3

The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls, which are not required to be changed during i

26 Jun 2026, 22:52 UTC View advisory →
CVE-2026-29509 Medium 5.3

Patool before 4.0.5 contains a path traversal vulnerability in the safe_extract() function in patoolib/programs/py_tarfile.py when running on Python before

26 Jun 2026, 19:31 UTC View advisory →
CVE-2026-29034 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

25 Jun 2026 View advisory →
CVE-2026-28979 Medium 6.5

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe

29 Jun 2026, 19:42 UTC View advisory →
CVE-2026-28898 Medium 5.3

swift-nio-http2's HTTP/2-to-HTTP/1.1 codec did not validate pseudo-header values for control characters before placing them into the translated HTTP/1.1 me

25 Jun 2026, 18:36 UTC View advisory →
CVE-2026-28701 Critical 9.3

Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users to escape the intended directory and enumerat

26 Jun 2026, 22:40 UTC View advisory →
CVE-2026-28496 Critical 9.4

FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 have a Server-Side Template Injection (SSTI) vulnerability

23 Jun 2026, 14:20 UTC View advisory →
CVE-2026-28385 Medium 5

In Canonical LXD versions 4.12 through 6.9, a Server-Side Request Forgery (SSRF) vulnerability in the image import functionality allows authenticated users

26 Jun 2026, 16:23 UTC View advisory →
CVE-2026-28381 Critical 9.6

The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries against the data source to read/write files betwe

22 Jun 2026, 13:20 UTC View advisory →
CVE-2026-28322 Medium 5.6

SolarWinds Database Performance Analyzer was found to be affected by a stored cross-site scripting vulnerability, which when exploited, can lead to uninten

30 Jun 2026, 22:15 UTC View advisory →
CVE-2026-27957 High 8.8

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.464, an authenticated command injec

30 Jun 2026, 14:39 UTC View advisory →
CVE-2026-27956 Medium 4.3

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.464, `GET /api/v1/servers/{server_u

30 Jun 2026, 14:38 UTC View advisory →
CVE-2026-27955 Medium 6.6

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.464, the executeInDocker() helper w

30 Jun 2026, 14:36 UTC View advisory →
CVE-2026-27883 Medium 5

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.464, the `GET /api/v1/deployments/{

30 Jun 2026, 14:32 UTC View advisory →
CVE-2026-27882 Medium 4.8

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.461, the GitLab webhook endpoint us

30 Jun 2026, 14:26 UTC View advisory →
CVE-2026-27881 Medium 5

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.464, `GET /api/v1/deployments/{uuid

30 Jun 2026, 14:28 UTC View advisory →
CVE-2026-27708 High 7.1

FOSSBilling is a free, open-source billing and client management system. In versions 0.7.2 and prior, the Servicecustom Client API's __call method accepts

24 Jun 2026, 19:24 UTC View advisory →
CVE-2026-27604 Critical 10

FOSSBilling is a free, open-source billing and client management system. Starting in version 0.5.4 and prior to version 0.8.0, an authorization bypass in t

23 Jun 2026, 14:25 UTC View advisory →
CVE-2026-27366 High 7.5

Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions.

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-25707 High 8.8

A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositori

29 Jun 2026, 10:04 UTC View advisory →
CVE-2026-25119 High 7.7

Gogs is an open source self-hosted Git service. Prior to 0.14.3, when ENABLE_REVERSE_PROXY_AUTHENTICATION is enabled, Gogs accepts the configured authentic

24 Jun 2026, 20:07 UTC View advisory →
CVE-2026-24547 Medium 5.3

Unauthenticated Broken Access Control in SiteGround Email Marketing <= 1.7.5 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2026-23879 High 8

py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and decryption. Versions 1.1.2 and below contain

24 Jun 2026, 19:17 UTC View advisory →
CVE-2026-23513 High 7.1

FOSSBilling is a free, open-source billing and client management system. In versions 0.7.2 and prior, a query-construction flaw in client list endpoints al

23 Jun 2026, 20:11 UTC View advisory →
CVE-2026-22879 High 8.1

vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability

25 Jun 2026, 21:46 UTC View advisory →
CVE-2026-22078 High 7.3

Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges and perform sensitive actions through the IPC

29 Jun 2026, 08:05 UTC View advisory →
CVE-2026-21734 High 7.7

A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a write out-of-bounds write crash in the GPU shade

26 Jun 2026, 15:14 UTC View advisory →
CVE-2026-20463 Unscored

In Modem, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege if a malicious actor ha

01 Jul 2026, 03:14 UTC View advisory →
CVE-2026-20462 Unscored

In Telephony, there is a possible memory corruption due to a heap buffer overflow. This could lead to local escalation of privilege if a malicious actor ha

01 Jul 2026, 03:14 UTC View advisory →
CVE-2026-20461 Unscored

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a ro

01 Jul 2026, 03:14 UTC View advisory →
CVE-2026-20460 Unscored

In Modem, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure, if a UE has connec

01 Jul 2026, 03:14 UTC View advisory →
CVE-2026-20459 Unscored

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue

01 Jul 2026, 03:14 UTC View advisory →
CVE-2026-20458 Unscored

In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to

01 Jul 2026, 03:13 UTC View advisory →
CVE-2026-20457 Unscored

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue

01 Jul 2026, 03:13 UTC View advisory →
CVE-2026-14241 Unscored

Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these

30 Jun 2026, 13:32 UTC View advisory →
CVE-2026-14209 Medium 4.3

A vulnerability was discovered in Keycloak's Admin UI extension that allows certain administrative users to bypass security restrictions. When Fine-Grained

30 Jun 2026, 11:48 UTC View advisory →
CVE-2026-14193 High 7.5

DVP80ES300T with Improper Validation of Array Index Vulnerability

01 Jul 2026, 05:30 UTC View advisory →
CVE-2026-14191 High 7.8

An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5::ReadHeader in recvol5.cpp). The RecItems vec

01 Jul 2026, 02:41 UTC View advisory →
CVE-2026-14178 Medium 5.9

openGauss 在处理带 NLS 参数的 to_timestamp 调用时,to_timestamp_with_fmt_nls() 会将 nls_fmt_str 保存到 u_sess->parser_cxt.nls_fmt_str。在 seqscan + sort 执行路径下,该字符串原本被分配在 Seq

30 Jun 2026, 13:56 UTC View advisory →
CVE-2026-14162 Critical 9.3

Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access a speci

30 Jun 2026, 10:57 UTC View advisory →
CVE-2026-14161 High 8.7

Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access a speci

30 Jun 2026, 10:52 UTC View advisory →
CVE-2026-14160 Medium 5.9

Time-of-check time-of-use (TOCTOU) race condition vulnerability in Samsung Open Source Escargot allows Leveraging Race Conditions. This issue affects Escar

30 Jun 2026, 02:09 UTC View advisory →
CVE-2026-14156 Unscored

Insufficient policy enforcement in StorageAccessAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14155 Unscored

Insufficient policy enforcement in StorageAccessAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a craft

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14154 Medium 4.8

Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14153 Medium 5.3

Inappropriate implementation in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestur

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14152 Unscored

Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potenti

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14151 Unscored

Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentiall

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14150 Unscored

Insufficient validation of untrusted input in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer pro

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14149 Unscored

Use after free in Audio in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chro

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14148 Medium 6.5

Type Confusion in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14147 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a craf

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14146 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (C

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14145 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a craf

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14144 Medium 4.2

Incorrect security UI in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14143 Unscored

Incorrect security UI in Passwords in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page.

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14142 Unscored

Inappropriate implementation in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to pe

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14141 Unscored

Incorrect security UI in Document Picture-in-Picture in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform domain spoofin

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14140 Unscored

Insufficient validation of untrusted input in Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14139 Medium 4.2

Inappropriate implementation in TabStrip in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ge

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14138 Medium 4.2

Inappropriate implementation in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14137 Medium 4.2

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14136 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofin

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14135 Unscored

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer pr

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14134 Unscored

Inappropriate implementation in Autofill in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14133 Unscored

Race in History Embeddings in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium secu

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14132 Unscored

Inappropriate implementation in WebXR in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Ch

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14131 Unscored

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the rend

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14130 Unscored

Incorrect security UI in Omnibox in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromiu

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14129 Medium 4.2

Inappropriate implementation in PreviewTab in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in s

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14128 Unscored

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to spoof the contents of the Omnibo

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14127 Unscored

Inappropriate implementation in Printing in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perf

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14126 Unscored

Incorrect security UI in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform domain spoofing via a crafted HTML page

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14125 Medium 6.5

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memor

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14124 Unscored

Inappropriate implementation in CredentialProvider in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privileg

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14123 Unscored

Incorrect security UI in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to spoof the contents of the Omnibox (URL

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14122 Unscored

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to perform arbitr

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14121 Unscored

Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network tra

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14120 Unscored

Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to pote

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14119 Medium 6.5

Type Confusion in Bluetooth in Google Chrome on Windows prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensi

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14118 Unscored

Insufficient data validation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ge

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14117 Medium 5.3

Insufficient validation of untrusted input in DevTools in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14116 Unscored

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14115 Unscored

Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proce

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14114 Unscored

Inappropriate implementation in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to perform UI spoofing via a mal

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14113 Unscored

Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentia

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14112 Medium 5.3

Inappropriate implementation in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14111 Unscored

Use after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to execute a

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14110 Unscored

Inappropriate implementation in DarkMode in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page.

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14109 Unscored

Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to poten

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14108 Unscored

Use after free in PDFium in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF fil

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14107 Unscored

Use after free in Scheduling in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTM

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14106 Unscored

Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the ren

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14105 Unscored

Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14104 Unscored

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code in

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14103 Medium 6.5

Use after free in SSL in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from proces

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14102 Unscored

Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML pag

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14101 Unscored

Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proces

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14100 Unscored

Insufficient data validation in NetworkCache in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14099 Unscored

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ges

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14098 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (C

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14097 Unscored

Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer pr

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14096 Unscored

Inappropriate implementation in Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14095 Unscored

Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to po

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14094 Unscored

Use after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a mali

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14093 Unscored

Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14092 Unscored

Insufficient policy enforcement in Privacy in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to leak cross-origi

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14091 Unscored

Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14090 Unscored

Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to perform an out

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14089 Unscored

Insufficient validation of untrusted input in PopupBlocker in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the render

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14088 Medium 6.5

Uninitialized Use in Canvas in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from p

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14087 Unscored

Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to pote

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14086 Unscored

Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14085 Unscored

Side-channel information leakage in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14084 Unscored

Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corr

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14083 Unscored

Insufficient validation of untrusted input in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (U

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14082 Unscored

Race in Storage in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security sev

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14081 Medium 6.5

Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extensi

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14080 Unscored

Insufficient validation of untrusted input in TabSwitcher in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to bypass navigation

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14079 Unscored

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTM

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14078 Unscored

Insufficient validation of untrusted input in WebRTC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform privilege escalation via

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14077 Unscored

Inappropriate implementation in Select in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to spoof the contents of the Omnibox (URL b

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14076 Unscored

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass content security policy via a crafte

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14075 Unscored

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass no-referrer policy via

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14074 Unscored

Side-channel information leakage in WebAuthentication in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data vi

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14073 Unscored

Insufficient validation of untrusted input in WebXR in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14072 Unscored

Inappropriate implementation in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page.

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14071 Unscored

Side-channel information leakage in WebAudio in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14070 Medium 6.5

Integer overflow in WebNN in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14069 Medium 6.5

Integer overflow in WebNN in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14068 Unscored

Inappropriate implementation in Omnibox in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14067 Unscored

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14066 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14065 Unscored

Insufficient validation of untrusted input in PageInfo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer p

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14064 Unscored

Use after free in PageInfo in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestu

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14063 Medium 5.5

Out of bounds read in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive information from process

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14062 Medium 5.9

Inappropriate implementation in Views in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious e

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14061 Medium 6.5

Inappropriate implementation in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from pro

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14060 Unscored

Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform privilege e

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14059 Unscored

Insufficient policy enforcement in Related-Website-Sets in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a c

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14058 Unscored

Insufficient policy enforcement in Parser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass content security policy via a crafted

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14057 Unscored

Inappropriate implementation in FedCM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML pag

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14056 Unscored

Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14055 Unscored

Insufficient validation of untrusted input in Device Trust in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14054 Unscored

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafte

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14053 Unscored

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14052 Unscored

Insufficient policy enforcement in FileSystem in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass discretionary access control via

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14051 Medium 6.5

Uninitialized Use in GamepadAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potent

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14050 Unscored

Insufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14049 Medium 5.3

Inappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain po

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14048 Medium 6.5

Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive infor

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14047 Unscored

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious exten

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14046 Unscored

Inappropriate implementation in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14045 Unscored

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer pr

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14044 Unscored

Use after free in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14043 Unscored

Use after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially pe

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14042 Unscored

Inappropriate implementation in Isolated Web Apps in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HT

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14041 Unscored

Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform privilege escalation via a crafted H

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14040 Unscored

Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to potential

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14039 Unscored

Insufficient policy enforcement in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafte

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14038 Unscored

Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the render

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14037 Unscored

Insufficient policy enforcement in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potent

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14036 Unscored

Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform privilege escalation via a crafte

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14035 Medium 6.5

Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14034 Unscored

Inappropriate implementation in WebXR in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14033 Unscored

Insufficient policy enforcement in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to bypass site isolation via a crafte

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14032 Unscored

Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to exe

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14031 Unscored

Inappropriate implementation in File Input in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14030 Medium 4.2

Inappropriate implementation in SplitView in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in spec

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14028 Medium 4.2

Incorrect security UI in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14027 Unscored

Use after free in SignIn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potent

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14026 Medium 4.2

Incorrect security UI in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14025 Unscored

Use after free in Views in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14024 Unscored

Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures t

30 Jun 2026, 22:39 UTC View advisory →
CVE-2026-14023 Unscored

Insufficient validation of untrusted input in SanitizerAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy v

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14022 Unscored

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer pr

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14021 Unscored

Insufficient policy enforcement in StorageAccessAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14020 Unscored

Insufficient validation of untrusted input in WebXR in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14019 Unscored

Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML pa

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14018 Unscored

Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a malici

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14017 Unscored

Inappropriate implementation in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to po

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14016 Unscored

Inappropriate implementation in SVG in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (C

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14015 Unscored

Race in WebRTC in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium se

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14014 Unscored

Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Ch

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14013 Unscored

Inappropriate implementation in SVG in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chro

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14012 Medium 5.3

Side-channel information leakage in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14011 Unscored

Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform an out of bounds memory read via a crafte

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14010 Medium 6.5

Uninitialized Use in Codecs in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from p

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14009 Unscored

Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a cr

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14008 Medium 6.5

Uninitialized Use in WebXR in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from pr

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14007 Unscored

Insufficient policy enforcement in PermissionsPolicy in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions vi

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14006 Unscored

Use after free in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14005 Unscored

Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestur

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14004 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (C

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14003 Unscored

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious exten

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14002 Unscored

Inappropriate implementation in Geolocation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to p

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14001 Unscored

Inappropriate implementation in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-14000 Unscored

Inappropriate implementation in XML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a craf

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13999 Unscored

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a mali

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13998 Medium 4.2

Incorrect security UI in File Input in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13997 Medium 4.2

Incorrect security UI in Extensions in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13996 Unscored

Inappropriate implementation in Permissions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML pag

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13995 Unscored

Insufficient validation of untrusted input in Autofill in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13994 Unscored

Inappropriate implementation in Credential Management in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing v

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13993 Medium 4.2

Incorrect security UI in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ges

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13992 Medium 4.2

Inappropriate implementation in UI in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI g

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13991 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofin

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13990 Unscored

Insufficient validation of untrusted input in DataTransfer in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13989 Unscored

Inappropriate implementation in PageInfo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perf

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13988 Unscored

Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Ch

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13987 Unscored

Incorrect security UI in Mobile in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13986 Medium 4.2

Inappropriate implementation in Media UI in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in sp

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13985 Unscored

Inappropriate implementation in MediaCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13984 Unscored

Incorrect security UI in TabStrip in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromi

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13983 Medium 4.2

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in s

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13982 Unscored

Incorrect security UI in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13981 Unscored

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafte

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13980 Unscored

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafte

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13979 Unscored

Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Ch

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13978 Unscored

Insufficient policy enforcement in PageInfo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML pag

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13977 Unscored

Inappropriate implementation in HTMLParser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13976 Unscored

Insufficient data validation in Storage in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to poten

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13975 Medium 5.3

Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain pot

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13974 Unscored

Integer overflow in Safe Browsing in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a maliciou

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13973 Medium 4.2

Inappropriate implementation in UI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13972 Unscored

Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Ch

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13971 Medium 5.3

Uninitialized Use in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13970 Medium 5.3

Uninitialized Use in Media in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13969 Medium 5.3

Uninitialized Use in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain pot

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13968 Unscored

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13967 Unscored

Heap buffer overflow in V8 in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13966 Unscored

Inappropriate implementation in History in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13965 Unscored

Use after free in Oilpan in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML pa

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13964 Unscored

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions v

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13963 Unscored

Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ge

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13962 Unscored

Insufficient data validation in PDF in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass na

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13961 Medium 5.3

Insufficient validation of untrusted input in DevTools in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13960 Unscored

Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page.

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13959 Unscored

Insufficient validation of untrusted input in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a cr

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13958 Medium 6.5

Uninitialized Use in Codecs in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from p

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13957 Unscored

Incorrect security UI in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to in

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13956 Medium 4.2

Incorrect security UI in PageInfo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13955 Unscored

Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to perform UI spoofing

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13954 Medium 6.5

Insufficient policy enforcement in XML in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive informa

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13953 Unscored

Inappropriate implementation in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to byp

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13952 Unscored

Inappropriate implementation in PerformanceAPIs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted H

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13951 Unscored

Insufficient policy enforcement in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potent

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13950 Medium 5.3

Uninitialized Use in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially s

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13949 Medium 6.5

Insufficient policy enforcement in Payments in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive in

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13948 Unscored

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious exten

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13947 Medium 5.3

Uninitialized Use in XR in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially se

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13946 Unscored

Inappropriate implementation in ScriptInjections in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a c

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13945 Unscored

Insufficient policy enforcement in Extensions in Google Chrome on Linux prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malici

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13944 Unscored

Inappropriate implementation in DataTransfer in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in spe

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13943 Medium 6.5

Uninitialized Use in CSS in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from proc

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13942 Unscored

Inappropriate implementation in Video Capture in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a local attacker to perform UI spoofing via a cra

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13941 Unscored

Inappropriate implementation in SiteSettings in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a craf

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13940 Medium 6.5

Uninitialized Use in Cast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive informat

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13939 Unscored

Insufficient validation of untrusted input in WebShare in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13938 Unscored

Integer overflow in Fonts in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML pag

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13937 Unscored

Insufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13936 Medium 6.5

Inappropriate implementation in Passwords in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive info

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13935 Unscored

Side-channel information leakage in ComputePressure in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a craft

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13934 Unscored

Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the ren

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13933 Medium 5.3

Insufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13932 Unscored

Inappropriate implementation in Sharing in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proce

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13931 Unscored

Inappropriate implementation in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13930 Unscored

Insufficient policy enforcement in Actor in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13929 Unscored

Insufficient policy enforcement in DevTools in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass navigation restrictions v

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13928 Unscored

Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform privilege escalation

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13927 Unscored

Insufficient validation of untrusted input in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to perform privilege escalatio

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13926 Unscored

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer pr

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13925 Unscored

Inappropriate implementation in Downloads in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in sp

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13924 Unscored

Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13923 Medium 6.5

Uninitialized Use in GPU in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from proc

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13922 Unscored

Side-channel information leakage in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML pa

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13921 Unscored

Insufficient validation of untrusted input in DeviceBoundSessionCredentials in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass sam

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13920 Unscored

Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the re

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13919 Unscored

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13918 Unscored

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a craf

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13917 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13916 Unscored

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafte

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13915 Unscored

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ges

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13914 Medium 5.5

Inappropriate implementation in Passwords in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive informati

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13913 Unscored

Insufficient policy enforcement in Autofill in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in spec

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13912 Unscored

Inappropriate implementation in Safe Browsing in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13911 Medium 5.3

Insufficient policy enforcement in Spellcheck in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13910 Unscored

Insufficient policy enforcement in WebXR in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a craft

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13909 Unscored

Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to p

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13908 Unscored

Insufficient validation of untrusted input in Omnibox in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to enga

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13907 Medium 4.2

Inappropriate implementation in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13906 Medium 6.5

Out of bounds read in Codecs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process mem

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13905 Medium 4.2

Race in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive information from process mem

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13904 Unscored

Inappropriate implementation in Safe Browsing in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions vi

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13903 Unscored

Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform privilege escalation via a crafte

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13902 Unscored

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafte

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13901 Unscored

Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to pot

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13900 Unscored

Inappropriate implementation in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to by

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13899 Unscored

Use after free in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13898 Unscored

Use after free in Cast Receiver in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13897 Unscored

Insufficient policy enforcement in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform privilege escalation via a craft

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13896 Unscored

Insufficient policy enforcement in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted H

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13895 Medium 4.2

Inappropriate implementation in Autofill in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ge

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13894 Unscored

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass navigatio

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13893 Unscored

Insufficient validation of untrusted input in WebUI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via malicio

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13892 Unscored

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in s

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13891 Unscored

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13890 Medium 5.3

Out of bounds read in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain poten

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13889 Unscored

Side-channel information leakage in WebAuthentication in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data vi

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13888 Unscored

Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTM

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13887 Unscored

Inappropriate implementation in NFC in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process t

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13886 Unscored

Insufficient policy enforcement in Isolated Web Apps in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass content security policy vi

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13885 Unscored

Use after free in Skia in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafte

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13884 Unscored

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code via malicious network traffic. (C

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13883 Unscored

Type Confusion in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13882 Unscored

Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox esc

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13881 Unscored

Inappropriate implementation in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13880 Unscored

Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perf

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13879 Medium 6.5

Use after free in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive inform

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13878 Unscored

Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentiall

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13877 Medium 5.3

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13876 Unscored

Inappropriate implementation in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass content secu

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13875 Medium 5.3

Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the rend

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13874 Medium 5.3

Race in DataTransfer in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13873 Medium 6.5

Out of bounds read in Layout in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process mem

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13872 Unscored

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to potentially per

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13871 Unscored

Insufficient policy enforcement in GuestView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13870 Unscored

Use after free in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a cra

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13869 Unscored

Use after free in Device in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potential

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13868 Unscored

Inappropriate implementation in Network in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proce

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13867 Unscored

Inappropriate implementation in Geolocation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML pag

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13866 Unscored

Inappropriate implementation in Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13865 Unscored

Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a cra

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13864 Unscored

Insufficient policy enforcement in WebHID in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13863 Unscored

Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to perform privilege e

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13862 Unscored

Insufficient policy enforcement in Web Authentication (Passkeys & Security Keys) in Google Chrome on iOS prior to 150.0.7871.47 allowed an attacker in a pr

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13861 Unscored

Use after free in Core in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a

30 Jun 2026, 22:38 UTC View advisory →
CVE-2026-13860 Medium 4.2

Incorrect security UI in Autofill in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific U

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13859 Unscored

Inappropriate implementation in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perform a sandbox escape via a craft

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13858 Medium 6.5

Out of bounds read in FFmpeg in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process mem

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13857 Medium 4.2

Inappropriate implementation in Geometry in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI ge

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13856 Unscored

Insufficient validation of untrusted input in Speech in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the r

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13855 Unscored

Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures t

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13854 Unscored

Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13853 Unscored

Use after free in Journeys in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perfor

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13852 Unscored

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discreti

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13851 Unscored

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discreti

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13850 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to execute arbitrary c

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13849 Unscored

Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to potentially perform

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13848 Unscored

Use after free in Forms in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML pag

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13847 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13846 Unscored

Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perf

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13845 Unscored

Use after free in DOM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13844 Unscored

Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a malici

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13843 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who had compromised t

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13842 Unscored

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to spoof the contents of the Omnibo

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13841 Unscored

Integer overflow in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13840 Unscored

Insufficient policy enforcement in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML pa

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13839 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page.

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13838 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page.

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13837 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chro

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13836 Unscored

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a craf

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13835 Unscored

Inappropriate implementation in XML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a crafted

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13834 Unscored

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13833 Unscored

Uninitialized Use in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chr

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13832 Unscored

Use after free in Headless in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perfor

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13831 Unscored

Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to execute a

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13830 Unscored

Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network tra

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13829 Unscored

Insufficient validation of untrusted input in Settings in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13828 Medium 6.5

Inappropriate implementation in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information fr

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13827 Unscored

Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform privilege escalation via a malicious file. (Ch

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13826 Unscored

Inappropriate implementation in Autofill in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13825 Unscored

Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13824 Unscored

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13823 Unscored

Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13822 Unscored

Inappropriate implementation in Extensions in Google Chrome on Android prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicio

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13821 Unscored

Use after free in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML pa

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13820 Unscored

Out of bounds read in Skia in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13819 Unscored

Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform an

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13818 Unscored

Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13817 Unscored

Insufficient validation of untrusted input in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perform a sandbox escap

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13816 Unscored

Insufficient validation of untrusted input in File Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13815 Unscored

Use after free in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML pag

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13814 Unscored

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potenti

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13813 Unscored

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13812 Unscored

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13811 Unscored

Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13810 Medium 6.5

Inappropriate implementation in Input in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive informatio

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13809 Unscored

Side-channel information leakage in Safe Browsing in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13808 Medium 4.6

Insufficient data validation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive info

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13807 Unscored

Use after free in Import in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13806 Unscored

Insufficient validation of untrusted input in Accessibility in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the rende

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13805 Unscored

Use after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13804 Unscored

Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perf

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13803 Unscored

Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially per

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13802 Unscored

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13801 Unscored

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially pe

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13800 Unscored

Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalatio

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13799 Unscored

Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via malicious network traff

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13798 Unscored

Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentiall

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13797 Unscored

Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13796 Unscored

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially pe

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13795 Unscored

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restriction

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13794 Unscored

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a u

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13793 Unscored

Insufficient policy enforcement in SVG in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13792 Unscored

Use after free in Touchbar in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to potentially perform a sandbox escape via a crafted H

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13791 Unscored

Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malic

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13790 Unscored

Side-channel information leakage in Scroll in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML p

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13789 Unscored

Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a s

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13788 Unscored

Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13787 Unscored

Use after free in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network t

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13786 Unscored

Use after free in Ozone in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium secu

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13785 Unscored

Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13784 Unscored

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potenti

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13783 Unscored

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potenti

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13782 Unscored

Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13781 Unscored

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proce

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13780 Unscored

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proc

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13779 Unscored

Use after free in Chromoting in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13778 Unscored

Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code via a malicious peripheral. (Chr

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13777 Unscored

Insufficient validation of untrusted input in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap c

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13776 Unscored

Type Confusion in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13775 Unscored

Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a s

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13774 Unscored

Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to execute a

30 Jun 2026, 22:37 UTC View advisory →
CVE-2026-13773 Medium 6

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 Approximately 50 generated CORBA stub classes in WebSphere eXtreme Scale's ogclient.jar call ORB.string

30 Jun 2026, 19:20 UTC View advisory →
CVE-2026-13772 High 7.5

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied class names via Class.forName() and invokes

30 Jun 2026, 19:21 UTC View advisory →
CVE-2026-13766 Critical 9.8

DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers. The default SQL builder, a SQL::Abstract subclass, sets

30 Jun 2026, 11:20 UTC View advisory →
CVE-2026-13763 High 7.9

Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer with AWS WAF enabled might allow remote actors to bypass AWS WAF managed ru

29 Jun 2026, 20:03 UTC View advisory →
CVE-2026-13762 High 7.9

Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF enabled might allow remote actors to bypass AWS WAF managed rule body insp

29 Jun 2026, 20:03 UTC View advisory →
CVE-2026-13759 High 7.5

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses (WsObjectInputStream, ObjectStreamPool$ReusableInputStream, Ob

30 Jun 2026, 19:24 UTC View advisory →
CVE-2026-13758 Unscored

CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path. The decrypt_done($tag)

29 Jun 2026, 20:42 UTC View advisory →
CVE-2026-13757 Medium 6.2

A flaw was found in p11-kit. The RPC message attribute parsing functions p11_rpc_message_get_attribute() and p11_rpc_message_get_attribute_array_value() fo

29 Jun 2026, 18:44 UTC View advisory →
CVE-2026-13752 Medium 6

Improper neutralization of parameters in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. An attacker could exploit this by supplying

29 Jun 2026, 16:24 UTC View advisory →
CVE-2026-13751 Medium 4.1

Improper handling of untrusted remote references in Snowflake CLI versions prior to 3.19 allowed server-side request forgery. The SQL statement reader's !s

29 Jun 2026, 16:12 UTC View advisory →
CVE-2026-13750 Medium 5.5

Insertion of sensitive information into log files in Snowflake CLI versions prior to 3.19 allowed plaintext credentials to be written to persistent local d

29 Jun 2026, 16:07 UTC View advisory →
CVE-2026-13749 High 8.8

Improper neutralization in the Snowpark annotation processor callback template in Snowflake CLI versions prior to 3.19 allowed arbitrary code execution dur

29 Jun 2026, 16:02 UTC View advisory →
CVE-2026-13748 Medium 6.3

Improper restriction of file path resolution in Snowflake CLI versions prior to 3.19 allowed arbitrary local file content to be read and transmitted to Sno

29 Jun 2026, 15:58 UTC View advisory →
CVE-2026-13746 Low 3.6

Improper neutralization of local CLI parameters in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. A user could trigger this issue b

29 Jun 2026, 15:51 UTC View advisory →
CVE-2026-13744 High 8.3

Improper neutralization of attacker-controlled content in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. By supplying crafted repos

29 Jun 2026, 15:40 UTC View advisory →
CVE-2026-13742 Medium 5.9

Honeywell IQ MultiAccess, all versions prior to and including version 28, contain an improper digital signature verification vulnerability. An attacker cou

29 Jun 2026, 15:19 UTC View advisory →
CVE-2026-13731 High 7.2

The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'conversati

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-13676 High 7.5

fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode (IDN) hostnames for HTTP-family URLs. The IDN conversion path calls a helper t

29 Jun 2026, 13:22 UTC View advisory →
CVE-2026-13601 High 7.1

A flaw was found in Yelp due to an overly permissive Content Security Policy (CSP) implementation provided by yelp-xsl. A malicious Flatpak application can

29 Jun 2026, 09:20 UTC View advisory →
CVE-2026-13595 Medium 6.8

A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache

29 Jun 2026, 08:06 UTC View advisory →
CVE-2026-13593 Medium 6.5

CSS::Minifier::XS versions before 0.14 for Perl have a memory leak when the entire document is minified away. The minify function has a memory leak when pr

29 Jun 2026, 19:37 UTC View advisory →
CVE-2026-13592 Medium 6.9

A vulnerability was detected in liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4. Affected by this issue is the function BufWriter::append

29 Jun 2026, 17:15 UTC View advisory →
CVE-2026-13591 Low 2.3

A weakness has been identified in DeepMyst Mysti 0.4.0. Affected is the function _isTrackedConversation of the file src/managers/ChannelBridge.ts of the co

29 Jun 2026, 17:00 UTC View advisory →
CVE-2026-13590 Medium 6.3

A security flaw has been discovered in seladb PcapPlusPlus 25.05. This impacts the function pcpp::ModbusLayer::getLength in the library Packet++/header/Mod

29 Jun 2026, 16:45 UTC View advisory →
CVE-2026-13589 Medium 6.3

A vulnerability was identified in seladb PcapPlusPlus 25.05. This affects the function pcpp::TelnetLayer::getSubCommand of the file Packet++/src/TelnetLaye

29 Jun 2026, 16:30 UTC View advisory →
CVE-2026-13588 Medium 6.3

A vulnerability was determined in seladb PcapPlusPlus 25.05. The impacted element is the function pcpp::SSLClientHelloMessage::getHandshakeVersion of the f

29 Jun 2026, 16:15 UTC View advisory →
CVE-2026-13587 Medium 6.3

A vulnerability was found in seladb PcapPlusPlus 25.05. The affected element is the function parse_by_block_type of the file light_pcapng.c of the componen

29 Jun 2026, 16:00 UTC View advisory →
CVE-2026-13583 High 8.7

A vulnerability has been found in Edimax EW-7478APC 1.04. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Re

29 Jun 2026, 15:45 UTC View advisory →
CVE-2026-13582 High 8.7

A flaw has been found in Edimax EW-7478APC 1.04. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Re

29 Jun 2026, 15:30 UTC View advisory →
CVE-2026-13581 Medium 5.3

A vulnerability was detected in Edimax EW-7478APC 1.04. This vulnerability affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the

29 Jun 2026, 15:15 UTC View advisory →
CVE-2026-13580 High 8.7

A security vulnerability has been detected in Edimax EW-7478APC 1.04. This affects the function formQoS of the file /goform/formQoS of the component POST R

29 Jun 2026, 15:00 UTC View advisory →
CVE-2026-13579 Medium 5.3

A weakness has been identified in itsourcecode Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file /patientcha

29 Jun 2026, 14:45 UTC View advisory →
CVE-2026-13578 Medium 5.3

A security flaw has been discovered in itsourcecode Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file

29 Jun 2026, 14:30 UTC View advisory →
CVE-2026-13574 Medium 4.8

A vulnerability was determined in llvm llvm-project up to 22.1.6. This impacts the function GCRelocateInst::getBasePtr in the library llvm/lib/IR/Intrinsic

29 Jun 2026, 14:15 UTC View advisory →
CVE-2026-13573 Medium 4.8

A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp

29 Jun 2026, 14:00 UTC View advisory →
CVE-2026-13572 Medium 5.3

A vulnerability has been found in itsourcecode Hospital Management System 1.0. The impacted element is an unknown function of the file /insertbillingrecord

29 Jun 2026, 13:45 UTC View advisory →
CVE-2026-13571 Medium 6.9

A flaw has been found in SourceCodester Simple Food Ordering System 1.0. The affected element is an unknown function of the file /cart.php. Executing a man

29 Jun 2026, 13:30 UTC View advisory →
CVE-2026-13570 Medium 5.1

A vulnerability was detected in SourceCodester Inventory Management System 1.0. Impacted is an unknown function of the file /api/users_handler.php of the c

29 Jun 2026, 13:15 UTC View advisory →
CVE-2026-13569 Medium 5.1

A security vulnerability has been detected in weng-xianhu EyouCMS up to 1.7.1. This issue affects some unknown processing of the file /index.php of the com

29 Jun 2026, 13:00 UTC View advisory →
CVE-2026-13568 Medium 6.9

A weakness has been identified in SourceCodester Inventory Management System 1.0. This vulnerability affects unknown code of the file /api/users_handler.ph

29 Jun 2026, 12:45 UTC View advisory →
CVE-2026-13567 Medium 5.3

A security flaw has been discovered in code-projects Online Music Site 1.0. This affects an unknown part of the file /Frontend/Feedback.php of the componen

29 Jun 2026, 12:30 UTC View advisory →
CVE-2026-13566 Medium 6.9

A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Affected by this issue is some unknown functionality of the file /p

29 Jun 2026, 12:15 UTC View advisory →
CVE-2026-13565 Medium 6.9

A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/1.php. Affected by this vulnerability is an unknown functionality of

29 Jun 2026, 12:00 UTC View advisory →
CVE-2026-13564 High 8.7

A vulnerability was found in Edimax EW-7478APC 1.04. Affected is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Reque

29 Jun 2026, 11:45 UTC View advisory →
CVE-2026-13563 High 8.7

A vulnerability has been found in Edimax EW-7478APC 1.04. This impacts the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST R

29 Jun 2026, 11:30 UTC View advisory →
CVE-2026-13562 High 8.7

A flaw has been found in Edimax EW-7478APC 1.04. This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST

29 Jun 2026, 11:15 UTC View advisory →
CVE-2026-13561 Medium 5.3

A vulnerability was detected in Edimax EW-7478APC 1.04. The impacted element is the function formiNICbasic of the file /goform/formiNICbasic of the compone

29 Jun 2026, 11:00 UTC View advisory →
CVE-2026-13560 Medium 5.3

A security vulnerability has been detected in Edimax EW-7478APC 1.04. The affected element is the function formAccept of the file /goform/formAccept of the

29 Jun 2026, 10:45 UTC View advisory →
CVE-2026-13559 Medium 6.9

A weakness has been identified in code-projects Real State Services 1.0. Impacted is an unknown function of the file /single-list_sale.php?action=add. Exec

29 Jun 2026, 10:30 UTC View advisory →
CVE-2026-13558 Medium 5.1

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport

29 Jun 2026, 10:15 UTC View advisory →
CVE-2026-13557 Medium 5.3

A vulnerability was identified in itsourcecode Online Hotel Management System 1.0. This vulnerability affects unknown code of the file /admin/mod_room/cont

29 Jun 2026, 10:00 UTC View advisory →
CVE-2026-13556 Medium 5.3

A vulnerability was determined in itsourcecode Online Hotel Management System 1.0. This affects an unknown part of the file /admin/mod_users/controller.php

29 Jun 2026, 09:45 UTC View advisory →
CVE-2026-13555 Medium 6.9

A vulnerability was found in itsourcecode Online Hotel Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/mod_u

29 Jun 2026, 09:30 UTC View advisory →
CVE-2026-13554 Medium 5.3

A vulnerability has been found in itsourcecode Online Hotel Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /

29 Jun 2026, 09:15 UTC View advisory →
CVE-2026-13553 Medium 6.9

A flaw has been found in itsourcecode Online Hotel Management System 1.0. Affected is an unknown function of the file /admin/mod_amenities/controller.php?a

29 Jun 2026, 09:00 UTC View advisory →
CVE-2026-13552 Medium 6.9

A vulnerability was detected in itsourcecode Online Hotel Management System 1.0. This impacts an unknown function of the file /admin/mod_amenities/controll

29 Jun 2026, 08:45 UTC View advisory →
CVE-2026-13551 Medium 6.9

A security vulnerability has been detected in itsourcecode Baptism Information Management System 1.0. This affects an unknown function of the file /editBap

29 Jun 2026, 08:30 UTC View advisory →
CVE-2026-13550 Medium 6.9

A weakness has been identified in itsourcecode Baptism Information Management System 1.0. The impacted element is an unknown function of the file /delbapti

29 Jun 2026, 08:15 UTC View advisory →
CVE-2026-13549 Medium 5.3

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application

29 Jun 2026, 08:00 UTC View advisory →
CVE-2026-13548 Medium 5.3

A vulnerability was identified in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /doctortimings.php. The manipula

29 Jun 2026, 07:45 UTC View advisory →
CVE-2026-13547 Medium 6.9

A vulnerability was determined in Hanwang e-Face General Management Platform 6.3.5.4. This issue affects some unknown processing of the file /manage/resour

29 Jun 2026, 07:30 UTC View advisory →
CVE-2026-13546 Medium 6.9

A vulnerability was found in Feehi CMS up to 2.1.1. This vulnerability affects unknown code of the file /api/articles of the component REST API Endpoint. P

29 Jun 2026, 07:15 UTC View advisory →
CVE-2026-13544 Medium 5.3

A flaw has been found in Feehi CMS up to 2.1.1. Affected by this issue is some unknown functionality of the file /api/users of the component API. This mani

29 Jun 2026, 06:45 UTC View advisory →
CVE-2026-13543 Medium 6.3

A vulnerability was detected in Documenso up to 2.11.0. Affected by this vulnerability is an unknown functionality of the file packages/auth/server/lib/uti

29 Jun 2026, 06:30 UTC View advisory →
CVE-2026-13542 Medium 5.3

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /doctorprofile.php.

29 Jun 2026, 06:15 UTC View advisory →
CVE-2026-13541 Medium 5.3

A weakness has been identified in itsourcecode Hospital Management System 1.0. This impacts an unknown function of the file /doctorchangepassword.php. Exec

29 Jun 2026, 06:00 UTC View advisory →
CVE-2026-13540 Medium 5.3

A security flaw has been discovered in GitBucket up to 4.46.1. This affects the function Git.cloneRepository.setURI of the file src/main/scala/gitbucket/co

29 Jun 2026, 05:45 UTC View advisory →
CVE-2026-13539 High 8.7

A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the function sub_407504 of the file /cgi-bin/wireless.cgi of

29 Jun 2026, 05:30 UTC View advisory →
CVE-2026-13538 Medium 5.3

A vulnerability was determined in Wavlink WL-NU516U1-A M16U1_V240425. The affected element is the function sub_401D68 of the file /cgi-bin/wireless.cgi of

29 Jun 2026, 05:15 UTC View advisory →
CVE-2026-13537 Medium 5.3

A vulnerability was found in CodeAstro Human Resource Management System 1.0. Impacted is an unknown function. The manipulation results in cross-site reques

29 Jun 2026, 05:00 UTC View advisory →
CVE-2026-13536 Medium 5.3

A vulnerability has been found in GotoHTTP up to 10.2. This issue affects some unknown processing of the file /reg.12x. The manipulation of the argument sn

29 Jun 2026, 04:45 UTC View advisory →
CVE-2026-13535 Medium 5.3

A flaw has been found in CodeAstro Human Resource Management System 1.0. This vulnerability affects the function GetFileInfo of the file hrsystem/applicati

29 Jun 2026, 04:30 UTC View advisory →
CVE-2026-13534 Low 2.3

A vulnerability was detected in CherryHQ cherry-studio up to 1.9.7. This affects the function sha256 of the file src/main/services/memory/MemoryService.ts

29 Jun 2026, 04:15 UTC View advisory →
CVE-2026-13533 Medium 6.9

A security vulnerability has been detected in agentejo Cockpit CMS up to 0.12.2. Affected by this issue is the function Spyc::YAMLLoad of the file /config/

29 Jun 2026, 04:00 UTC View advisory →
CVE-2026-13532 Medium 5.3

A weakness has been identified in itsourcecode Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /depa

29 Jun 2026, 03:45 UTC View advisory →
CVE-2026-13531 Medium 5.3

A security flaw has been discovered in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /department.php. The manipu

29 Jun 2026, 03:30 UTC View advisory →
CVE-2026-13530 Medium 5.3

A vulnerability was identified in itsourcecode Hospital Management System 1.0. This impacts an unknown function of the file /appointmentdetail.php of the c

29 Jun 2026, 03:15 UTC View advisory →
CVE-2026-13529 Medium 6.3

A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation o

29 Jun 2026, 03:00 UTC View advisory →
CVE-2026-13528 Medium 6.9

A vulnerability was found in YunaiV/zhijiantianya ruoyi-vue-pro up to 2026.04-jdk8-SNAPSHOT. The impacted element is the function generateUploadPath of the

29 Jun 2026, 02:45 UTC View advisory →
CVE-2026-13527 Medium 6.9

A vulnerability has been found in SourceCodester Class and Exam Timetabling System 1.0. The affected element is an unknown function of the file /preview4.p

29 Jun 2026, 02:30 UTC View advisory →
CVE-2026-13526 Medium 6.9

A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /edit_class.php. This manipulati

29 Jun 2026, 02:15 UTC View advisory →
CVE-2026-13525 Medium 5.3

A vulnerability was detected in CodeAstro Human Resource Management System 1.0. This issue affects the function emselectByCode of the file application/mode

29 Jun 2026, 02:00 UTC View advisory →
CVE-2026-13524 Medium 6.3

A security vulnerability has been detected in CherryHQ cherry-studio up to 1.9.6. This vulnerability affects unknown code of the file src/main/services/mcp

29 Jun 2026, 01:45 UTC View advisory →
CVE-2026-13523 Medium 4.8

A weakness has been identified in GPAC up to 26.02.0. This affects an unknown part of the file src/utils/base_encoding.c of the component ISOBMFF Parser. E

29 Jun 2026, 01:30 UTC View advisory →
CVE-2026-13522 Medium 5.3

A security flaw has been discovered in Investintech SlimPDFReader up to 2.0.14. Affected by this issue is the function SlimPDFReader!Investintech::PCV::Tei

29 Jun 2026, 01:15 UTC View advisory →
CVE-2026-13521 Medium 6.9

A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0/5.php. Affected by this vulnerability is an unknown functionality of

29 Jun 2026, 01:00 UTC View advisory →
CVE-2026-13520 Medium 5.3

A vulnerability was determined in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /appointmentapproval.php of the

29 Jun 2026, 00:45 UTC View advisory →
CVE-2026-13519 High 8.7

A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation

29 Jun 2026, 00:30 UTC View advisory →
CVE-2026-13518 High 8.7

A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the

29 Jun 2026, 00:15 UTC View advisory →
CVE-2026-13517 High 8.7

A flaw has been found in Tenda JD12L 16.03.53.23. The impacted element is the function formWifiBasicSet of the file /goform/WifiBasicSet. Executing a manip

29 Jun 2026, 00:00 UTC View advisory →
CVE-2026-13516 High 8.7

A vulnerability was detected in Tenda JD12L 16.03.53.23. The affected element is the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet. Perfo

28 Jun 2026, 23:45 UTC View advisory →
CVE-2026-13515 High 8.7

A security vulnerability has been detected in Tenda JD12L 16.03.53.23. Impacted is the function formSetPPTPServer of the file /goform/SetPptpServerCfg. Suc

28 Jun 2026, 23:30 UTC View advisory →
CVE-2026-13514 Low 2.4

A weakness has been identified in Chess Play and Learn App up to 4.9.42 on Android. This issue affects some unknown processing of the file AndroidManifest.

28 Jun 2026, 23:15 UTC View advisory →
CVE-2026-13513 Low 2.3

A security flaw has been discovered in MyScale MyScaleDB up to 1.8.0. This vulnerability affects the function SegmentId::getCacheKey in the library src/Vec

28 Jun 2026, 23:00 UTC View advisory →
CVE-2026-13512 Medium 5.3

A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::state_key of the file src/query/service/s

28 Jun 2026, 22:45 UTC View advisory →
CVE-2026-13511 Low 2.3

A vulnerability was determined in VoltAgent up to 2.1.17. Affected by this issue is the function handleGetMemoryConversation of the file packages/server-co

28 Jun 2026, 22:30 UTC View advisory →
CVE-2026-13510 Medium 6.3

A vulnerability was found in SimStudioAI sim up to 0.6.92. Affected by this vulnerability is an unknown functionality in the library apps/sim/lib/core/secu

28 Jun 2026, 22:15 UTC View advisory →
CVE-2026-13509 Medium 5.3

A vulnerability has been found in RAGapp up to 0.1.5. Affected is the function FileHandler.upload_file/FileHandler.remove_file of the file src/ragapp/backe

28 Jun 2026, 22:00 UTC View advisory →
CVE-2026-13508 Medium 5.1

A flaw has been found in khoj-ai khoj up to 2.0.0-beta.28. This impacts an unknown function of the file src/khoj/routers/api_chat.py of the component Conve

28 Jun 2026, 21:45 UTC View advisory →
CVE-2026-13507 Low 2.3

A vulnerability was detected in volcengine OpenViking up to 0.3.21. This affects the function str_to_uint64 of the file openviking/storage/vectordb/utils/s

28 Jun 2026, 21:30 UTC View advisory →
CVE-2026-13504 Medium 5.1

A vulnerability has been found in code-projects Project Management System 1.0. This vulnerability affects unknown code of the file /mail.php of the compone

28 Jun 2026, 15:30 UTC View advisory →
CVE-2026-13503 Medium 6.9

A vulnerability was detected in antlr ANTLR4 up to 4.13.2. Affected by this issue is the function getImportedVocabFile of the file tool/src/org/antlr/v4/pa

28 Jun 2026, 15:15 UTC View advisory →
CVE-2026-13502 Low 2

A flaw has been found in antlr ANTLR4 up to 4.13.2. This affects the function ObjectInputStream.readObject of the file antlr4-maven-plugin/src/main/java/or

28 Jun 2026, 14:45 UTC View advisory →
CVE-2026-13501 Medium 4.8

A security vulnerability has been detected in antlr ANTLR4 up to 4.13.2. Affected by this vulnerability is the function GoTarget of the file tool/src/org/a

28 Jun 2026, 14:30 UTC View advisory →
CVE-2026-13500 Medium 6.9

A weakness has been identified in antlr ANTLR4 up to 4.13.2. Affected is an unknown function of the file tool/src/org/antlr/v4/codegen/model/OutputFile.jav

28 Jun 2026, 14:15 UTC View advisory →
CVE-2026-13499 Medium 5.3

A security flaw has been discovered in yashpokharna2555 restaurent-management-system. This impacts an unknown function of the file login_register.php of th

28 Jun 2026, 13:15 UTC View advisory →
CVE-2026-13498 Medium 6.9

A vulnerability was identified in yashpokharna2555 restaurent-management-system. This affects an unknown function of the file /forgotpassword.php of the co

28 Jun 2026, 13:00 UTC View advisory →
CVE-2026-13497 Medium 5.3

A vulnerability was determined in itsourcecode Hospital Management System 1.0. The impacted element is an unknown function of the file /appointment.php. Th

28 Jun 2026, 12:45 UTC View advisory →
CVE-2026-13496 Medium 5.3

A vulnerability was found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /ajaxmedicine.php. The ma

28 Jun 2026, 12:30 UTC View advisory →
CVE-2026-13495 Medium 5.1

A vulnerability has been found in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminprofile.php. The manipulat

28 Jun 2026, 12:15 UTC View advisory →
CVE-2026-13493 Low 2.3

A flaw has been found in AIDC-AI ComfyUI-Copilot up to 2.0.28. This issue affects some unknown processing of the file backend/controller/conversation_api.p

28 Jun 2026, 12:00 UTC View advisory →
CVE-2026-13491 Medium 6.3

A vulnerability was detected in 78 xiaozhi-esp32 up to 2.2.6. This vulnerability affects the function Application::GetInstance of the file main/protocols/m

28 Jun 2026, 11:15 UTC View advisory →
CVE-2026-13490 Medium 6.3

A security vulnerability has been detected in glpi-project glpi 11.0.5/11.0.6/11.0.7. This affects the function Document::canViewFile of the file front/doc

28 Jun 2026, 11:00 UTC View advisory →
CVE-2026-13489 Low 2.3

A weakness has been identified in 78 xiaozhi-esp32 up to 2.2.6. Affected by this issue is the function ParseMessage of the file main/mcp_server.cc of the c

28 Jun 2026, 10:45 UTC View advisory →
CVE-2026-13488 Medium 6.9

A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0/7.php. Affected by this vulnerability is an unknown functionali

28 Jun 2026, 10:30 UTC View advisory →
CVE-2026-13487 Medium 6.9

A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function of the file /archive.php. The manip

28 Jun 2026, 10:15 UTC View advisory →
CVE-2026-13486 Medium 6.9

A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/6.php. This impacts an unknown function of the file /preview6.php. E

28 Jun 2026, 09:45 UTC View advisory →
CVE-2026-13485 Medium 6.9

A vulnerability was found in SourceCodester Class and Exam Timetabling System 1.0. This affects an unknown function of the file /preview.php. Performing a

28 Jun 2026, 09:15 UTC View advisory →
CVE-2026-13484 Low 2.3

A vulnerability has been found in MLflow up to 4666cffc7912ea606d592fc38d6a75e2935f65e7. The impacted element is an unknown function of the component Exper

28 Jun 2026, 08:30 UTC View advisory →
CVE-2026-13483 Low 2.3

A flaw has been found in arc53 DocsGPT up to 0.18.0. The affected element is the function encrypt_credentials of the file application/security/encryption.p

28 Jun 2026, 05:45 UTC View advisory →
CVE-2026-13482 Medium 6.3

A vulnerability was detected in skypilot-org skypilot up to 0.12.0. Impacted is the function username.encode of the file sky/users/server.py of the compone

28 Jun 2026, 04:30 UTC View advisory →
CVE-2026-13474 High 8.7

Denial of service via malformed HTTP/2 requests in NetScaler ADC and NetScaler Gateway if HTTP/2 is enabled in HTTP Profile and associated with the virtual

30 Jun 2026, 13:03 UTC View advisory →
CVE-2026-13468 High 7.5

The Visualizer – Tables & Charts Manager with Built-in AI Generator plugin for WordPress is vulnerable to authorization bypass in all versions up to, and i

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-13455 Medium 4.3

PostgreSQL Anonymizer contains a vulnerability that allows unprivileged masked users to repeatedly call the anon.hash() function and collects (seed, hash_o

30 Jun 2026, 15:19 UTC View advisory →
CVE-2026-13449 High 7.6

IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable to an XML external entity injection (XXE) attack when processing XML data.

30 Jun 2026, 19:32 UTC View advisory →
CVE-2026-13443 Medium 6.4

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Lesson Attachment Title in all v

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-13437 Medium 6.5

Insertion of sensitive information into sent data in the AI Agent job API in Devolutions PowerShell Universal 2026.2.0 allows an authenticated user with AI

29 Jun 2026, 15:23 UTC View advisory →
CVE-2026-13434 Medium 4.9

A flaw was found in KubeVirt's network annotation generator. When a tenant creates a VirtualMachineInstance with a Multus network configuration, the suppli

26 Jun 2026, 16:00 UTC View advisory →
CVE-2026-13426 Medium 5.4

The Mattermost Go module github.com/mattermost/mattermost/server/public versions < v0.1.22 fail to validate path parameters when constructing API route pat

26 Jun 2026, 13:47 UTC View advisory →
CVE-2026-13422 Medium 4.3

The HD Quiz plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 2.2.0 to 2.2.1. This is due to missing or incorrect nonce validati

27 Jun 2026, 01:27 UTC View advisory →
CVE-2026-13372 High 7.2

Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Manager 2026.2.5 through 2026.2.11 allows an au

26 Jun 2026, 18:22 UTC View advisory →
CVE-2026-13351 High 7.5

Zephyr's IPv6 network stack can be prevented from receiving or processing future incoming packets by sending a small number of maliciously fragmented IPv6

25 Jun 2026, 16:27 UTC View advisory →
CVE-2026-13350 Low 2.3

Permissions where checked incorrectly during room creation, allowing attackers to create rooms of types they shouldn't be allowed to create.

25 Jun 2026, 16:05 UTC View advisory →
CVE-2026-13335 Medium 6.4

The CodePeople Post Map for Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'cpm_point' Post Meta in all versions up to,

27 Jun 2026, 01:27 UTC View advisory →
CVE-2026-13333 Medium 6.5

The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via 'query[select]' Parameter in al

27 Jun 2026, 01:27 UTC View advisory →
CVE-2026-13331 Medium 6.5

The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via the 'search' parameter in all v

27 Jun 2026, 01:27 UTC View advisory →
CVE-2026-13325 High 8.5

A flaw was found in KubeVirt's migration proxy. When spec.configuration.migrations.disableTLS is set to true on the KubeVirt custom resource, the target vi

26 Jun 2026, 10:41 UTC View advisory →
CVE-2026-13322 Low 3.8

A flaw was found in KubeVirt's downward metrics virtio-serial server. The server reads guest requests using textproto.Reader.ReadLine(), which buffers inpu

26 Jun 2026, 00:04 UTC View advisory →
CVE-2026-13318 Medium 6.4

A server-side request forgery (SSRF) flaw was found in KubeVirt's virt-api port-forward handler. When processing a port-forward request to a VirtualMachine

25 Jun 2026, 23:23 UTC View advisory →
CVE-2026-13316 Medium 4.4

A flaw has been found in foreman when HTTP parameters are modified in http_proxies_controller and http_proxy files. Attackers can perform an SSRF attack an

30 Jun 2026, 09:53 UTC View advisory →
CVE-2026-13314 Low 2

Malicious HTML content could be injected into the content rendered by the pretix-digital plugin.

25 Jun 2026, 13:53 UTC View advisory →
CVE-2026-13311 High 8.7

shell-quote prior to 1.8.5 finalizes parsed tokens in parse() using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire

25 Jun 2026, 04:48 UTC View advisory →
CVE-2026-13295 Medium 6.4

The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via panels_data Parameter in all versions up to, and inclu

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-13283 Unscored

Use after free in AdFilter in Google Chrome on Android prior to 149.0.7827.201 allowed a remote attacker who convinced a user to engage in specific UI gest

25 Jun 2026, 21:51 UTC View advisory →
CVE-2026-13282 Medium 6.8

Use after free in Payments in Google Chrome on Android prior to 149.0.7827.201 allowed a local attacker to potentially exploit heap corruption via physical

25 Jun 2026, 21:51 UTC View advisory →
CVE-2026-13281 Unscored

Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform

25 Jun 2026, 21:51 UTC View advisory →
CVE-2026-13246 Medium 6.4

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'block_id' (and other) shor

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-13245 Medium 6.1

The MaxButtons – Create buttons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'view' parameter in all versions up to, and in

27 Jun 2026, 05:33 UTC View advisory →
CVE-2026-13226 Medium 6.5

The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via the 'after' parameter in all ve

26 Jun 2026, 01:27 UTC View advisory →
CVE-2026-13225 Medium 5.3

Malicious HTML content could be injected into the email address of an order, which pretix showed without sanitization on the confirmation page for individu

25 Jun 2026, 14:26 UTC View advisory →
CVE-2026-13223 Medium 6.3

Our payment integration with Computop-based payment methods did not properly validate payment status responses. An attacker could use a successful payment

25 Jun 2026, 14:03 UTC View advisory →
CVE-2026-13222 Medium 6.3

Our payment integration with Oppwa-based payment methods did not properly validate payment status responses. An attacker could use a successful payment sta

25 Jun 2026, 14:07 UTC View advisory →
CVE-2026-13218 Medium 4.2

A flaw was found in KubeVirt's virt-handler network cache handling. The WriteToCachedFile function writes data to a launcher-rooted path using os.WriteFile

25 Jun 2026, 23:23 UTC View advisory →
CVE-2026-13208 Medium 6.5

A flaw was found in KubeVirt's virt-handler domain notify server. The gRPC handlers for HandleDomainEvent and HandleK8SEvent derive the VMI identity (names

24 Jun 2026, 20:39 UTC View advisory →
CVE-2026-13207 High 8.7

FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalization in the REST API. The API router fails to no

30 Jun 2026, 20:24 UTC View advisory →
CVE-2026-13201 Medium 5.2

A flaw was found in KubeVirt's safepath package. The OpenAtNoFollow function uses O_PATH|O_NOFOLLOW to obtain a file descriptor to a path leaf, but downstr

24 Jun 2026, 20:39 UTC View advisory →
CVE-2026-13165 High 8.6

SzafirHost verifies the downloaded native library archive with one JarFile parser (reading the Central Directory) but extracts native libraries with JarInp

29 Jun 2026, 12:16 UTC View advisory →
CVE-2026-13164 High 8.8

Missing Authentication for Critical Function (CWE-306) in the RegisterView (apps/accounts/views.py), exposed at POST /api/auth/register/, in MailerUp <1.0.

24 Jun 2026, 15:37 UTC View advisory →
CVE-2026-13163 Medium 5.3

Open redirect vulnerability (CWE-601) in the _safe_redirect function of the click-tracking endpoint (/c//) in Mailerup <1.0.0 on all platforms allows remot

24 Jun 2026, 12:49 UTC View advisory →
CVE-2026-13150 Medium 6.9

Server-Side Request Forgery (SSRF) (CWE-918) in the PDF generation endpoint GET /api/reports/{id}/pdf (backend/main.py) in ccyl13 Pentestify 1.0.0 and lowe

24 Jun 2026, 10:45 UTC View advisory →
CVE-2026-13149 High 7.7

brace-expansion through 5.0.6 is vulnerable to denial of service. The expand() function exhibits exponential-time complexity in the number of consecutive n

30 Jun 2026, 08:30 UTC View advisory →
CVE-2026-13140 Low 1.1

Stored Cross-Site Scripting in the exposed AWS API key store of Thinkst Applied Research Canarytokens. Anonymous exploitation requires knowledge of a rando

24 Jun 2026, 11:12 UTC View advisory →
CVE-2026-13083 Medium 6.9

A flaw was found in the Pen Drive report generator. Cluster-sourced data is rendered into HTML reports without proper escaping or sanitization. An attacker

25 Jun 2026, 23:23 UTC View advisory →
CVE-2026-13038 High 8.8

Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13037 High 7.8

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a cra

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13036 High 8.8

Use after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML pa

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13035 High 8.8

Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a malicious peripheral.

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13034 Medium 4.7

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to by

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13033 High 8.8

Out of bounds read and write in Blink>InterestGroups in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a cra

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13032 Critical 9.6

Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13031 High 8.8

Use after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML pa

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13030 Medium 5.3

Uninitialized Use in GPU in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to obtain potentially sensitive information from pro

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13029 High 7.5

Use after free in Web Authentication in Google Chrome prior to 149.0.7827.197 allowed an attacker who convinced a user to install a malicious extension to

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13028 Critical 9.6

Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13027 High 8.8

Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML p

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13026 High 8.8

Use after free in Digital Credentials in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13025 High 8.3

Race in DevTools in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to potentially perform a sandb

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13024 Medium 4.2

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the rendere

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13023 Medium 5.3

Uninitialized Use in GPU in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to obtain potentially

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13022 Unscored

Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to lea

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13021 Medium 4.3

Inappropriate implementation in DeviceBoundSessionCredentials in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to bypass same origin poli

24 Jun 2026, 18:43 UTC View advisory →
CVE-2026-13015 Medium 6.1

The Wp Google Places Review Slider plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'place' parameter in versions up to, and in

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-13008 Unscored

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-57700. Reason: This candidate is a reservation duplicate of CVE-2026-57700. Notes: All

30 Jun 2026 View advisory →
CVE-2026-13007 High 8.5

Tenable Identity Exposure contains multiple unauthenticated API endpoints under /w/api/* that expose sensitive application configuration data including cle

23 Jun 2026, 15:59 UTC View advisory →
CVE-2026-13006 High 7

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.34 in Java applications, allows an at

24 Jun 2026, 05:41 UTC View advisory →
CVE-2026-12993 Medium 6.5

A flaw was found in Apicurio Registry. The DocumentBuilderAccessor correctly blocks external DTD and schema access but does not disable DOCTYPE declaration

25 Jun 2026, 23:23 UTC View advisory →
CVE-2026-12992 High 7.4

A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling the javax.wsdl.importDocuments feature. When th

25 Jun 2026, 21:16 UTC View advisory →
CVE-2026-12986 High 7.3

A critical vulnerability in Admin GUI in Payara Server Full 4.x, 5.x, 6.x, 7.x, 7.2026.x, 6.2025.x, 6.2024.x on All platforms that allows the attacker to l

24 Jun 2026, 14:08 UTC View advisory →
CVE-2026-12975 High 8.5

A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory without enabling secure processing features or

25 Jun 2026, 21:12 UTC View advisory →
CVE-2026-12969 Medium 5.3

An out-of-bounds read vulnerability exists in dnsmasq's find_soa() function in src/rfc1035.c. When parsing NS section records, extract_name() is called wit

23 Jun 2026, 13:28 UTC View advisory →
CVE-2026-12958 High 8.5

Missing symlink validation in Language Servers for AWS may allow an arbitrary file write outside of the workspace trust boundary. This may occur when a loc

23 Jun 2026, 16:03 UTC View advisory →
CVE-2026-12957 High 8.5

Improper trust boundary enforcement in Language Servers for AWS before version 1.65.0 on all supported platforms may allow a for arbitrary code execution.

23 Jun 2026, 16:02 UTC View advisory →
CVE-2026-12937 High 7.5

The Tourfic – AI Powered Travel Booking, Hotel Booking & Car Rental WordPress Plugin plugin for WordPress is vulnerable to generic SQL Injection via the 'p

25 Jun 2026, 06:51 UTC View advisory →
CVE-2026-12923 High 7.5

The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and including 4.0.3. This is due to insufficient valid

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-12921 High 8.4

In AzeoTech DAQFactory versions 21.1 and prior, a Use After Free vulnerability can be exploited by an attacker using specially crafted .ctl files which can

25 Jun 2026, 17:57 UTC View advisory →
CVE-2026-12912 High 7.3

A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. This issue

29 Jun 2026, 16:31 UTC View advisory →
CVE-2026-12904 Medium 4.3

The Kadence Blocks – Gutenberg Blocks for Page Builder Features plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to an

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-12902 Medium 4.3

The Kadence Blocks — Page Builder Toolkit for Gutenberg Editor plugin for WordPress is vulnerable to authorization bypass in all versions up to, and includ

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-12897 High 8.4

Horner Automation Cscape versions prior to 10.2 SP3 are vulnerable to an Out-of-Bounds Read vulnerability through parsing CSP files. Successful exploitatio

25 Jun 2026, 17:47 UTC View advisory →
CVE-2026-12892 Medium 4.4

A flaw was found in GStreamer's gst-plugins-bad package. When processing a specially crafted H.264 video file containing malformed MVC or SVC extension sli

23 Jun 2026, 19:53 UTC View advisory →
CVE-2026-12891 Medium 4.3

A flaw was found in the GStreamer gst-plugins-bad package. When processing a malformed H.266/VVC video stream with a crafted aspect ratio indicator value,

23 Jun 2026, 19:53 UTC View advisory →
CVE-2026-12888 Low 2

An HTML injection vulnerability exists in the Google Chat webhook notification sent by Thinkst Applied Research Canarytokens, enabling Interface Manipulati

22 Jun 2026, 13:05 UTC View advisory →
CVE-2026-12866 Critical 9.2

All versions of the package expr-eval are vulnerable to Code Execution via the toJSFunction() API. An attacker can execute arbitrary JavaScript by supplyin

23 Jun 2026, 05:00 UTC View advisory →
CVE-2026-12863 Medium 5.1

An unvalidated redirect was contained in Venueless' social login functionality and could be exploited for phishing using trusted domains.

22 Jun 2026, 08:41 UTC View advisory →
CVE-2026-12862 Medium 5.1

Untrusted user data was passed verbatim to Excel exports for administrators. This allowed formula injection which can be used to compromise the environment

22 Jun 2026, 08:26 UTC View advisory →
CVE-2026-12856 High 8.8

A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown c

29 Jun 2026, 12:33 UTC View advisory →
CVE-2026-12851 Critical 9.1

Multiple OS command injection vulnerabilities exist in the libNetSetObj.so functionality of GeoVision GV-I/O Box 4E 2.09. A specially crafted network packe

24 Jun 2026, 03:40 UTC View advisory →
CVE-2026-12850 Critical 9.1

Multiple OS command injection vulnerabilities exist in the libNetSetObj.so functionality of GeoVision GV-I/O Box 4E 2.09. A specially crafted network packe

24 Jun 2026, 03:40 UTC View advisory →
CVE-2026-12849 Critical 9.1

Multiple OS command injection vulnerabilities exist in the libNetSetObj.so functionality of GeoVision GV-I/O Box 4E 2.09. A specially crafted network packe

24 Jun 2026, 03:40 UTC View advisory →
CVE-2026-12848 Critical 10

GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running b

24 Jun 2026, 03:34 UTC View advisory →
CVE-2026-12847 Critical 10

GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running b

24 Jun 2026, 03:34 UTC View advisory →
CVE-2026-12846 Critical 10

GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running b

24 Jun 2026, 03:34 UTC View advisory →
CVE-2026-12845 Unscored

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have be

22 Jun 2026 View advisory →
CVE-2026-12844 High 7.5

List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function. pairwise() collects the values returned by the bloc

25 Jun 2026, 15:26 UTC View advisory →
CVE-2026-12823 Medium 4.8

A security flaw has been discovered in Browserbase up to 20260526. This impacts an unknown function of the component Autobrowse Trace Artifact Handler. The

21 Jun 2026, 23:45 UTC View advisory →
CVE-2026-12822 Medium 4.8

A vulnerability was identified in langflow-ai langflow up to 1.9.3. This affects an unknown function of the component Bundle URL Loader. The manipulation l

21 Jun 2026, 23:30 UTC View advisory →
CVE-2026-12821 Medium 5.3

A vulnerability was determined in FlowiseAI Flowise up to 3.1.2. The impacted element is an unknown function of the file packages/components/nodes/document

21 Jun 2026, 23:15 UTC View advisory →
CVE-2026-12815 Medium 5.3

A vulnerability has been found in coollabsio coolify 4.0.0. Impacted is an unknown function of the component Image Name Handler. Such manipulation leads to

21 Jun 2026, 23:00 UTC View advisory →
CVE-2026-12814 Medium 5.3

A flaw has been found in Comfast CF-WR631AX V3 up to 2.7.0.8. This issue affects the function system of the file /cgi-bin/mbox-config?section=ping_config o

21 Jun 2026, 22:45 UTC View advisory →
CVE-2026-12813 Medium 5.3

A vulnerability was detected in activepieces up to 0.83.0. This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/

21 Jun 2026, 22:30 UTC View advisory →
CVE-2026-12812 Medium 5.1

A security vulnerability has been detected in Radware Cyber Controller up to 10.11.0. This affects an unknown part of the component HTML Report Generation.

21 Jun 2026, 22:15 UTC View advisory →
CVE-2026-12811 Medium 5.3

A weakness has been identified in kortix-ai suna up to 0.8.38. Affected by this issue is the function router.replace/router.push of the file apps/frontend/

21 Jun 2026, 22:00 UTC View advisory →
CVE-2026-12810 Medium 5.3

A security flaw has been discovered in Edimax BR-6478AC V2 1.23. Affected by this vulnerability is the function mp of the file /goform/mp of the component

21 Jun 2026, 21:45 UTC View advisory →
CVE-2026-12809 Medium 5.3

A vulnerability was identified in Edimax BR-6478AC V2 1.23. Affected is the function wiz_5in1_redirect of the file /goform/wiz_5in1_redirect of the compone

21 Jun 2026, 21:30 UTC View advisory →
CVE-2026-12808 Medium 5.3

A vulnerability was determined in Edimax BR-6478AC V2 1.23. This impacts the function stainfo of the file /goform/stainfo of the component POST Request Han

21 Jun 2026, 20:45 UTC View advisory →
CVE-2026-12807 Medium 5.3

A vulnerability was found in Edimax BR-6478AC V2 1.23. This affects the function setWAN of the file /goform/setWAN of the component POST Request Handler. T

21 Jun 2026, 19:45 UTC View advisory →
CVE-2026-12806 High 8.7

A vulnerability has been found in Edimax BR-6478AC V2 1.23. The impacted element is the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of t

21 Jun 2026, 19:30 UTC View advisory →
CVE-2026-12805 Medium 5.3

A flaw has been found in OFFIS DCMTK up to 3.7.0. The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc. Executing a

21 Jun 2026, 19:15 UTC View advisory →
CVE-2026-12804 Medium 5.3

A vulnerability was detected in lemonldap-ng up to 2.23.0. Impacted is an unknown function in the library lemonldap-ng-portal/lib/Lemonldap/NG/Portal/CDC.p

21 Jun 2026, 18:30 UTC View advisory →
CVE-2026-12760 High 7.1

A denial-of-service (DoS) vulnerability has been identified in Tapo C200 v3 in the network packet handling logic due to improper handling of IPv4 fragmente

24 Jun 2026, 18:10 UTC View advisory →
CVE-2026-12755 Low 2.7

Improper input validation in the PAM AD discovery endpoints in Devolutions Server 2026.2.4.0 through 2026.2.7.0 allows an authenticated user with the UserG

25 Jun 2026, 13:12 UTC View advisory →
CVE-2026-12725 Medium 5.9

A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies containing un

22 Jun 2026, 13:55 UTC View advisory →
CVE-2026-12681 High 8.9

Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Google go-attestation. parseEfiSignatureList() does not advance the b

24 Jun 2026, 00:49 UTC View advisory →
CVE-2026-12672 Unscored

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have be

30 Jun 2026 View advisory →
CVE-2026-12635 None 0

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certai

25 Jun 2026, 04:33 UTC View advisory →
CVE-2026-12628 High 8.1

IBM Storage Protect Client 8.1.0.0 through 8.2.1.0 and IBM Storage Protect Snapshot For Windows 8.1.0.0 through 8.2.1.0 could allow a remote attacker to by

22 Jun 2026, 13:43 UTC View advisory →
CVE-2026-12616 Medium 6.9

The /v1/upload/sbom endpoint extracts the iss claim from the attacker-supplied JWT with signature verification disabled, then interpolates that string into

29 Jun 2026, 13:23 UTC View advisory →
CVE-2026-12610 Medium 6.4

A flaw was found in sssd. When authenticating with a YubiKey, the SSSD PAM responder can crash due to a use-after-free vulnerability, where a memory pointe

30 Jun 2026, 08:27 UTC View advisory →
CVE-2026-12602 High 8.8

Incorrect default permissions in ArubaSign, affecting versions prior to v4.6.6. The vulnerability is caused by the assignment of inappropriate permissions

22 Jun 2026, 12:34 UTC View advisory →
CVE-2026-12581 High 7.7

EasyFlow .NET developed by Digiwin has a Session Fixation vulnerability. If unauthenticated remote attackers replace a specific session ID for a user, they

22 Jun 2026, 09:30 UTC View advisory →
CVE-2026-12580 Medium 5.1

EasyFlow .NET developed by Digiwin has a Stored Cross-Site Scripting vulnerability, allowing authenticated remote attackers to inject persistent JavaScript

22 Jun 2026, 09:26 UTC View advisory →
CVE-2026-12579 High 7.4

AS228T with Authentication Bypass Vulnerability

01 Jul 2026, 05:22 UTC View advisory →
CVE-2026-12578 High 8.4

The affected product is vulnerable to a deserialization of untrusted data, which may allow an attacker to execute arbitrary code.

30 Jun 2026, 07:20 UTC View advisory →
CVE-2026-12560 Medium 4.4

The Editorial Rating – Product Review & Rating System plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'Link URL' Field in all version

30 Jun 2026, 04:30 UTC View advisory →
CVE-2026-12549 Medium 4.8

The fix for CVE-2026-2443 was regressed by a subsequent rework commit that replaced specific overflow checks with a general signed comparison. When a clien

22 Jun 2026, 13:55 UTC View advisory →
CVE-2026-12537 Critical 10

Improper Neutralization used in an OS Command in the container launcher in Google Gemini CLI (versions prior to 0.39.1) and run-gemini-cli GitHub Action (v

24 Jun 2026, 13:37 UTC View advisory →
CVE-2026-12490 High 8.2

When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client certificate with that name. However, no client

25 Jun 2026, 05:24 UTC View advisory →
CVE-2026-12488 Medium 6.2

A memory corruption vulnerability exists in the GV-Cloud functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted network request can lead to a de

24 Jun 2026, 03:34 UTC View advisory →
CVE-2026-12486 Critical 9.1

Multiple OS command injection vulnerabilities exist in the libNetSetObj.so functionality of GeoVision GV-I/O Box 4E 2.09. A specially crafted network packe

24 Jun 2026, 03:40 UTC View advisory →
CVE-2026-12485 Critical 10

GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running b

24 Jun 2026, 03:34 UTC View advisory →
CVE-2026-12479 Medium 6.1

A path traversal vulnerability exists in keras-team/keras version 3.14.0, specifically in the `DiskIOStore.make` method within the Keras 3 model saving and

22 Jun 2026, 15:21 UTC View advisory →
CVE-2026-12473 High 8.3

Two data sources (DICOMWebProxy and DICOMJSON) shipped in the default configuration fetch an arbitrary URL parameter without validation. A global authentic

25 Jun 2026, 20:38 UTC View advisory →
CVE-2026-12471 Medium 4.3

The Spexo theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the activate_plugin function in all versions up to,

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-12432 Medium 5.3

The WP Full Stripe Free plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 8.4.3 via the wpfs_update_failed_paym

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-12417 Critical 9.8

The SignUp & SignIn plugin for WordPress is vulnerable to Authentication Bypass via Weak Password Reset Validation leading to Account Takeover in versions

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-12416 Critical 9.8

The Invoice Generator plugin for WordPress is vulnerable to Account Takeover via Password Reset in all versions up to, and including, 1.0.0. This is due to

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-12415 Critical 9.8

The Invoice Generator plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the pravel_invoice_edit_account() AJA

27 Jun 2026, 04:30 UTC View advisory →
CVE-2026-12411 High 8.4

Broken Access Control in the devLXDInstancePatchHandler component of Canonical LXD allows an untrusted guest to mount, read, and overwrite another guest's

26 Jun 2026, 15:27 UTC View advisory →
CVE-2026-12404 Medium 5.3

The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 9.2.2.

27 Jun 2026, 05:33 UTC View advisory →
CVE-2026-12399 Medium 4.4

The Gutenverse – WordPress Blocks, Page Builder & Site Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all v

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-12388 Medium 6.5

A flaw was found in the Identity Provider (IdP) mapper component of Keycloak, which is used to manage how user information from external services is mapped

30 Jun 2026, 12:00 UTC View advisory →
CVE-2026-12349 Medium 5.3

The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versions up to, and including, 1.1.

30 Jun 2026, 04:30 UTC View advisory →
CVE-2026-12340 Medium 6.3

Out-of-bounds heap read during SM2/SM3 certificate signature verification. When parsing a certificate with an SM3wSM2 signature, the Subject Key Identifier

25 Jun 2026, 19:36 UTC View advisory →
CVE-2026-12249 Critical 9

An issue was discovered in Canonical ADSys upstream versions through v0.16.2. During Active Directory Certificate Services (AD CS) certificate auto-enrollm

22 Jun 2026, 15:43 UTC View advisory →
CVE-2026-12246 High 7.2

NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted for the address family will overwrite the sta

25 Jun 2026, 05:24 UTC View advisory →
CVE-2026-12245 High 8.7

NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of the server process, which can be triggered t

25 Jun 2026, 05:24 UTC View advisory →
CVE-2026-12244 High 8.7

If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a DNS message with a special crafted SVCB RR w

25 Jun 2026, 05:24 UTC View advisory →
CVE-2026-12243 High 7.5

NLTK version 3.9.4 is vulnerable to a path traversal attack due to an incomplete fix for GitHub Issue #3504. The `_UNSAFE_NO_PROTOCOL_RE` regex in `nltk/da

30 Jun 2026, 00:14 UTC View advisory →
CVE-2026-12242 High 8.8

The AdRotate Banner Manager plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 5.17.7 via the 'banner' attribut

24 Jun 2026, 12:33 UTC View advisory →
CVE-2026-12164 Medium 4.4

Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0 may assign incorrect or elevated effective permissions to use

23 Jun 2026, 22:15 UTC View advisory →
CVE-2026-12163 Medium 5.5

Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0.1 contain a stored cross-site scripting (XSS) vulnerability i

23 Jun 2026, 22:06 UTC View advisory →
CVE-2026-12135 Medium 6.4

The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'video_player' shortcode 'align' attribute in all

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-12133 Medium 4.3

The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to Missing Authorization to Arbitrary Group Deletion

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-12127 Medium 5.3

The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More plugin for WordPress is vulnerable to Improper Neutralization

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-12114 Medium 4.4

The Team Members – Multi Language Supported Team Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all version

30 Jun 2026, 02:30 UTC View advisory →
CVE-2026-12113 Medium 4.3

The Appointment Booking Calendar plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.02 via the

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-12112 High 7.8

A flaw was found in the foreman-mcp-server. A session management vulnerability in the MCP Server allows unauthenticated attackers to hijack active administ

23 Jun 2026, 19:40 UTC View advisory →
CVE-2026-12110 Medium 6.5

The Taskbuilder – Project Management & Task Management Tool With Kanban Board plugin for WordPress is vulnerable to generic SQL Injection via the 'task_sea

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-12100 High 7.2

The URL Preview plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.0 via the 'url' parameter. This m

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-12095 High 7.2

The Kargo Takip plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.2 via the 'api_url' parameter. Th

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-12094 Medium 5.3

The Advanced Contact Form 7 - Compact DB plugin for WordPress is vulnerable to unauthorized deletion of data due to a missing capability check on the cf7cd

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-12090 Medium 6.5

The Taskbuilder – Project Management & Task Management Tool With Kanban Board plugin for WordPress is vulnerable to generic SQL Injection via the 'wppm_pro

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-12086 Medium 6.2

IBM UCD - IBM UrbanCode Deploy 7.2 through 7.2.3.23, and 7.3 through 7.3.2.18 and IBM UCD - IBM DevOps Deploy 8.0 through 8.0.1.13, 8.1 through 8.1.2.6, an

30 Jun 2026, 19:36 UTC View advisory →
CVE-2026-12085 Medium 6.5

IBM UCD - IBM UrbanCode Deploy 7.3 through 7.3.2.18 and IBM UCD - IBM DevOps Deploy 8.0 through 8.0.1.13, 8.1 through 8.1.2.6, and 8.2 through 8.2.1.0 IBM

30 Jun 2026, 19:38 UTC View advisory →
CVE-2026-12084 Medium 5.4

IBM UCD - IBM DevOps Deploy 8.1 through 8.1.2.6, and 8.2 through 8.2.1.0 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry o

30 Jun 2026, 19:39 UTC View advisory →
CVE-2026-12079 Medium 6.5

The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ’orderby’ parameter in all versions up to, and including, 5.0.4 due to

25 Jun 2026, 03:42 UTC View advisory →
CVE-2026-12077 High 7.5

The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the via 'latitude' and 'longitude' parameters in all versions up to, and i

25 Jun 2026, 03:42 UTC View advisory →
CVE-2026-12076 Critical 9.3

Raytha CMS is vulnerable to SQL Injection within the OData filter parsing pipeline. The vulnerability allows a remote, unauthenticated attacker to execute

30 Jun 2026, 09:10 UTC View advisory →
CVE-2026-12073 Critical 9.8

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up

30 Jun 2026, 05:34 UTC View advisory →
CVE-2026-12053 High 8.6

GitLab has remediated an issue in GitLab EE affecting all versions from 19.1 before 19.1.1 that under certain conditions could have allowed a user to acces

25 Jun 2026, 04:33 UTC View advisory →
CVE-2026-11999 High 8.2

X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert()). This affects only builds w

25 Jun 2026, 16:56 UTC View advisory →
CVE-2026-11998 High 7.6

A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource URLs and can lead to arbitrary JavaScript ex

24 Jun 2026, 20:29 UTC View advisory →
CVE-2026-11997 Medium 4.3

The Bulk SEO Image plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to and including 1.1. This is due to missing or incorrec

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-11994 Medium 4.8

Akaunting 3.1.21 contains an authenticated stored Cross-Site Scripting vulnerability in the report management workflow. A user with permission to create or

22 Jun 2026, 15:37 UTC View advisory →
CVE-2026-11988 Medium 6.5

The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to Insecure Direct Object Reference in all vers

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-11987 Medium 4.3

The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy plugin for WordPress is vulnerable to Insecure Direc

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-11981 Medium 4.3

The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.15.3 This is due to missing nonce validatio

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-11979 Low 1.8

libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell() function processes u

29 Jun 2026, 13:21 UTC View advisory →
CVE-2026-11972 High 8.2

When using the "tarfile" module with a file opened in "streaming mode" (mode="r|") the tarfile module did not properly handle EOF, meaning an archive could

23 Jun 2026, 22:02 UTC View advisory →
CVE-2026-11943 Medium 4.8

Akaunting 3.1.21 contains an authenticated stored cross-site scripting vulnerability in the document timeline shown on invoice and bill detail pages. An au

22 Jun 2026, 15:30 UTC View advisory →
CVE-2026-11942 Medium 4.8

Akaunting 3.1.21 contains an authenticated stored cross-site scripting vulnerability in the reusable delete confirmation flow. A user with permission to cr

22 Jun 2026, 15:18 UTC View advisory →
CVE-2026-11940 High 7.8

tarfile.extractall() with the 'data' or 'tar' filter could be bypassed by a crafted archive where a hardlink references a symlink stored at a deeper name t

23 Jun 2026, 16:04 UTC View advisory →
CVE-2026-11906 Medium 6.5

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow an authenticated user to cau

30 Jun 2026, 19:42 UTC View advisory →
CVE-2026-11887 Unscored

The Salon Booking System WordPress plugin before 10.30.20 does not have proper authorisation checks on one of its AJAX actions, allowing any authenticated

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-11883 Unscored

The WebAuthn Provider for Two Factor WordPress plugin before 2.5.6 does not correctly validate the second-factor authentication response, allowing an attac

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-11880 Unscored

The Fluent Forms WordPress plugin before 6.2.1 does not properly verify ownership before processing a subscription cancellation request, allowing authentic

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-11878 High 8.2

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OpenText Access Manager allows Cross-Site Scripting (

24 Jun 2026, 14:01 UTC View advisory →
CVE-2026-11877 Medium 6.3

An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager. This issue affects Access Manager before 5.1.3.

24 Jun 2026, 14:01 UTC View advisory →
CVE-2026-11834 High 8.7

A command injection vulnerability has been identified in the DHCP option processing logic in multiple TP-Link router models, due to insufficient validation

22 Jun 2026, 17:53 UTC View advisory →
CVE-2026-11833 High 8.2

Overview: A vulnerability has been found in FAST/TOOLS and CI Server. The web server may return a response containing the CI Server setting information. Th

23 Jun 2026, 00:53 UTC View advisory →
CVE-2026-11825 Unscored

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have be

23 Jun 2026 View advisory →
CVE-2026-11823 High 7.5

The BookingPress Appointment Booking Pro plugin for WordPress is vulnerable to SQL Injection via the 'store_service_date' parameter of the bpa_assign_staff

01 Jul 2026, 05:35 UTC View advisory →
CVE-2026-11820 Medium 6.5

Module: plugins/modules/nexmo.py CVSS 3.1: 6.5 MEDIUM — AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Issue: api_key and api_secret are declared no_log=True at the i

23 Jun 2026, 19:53 UTC View advisory →
CVE-2026-11819 Medium 5.5

Module: plugins/modules/keyring_info.py CVSS 3.1: 5.5 MEDIUM — AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Issue: The module retrieves a passphrase from the OS nat

23 Jun 2026, 19:53 UTC View advisory →
CVE-2026-11807 Critical 9.6

A missing authorization vulnerability was found in the Event-Driven Ansible (EDA) websocket API. The /api/eda/ws/ansible-rulebook endpoint does not verify

23 Jun 2026, 19:40 UTC View advisory →
CVE-2026-11806 High 7.2

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 is affected by an arbitrary file read vulnerability with the restConnector-2.0 feature

30 Jun 2026, 19:43 UTC View advisory →
CVE-2026-11800 High 8.1

A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow allows an attacker with valid client credentia

25 Jun 2026, 20:57 UTC View advisory →
CVE-2026-11794 Unscored

The Advanced Form Integration — Connect Forms to 200+ Apps WordPress plugin before 2.1.1 does not restrict the WordPress role assigned when it creates a us

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-11783 Medium 6.4

The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy plugin for WordPress is vulnerable to Stored Cross-S

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-11779 Medium 5.3

An Improper Authorization vulnerability exists in PayloadCMS version 3.84.1 due to insufficient access control on the account unlock operation.

26 Jun 2026, 16:09 UTC View advisory →
CVE-2026-11773 Medium 4.3

The Masteriyo LMS – LMS Course Builder, Quizzes & Certificates plugin for WordPress is vulnerable to authorization bypass in all versions up to, and includ

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-11772 Medium 5.1

DRIMO CMS is vulnerable to Reflected XSS via q parameter in searching functionality. An attacker can prepare an URL that, when opened, results in arbitrary

23 Jun 2026, 13:31 UTC View advisory →
CVE-2026-11748 Medium 6.9

A vulnerability has been identified in centraldogma-server-auth-shiro versions prior to 0.84.0, where the SearchFirstActiveDirectoryRealm substitutes the l

22 Jun 2026, 02:37 UTC View advisory →
CVE-2026-11746 Critical 9.4

A vulnerability has been identified in centraldogma-server versions prior to 0.84.0, where enabling ZooKeeper replication without setting replication.secre

22 Jun 2026, 02:35 UTC View advisory →
CVE-2026-11745 High 8.8

A vulnerability has been identified in centraldogma-server-mirror-git versions prior to 0.84.0, where the Git mirror SSH client does not verify remote host

22 Jun 2026, 02:33 UTC View advisory →
CVE-2026-11720 Critical 9.3

A path traversal vulnerability exists in the HTTP tool URL builder of googleapis/mcp-toolbox. When constructing downstream API requests, the URL builder su

29 Jun 2026, 17:51 UTC View advisory →
CVE-2026-11714 High 8.5

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the apiDiscovery-1.0 f

30 Jun 2026, 19:44 UTC View advisory →
CVE-2026-11712 Critical 9.3

IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the administrative console help system.

30 Jun 2026, 19:45 UTC View advisory →
CVE-2026-11708 Critical 9.3

IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the administrative console's integrated help system.

30 Jun 2026, 19:47 UTC View advisory →
CVE-2026-11703 Medium 6

Missing SNI/ALPN binding on stateful (session-ID) resumption, which previously skipped the binding check performed for ticket-based resumption. A cached se

25 Jun 2026, 21:15 UTC View advisory →
CVE-2026-11702 High 7.5

Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes. When an object is initialised before forking, the

26 Jun 2026, 08:13 UTC View advisory →
CVE-2026-11625 High 7.5

Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. When an object is initialised before forking, or when th

26 Jun 2026, 08:07 UTC View advisory →
CVE-2026-11614 Medium 6.4

The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'custom_attributes' parameter in all

24 Jun 2026, 02:29 UTC View advisory →
CVE-2026-11597 Medium 6.4

The Surbma | Infusionsoft Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'infusionsoft-form' shortcode in versions up

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-11595 Medium 4.3

IBM WebSphere Application Server 9.0, and 8.5 could allow a remote attacker to obtain sensitive information from the administrative console's integrated he

30 Jun 2026, 19:50 UTC View advisory →
CVE-2026-11594 High 8.5

IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the administrative console.

30 Jun 2026, 20:50 UTC View advisory →
CVE-2026-11570 Unscored

The User Submitted Posts WordPress plugin before 20260608 does not escape a submitted value before outputting it in an admin-configured display template, l

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-11568 Unscored

The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or post-status check before returning WooCommerce

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-11562 Unscored

The WS Form LITE WordPress plugin before 1.11.8 does not have a capability check on one of its settings-update actions, allowing authenticated users with s

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-11546 High 7.1

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the adminCenter-1.0 fe

30 Jun 2026, 19:51 UTC View advisory →
CVE-2026-11541 High 7.4

IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are affected by an HTTP request smug

30 Jun 2026, 20:56 UTC View advisory →
CVE-2026-11380 Medium 6.4

The JetWidgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 1.0.21. This is due to insuf

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-11379 Medium 5.3

GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which inc

25 Jun 2026, 04:33 UTC View advisory →
CVE-2026-11374 Critical 9

In ManageEngine ADSelfService Plus, RecoveryManager Plus, M365 Manager Plus, and ADAudit Plus, the SSO tickets generated to authenticate that session could

23 Jun 2026, 08:19 UTC View advisory →
CVE-2026-11373 Critical 9.1

Net::Statsite::Client versions through 1.1.0 for Perl allow metric injections. Net::Statsite::Client is a client for the statsite protocol, which is a vari

22 Jun 2026, 11:28 UTC View advisory →
CVE-2026-11372 Medium 5.4

IBM TRIRIGA Application Platform 5.0.2 through 5.0.3 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitr

22 Jun 2026, 14:09 UTC View advisory →
CVE-2026-11370 Medium 6.4

The WP Meta SEO plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.5.18 via the 'new_link' parameter

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-11367 Medium 6.5

The PixMagix – WordPress Image Editor plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.7.2 via the move_im

30 Jun 2026, 04:30 UTC View advisory →
CVE-2026-11364 Medium 4.3

The Product Specifications for WooCommerce plugin for WordPress is vulnerable to unauthorized modification, creation, and deletion of data in versions up t

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-11356 Medium 4.4

The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'menu_title' and 'menu_magnifier_color' Se

27 Jun 2026, 01:27 UTC View advisory →
CVE-2026-11310 High 8.7

X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert()). This affects only builds with --enable-opensslextr

25 Jun 2026, 19:38 UTC View advisory →
CVE-2026-10857 Medium 6.1

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in AKIN Software Computer Import Export Industry and Tra

23 Jun 2026, 12:15 UTC View advisory →
CVE-2026-10852 Medium 5.9

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, and IBM WebSphere Application Server Liberty are vulnerable to denial of service in the Web

22 Jun 2026, 19:32 UTC View advisory →
CVE-2026-10845 High 7.3

IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to bypass authentication and gain unauthorized access to JAX-WS applications.

22 Jun 2026, 14:43 UTC View advisory →
CVE-2026-10835 Unscored

The SALESmanago & Leadoo WordPress plugin before 3.11.3 does not properly sanitise and escape a parameter passed to one of its AJAX actions before using it

26 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10833 Medium 6.4

The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'co

25 Jun 2026, 03:42 UTC View advisory →
CVE-2026-10824 Unscored

The Masteriyo LMS WordPress plugin before 2.2.1 does not perform authorization checks in a course-progress REST API controller, allowing unauthenticated us

25 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10823 Unscored

The YMC Filter WordPress plugin before 3.11.3 does not properly authorize access to one of its REST API endpoints and does not validate a user-supplied que

26 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10820 Unscored

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.16.17 does not verify

27 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10817 Medium 6.9

Insufficient input validation leading to memory overread in NetScaler ADC and NetScaler Gateway if the TCP TimeStamp is enabled in TCP Profile and is assoc

30 Jun 2026, 12:58 UTC View advisory →
CVE-2026-10816 High 7.1

Arbitrary File Read (Unauthenticated) in NetScaler ADC and NetScaler Gateway if the access to NSIP, Cluster Management IP or SNIP with management access is

30 Jun 2026, 12:52 UTC View advisory →
CVE-2026-10789 Critical 9.6

A maliciously crafted webpage, when visited by a user with Autodesk Fusion Desktop running and the MCP extension enabled, can trigger a vulnerability in th

22 Jun 2026, 17:15 UTC View advisory →
CVE-2026-10763 High 7

PROMOD V is using insecure HTTP communication instead of HTTPS. The vulnerability is due to the lack of HTTPS support from 3rd party Digipede server.

30 Jun 2026, 09:37 UTC View advisory →
CVE-2026-10753 Unscored

The Site Kit by Google WordPress plugin before 1.176.0 does not properly restrict a REST API write endpoint to administrators, allowing lower-privileged us

24 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10750 Unscored

The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP tools after token authentication, allowing authe

01 Jul 2026, 06:00 UTC View advisory →
CVE-2026-10749 Unscored

The Post Duplicator WordPress plugin before 3.0.15 does not safely handle custom meta-data during post duplication, storing attacker-supplied serialized va

24 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10745 High 7.9

Improper output neutralization for logs vulnerability in upKeeper Solutions upKeeper Instant Privilege Access on Windows allows Log Injection-Tampering-For

24 Jun 2026, 08:04 UTC View advisory →
CVE-2026-10735 Unscored

Multiple Shapedsmart-post-show-pro WordPress plugin before 4.0.2, Real Testimonials Pro WordPress plugin before 3.2.5, Product Slider for WooCommerce Pro W

24 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10712 High 8

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under cert

25 Jun 2026, 04:33 UTC View advisory →
CVE-2026-10711 High 8.8

Missing authentication for critical function vulnerability in AKIN Software Computer Import Export Industry and Trade Ltd. CafePlus allows Accessing Functi

23 Jun 2026, 12:08 UTC View advisory →
CVE-2026-10658 High 7.1

A missing length validation in the Zephyr Bluetooth Host ISO receive path can be triggered by malformed HCI ISO data. In bt_iso_recv() (subsys/bluetooth/ho

22 Jun 2026, 23:58 UTC View advisory →
CVE-2026-10655 Medium 6.5

The asynchronous SNTP client in Zephyr (subsys/net/lib/sntp/sntp.c, sntp_close_async) closed the UDP socket file descriptor directly from the calling threa

30 Jun 2026, 16:33 UTC View advisory →
CVE-2026-10654 Low 3.1

A race condition in the Zephyr Bluetooth Classic RFCOMM host stack (subsys/bluetooth/host/classic/rfcomm.c) mishandles a simultaneous bidirectional session

30 Jun 2026, 16:29 UTC View advisory →
CVE-2026-10653 Medium 6.4

The Zephyr net_buf library (lib/net_buf/buf.c) manipulated both of its reference counts -- the per-header buf->ref and the per-data-block ref_count at the

30 Jun 2026, 16:20 UTC View advisory →
CVE-2026-10652 Medium 4.8

Zephyr's DNS resolver (subsys/net/lib/dns) parses resource records from DNS responses in dns_unpack_answer(), which validated only the fixed RR header (typ

30 Jun 2026, 15:50 UTC View advisory →
CVE-2026-10651 High 7.1

A malformed Bluetooth Classic SDP attribute can trigger a reachable assertion in Zephyr's SDP parser. In subsys/bluetooth/host/classic/sdp.c, bt_sdp_parse_

22 Jun 2026, 23:54 UTC View advisory →
CVE-2026-10648 Medium 6.2

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it

29 Jun 2026, 22:51 UTC View advisory →
CVE-2026-10647 Medium 5.3

The USB CDC-NCM device class (subsys/usb/device_next/class/usbd_cdc_ncm.c) ignores the return value of usbd_ep_enqueue() in its ethernet transmit callback

29 Jun 2026, 21:39 UTC View advisory →
CVE-2026-10646 High 7.4

Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a stack-allocated state object (struct getaddr

28 Jun 2026, 04:04 UTC View advisory →
CVE-2026-10645 Medium 4.9

Zephyr's ext2 directory-entry parser does not fully validate on-disk directory entry structure before copying the entry name and advancing traversal state.

22 Jun 2026, 23:48 UTC View advisory →
CVE-2026-10644 Medium 4.2

The Microchip SERCOM-G1 UART driver (drivers/serial/uart_mchp_sercom_g1.c), used by the PIC32CM-JH SoC family, contains an out-of-bounds write in its async

28 Jun 2026, 04:02 UTC View advisory →
CVE-2026-10643 High 8.7

Zephyr's IP socket recvmsg() implementation (subsys/net/lib/sockets/sockets_inet.c, insert_pktinfo()) validated the user-supplied ancillary (msg_control) b

27 Jun 2026, 22:59 UTC View advisory →
CVE-2026-10642 Medium 6.5

The Zephyr PL011 UART driver (drivers/serial/uart_pl011.c) contains an unbounded software loop in pl011_irq_tx_enable() that repeatedly invokes the interru

24 Jun 2026, 21:32 UTC View advisory →
CVE-2026-10609 Medium 6.8

A missing authorization flaw was found in the OpenShift Cluster Logging Operator. The operator creates and forwards ServiceAccount tokens to output destina

23 Jun 2026, 13:26 UTC View advisory →
CVE-2026-10601 Medium 5.4

The Tempo and Loki datasource plugins construct backend HTTP requests by interpolating user-supplied input into URL paths without sanitization, enabling pa

22 Jun 2026, 13:18 UTC View advisory →
CVE-2026-10593 Medium 6.5

The Zephyr Bluetooth LE Audio Basic Audio Profile (BAP) unicast client mishandles peer-supplied ASE state notifications. In unicast_client_ep_qos_state() (

28 Jun 2026, 04:28 UTC View advisory →
CVE-2026-10592 Medium 6.3

Certificates with wildcard DNS SANs (e.g. *.example.com) bypassed CA name-constraint checks. A certificate with a wildcard DNS SAN that should be rejected

25 Jun 2026, 19:40 UTC View advisory →
CVE-2026-10585 Medium 6.3

A stored cross-site scripting vulnerability was identified in GitHub Enterprise Server that allowed an authenticated attacker to execute arbitrary JavaScri

30 Jun 2026, 21:39 UTC View advisory →
CVE-2026-10564 High 8.2

IBM Langflow OSS 1.0.0 through 1.9.6 contains a Server-Side Request Forgery (SSRF). The legacy RSSReaderComponent in rss.py and SearXNG component in searxn

30 Jun 2026, 19:51 UTC View advisory →
CVE-2026-10562 Medium 5.9

An unauthenticated URL redirection vulnerability has been identified in Archer AX20 V2 due to improper validation of user-supplied URL input within the web

30 Jun 2026, 20:34 UTC View advisory →
CVE-2026-10561 Critical 10

IBM Langflow OSS 1.0.0 through 1.9.3 has an vulnerability due to an improper isolation of Python execution combined with an authentication bypass that allo

22 Jun 2026, 13:22 UTC View advisory →
CVE-2026-10560 High 8.2

IBM Langflow OSS 1.0.0 through 1.9.6 contains a missing authentication vulnerability in /api/v1/build_public_tmp/ endpoints that allows an unauthenticated

30 Jun 2026, 19:53 UTC View advisory →
CVE-2026-10552 Medium 4.3

The Blue Captcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to and including 2.0.1. This is due to missing or incorrec

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-10546 High 7.1

IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL component ( src/lfx/src/lfx/components/data_sou

30 Jun 2026, 19:54 UTC View advisory →
CVE-2026-10531 Unscored

The AI Share & Summarize WordPress plugin before 2.0.4 does not sanitise and escape some of its shortcode attributes before outputting them in a page, allo

24 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10530 Unscored

The Pie Register WordPress plugin before 3.8.4.10 does not use sufficiently random values when generating its account verification tokens, allowing unauthe

22 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10521 High 8.6

An high privileged remote attacker can access a hidden configuration method, that should not be accessible by any user, to modify critical program paramete

23 Jun 2026, 07:34 UTC View advisory →
CVE-2026-10513 High 7.2

The Webmention plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 5.8.0 via parser-derived 'avatar' and 'url

30 Jun 2026, 18:32 UTC View advisory →
CVE-2026-10512 Low 2.3

The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be ful

25 Jun 2026, 19:58 UTC View advisory →
CVE-2026-10140 Critical 9.6

IBM Langflow OSS 1.0.0 through 1.10.0 voice mode contains improper shared-state handling that allows reuse of API clients across tenant boundaries. An auth

30 Jun 2026, 19:55 UTC View advisory →
CVE-2026-10134 Critical 10

IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret available to the Langflow process, read and modify every flow, conversation, m

30 Jun 2026, 19:56 UTC View advisory →
CVE-2026-10129 High 8.5

IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) protection bypass vulnerability in the API Request component. An authent

30 Jun 2026, 19:59 UTC View advisory →
CVE-2026-10109 Critical 9.8

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to improper pre-auth DRDA handshake handling.

30 Jun 2026, 20:02 UTC View advisory →
CVE-2026-10098 Medium 6.3

OCSP CertID serial-number length-confusion in wolfSSL_OCSP_resp_find_status allows a same-issuer SingleResponse whose serial is a prefix of the target seri

25 Jun 2026, 21:16 UTC View advisory →
CVE-2026-10097 Medium 6.3

ML-KEM-1024 x64 AVX2 implicit rejection failure in the Fujisaki-Okamoto transform breaks IND-CCA2 security, allowing decapsulation to deviate from the impl

25 Jun 2026, 19:59 UTC View advisory →
CVE-2026-10092 High 7.2

The Cincopa video and media plug-in plugin for WordPress is vulnerable to Stored Cross-Site Scripting via cincopa Shortcode in Post Comments in all version

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-10091 High 7.2

The Email JavaScript Cloak plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'email' shortcode in all versions up to, and

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-10086 High 8.7

GitLab has remediated an issue in GitLab EE affecting all versions from 16.4 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain

25 Jun 2026, 05:03 UTC View advisory →
CVE-2026-10083 Unscored

The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in an admin-area page, leading to a Stored Cros

29 Jun 2026, 06:00 UTC View advisory →
CVE-2026-10043 High 7.8

MosaicML Composer Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary co

24 Jun 2026, 21:36 UTC View advisory →
CVE-2026-9836 Low 3.5

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is affected by an information disclosure vulnerability.

30 Jun 2026, 19:04 UTC View advisory →
CVE-2026-9800 High 8.1

A flaw was found in Keycloak Policy Enforcer. This vulnerability allows any authenticated user to bypass all authorization policies, including role, scope,

25 Jun 2026, 16:16 UTC View advisory →
CVE-2026-9799 Medium 4.6

A flaw was found in org.keycloak.authorization. An authenticated user with a granted User-Managed Access (UMA) permission ticket for one resource can explo

25 Jun 2026, 16:17 UTC View advisory →
CVE-2026-9787 High 8.8

Quest NetVault Backup NVBULogDaemon Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary

24 Jun 2026, 23:15 UTC View advisory →
CVE-2026-9786 High 8.8

Quest NetVault Backup NVBUDashboard SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code

24 Jun 2026, 23:15 UTC View advisory →
CVE-2026-9785 High 8.8

Quest NetVault Backup NVBULibrarySlot SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary co

24 Jun 2026, 23:14 UTC View advisory →
CVE-2026-9784 High 8.8

Quest NetVault Backup NVBULibraryPort SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary co

24 Jun 2026, 23:14 UTC View advisory →
CVE-2026-9783 High 8.8

Quest NetVault Backup NVBURemovableMedia SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary

24 Jun 2026, 23:14 UTC View advisory →
CVE-2026-9782 High 8.8

Quest NetVault Backup NVBUDeviceDrive SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary co

24 Jun 2026, 23:14 UTC View advisory →
CVE-2026-9781 High 8.8

Quest NetVault Backup NVBURASDevice SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code

24 Jun 2026, 23:14 UTC View advisory →
CVE-2026-9780 High 8.8

Quest NetVault Backup addclient3 Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authenticat

24 Jun 2026, 23:13 UTC View advisory →
CVE-2026-9779 High 7.2

ATEN Unizon doCryptoHugeFileToFile Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability. This vulnerability allows remote a

24 Jun 2026, 21:37 UTC View advisory →
CVE-2026-9778 High 7.2

ATEN Unizon ImportDeviceList Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code

24 Jun 2026, 21:37 UTC View advisory →
CVE-2026-9777 High 7.2

ATEN Unizon restoreDB Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affe

24 Jun 2026, 21:36 UTC View advisory →
CVE-2026-9776 High 7.5

ATEN Unizon writeFileToHttpServletResponse Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose

24 Jun 2026, 21:36 UTC View advisory →
CVE-2026-9775 Medium 5.5

ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on af

24 Jun 2026, 21:36 UTC View advisory →
CVE-2026-9774 Medium 5.5

ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files o

24 Jun 2026, 21:36 UTC View advisory →
CVE-2026-9773 High 8.8

Unraid Web Server ToggleState Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code o

24 Jun 2026, 21:35 UTC View advisory →
CVE-2026-9772 High 8.8

Unraid Web Server FileUpload Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on

24 Jun 2026, 21:35 UTC View advisory →
CVE-2026-9733 Unscored

Mojolicious::Plugin::Web::Auth::OAuth2 versions through 0.17 for Perl have an insecure default state parameter. When no state generator is specified in the

23 Jun 2026, 07:05 UTC View advisory →
CVE-2026-9724 Medium 4.3

The MotorDesk plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.2. This is due to missing or incor

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9721 Medium 4.3

The Book a Room Event Calendar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9. This is due to m

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9718 Medium 6.9

CWE-617 Reachable Assertion vulnerability exists that could allow an authenticated attacker to trigger a denial-of-service condition, impacting system avai

25 Jun 2026, 15:07 UTC View advisory →
CVE-2026-9717 High 8.6

CWE-78 Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow unauthorized execution of co

25 Jun 2026, 15:05 UTC View advisory →
CVE-2026-9716 High 8.7

CWE-476 NULL Pointer Dereference vulnerability exists that could cause a denial-of-service condition, rendering the device’s HMI and configuration function

25 Jun 2026, 15:02 UTC View advisory →
CVE-2026-9711 Critical 9.8

The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injection via the WordPress 'search' parameter in ve

30 Jun 2026, 09:31 UTC View advisory →
CVE-2026-9710 Unscored

The Cornerstone WordPress plugin before 7.8.8 does not enforce capability checks on one of its CSS-preview request handlers, and exposes the nonce needed t

24 Jun 2026, 06:00 UTC View advisory →
CVE-2026-9709 Unscored

The Cornerstone WordPress plugin before 7.8.9 does not enforce capability checks on one of its REST API routes, allowing any authenticated user to disclose

24 Jun 2026, 06:00 UTC View advisory →
CVE-2026-9705 Medium 6.5

A flaw was found in Keycloak's client registration service. A remote attacker, possessing a previously issued Registration Access Token (RAT), could exploi

25 Jun 2026, 16:17 UTC View advisory →
CVE-2026-9702 Unscored

The InPost PL WordPress plugin before 1.9.1 does not verify that the request originates from the legitimate buyer before allowing the WooCommerce order par

25 Jun 2026, 06:00 UTC View advisory →
CVE-2026-9699 Medium 6.8

Mattermost Plugins versions <=11.6 10.18.11 11.3.6 11.6.5.0 fail to sanitize error responses from the OpenAI API before logging, which allows a user with a

26 Jun 2026, 14:43 UTC View advisory →
CVE-2026-9677 Unscored

The Shariff for WordPress Shariff for WordPress plugin through 1.0.11 does not sanitize or escape the shariff_infourl setting before outputting it in the f

27 Jun 2026, 06:00 UTC View advisory →
CVE-2026-9676 Unscored

The F4 Post Tree WordPress plugin before 2.0.5 does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authentic

29 Jun 2026, 06:00 UTC View advisory →
CVE-2026-9651 Medium 6.7

CWE-732 Incorrect Permission Assignment for Critical Resource vulnerability that could cause unauthorized disclosure of password hashes and potential accou

25 Jun 2026, 14:47 UTC View advisory →
CVE-2026-9650 High 8.7

CWE-522 Insufficiently Protected Credentials vulnerability that could cause unauthorized access and exposure of sensitive information when unauthenticated

25 Jun 2026, 14:44 UTC View advisory →
CVE-2026-9643 High 7.2

The WP Meta SEO plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the REQUEST_URI server variable in all versions up to

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9640 High 7.2

A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before 5.0.7 regarding the handling of project-rest

26 Jun 2026, 15:50 UTC View advisory →
CVE-2026-9639 Medium 6.5

Nil-pointer dereference in CreateCustomVolumeFromBackup in LXD up to version 6.8 and 5.21 on Linux allows an authenticated user with can_create_storage_vol

26 Jun 2026, 15:39 UTC View advisory →
CVE-2026-9620 Medium 6.4

The WP Latest Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via crafted image src attributes in post content in versions up to, a

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9619 Medium 4.3

The Reviews and Rating – Docplanner plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.4. This is due to

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9616 Medium 4.3

The Generate Security.txt plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.0.12. This is due to the plugi

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9612 Medium 5.3

The WhatsOrder – Instant Checkout for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9610 Low 2.3

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 and IBM Datacap Navigator 9.1.7, 9.1.8, and 9.1.9 exposes resources or functionality that isn't linked in the UI but is

22 Jun 2026, 14:22 UTC View advisory →
CVE-2026-9539 Medium 6.5

An out-of-bounds heap read and integer underflow in the TCP urgent data handling (sosendoob) in freedesktop.org libslirp version before v4.9.2 on hyperviso

24 Jun 2026, 04:37 UTC View advisory →
CVE-2026-9320 Medium 5.9

IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to a denial of servic

22 Jun 2026, 14:53 UTC View advisory →
CVE-2026-9267 Medium 6.9

Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the check_server_certificate() func

29 Jun 2026, 08:10 UTC View advisory →
CVE-2026-9263 Medium 6.5

The Zephyr Bluetooth controller ISO Adaptation Layer (subsys/bluetooth/controller/ll_sw/isoal.c) fails to validate the length field of a framed ISO PDU sta

30 Jun 2026, 16:01 UTC View advisory →
CVE-2026-9242 Medium 5.3

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to Authentication Bypass v

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-9233 Medium 4.3

The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to authorization bypass in all versions up to, and includi

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-9222 Critical 9.2

Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior only require the password hash when authenticating with backend services fro

25 Jun 2026, 23:29 UTC View advisory →
CVE-2026-9221 High 8.7

The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a request signature for authenticating communic

25 Jun 2026, 23:27 UTC View advisory →
CVE-2026-9220 High 8.7

Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior encrypts requests between the watch and its backend with static hardcoded AE

25 Jun 2026, 23:13 UTC View advisory →
CVE-2026-9219 High 8.3

Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior have a predictable registration ID derived from IMEI. The enrollment system

25 Jun 2026, 23:10 UTC View advisory →
CVE-2026-9184 Medium 4.3

The 24liveblog - live blog tool plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_lb2

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9183 Medium 4.3

The 24liveblog - live blog tool plugin for WordPress is vulnerable to Exposure of Sensitive Information in versions up to, and including, 2.2. This is due

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9179 High 7.5

The WP Forms Connector plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the /wp-json/wp/v3/post/list REST endpoint in versi

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9178 High 7.5

The WP Forms Connector plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.8. The plugin registers the REST

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9175 Medium 5.3

The Devs Accounting – Simple Accounting and Invoicing Solution plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and inclu

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9172 Medium 5.3

The Devs Accounting – Simple Accounting and Invoicing Solution plugin for WordPress is vulnerable to unauthorized modification/deletion of data due to a mi

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-9162 Medium 4.3

Mattermost versions 11.7.x <= 11.7.0, 11.6.x <= 11.6.2, 11.5.x <= 11.5.5, 10.11.x <= 10.11.17 fail to invalidate cached authentication state for active Web

22 Jun 2026, 13:36 UTC View advisory →
CVE-2026-9155 High 8.8

OS Command Injection vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the exp

25 Jun 2026, 00:25 UTC View advisory →
CVE-2026-9154 High 7.1

Arbitrary File Write vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to write attacker-controlled content to arbi

25 Jun 2026, 00:29 UTC View advisory →
CVE-2026-9153 Medium 6.5

Arbitrary File Read vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to read arbitrary files via the expression pa

25 Jun 2026, 00:33 UTC View advisory →
CVE-2026-9132 Medium 6

A missing authorization vulnerability was identified in GitHub Enterprise Server that allowed an authenticated user to read source code from private reposi

30 Jun 2026, 20:23 UTC View advisory →
CVE-2026-9107 Medium 6.4

The Kali Forms — Contact Form & Drag-and-Drop Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'meta[kaliforms_field_compo

01 Jul 2026, 03:43 UTC View advisory →
CVE-2026-9106 Medium 4.8

A UI misrepresentation vulnerability was identified in GitHub Enterprise Server that allowed an OAuth application to gain unintended access to an organizat

30 Jun 2026, 20:21 UTC View advisory →
CVE-2026-9105 Medium 6.8

An authenticated stack-based buffer overflow vulnerability exists in the web management interface of TP-Link TL-WR841N v14. A remote authenticated attacker

29 Jun 2026, 16:05 UTC View advisory →
CVE-2026-9099 High 7.7

A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild() endpoint within the Admin REST API allows an authenticated user

25 Jun 2026, 16:16 UTC View advisory →
CVE-2026-9086 High 7.3

A flaw was found in Keycloak. A remote attacker with administrative privileges, specifically those with `manage-client` permission or access to client regi

25 Jun 2026, 16:16 UTC View advisory →
CVE-2026-9083 Medium 4.9

A flaw was found in Keycloak. A realm administrator with the "manage-realm" role can exploit this vulnerability by submitting an arbitrary filesystem path

25 Jun 2026, 16:17 UTC View advisory →
CVE-2026-9073 Medium 6.2

A flaw was found in foreman-mcp-server. This component utilizes two distinct logging mechanisms that can expose sensitive session and authentication data.

23 Jun 2026, 19:53 UTC View advisory →
CVE-2026-9072 High 8.1

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, and IBM WebSphere Application Server Liberty - when using Intelligent Management with the W

22 Jun 2026, 14:21 UTC View advisory →
CVE-2026-9071 High 7.5

IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to a denial of servic

22 Jun 2026, 14:47 UTC View advisory →
CVE-2026-9029 High 7.3

The geomap panel's XYZ tile layer has a sanitize-then-interpolate ordering bug. sanitizeTextPanelContent() runs on the raw template string before getTempla

22 Jun 2026, 13:18 UTC View advisory →
CVE-2026-9006 High 7.4

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to server-side request forgery (SSRF) with the Ajax Proxy configured. This may allow an attacke

22 Jun 2026, 14:46 UTC View advisory →
CVE-2026-9002 Medium 6.5

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 could allow an adjacent attacker to cause a denial of service due to improper validation in the XDF dec

30 Jun 2026, 19:08 UTC View advisory →
CVE-2026-8944 Medium 4.3

The Plugin for Google Analytics by IO technologies plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.

30 Jun 2026, 04:30 UTC View advisory →
CVE-2026-8934 Medium 6.9

A Missing Authorization vulnerability in a GraphQL private API operation of the Google App Engine section of the Cloud Console allows an unauthenticated re

22 Jun 2026, 15:20 UTC View advisory →
CVE-2026-8918 High 7.1

A permissive list of allowed inputs in ASUS Armoury Crate allows a local administrator to perform arbitrary memory read/write operations or cause a system

22 Jun 2026, 02:00 UTC View advisory →
CVE-2026-8905 Medium 6.1

The Osiris Signature Banner plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.5. This is due to miss

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8896 Medium 6.4

The MIR blocks and shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' attribute (and other attributes such as 're

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8865 Medium 6.4

The Avalon23 Products Filter for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'avalon23_qr' shortcode in all versi

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8864 High 7.3

The HP Fan Control App might allow local escalation of privileges. An updated version of HP Fan Control App has been released to mitigate this potential vu

30 Jun 2026, 16:21 UTC View advisory →
CVE-2026-8858 High 7.5

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code execution and den

22 Jun 2026, 14:16 UTC View advisory →
CVE-2026-8823 Low 3.8

Mattermost versions 11.7.x <= 11.7.0, 10.11.x <= 10.11.17 fail to validate bot targets when demoting users to guests which allows a lower-privileged admini

22 Jun 2026, 13:41 UTC View advisory →
CVE-2026-8797 High 8.5

An access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitrary code could

26 Jun 2026, 04:14 UTC View advisory →
CVE-2026-8720 Medium 5.9

wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, producing a MAC that is independent of the inpu

25 Jun 2026, 21:18 UTC View advisory →
CVE-2026-8705 High 7.5

The ClearSale Total plugin for WordPress is vulnerable to SQL Injection via the `pagseguro[metodo]` POST parameter of the `clearsale_total_push` AJAX actio

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8690 Medium 5.3

The RentMy Real-Time Rental Management Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 4.0.4.1. Thi

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8688 Medium 4.3

The Advance Nav Menu Manager plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.3. This is due to the plugi

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8666 High 7.7

OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linux allows remote attackers to execute arbitrar

25 Jun 2026, 01:35 UTC View advisory →
CVE-2026-8665 High 7.7

OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows remote attackers to execute arbitrary OS comm

25 Jun 2026, 01:12 UTC View advisory →
CVE-2026-8664 Medium 6

OS Command Injection vulnerability in Rapid7 InsightConnect Finger Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the

25 Jun 2026, 01:28 UTC View advisory →
CVE-2026-8663 Medium 6

OS Command Injection vulnerability in Rapid7 InsightConnect RPM Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the rep

24 Jun 2026, 23:56 UTC View advisory →
CVE-2026-8662 Low 3.3

Path Traversal vulnerability in the create_archive function of Rapid7 InsightConnect Compression Plugin on Linux allows authenticated attackers to write to

25 Jun 2026, 01:51 UTC View advisory →
CVE-2026-8661 Medium 4.8

Server-Side Cross-Site Scripting and Server-Side Request Forgery vulnerability in the markdown_to_pdf action of Rapid7 InsightConnect Markdown Plugin versi

26 Jun 2026, 01:59 UTC View advisory →
CVE-2026-8660 High 7.7

OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows remote attackers to execute arbitrary OS command

25 Jun 2026, 00:52 UTC View advisory →
CVE-2026-8659 Medium 6

OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the

25 Jun 2026, 00:07 UTC View advisory →
CVE-2026-8658 Medium 6

OS Command Injection vulnerability in Rapid7 InsightConnect Tcpdump Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the

25 Jun 2026, 01:56 UTC View advisory →
CVE-2026-8655 High 8.8

Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if Net

30 Jun 2026, 12:46 UTC View advisory →
CVE-2026-8646 High 7.4

IBM WebSphere Application Server 9.0 and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to HTTP request smuggl

22 Jun 2026, 14:44 UTC View advisory →
CVE-2026-8636 Medium 5.5

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 and IBM Datacap Navigator 9.1.7, 9.1.8, and 9.1.9 allows an attacker to retrieve user passwords and cryptographic keys

22 Jun 2026, 14:16 UTC View advisory →
CVE-2026-8628 Medium 6.1

The EntreDroppers plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Parameter in all versions up to, and including, 1.1.2 d

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8622 Medium 6.1

The Image Sizes on Demand plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Server Variable in all versions up to, and incl

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8617 Medium 5.3

The SearchPlus plugin for WordPress is vulnerable to unauthorized modification and deletion of data in versions up to, and including, 1.7.1. This is due to

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8614 Medium 4.3

The Assistio plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check and missing nonce verification on th

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-8592 High 7.7

OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux allows remote attackers to execute arbitrary O

25 Jun 2026, 01:32 UTC View advisory →
CVE-2026-8452 High 8.8

Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if the appliance is

30 Jun 2026, 12:41 UTC View advisory →
CVE-2026-8451 High 8.8

Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured as a SA

30 Jun 2026, 12:33 UTC View advisory →
CVE-2026-8403 Medium 6.1

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Eksagate Electronic Engineering and Computer Industry

30 Jun 2026, 11:46 UTC View advisory →
CVE-2026-8402 Critical 9.8

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Eksagate Electronic Engineering and Computer Industry

30 Jun 2026, 11:36 UTC View advisory →
CVE-2026-8380 Unscored

The Frontend File Manager Plugin WordPress plugin through 23.6 does not properly verify ownership of every targeted post before permanent deletion, allowin

26 Jun 2026, 06:00 UTC View advisory →
CVE-2026-8379 Unscored

The Frontend File Manager Plugin WordPress plugin through 23.6 does not properly enforce its nonce check on the file download handler, allowing unauthentic

23 Jun 2026, 06:00 UTC View advisory →
CVE-2026-8378 Unscored

The Frontend File Manager Plugin WordPress plugin through 23.6 does not sanitise nor escape a filename submitted to the frontend file-rename endpoint befor

23 Jun 2026, 06:00 UTC View advisory →
CVE-2026-8330 Medium 4.4

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.3 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certai

25 Jun 2026, 04:34 UTC View advisory →
CVE-2026-8172 Unscored

The Simple Basic Contact Form WordPress plugin through 20250114 does not escape user-supplied input before reflecting it into the contact form output on va

23 Jun 2026, 06:00 UTC View advisory →
CVE-2026-8163 Unscored

The Infility Global WordPress plugin before 2.15.19 does not properly sanitize and escape some parameters before using them in SQL statements, leading to a

23 Jun 2026, 06:00 UTC View advisory →
CVE-2026-8157 High 8.8

The Vitepos WordPress plugin before 3.4.2 does not properly restrict the roles that can be assigned when creating new users via one of its REST API endpoin

22 Jun 2026, 06:00 UTC View advisory →
CVE-2026-8141 High 7.2

The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxonomy_include_children' parameter in all version

30 Jun 2026, 09:31 UTC View advisory →
CVE-2026-8095 High 8.1

The Frontend File Manager Plugin plugin for WordPress is vulnerable to Authenticated Arbitrary File Deletion in versions up to and including 23.6. This is

27 Jun 2026, 23:28 UTC View advisory →
CVE-2026-8074 Low 3.8

Mattermost versions 11.7.x <= 11.7.0, 10.11.x <= 10.11.17 fail to enforce bot-specific permission checks on the user active status endpoint, which allows a

22 Jun 2026, 13:37 UTC View advisory →
CVE-2026-8059 Medium 6.1

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 and IBM Datacap Navigator 9.1.7, 9.1.8, and 9.1.9 is vulnerable to cross-site scripting. This vulnerability allows an u

22 Jun 2026, 14:13 UTC View advisory →
CVE-2026-8023 High 7.5

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is e

29 Jun 2026, 22:15 UTC View advisory →
CVE-2026-7874 Critical 9.1

IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use of a weak and reversible key derivation mech

30 Jun 2026, 19:11 UTC View advisory →
CVE-2026-7873 Critical 9.9

IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated attackers to execute arbitrary OS commands and read sensitive files including credentials, enabl

30 Jun 2026, 19:13 UTC View advisory →
CVE-2026-7871 Critical 9.8

IBM Langflow OSS 1.0.0 through 1.10.0 allows users with Redis access to execute arbitrary code with full application privileges, compromising all secrets,

30 Jun 2026, 19:14 UTC View advisory →
CVE-2026-7859 Medium 5.3

The Motors WordPress plugin before 1.4.110 does not have proper authorisation and CSRF checks on one of its AJAX actions, allowing unauthenticated attacker

22 Jun 2026, 06:00 UTC View advisory →
CVE-2026-7842 Unscored

The Infility Global Infility Global WordPress plugin before 2.15.20 for WordPress does not sanitize or validate the orderby and order parameters in the imp

23 Jun 2026, 06:00 UTC View advisory →
CVE-2026-7840 Critical 9.3

UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server. The functions wi_senderr() and wi_replyhdr(

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-7839 Critical 9.1

UltraVNC repeater through 1.8.2.2 initializes the HTTP administration server with a hardcoded default password. In repeater/webgui/settings.c:197, when set

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-7838 High 8.7

UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB protocol failure-response parsing path. In vncvie

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-7831 High 7.5

UltraVNC viewer through 1.8.2.2 contains an off-by-one stack buffer overflow in the RFB ServerInit message handler. In vncviewer/ClientConnection.cpp, when

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-7830 High 7.4

UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_MsLogonIIAuth). In rfb/dh.cpp the Diffie-Hellma

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-7829 High 7.2

UltraVNC repeater through 1.8.2.2 contains a post-authentication out-of-bounds write in the allow/deny rule parser. In repeater/webgui/settings.c:225-272,

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-7828 Medium 5.3

UltraVNC repeater through 1.8.2.2 contains an integer overflow in the HTTP request logging path. In repeater/webgui/settings.c:336, the win_log() function

01 Jul 2026, 03:33 UTC View advisory →
CVE-2026-7803 Critical 9.8

IBM Langflow OSS 1.0.0 through 1.10.0 could allow arbitrary code execution due to improper validation of flow nodes with missing or empty component type fi

30 Jun 2026, 19:15 UTC View advisory →
CVE-2026-7761 High 8.8

The Ultimate Member plugin for WordPress is vulnerable to Account Takeover via Password Reset Link Disclosure in all versions up to and including 2.11.4. T

24 Jun 2026, 06:49 UTC View advisory →
CVE-2026-7664 Critical 9.8

IBM Langflow OSS 1.0.0 through 1.8.4 could allow unauthenticated attackers to access protected MCP project resources and execute MCP operations due to impr

22 Jun 2026, 14:10 UTC View advisory →
CVE-2026-7663 Critical 9.1

IBM Langflow OSS 1.0.0 through 1.9.6 could allow unauthenticated attackers to access protected MCP project resources and execute MCP operations due to impr

30 Jun 2026, 19:16 UTC View advisory →
CVE-2026-7656 High 8.1

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression t

29 Jun 2026, 22:09 UTC View advisory →
CVE-2026-7617 Medium 5.3

The Secufor_OAuth plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0.7. This is due to the plugin not prop

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-7574 High 8.7

Anthropic Claude Desktop Cowork VM image handling (confirmed across v1.1348.0 through v1.2278.0, including v1.1348.0, v1.1617.0, and v1.2278.0) validates o

23 Jun 2026, 23:54 UTC View advisory →
CVE-2026-7570 High 8.8

Quest NetVault Backup NVBUDashboard SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code

24 Jun 2026, 23:13 UTC View advisory →
CVE-2026-7569 High 8.8

Quest NetVault Backup viewclient Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authenticat

24 Jun 2026, 23:15 UTC View advisory →
CVE-2026-7539 High 7.3

A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might allow escalatio

24 Jun 2026, 19:47 UTC View advisory →
CVE-2026-7532 Medium 5.7

iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME is not defined. IP address name constraints are not enforced in that configuration, allowing a c

25 Jun 2026, 21:31 UTC View advisory →
CVE-2026-7531 Low 2.3

Use-after-free in PQC hybrid key-share handling. This is an incomplete-fix follow-up to CVE-2026-5460 (released in 5.9.1): a malicious TLS 1.3 server sendi

25 Jun 2026, 20:01 UTC View advisory →
CVE-2026-7517 High 7.2

The Custom Payment Gateways for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'alg_wc_cpg_input_fields' parameter i

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-7511 Medium 5.9

PKCS7_verify signer confusion allows forged signatures, where the signer associated with a signature is not correctly bound, permitting a forged signature

25 Jun 2026, 21:32 UTC View advisory →
CVE-2026-7253 Medium 5.3

IBM Watson Speech Services Cartridge is vulnerable to Server-Side Request Forgery (SSRF) in Sterling File Gateway, due to a flaw which may allow an authent

22 Jun 2026, 15:21 UTC View advisory →
CVE-2026-7167 Medium 6.9

The vulnerability arises when the system fails to properly validate the 'email' field during the authentication process, allowing unverified or fake email

22 Jun 2026, 12:50 UTC View advisory →
CVE-2026-7166 Critical 9.2

Vulnerability involving the exposure of sensitive data provided without adequate protection. The API exposes email and phone number data from the ‘email’ a

22 Jun 2026, 12:47 UTC View advisory →
CVE-2026-7165 Critical 9.4

The vulnerability is present in the ‘/addJugador’ endpoint: * The 'keyJugador' and 'keyJugadorObjectiu' parameters allow the modification of other users’ i

22 Jun 2026, 12:46 UTC View advisory →
CVE-2026-6954 Medium 5.1

Cross-Site Scripting (XSS) vulnerability in Intermark IT's WebControl CMS v3.5. This vulnerability allows an attacker to execute JavaScript code or inject

30 Jun 2026, 08:54 UTC View advisory →
CVE-2026-6953 Medium 5.1

HTML injection vulnerability in Intermark IT's WebControl CMS v3.5. This vulnerability allows an attacker to send an email containing malicious HTML code t

30 Jun 2026, 08:53 UTC View advisory →
CVE-2026-6858 High 7.1

The Transbank Webpay WordPress plugin before 1.14.0 does not sanitize and escape logs to be displayed, allowing unauthenticated users to perform Stored XSS

22 Jun 2026, 06:00 UTC View advisory →
CVE-2026-6731 Medium 6

X.509 name constraint bypass via the Subject Common Name when treated as a DNS-type name. A certificate whose Subject CN violates an issuing CA's DNS name

25 Jun 2026, 20:08 UTC View advisory →
CVE-2026-6681 Low 1

The PKCS#7 decode path ignores the caller-supplied output buffer size (outputSz), allowing decoded content to be written past the bounds of the provided bu

25 Jun 2026, 20:11 UTC View advisory →
CVE-2026-6679 High 8.8

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an in

25 Jun 2026, 20:13 UTC View advisory →
CVE-2026-6678 Low 1

Integer underflow in wc_PKCS7_DecryptOri when handling crafted Other Recipient Info, leading to incorrect length handling during decryption.

25 Jun 2026, 20:16 UTC View advisory →
CVE-2026-6673 Medium 6.4

Mattermost versions 11.7.x <= 11.7.0, 11.6.x <= 11.6.2, 11.5.x <= 11.5.5, 10.11.x <= 10.11.17 fail to authenticate Atlassian Connect installed callbacks, a

22 Jun 2026, 13:38 UTC View advisory →
CVE-2026-6658 Medium 5.4

A vulnerability in jupyter/nbconvert versions <= 7.17.0 allows for Cross-site Scripting (XSS) via unsanitized `text/vnd.mermaid` output in HTML exports. Th

26 Jun 2026, 09:40 UTC View advisory →
CVE-2026-6653 High 7

Use After Free in libxml2's xmlParseInternalSubset from GNOME libxml2 version 2.9.11 to 2.11.0 allows a remote attacker to cause a denial-of-service via ma

22 Jun 2026, 12:40 UTC View advisory →
CVE-2026-6645 High 7.3

An insecure process execution vulnerability exists in the pc-printer-updater.exe component of the PaperCut Print Deploy Client for Windows. The application

22 Jun 2026, 03:24 UTC View advisory →
CVE-2026-6556 Critical 9.1

@fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the path argument is a string. Non-string mount

30 Jun 2026, 12:48 UTC View advisory →
CVE-2026-6458 Medium 5.1

Missing cryptographic step in Caliptra Core Firmware (aes_256_gcm_update module) results in an incorrect GCM authentication tag. When the streaming AES-256

23 Jun 2026, 23:49 UTC View advisory →
CVE-2026-6450 Low 1

A CRL critical extension bypass exists in ParseCRL_Extensions where critical extensions are not properly enforced, allowing a crafted CRL with an unhandled

25 Jun 2026, 20:18 UTC View advisory →
CVE-2026-6432 Medium 5.3

Improper bounds validation in EmberZNet SDK versions 9.0.2 and earlier may result in crashes or dynamic memory leakage.

25 Jun 2026, 13:49 UTC View advisory →
CVE-2026-6412 Low 2.3

Certificate policy and RFC 8446 compliance concerns regarding the continued acceptance of SHA-1/MD5 in certificate processing.

25 Jun 2026, 20:38 UTC View advisory →
CVE-2026-6331 Low 2.1

HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid during HMAC verification. In the OpenSSL-compatib

25 Jun 2026, 20:56 UTC View advisory →
CVE-2026-6330 Medium 6.3

The ML-KEM ARM64 NEON ciphertext comparison only compares half of the input, breaking the Fujisaki-Okamoto transform's implicit rejection and weakening IND

25 Jun 2026, 21:01 UTC View advisory →
CVE-2026-6329 Medium 6

PKCS#12 MAC verification uses an attacker-controlled comparison length, weakening the integrity check on the MAC and allowing a mismatched MAC to be accept

25 Jun 2026, 21:02 UTC View advisory →
CVE-2026-6325 Low 2

Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a write past the bounds of the destination buf

25 Jun 2026, 21:04 UTC View advisory →
CVE-2026-6292 Medium 4.3

The MP Customize Login Page plugin for WordPress is vulnerable to Cross-Site Request Forgery (CSRF) in all versions up to and including 1.0. This is due to

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-6291 Medium 6

Bleichenbacher padding oracle in PKCS#7 KTRI decryption. When decrypting PKCS#7 EnvelopedData using RSA PKCS#1 v1.5 key transport, wolfSSL returned disting

25 Jun 2026, 16:41 UTC View advisory →
CVE-2026-6094 Medium 6.3

Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied d

25 Jun 2026, 16:35 UTC View advisory →
CVE-2026-6092 Low 2.1

When HAVE_ENCRYPT_THEN_MAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC.

25 Jun 2026, 21:06 UTC View advisory →
CVE-2026-6091 Medium 6

Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor

25 Jun 2026, 16:46 UTC View advisory →
CVE-2026-6070 Critical 9.1

The WP-BusinessDirectory plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Deletion in versions up to and including 4.0.1. This is due t

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-6062 Medium 6.4

Mattermost versions 11.7.x <= 11.7.0, 11.6.x <= 11.6.2, 11.5.x <= 11.5.5, 10.11.x <= 10.11.17 Fail to validate channel ownership of an existing subscriptio

22 Jun 2026, 13:40 UTC View advisory →
CVE-2026-5952 Medium 4.3

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under cert

25 Jun 2026, 04:34 UTC View advisory →
CVE-2026-5818 High 7.2

Incorrect check of function return value in Caliptra Core Runtime Firmware (ActivateFirmwareCmd::activate_fw modules) allows bypass of Caliptra Core's veri

23 Jun 2026, 23:50 UTC View advisory →
CVE-2026-5796 Medium 4.3

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.6 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certa

25 Jun 2026, 04:34 UTC View advisory →
CVE-2026-5757 High 7.5

Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's he

26 Jun 2026, 15:15 UTC View advisory →
CVE-2026-5309 Medium 5.4

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain

25 Jun 2026, 04:34 UTC View advisory →
CVE-2026-5305 Unscored

The Email Address Encoder WordPress plugin before 1.0.25, email-encoder-premium WordPress plugin before 0.3.12 does not properly handle email replacement,

25 Jun 2026, 06:00 UTC View advisory →
CVE-2026-5139 Medium 5.4

Mattermost versions 11.7.x <= 11.7.0, 11.6.x <= 11.6.2, 11.5.x <= 11.5.5, 10.11.x <= 10.11.17 fail to enforce administrator authorization on the {{setDefau

22 Jun 2026, 13:34 UTC View advisory →
CVE-2026-4983 Medium 4.1

Open VSX Registry does not sanitize SVG files uploaded as extension icons prior to storage, and serves them with Content-Type: image/svg+xml without securi

23 Jun 2026, 10:50 UTC View advisory →
CVE-2026-4930 High 7.1

SYMCRYPTO is the SiXG301's host side hardware engine accessed by PSA crypto library that accelerates symmetric cryptographic operations (AES encryption/dec

25 Jun 2026, 18:39 UTC View advisory →
CVE-2026-4629 Medium 6.5

A flaw was found in Keycloak. A highly privileged user with `manage-clients` permission can exploit this vulnerability by injecting a hardcoded role mapper

30 Jun 2026, 12:00 UTC View advisory →
CVE-2026-4610 Medium 6.4

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pm_author_message' param

23 Jun 2026, 12:32 UTC View advisory →
CVE-2026-4526 High 7.1

In EmberZNet v9.0.2 and earlier, malformed global ZCL messages can trigger out-of-bounds reads in framework parsing logic and terminate the process. These

25 Jun 2026, 13:32 UTC View advisory →
CVE-2026-4522 Medium 6.7

Missing authentication for critical function vulnerability in HYPR Passwordless on Windows allows Credentials Interception. This issue affects HYPR Passwor

25 Jun 2026, 15:39 UTC View advisory →
CVE-2026-4360 Low 2

In the Tarfile.extract() function, the filter parameter is not passed properly when extracting hardlinks. An affected system that extracts content from unt

30 Jun 2026, 14:45 UTC View advisory →
CVE-2026-4339 Medium 6.5

Mattermost versions 10.11.x <= 10.11.18, 11.6.x <= 11.6.3, 11.5.x <= 11.5.6 fail to validate attachment URLs against internal or private IP ranges in the M

26 Jun 2026, 14:44 UTC View advisory →
CVE-2026-4297 High 8.8

The Welcome Software Publishing plugin for WordPress is vulnerable to Arbitrary Options Update in all versions up to and including 0.0.31. This is due to a

24 Jun 2026, 05:33 UTC View advisory →
CVE-2026-4259 High 7.1

The ultimate-woocommerce-auction-pro WordPress plugin through 2.4.5 does not sanitise and escape a parameter before outputting it back in the page, leading

22 Jun 2026, 06:00 UTC View advisory →
CVE-2026-4110 Unscored

The ultimate-woocommerce-auction-pro WordPress plugin through 2.4.5 does not sanitise and escape a parameter before outputting it back in the page, leading

22 Jun 2026, 06:00 UTC View advisory →
CVE-2026-3652 High 7.2

The ARForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `value` parameter of the `arf_save_incomplete_form_data` AJAX action

24 Jun 2026, 02:29 UTC View advisory →
CVE-2026-3602 Medium 4.7

IBM App Connect Enterprise 13.0.1.0 through 13.0.7.2, and 12.0.1.0 through 12.0.12.26 and IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.7 is vulnera

30 Jun 2026, 19:19 UTC View advisory →
CVE-2026-3472 Low 3.5

Mattermost versions 10.11.x <= 10.11.18, 11.6.x <= 11.6.3, 11.5.x <= 11.5.6 fail to properly apply markdown image rendering restrictions to AI bot tool res

26 Jun 2026, 14:42 UTC View advisory →
CVE-2026-3462 Medium 6.5

The Frisbii Pay plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on the 'upload_csv' and 'process_b

27 Jun 2026, 06:50 UTC View advisory →
CVE-2026-3176 Low 3.1

GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain

25 Jun 2026, 04:34 UTC View advisory →
CVE-2026-2815 High 8.4

Incorrect use of the PUF key for user key generation in EFR32xG27 results in predictable keys

25 Jun 2026, 13:27 UTC View advisory →
CVE-2026-2508 Medium 6.5

The Gravity Forms Booking plugin for WordPress is vulnerable to time-based SQL Injection via the ‘staff_id’ parameter in all versions up to, and including,

25 Jun 2026, 03:42 UTC View advisory →
CVE-2026-2387 Medium 6.4

The Event Organiser plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 3.12.9. This is due to the 'eo_

01 Jul 2026, 04:32 UTC View advisory →
CVE-2026-2299 Medium 4.2

The Mattermost Google Drive plugin before version 1.1.0 fails to validate channel membership in the file creation endpoint, allowing authenticated users wi

25 Jun 2026, 18:55 UTC View advisory →
CVE-2026-2238 Medium 5.3

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.5 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certa

25 Jun 2026, 04:34 UTC View advisory →
CVE-2026-2053 High 8.3

The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently validate or restrict user-controlled input with

26 Jun 2026, 07:26 UTC View advisory →
CVE-2026-2050 High 7.8

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code

24 Jun 2026, 21:43 UTC View advisory →
CVE-2026-1869 Medium 6.5

The User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder pl

26 Jun 2026, 07:54 UTC View advisory →
CVE-2026-1840 High 8.7

The Aclara Metrum Cellular Web Interface is vulnerable to unauthorized access due to the absence of authentication controls on critical system functions. T

24 Jun 2026, 19:47 UTC View advisory →
CVE-2026-1606 Medium 4.3

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.8 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certa

25 Jun 2026, 04:34 UTC View advisory →
CVE-2026-1239 High 7.5

The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to unauthorized access of data due to a missing authoriza

01 Jul 2026, 05:35 UTC View advisory →
CVE-2026-0934 Low 3.8

GitLab has remediated an issue in GitLab EE affecting all versions from 17.9 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain

25 Jun 2026, 04:35 UTC View advisory →
CVE-2026-0864 Medium 4.1

When using the "configparser" module to write configuration files containing multi-line text values with carriage return characters (\r) the resulting file

23 Jun 2026, 17:42 UTC View advisory →
CVE-2026-0828 High 7.5

Kernel driver ProcessMonitorDriver.sys in Safetica's endpoint client x64 , versions 10.5.75.0 and 11.11.4.0, allows unprivileged user to abuse IOCTL path a

26 Jun 2026, 15:47 UTC View advisory →
CVE-2026-0685 Critical 9.8

Server side template inject (SSTI) in the expression evaluation component in Genshi Template Engine version 0.7.9 allows a remote attacker to achieve remot

26 Jun 2026, 15:45 UTC View advisory →
CVE-2025-71382 High 7.1

MuPDF before 1.27.0-rc1 contains an uncontrolled recursion vulnerability in the EPUB CSS rendering engine that allows remote attackers to cause a denial of

23 Jun 2026, 17:21 UTC View advisory →
CVE-2025-71381 Medium 6.9

Hono before 4.10.2 (fixed in 4.10.3) contains a flaw in its CORS middleware: when the origin is not set to "*", the middleware copies the Vary header from

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71376 High 7.6

picklescan before 0.0.29 fails to detect malicious pickle files using idlelib.autocomplete.AutoComplete.fetch_completions in reduce methods. Attackers can

23 Jun 2026, 12:12 UTC View advisory →
CVE-2025-71374 High 7.6

picklescan before 0.0.29 fails to detect the built-in python profile.Profile.run function when used in pickle reduce methods, allowing attackers to execute

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71371 High 7.6

picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in reduce methods. Attackers can craft pickle pay

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71370 High 7.6

picklescan before 0.0.28 fails to detect malicious torch.jit.unsupported_tensor_ops.execWrapper function calls embedded in pickle files. Attackers can craf

23 Jun 2026, 12:12 UTC View advisory →
CVE-2025-71368 High 7.6

picklescan before 0.0.30 fails to detect the doctest.debug_script function when analyzing pickle files, allowing attackers to execute arbitrary code. Remot

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71365 High 7.6

picklescan before 0.0.33 fails to detect malicious pickle files that invoke numpy.f2py.crackfortran.myeval function through the reduce method. Attackers ca

23 Jun 2026, 12:12 UTC View advisory →
CVE-2025-71363 High 7.6

picklescan before 0.0.30 fails to detect cProfile.run function calls in pickle reduce methods, allowing attackers to execute arbitrary code. Remote attacke

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71361 High 7.6

picklescan before 0.0.29 fails to detect malicious idlelib.calltip.Calltip.fetch_tip calls in pickle files, allowing remote code execution. Attackers can e

24 Jun 2026, 11:53 UTC View advisory →
CVE-2025-71358 High 7.6

picklescan before 0.0.29 fails to detect malicious pickle files that exploit idlelib.autocomplete.AutoComplete.get_entity function in reduce methods. Attac

22 Jun 2026, 21:04 UTC View advisory →
CVE-2025-71355 High 7.6

Picklescan before 0.0.25 fails to detect unsafe global functions in the Numpy library, allowing attackers to bypass static analysis and execute arbitrary c

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71354 High 7.6

picklescan before 0.0.29 fails to detect malicious pickle files that exploit idlelib.debugobj.ObjectTreeItem.SetText function in reduce methods. Attackers

24 Jun 2026, 11:53 UTC View advisory →
CVE-2025-71352 High 7.6

picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle file reduce methods, allowing attackers to exe

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71350 High 7.6

picklescan before 0.0.28 fails to detect malicious pickle files using torch.utils.collect_env.run function in reduce methods. Attackers can embed undetecte

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71349 High 7.6

picklescan before 0.0.29 fails to detect the built-in trace.Trace.run function when analyzing pickle files, allowing attackers to embed undetected maliciou

30 Jun 2026, 22:08 UTC View advisory →
CVE-2025-71344 High 7.6

picklescan before 0.0.30 (affected versions 0.0.26 and earlier) fails to detect the ensurepip._run_pip built-in function when scanning pickle files, allowi

22 Jun 2026, 21:04 UTC View advisory →
CVE-2025-71341 High 7.6

picklescan before 0.0.29 fails to detect the profile.Profile.runctx function when analyzing pickle files, allowing attackers to embed undetected malicious

23 Jun 2026, 12:12 UTC View advisory →
CVE-2025-71340 High 7.6

picklescan through 0.0.26 fails to detect malicious pickle files that invoke idlelib.pyshell.ModifiedInterpreter.runcode in __reduce__ methods. Attackers c

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71339 High 7.6

Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran._eval_length gadget in pickle __reduce__ methods, allowing arbitrary code execution. A

22 Jun 2026, 21:04 UTC View advisory →
CVE-2025-71338 Critical 10

Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that allows unauthenticated attackers to write arbitr

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71337 High 8.7

Flowise before 3.0.10 (affected versions 3.0.7 and earlier) contains an unverified email change vulnerability. An authenticated user can change the account

23 Jun 2026, 12:12 UTC View advisory →
CVE-2025-71336 Critical 9.3

Flowise before 3.0.6 (affected versions 2.2.7-patch.1 and earlier) contains an unsandboxed remote code execution vulnerability in the Custom MCP feature, w

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71335 High 8.6

Flowise before 3.0.10 (affected versions 3.0.7 and earlier) fails to invalidate existing sessions and session tokens after a user changes their password. A

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71334 Critical 9.3

Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due to missing validation that the chatflowId an

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71333 Critical 9.3

Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachments endpoint when storageType is set to local.

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71332 High 8.5

Flowise through 2.2.7 contains a SQL injection vulnerability in the importChatflows API. Due to insufficient validation of the chatflow.id value, an authen

24 Jun 2026, 11:53 UTC View advisory →
CVE-2025-71328 High 8.7

Flowise before 3.0.10 contains an unverified password change vulnerability. An authenticated user can change their account password through the account set

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71327 Critical 9.3

Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint that allows unauthenticated attackers to creat

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-71324 High 8.7

Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-upload-file and /api/v1/openai-assistants-fil

25 Jun 2026, 21:41 UTC View advisory →
CVE-2025-68075 Medium 6.5

Contributor Cross Site Scripting (XSS) in BNE Testimonials <= 2.0.8 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-68074 Medium 6.5

Contributor Cross Site Scripting (XSS) in Image Carousel <= 1.0.0.41 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-68064 High 7.5

Contributor Local File Inclusion in Goya Core < 1.0.9.4 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-68063 High 7.5

Contributor Local File Inclusion in Splash - Sport Club WordPress Theme for Basketball, Football, Hockey <= 4.4.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-68052 High 8.8

Unauthenticated Cross Site Request Forgery (CSRF) in Eagle Booking <= 1.3.4.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-66389 Unscored

GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a file-handler URI parameter to fetch_webpage. Th

22 Jun 2026, 00:00 UTC View advisory →
CVE-2025-66336 Unscored

Apache Doris MCP Server contains a SQL injection vulnerability in a metadata query path. A user-controlled database name is directly interpolated into a SQ

22 Jun 2026, 06:55 UTC View advisory →
CVE-2025-66123 Medium 5.3

Unauthenticated Insecure Direct Object References (IDOR) in BookPro <= 1.1.0 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-64719 Medium 4.9

Gogs is an open source self-hosted Git service. Prior to 0.14.3, a malicious user with rights to create a new file on a repository or wiki page can trigger

24 Jun 2026, 20:03 UTC View advisory →
CVE-2025-64637 Medium 5.3

Unauthenticated Content Injection in Auros Core <= 5.3.1 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-64636 Medium 5.3

Unauthenticated Broken Access Control in Donation Thermometer <= 2.2.7 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-64152 Critical 9.1

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 b

26 Jun 2026, 12:16 UTC View advisory →
CVE-2025-64105 Medium 5.1

FOSSBilling is a billing and client management system that automates invoicing, payments, and communication for online service businesses. Versions 0.6.21

23 Jun 2026, 19:45 UTC View advisory →
CVE-2025-63079 Medium 4.3

Contributor Broken Access Control in Live Copy Paste for Elementor <= 1.5.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-63078 Medium 4.3

Subscriber Broken Access Control in Restaurant Menu by MotoPress <= 2.4.11 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-63041 Medium 5.4

Contributor Broken Access Control in Forget About Shortcode Buttons <= 2.1.3 versions.

26 Jun 2026, 14:52 UTC View advisory →
CVE-2025-62198 Unscored

An authenticated user can perform XSS. This issue affects Apache Atlas versions 2.4.0 and earlier. Users are recommended to upgrade to version 2.5.0, which

22 Jun 2026, 07:47 UTC View advisory →
CVE-2025-62180 High 7.1

Pega Platform versions 8.3.0 through Infinity 25.1.2 are affected by an authorization weakness that may allow authenticated users to access certain additio

23 Jun 2026, 14:48 UTC View advisory →
CVE-2025-59868 Medium 5.5

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a sensitive data exposure vulnerability which could allow an attacker to exploit application in

27 Jun 2026, 01:43 UTC View advisory →
CVE-2025-55017 Critical 9.1

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 2.0.0 b

26 Jun 2026, 12:15 UTC View advisory →
CVE-2025-53648 Medium 5.4

SQL misconfiguration in the Gravitino UI, in versions 1.0.0 and below, can allow a malicious user to read or truncate files. Users are recommended to upgra

30 Jun 2026, 13:36 UTC View advisory →
CVE-2025-36372 Medium 5.5

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes Db2 Connect Server) could disclose sensitive information to

30 Jun 2026, 20:03 UTC View advisory →
CVE-2025-36359 High 8.1

IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which could allow an authenticated user to impersona

30 Jun 2026, 20:11 UTC View advisory →
CVE-2025-36336 Medium 5.9

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 transmits data in clear text that could allow an attacker to obtain sensitive information using ma

30 Jun 2026, 20:12 UTC View advisory →
CVE-2025-36333 Medium 4.3

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement

30 Jun 2026, 20:15 UTC View advisory →
CVE-2025-36328 Medium 4.3

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow a remote attacker to obtain sensitive information when a detailed technical error mess

30 Jun 2026, 20:16 UTC View advisory →
CVE-2025-36327 Medium 6.5

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to bypass security controls and perform unauthorized actions due

30 Jun 2026, 20:17 UTC View advisory →
CVE-2025-36324 Medium 4.3

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 s vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to se

30 Jun 2026, 20:18 UTC View advisory →
CVE-2025-36323 Medium 5.4

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed ar

30 Jun 2026, 20:19 UTC View advisory →
CVE-2025-36321 Medium 5.7

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when vi

30 Jun 2026, 20:19 UTC View advisory →
CVE-2025-36320 Medium 6.4

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to e

30 Jun 2026, 20:22 UTC View advisory →
CVE-2025-36319 Medium 4.3

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to cause a temporary denial using a specially crafted HTTP reque

30 Jun 2026, 20:23 UTC View advisory →
CVE-2025-33128 Medium 5.4

IBM Engineering Workflow Management 7.0.3 through 7.0.3 Interim Fix 020, and 7.1 through 7.1 Interim Fix 007 is vulnerable to cross-site scripting. This vu

22 Jun 2026, 13:20 UTC View advisory →
CVE-2025-32423 Medium 5.3

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS

26 Jun 2026, 16:09 UTC View advisory →
CVE-2025-32394 Medium 5.3

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS

26 Jun 2026, 16:11 UTC View advisory →
CVE-2025-24816 Medium 6.5

Nokia MantaRay is subject to an Improper Access Control vulnerability due to insufficient authorization within the API. Successful exploitation could allow

30 Jun 2026, 08:58 UTC View advisory →
CVE-2025-24815 High 7.8

Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type validation. Successful exploitation could allow an

30 Jun 2026, 08:55 UTC View advisory →
CVE-2025-15666 Medium 4.8

A security vulnerability has been detected in Open Asset Import Library Assimp up to 5.4.3. Affected by this vulnerability is the function Assimp::SceneCom

01 Jul 2026, 05:45 UTC View advisory →
CVE-2025-15619 Low 3.5

HCL Connections contains a broken access control vulnerability that may allow an unauthorized user to view data in a single specific scenario.

23 Jun 2026, 15:17 UTC View advisory →
CVE-2025-13162 Medium 4.1

Uncontrolled Search Path Element vulnerability in ABB Control Builder A, ABB 800xA for Advant Master. This issue affects Control Builder A: through 1.4/4;

23 Jun 2026, 16:12 UTC View advisory →
CVE-2025-12530 Medium 5.9

IBM watsonx.data intelligence 5.2.2, 5.3.0, 5.3.1, 5.3.1 through patch-1 transmits data in clear text that could allow an attacker to obtain sensitive info

30 Jun 2026, 20:34 UTC View advisory →
CVE-2025-11919 Critical 9.6

The default JVM can access files and directories under `/tmp/` including the `$TemporaryDirectory` of other users on the same cloud instance (`/tmp/UserTem

26 Jun 2026, 15:39 UTC View advisory →
CVE-2025-10268 Unscored

The Printcart Web to Print Product Designer for WooCommerce WordPress plugin through 2.4.8 is vulnerable to path traversal which makes it possible for the

26 Jun 2026, 06:00 UTC View advisory →
CVE-2025-8106 Unscored

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

25 Jun 2026 View advisory →
CVE-2025-7958 High 7.1

A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using the web i

26 Jun 2026, 10:15 UTC View advisory →
CVE-2025-7406 High 7.8

Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing administrative (local admin) privileges can

30 Jun 2026, 08:59 UTC View advisory →
CVE-2025-7386 Medium 6.8

Information exposure vulnerability in Hitachi Storage Navigator. This issue affects Hitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H, 5200H,

29 Jun 2026, 05:22 UTC View advisory →
CVE-2025-4994 High 8.7

The SafeLine SL6 and SL6+ devices integrated into elevator emergency intercom systems are vulnerable to an authentication bypass. This vulnerability allows

22 Jun 2026, 08:10 UTC View advisory →
CVE-2025-2902 High 8.3

Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platform E390,

29 Jun 2026, 05:52 UTC View advisory →
CVE-2025-2669 Medium 6

IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data versions 4.8, 5.0, 5.1, 5.2, 5.3 could allow a privileged user to perform operations

22 Jun 2026, 13:18 UTC View advisory →
CVE-2025-0824 Low 3.7

Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual Storage Pla

29 Jun 2026, 05:34 UTC View advisory →
CVE-2024-54178 Medium 6.5

IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data versions 4.8,5.0,5.1,5.2,5.3 could allow an authenticated user to cause a denial of s

22 Jun 2026, 13:15 UTC View advisory →
CVE-2024-51454 Medium 6.5

IBM Engineering Workflow Management 7.0.2 through 7.0.2 Interim Fix 035, 7.0.3 through 7.0.3 Interim Fix 017, and 7.1 through 7.1 Interim Fix 004 is vulner

22 Jun 2026, 14:33 UTC View advisory →
CVE-2024-23581 Medium 6.7

The HCL Traveler for Microsoft Outlook libraries are being flagged as potentially malicious software or an unrecognized application.

26 Jun 2026, 20:39 UTC View advisory →
CVE-2023-54365 High 8.7

Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handling inherited from the Go standard library's

23 Jun 2026, 12:12 UTC View advisory →
CVE-2023-45796 High 8.1

A stored cross-site scripting vulnerability in the Runtime component of Pilz PASvisu before 1.14.1 and PMI v8xx up to and including 2.0.33992 allows a low-

22 Jun 2026, 09:04 UTC View advisory →
CVE-2023-45795 High 7.8

A cross-site scripting vulnerability in the Builder Component of Pilz PASvisu before 1.14.1 allows a local unauthenticated attacker to inject malicious jav

22 Jun 2026, 09:06 UTC View advisory →
CVE-2023-37524 High 7.7

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being out of service. Since .NET Framework 4.5 has re

27 Jun 2026, 01:19 UTC View advisory →
CVE-2023-33854 Medium 5.3

IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data versions 4.8, 5.0, 5.1, 5.2, and 5.3 could allow an authenticated user to bypass clie

22 Jun 2026, 14:31 UTC View advisory →
CVE-2023-20572 Medium 5.6

An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code,

26 Jun 2026, 15:53 UTC View advisory →
CVE-2023-20540 Low 1.8

An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code,

26 Jun 2026, 15:44 UTC View advisory →
CVE-2021-47987 High 7.7

Parse Server before 4.10.0 was affected by a supply chain incident in which incorrect version tags were pushed to the official repository pointing to an un

25 Jun 2026, 21:41 UTC View advisory →
CVE-2021-47986 High 7.7

Parse Server before 4.10.0 contains a supply chain vulnerability where incorrect version tags were pushed to the repository linking to unreviewed code in a

25 Jun 2026, 21:41 UTC View advisory →
CVE-2020-37256 Medium 5.1

Grav before 1.6.30 contains a cross-site scripting vulnerability in the Admin plugin page editor default security configuration. Privileged users with page

25 Jun 2026, 21:41 UTC View advisory →
CVE-2020-9713 Medium 5.5

Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier are affected by an

23 Jun 2026, 17:47 UTC View advisory →
CVE-2020-9711 Medium 5.5

Acrobat Reader versions 2020.009.20074, 2020.001.30002, 2017.011.30171, 2015.006.30523 and earlier are affected by an out-of-bounds read vulnerability that

23 Jun 2026, 17:58 UTC View advisory →
CVE-2020-9695 High 7.8

Acrobat Reader versions 2020.009.20074, 2020.001.30002, 2017.011.30171, 2015.006.30523 and earlier are affected by an out-of-bounds write vulnerability tha

23 Jun 2026, 18:00 UTC View advisory →