CVE Field Guide

Critical CVEs

CVE Title Updated Score
CVE-2025-27462 WinPVDrivers: Excessive permissions on user-exposed devices 09.07.2026 9.4
CVE-2025-27463 WinPVDrivers: Excessive permissions on user-exposed devices 09.07.2026 9.4
CVE-2025-27464 WinPVDrivers: Excessive permissions on user-exposed devices 09.07.2026 9.4
CVE-2025-58146 XAPI UTF-8 string handling 09.07.2026 9.4
CVE-2025-58151 varstored: TOCTOU issues with mapped guest memory 09.07.2026 9.4
CVE-2026-23556 oxenstored keeps quota related use counts across domain destruction 09.07.2026 9.4
CVE-2026-23559 Multiple RBAC issues in XAPI 09.07.2026 9.4
CVE-2026-23560 Multiple RBAC issues in XAPI 09.07.2026 9.4
CVE-2026-23561 Multiple RBAC issues in XAPI 09.07.2026 9.4
CVE-2026-23562 Multiple RBAC issues in XAPI 09.07.2026 9.4
CVE-2026-42486 Multiple RBAC issues in XAPI 09.07.2026 9.4
CVE-2026-56292 Joomla Extension - acymailing.com - SQL Injection in AcyMailing extension < 10.11.1 09.07.2026 9.2
CVE-2026-56291 Joomla Extension - balbooa.com - Unauthenticated file upload in Balbooa Forms extension < 2.4.1 09.07.2026 10
CVE-2026-15158 Blocksy Companion <= 2.1.46 - Unauthenticated Arbitrary File Upload via 'blc-review-images[]' Parameter 09.07.2026 9.8
CVE-2026-2342 XSS in Oceanicsoft's ValeApp 09.07.2026 9.3
CVE-2026-5955 SQLi in Inrove Software's BiEticaret 09.07.2026 9.8
CVE-2026-14245 miniOrange OTP Login, Verification and SMS Notifications <= 5.5.1 - Authentication Bypass to Administrator Account Takeover via 'username_b' Parameter 09.07.2026 9.8
CVE-2026-47646 Dynamics 365 Customer Voice Spoofing Vulnerability 08.07.2026 9.3
CVE-2026-54782 CoreWCF: Authentication bypass in CoreWCF SAML 1.1 / 2.0 token signature validation 09.07.2026 10
CVE-2026-44024 Fluentd: Remote Code Execution (RCE) via Arbitrary File Write in `${tag}` Placeholder 09.07.2026 9.8
CVE-2026-54527 JupyterLab Git: Stored XSS leading to RCE 09.07.2026 9.3
CVE-2026-60104 Bitwarden Server < 2026.6.0 Authorization Bypass via Admin Auth Request 09.07.2026 9.3
CVE-2026-59702 repomix - Server-Side Request Forgery via Unvalidated Repository URLs in POST /api/pack 08.07.2026 9.2
CVE-2026-59873 node-tar: Decompression/parse DoS via unlimited input 08.07.2026 9.2
CVE-2026-9074 IBM API Connect SQL Injection 09.07.2026 9.1
CVE-2026-15062 SQL Injection in Snowflake Snowpark Python SDK 08.07.2026 9.6
CVE-2026-54061 Dgraph Alpha group stores can be replaced via unauthenticated external snapshot import 08.07.2026 9.1
CVE-2026-58480 Blocksy Companion Pro < 2.1.47 Unauthenticated File Upload via save_attachments 08.07.2026 9.2
CVE-2026-8307 SQLi in Webbeyaz's Mediküm Web 09.07.2026 9.8
CVE-2026-56000 xorg-x11-server / xwayland GLX contextTags Use-After-Free in CommonMakeCurrent() 08.07.2026 9
CVE-2026-9695 Improper Authentication vulnerability affecting DELMIA Apriso from Release 2020 through Release 2026 08.07.2026 9.8
CVE-2026-12153 WP Learn Manager <= 1.1.8 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation and Activation via jslearnmanager_ajax AJAX Action 08.07.2026 9.8
CVE-2026-14487 Simple Coherent Form <= 2.4.13 - Unauthenticated Arbitrary File Deletion via 'id' Parameter 08.07.2026 9.1
CVE-2026-9701 Eventer <= 4.4.2 - Insecure Password Reset Mechanism to Unauthenticated Privilege Escalation 08.07.2026 9.8
CVE-2026-56843 08.07.2026 9.9
CVE-2026-59705 mem0 - OpenMemory API Unauthenticated Access via Memory Endpoints 08.07.2026 9.3
CVE-2026-46354 Coder: PKCS#7 signature bypass in Azure instance identity allows unauthenticated agent token theft 08.07.2026 9.1
CVE-2026-59706 mem0 - Server-Side Request Forgery and Plaintext API Key Exposure via Unauthenticated Config Endpoints 08.07.2026 9.2
CVE-2026-58473 Cognee < 1.2.0 Unauthorized LLM Configuration Overwrite via /api/v1/settings 08.07.2026 9.3
CVE-2026-59707 LocalAI - Server-Side Request Forgery via POST /models/apply 08.07.2026 9.2
CVE-2026-59800 9Router < 0.4.44 - OS Command Injection via sudoPassword Parameter in Tailscale Install Endpoint 07.07.2026 9.2
CVE-2026-13019 Missing Authentication 08.07.2026 9.8
CVE-2026-53481 08.07.2026 9.8
CVE-2026-53483 08.07.2026 9.8
CVE-2026-14345 WPFunnels <= 3.12.7 - Unauthenticated Remote Code Execution via 'postData' Parameter 08.07.2026 9.8
CVE-2026-34037 Cross-Tenant Resource Cloning via Broken Object-Level Authorization in cloneTo() 07.07.2026 9.9
CVE-2026-34047 Coolify: WebSocket Endpoint Access Control Flaw Leading to Remote Code Execution 07.07.2026 9.9
CVE-2026-34048 Coolify: Missing authorization on terminal websocket bootstrap routes allows low-privileged members to execute commands on team servers 07.07.2026 9.9
CVE-2026-34038 Coolify authenticated remote command injection leading to RCE and secret exfiltration 07.07.2026 9.9
CVE-2026-42341 FOSSBilling has an unauthenticated payment bypass via IPN callback forgery 07.07.2026 9.2
CVE-2026-57571 Crawl4AI arbitrary file write via download filename path traversal 07.07.2026 9.6
CVE-2026-57572 Crawl4AI: Unauthenticated RCE via Chromium launch-argument injection in browser_config.extra_args 08.07.2026 10
CVE-2026-9181 Directory Traversal in ArcGIS Server 08.07.2026 9.8
CVE-2026-9182 Unvalidated File Upload vulnerability in ArcGIS Server. 08.07.2026 9.8
CVE-2026-48614 06.07.2026 9.9
CVE-2026-40138 Critical Pre-Authentication Vulnerability in BeyondTrust Remote Support and Privileged Remote Access 07.07.2026 9.2
CVE-2026-40139 Critical Pre-Authentication Vulnerability in BeyondTrust Remote Support and Privileged Remote Access 07.07.2026 9.2
CVE-2026-48316 ColdFusion | Improper Input Validation (CWE-20) 07.07.2026 10
CVE-2025-53827 ownCloud Core: Updater has an exposed dangerous method or function 08.07.2026 9.1
CVE-2025-53830 Anti-Virus for ownCloud 10 is vulnerable to Server-Side Request Forgery (SSRF) 08.07.2026 9.1
CVE-2026-12686 Incorrect authorisation in Adiss’s Biloop 06.07.2026 9.3
CVE-2026-6900 Improper Certificate Validation 06.07.2026 9.1
CVE-2026-14807 PROG MIS|ERP App - Use of Hard-coded Credentials 06.07.2026 9.3
CVE-2026-14808 PROG MIS|Prog Management System - Exposure of Sensitive Information 06.07.2026 9.3
CVE-2026-59509 Unauthenticated arbitrary MongoDB collection read in cve-search 06.07.2026 9.2
CVE-2026-58426 Gitea Actions Artifacts V4 signed URL HMAC ambiguity allows cross-repository artifact read and cross-task upload-state write 06.07.2026 9.6
CVE-2026-20896 Gitea Docker image trusts spoofable reverse-proxy headers by default 07.07.2026 9.8
CVE-2026-22874 Gitea webhook and migration allow-list filtering permits SSRF 07.07.2026 9.6
CVE-2026-58289 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability 08.07.2026 9
CVE-2026-4321 SQLi in Raera's Destekz 06.07.2026 9.8
CVE-2026-14544 Hplip: incomplete fix for cve-2026-8631 06.07.2026 9.8
CVE-2026-9725 Printcart Web to Print Product Designer for WooCommerce <= 2.5.2 - Unauthenticated Arbitrary File Deletion 07.07.2026 9.1
CVE-2026-13768 Gardyn IoT Hub Use of Hard-coded Credentials 06.07.2026 9.5
CVE-2026-13368 WatchGuard Firebox Race Condition and Use-After-Free in Mobile VPN with IKEv2 LDAP Authentication 07.07.2026 9.2
CVE-2026-41106 Microsoft 365 Copilot Elevation of Privilege Vulnerability 08.07.2026 9.3
CVE-2026-45499 Azure OpenAI Elevation of Privilege Vulnerability 08.07.2026 9.9
CVE-2026-57100 Microsoft Entra Provisioning Service Elevation of Privilege Vulnerability 08.07.2026 9.9
CVE-2026-52830 fast-mcp-telegram: Bearer token path traversal bypasses reserved Telegram session protection 06.07.2026 9.4
CVE-2026-58466 AutoBangumi < 3.2.8 - Hard-coded Default Credentials via add_default_user() 06.07.2026 9.3
CVE-2026-59099 Apereo CAS 7.3.0 < 8.0.0-RC6 - AES-GCM Nonce Reuse Information Disclosure 06.07.2026 9.3
CVE-2022-50973 Yonyou KSOA 9.0 Unauthenticated File Upload RCE via ImageUpload Servlet 02.07.2026 9.3
CVE-2024-14037 Redsea Cloud eHR Unauthenticated File Upload RCE via PtFjk.mob 02.07.2026 9.3

Latest Updates

CVE Title Updated Score
CVE-2025-27462 WinPVDrivers: Excessive permissions on user-exposed devices 09.07.2026
CVE-2025-27463 WinPVDrivers: Excessive permissions on user-exposed devices 09.07.2026
CVE-2025-27464 WinPVDrivers: Excessive permissions on user-exposed devices 09.07.2026
CVE-2025-58146 XAPI UTF-8 string handling 09.07.2026
CVE-2025-58151 varstored: TOCTOU issues with mapped guest memory 09.07.2026
CVE-2026-11404 Cesanta Mongoose < 7.22 Out-of-Bounds Read in MG_TLS_BUILTIN ClientHello Session ID Parsing 09.07.2026
CVE-2026-15187 enquirer Public Package API Enquirer.set prototype pollution 09.07.2026
CVE-2026-15188 manjurulhoque django-job-portal Employee Dashboard Endpoint views.py EditEmployeeProfileAPIView access control 09.07.2026
CVE-2026-15189 aerostackdev aerostack-mcp mcp-whatsapp upload_media server-side request forgery 09.07.2026
CVE-2026-23556 oxenstored keeps quota related use counts across domain destruction 09.07.2026
CVE-2026-23559 Multiple RBAC issues in XAPI 09.07.2026
CVE-2026-23560 Multiple RBAC issues in XAPI 09.07.2026
CVE-2026-23561 Multiple RBAC issues in XAPI 09.07.2026
CVE-2026-23562 Multiple RBAC issues in XAPI 09.07.2026
CVE-2026-42486 Multiple RBAC issues in XAPI 09.07.2026
CVE-2026-58125 09.07.2026
CVE-2026-59206 n8n: Prototype Pollution via Workflow Credentials Leads to Unauthenticated User and Project Enumeration 09.07.2026
CVE-2026-59207 n8n: "Allowed HTTP Request Domains" Restriction Bypass via AI Agents MCP Connector 09.07.2026
CVE-2026-59208 n8n: Cross-Issuer Token Exchange Account Binding via Subject-Only Identity Resolution 09.07.2026
CVE-2026-61474 MISP: Improper sharing group authorization check when adding attributes 09.07.2026
CVE-2026-54798 09.07.2026 6.5
CVE-2026-54799 09.07.2026 6.7
CVE-2026-54800 09.07.2026 4.8
CVE-2026-54801 09.07.2026 7.2
CVE-2026-56292 Joomla Extension - acymailing.com - SQL Injection in AcyMailing extension < 10.11.1 09.07.2026
CVE-2026-5005 Stored XSS in Twiser's OKRs & Goals 09.07.2026 5.4
CVE-2026-60108 Zeek < 8.0.9 Uncontrolled Memory Consumption DoS via FTP Analyzer 09.07.2026
CVE-2026-60109 Zeek < 8.0.9 Null Pointer Dereference DoS via Kerberos KRB_ERROR Parsing 09.07.2026
CVE-2026-12116 CVE-2026-12116 09.07.2026
CVE-2026-12593 Privilege escalation via forged API token creation in Axivion Dashboard OIDC/OAuth2/SSO subsystem 09.07.2026
CVE-2026-12879 Cross-Tenant Data Exfiltration in Apigee via BigQuery Confused Deputy 09.07.2026
CVE-2026-14261 CVE-2026-14261 09.07.2026
CVE-2026-15185 GPAC MP4Box vobsub.c vobsub_read_idx out-of-bounds 09.07.2026
CVE-2026-15186 macrozheng mall Portal Endpoint create resource injection 09.07.2026
CVE-2026-4256 LDAP Injection in PEAKUP's PassGate 09.07.2026 8.2
CVE-2026-60094 Vinchin Backup & Recovery 9.0.0.86562 Heap Buffer Overflow via agentlink_server 09.07.2026
CVE-2026-60095 Vinchin Backup & Recovery 9.0.0.86562 Stack Buffer Overflow via ModuleHandShake 09.07.2026
CVE-2026-15184 GNU LibreDWG DWG File dwg.c dwg_next_entity null pointer dereference 09.07.2026
CVE-2026-15182 GNU LibreDWG BMP Image dwg.c dwg_bmp heap-based overflow 09.07.2026
CVE-2026-9253 WP Cost Estimation & Payment Forms Builder (E&P Forms) <= 10.5.97 - Unauthenticated Stored Cross-Site Scripting via 'customerInfos' Parameter 09.07.2026 7.2
CVE-2026-12428 Blocks for ACF Fields <= 1.6.2 - Missing Authorization to Authenticated (Author+) Arbitrary ACF Field Value Disclosure via 'id' Parameter 09.07.2026 6.5
CVE-2026-12590 body-parser vulnerable to denial of service when invalid limit value silently disables size enforcement 09.07.2026 3.7
CVE-2026-13441 EventPrime <= 4.3.4.2 - Unauthenticated Stored Cross-Site Scripting via 'new_event_type_background_color' Parameter 09.07.2026 7.2
CVE-2026-14372 Bit Form <= 3.1.1 - Authenticated (Subscriber+) Arbitrary File Deletion via '_old' Parameter 09.07.2026 7.1
CVE-2026-4275 Divi Torque Lite <= 4.2.3 - Cross-Site Request Forgery to Arbitrary Plugin Installation via 'install_plugin' REST Endpoint 09.07.2026 8.8
CVE-2026-4298 DSGVO All in one for WP <= 4.9 - Missing Authorization to Authenticated (Subscriber+) Settings Reset 09.07.2026 4.3
CVE-2026-50644 SQL Injection in SOPlanning Audit Retention Configuration 09.07.2026
CVE-2026-56288 NULL Pointer Dereference in GNU patch 09.07.2026
CVE-2026-56289 Loop with Unreachable Exit Condition in GNU patch 09.07.2026
CVE-2026-56291 Joomla Extension - balbooa.com - Unauthenticated file upload in Balbooa Forms extension < 2.4.1 09.07.2026
CVE-2026-58303 09.07.2026 6.1
CVE-2026-58304 09.07.2026 6.1
CVE-2026-58305 09.07.2026 6.1
CVE-2026-58306 09.07.2026 6.1
CVE-2026-58307 09.07.2026 6.1
CVE-2026-59691 Gstreamer: gstreamer: rfbsrc/librfb hextile heap out-of-bounds write with 16bpp framebuffer 09.07.2026
CVE-2026-59692 Gstreamer: gstreamer: dtls certificate subject dn stack buffer overflow in openssl_verify_callback 09.07.2026
CVE-2026-9021 Easy Invoice <= 2.1.19 - Unauthenticated Arbitrary Quote Accept/Decline and Invoice Creation via easy_invoice_accept_quote / easy_invoice_decline_quote AJAX Actions 09.07.2026 5.3
CVE-2026-9027 CorvusPay WooCommerce Payment Gateway <= 2.7.4 - Unauthenticated Improper Verification of Cryptographic Signature to Payment Bypass via /wp-json/corvuspay/success/ REST Endpoint 09.07.2026 5.3
CVE-2026-9028 CorvusPay WooCommerce Payment Gateway <= 2.7.4 - Missing Authorization to Unauthenticated Arbitrary Order Cancellation via 'order_number' Parameter 09.07.2026 5.3
CVE-2026-9235 DHL eCommerce (Benelux) for WooCommerce <= 2.2.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Shipping Label Creation and Deletion via dhlpwc_label_create and dhlpwc_label_delete AJAX Actions 09.07.2026 4.3
CVE-2026-9237 Employee, Leave and Recruitment Management System <= 1.2.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Job Deletion via crewhrm_singleJobAction AJAX Action 09.07.2026 4.3
CVE-2026-9240 Colissimo Officiel : Méthodes de livraison pour WooCommerce <= 2.9.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Order Shipment Modification via lpc_order_affect AJAX action 09.07.2026 4.3
CVE-2026-12433 Hydra Booking <= 1.2.1 - Authenticated (Custom+) Insecure Direct Object Reference to Sensitive Information Exposure via 'booking_id' Parameter 09.07.2026 4.3
CVE-2026-15158 Blocksy Companion <= 2.1.46 - Unauthenticated Arbitrary File Upload via 'blc-review-images[]' Parameter 09.07.2026 9.8
CVE-2026-1365 Information Disclosure in Sayax's OSOS 09.07.2026 6.5
CVE-2026-1989 IDOR in PAVO Inc.'s PAVO Pay 09.07.2026 7.5
CVE-2026-2342 XSS in Oceanicsoft's ValeApp 09.07.2026 9.3
CVE-2026-56458 HCL DevOps Deploy is susceptible to a Permissive Cross-domain Security Policy with Untrusted Domains 09.07.2026 5.4
CVE-2026-56459 HCL DevOps Deploy / HCL Launch is susceptible to sensitive information disclosure 09.07.2026 6.2
CVE-2026-56460 HCL DevOps Deploy / HCL Launch is susceptible to an Insertion of Sensitive Information Into Sent Data vulnerability 09.07.2026 6.5
CVE-2026-5793 XSS in Inrove Software's BiEticaret 09.07.2026 6.1
CVE-2026-5955 SQLi in Inrove Software's BiEticaret 09.07.2026 9.8
CVE-2026-11359 Memberships and User Profiles for WooCommerce <= 3.4 - Missing Authorization to Authenticated (Subscriber+) ProfileGrid Plugin Installation and Activation 09.07.2026 4.3
CVE-2026-12170 AcyMailing <= 10.10.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'alignment' Attribute 09.07.2026 6.4
CVE-2026-12406 User Frontend <= 4.3.7 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion via 'attach_id' Parameter 09.07.2026 5.3
CVE-2026-12418 User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration <= 4.3.7 - Insecure Direct Object Reference to Unauthenticated Arbitrary Post Modification via 'wpuf_files_data' Parameter 09.07.2026 5.3
CVE-2026-13011 ERP: Complete HR, Accounting & CRM Suite with Recruitment and WooCommerce CRM Support <= 1.17.5 - Authenticated (HR Manager+) SQL Injection via 'orderby' Parameter 09.07.2026 6.5
CVE-2026-13080 WPFunnels <= 3.12.7 - Authenticated (Administrator+) Local File Inclusion via 'logKey' Parameter 09.07.2026 6.6
CVE-2026-13253 Post Grid Gutenberg Blocks for News, Magazines, Blog Websites <= 5.0.31 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'moreResultsText' Block Attribute 09.07.2026 6.4
CVE-2026-13334 Mang Board WP <= 2.3.4 - Reflected Cross-Site Scripting via 'stag' Parameter 09.07.2026 6.1
CVE-2026-13450 GamiPress <= 7.9.4 - Insecure Direct Object Reference to Unauthenticated Sensitive Information Disclosure via 'access' Parameter 09.07.2026 5.3
CVE-2026-13771 Customer Reviews for WooCommerce <= 5.113.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'color' Shortcode Attribute 09.07.2026 6.4
CVE-2026-14245 miniOrange OTP Login, Verification and SMS Notifications <= 5.5.1 - Authentication Bypass to Administrator Account Takeover via 'username_b' Parameter 09.07.2026 9.8
CVE-2026-14342 Mail Mint <= 1.24.2 - Authenticated (Administrator+) SQL Injection via 'contact_ids' Parameter 09.07.2026 4.9
CVE-2026-14343 Download Manager <= 3.3.61 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'note_before' and 'note_after' Shortcode Attributes 09.07.2026 6.4
CVE-2026-15000 Connect Contact Form 7 and Mailchimp <= 0.9.78.06 - Unauthenticated Stored Cross-Site Scripting via Mailchimp Merge Field Values 09.07.2026 7.2
CVE-2026-31981 HTML injection in Diagram tab and Graph view in Guardian/CMC before 26.2.0 09.07.2026
CVE-2026-31982 Open Redirect in SAML Single Sign-On in Guardian/CMC before 26.2.0 09.07.2026
CVE-2026-31983 Missing authentication in SSH keys synchronization endpoint in Guardian/CMC before 26.2.0 09.07.2026
CVE-2026-31984 DoS through oversized audit log entries in Guardian/CMC before 26.2.0 09.07.2026
CVE-2026-31985 Disabled and non-configurable TLS certificate validation in n2os-tui when connecting the Remote Collector to a Guardian or CMC, in Remote Collector before v26.2.0 09.07.2026
CVE-2026-33390 Incorrect privilege assignment for Arc sensors in Guardian/CMC before 26.2.0 09.07.2026
CVE-2026-4653 Block, Suspend, Report for BuddyPress <= 3.6.4 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'link' Parameter 09.07.2026 6.4
CVE-2026-57111 Apache Helix REST: Permissive CORS Configuration in REST API Allows Unrestricted Cross-Origin 09.07.2026
CVE-2026-59269 Privilege Escalation via Active Directory LDAP injection in Pinniped Supervisor can be executed by an attacker who can edit LDAP Group DN entries 09.07.2026 3.8
CVE-2026-6910 Bookero.pl <= 2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes 09.07.2026 6.4
CVE-2026-7558 Age Verification & Identity Verification by Token of Trust <= 4.0.2 - Missing Authorization to Unauthenticated Information Exposure via 'tot_export_table' Parameter 09.07.2026 5.3
CVE-2026-8848 Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder <= 1.22.0 - Missing Authorization to Authenticated (Editor+) Arbitrary Plugin Installation 09.07.2026 7.2
CVE-2026-8996 Backup and Staging by WP Time Capsule <= 1.22.26 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure via download_recent_decrypted_file_wptc Function 09.07.2026 6.5
CVE-2026-11571 Everest Forms < 3.5.0 - Unauthenticated Sensitive Information Exposure via Residual CSV Artifacts 09.07.2026
CVE-2026-11869 WP DSGVO Tools (GDPR) < 3.1.40 - Unauthenticated Sensitive Information Disclosure via Subject Access Request 09.07.2026
CVE-2026-11875 WP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated Support Ticket Access via Session Cookie Forgery 09.07.2026
CVE-2026-12270 Everest Forms < 3.5.0 - Unauthenticated Missing Authorization via Site Assistant REST Endpoints 09.07.2026
CVE-2026-12516 Fediverse Embeds < 1.5.8 - Unauthenticated SSRF via Media Proxy 09.07.2026
CVE-2026-12517 Fediverse Embeds < 1.5.8 - Unauthenticated SSRF via Site Info Endpoint 09.07.2026
CVE-2026-47826 blobs.yaml Path Traversal Allows File Writes 09.07.2026
CVE-2026-47828 Missing TLS Certificate Verification in BOSH CLI Allows Root Code Execution via Man-in-the-Middle Credential Replay 09.07.2026
CVE-2026-47829 Argument Injection in BOSH CLI Allows Local Command Execution on Operator Workstations via Compromised Director 09.07.2026
CVE-2026-47830 Incorrect Permission Assignment Allows Local Privilege Escalation to SYSTEM via Executable Overwrite 09.07.2026
CVE-2026-47831 Cryptographically Weak Password Generation in bosh-windows-stemcell-builder Allows Remote SSH Brute-Force Attacks 09.07.2026
CVE-2026-47840 LDAP StartTLS unconditionally disables hostname verification 09.07.2026 7.5
CVE-2026-41857 BOSH CLI Shell Injection 09.07.2026
CVE-2026-5523 Divi Form Builder <= 5.1.8 - Authenticated (Subscriber+) Missing Authorization to Privilege Escalation via User Profile Update Form 09.07.2026 8.8
CVE-2026-15138 tumf mcp-text-editor text_editor.py _validate_file_path path traversal 09.07.2026
CVE-2026-15137 code-projects Interview Management System View.php sql injection 09.07.2026
CVE-2026-15135 code-projects Online Food Order System edit_food_items.php sql injection 09.07.2026
CVE-2026-47646 Dynamics 365 Customer Voice Spoofing Vulnerability 08.07.2026 9.3
CVE-2026-15134 CodeAstro Simple Online Leave Management System index.php sql injection 09.07.2026
CVE-2026-15107 09.07.2026
CVE-2026-15108 09.07.2026
CVE-2026-15109 09.07.2026
CVE-2026-15110 09.07.2026
CVE-2026-15111 09.07.2026
CVE-2026-15112 09.07.2026
CVE-2026-15113 09.07.2026
CVE-2026-15114 09.07.2026
CVE-2026-15115 09.07.2026
CVE-2026-15116 09.07.2026
CVE-2026-15117 09.07.2026
CVE-2026-15118 09.07.2026
CVE-2026-15119 09.07.2026
CVE-2026-15120 09.07.2026
CVE-2026-15121 09.07.2026
CVE-2026-15122 09.07.2026
CVE-2026-15123 09.07.2026
CVE-2026-15124 09.07.2026
CVE-2026-15125 09.07.2026
CVE-2026-15126 09.07.2026
CVE-2026-15127 09.07.2026
CVE-2026-15128 09.07.2026
CVE-2026-15129 09.07.2026
CVE-2026-15130 09.07.2026
CVE-2026-15131 09.07.2026
CVE-2026-15132 09.07.2026
CVE-2026-15133 09.07.2026
CVE-2026-15105 davenardella snap7 ReadVar Request s7_server.cpp PerformFunctionRead deserialization 09.07.2026
CVE-2026-54499 Stanza: Remote Code Execution via Unsafe Pickle Deserialization in Model Loaders 09.07.2026 7.5
CVE-2026-54772 CoreWCF: Pre-authentication infinite-loop CPU exhaustion in CoreWCF net.tcp / net.pipe / net.uds framing handshake 09.07.2026 7.5
CVE-2026-54773 CoreWCF: WS-Security signature substitution via document-wide Signature lookup 08.07.2026 5.9
CVE-2026-54774 CoreWCF: SamlSerializer skips SignatureValue verification when SAML signing token is not an X.509 certificate 09.07.2026 7.4
CVE-2026-54775 CoreWCF: Kafka consume pump halts permanently on a Kafka tombstone (null-value record), causing persistent endpoint denial of service. 09.07.2026 6.5
CVE-2026-54776 CoreWCF: Unix Domain Socket PosixIdentity transport accepts connections that skip the security upgrade 09.07.2026 4.4
CVE-2026-54778 CoreWCF: UnixDomainSocket Non-Reentrant POSIX Identity Resolution 09.07.2026 6.2
CVE-2026-54779 CoreWCF: SAML token replay protection is inoperative 09.07.2026 5.9
CVE-2026-54780 CoreWCF: WS-Security Reference DigestMethod Algorithm-Suite Bypass 08.07.2026 3.7
CVE-2026-54781 CoreWCF: SAML SubjectConfirmation methods and holder-of-key proof keys are not enforced 09.07.2026 7.4
CVE-2026-54782 CoreWCF: Authentication bypass in CoreWCF SAML 1.1 / 2.0 token signature validation 09.07.2026 10
CVE-2026-54783 CoreWCF: XML Signature Wrapping in WS-Security endorsing/supporting signature verification allows replay of captured signed messages 09.07.2026 7.4
CVE-2026-54784 CoreWCF: SPNEGO SecurityContextToken proof key wrapped without confidentiality 09.07.2026 7.4
CVE-2026-59723 Cline: Cross-Origin WebSocket Hijacking in Cline Hub Dashboard (`/browser` endpoint) 09.07.2026 8.8
CVE-2026-15168 Use of Uninitialized Variable in Wireshark 09.07.2026 2.5
CVE-2026-31309 09.07.2026
CVE-2026-35552 09.07.2026
CVE-2026-39178 09.07.2026
CVE-2026-39179 09.07.2026
CVE-2026-51535 09.07.2026
CVE-2026-52200 09.07.2026
CVE-2026-54777 CoreWCF NetNamedPipe transport accepts attach to a pre-existing named pipe instance 09.07.2026 6.5
CVE-2026-5922 Poly Voice – Potential Unauthorized Modification of WebUI using XSS Attack 09.07.2026
CVE-2026-10037 Sandbox Escape in Ubuntu OpenJDK Packages via xdg-desktop-portal 09.07.2026 8.8
CVE-2026-44024 Fluentd: Remote Code Execution (RCE) via Arbitrary File Write in `${tag}` Placeholder 09.07.2026 9.8
CVE-2026-44025 Fluentd: Exposure of Sensitive Information via Monitor Agent API 09.07.2026 7.5
CVE-2026-44160 Fluentd: Denial of Service (DoS) via Gzip Decompression Bomb in `in_http` and `in_forward` 08.07.2026 7.5
CVE-2026-44161 Fluentd: Server-Side Request Forgery (SSRF) via Placeholder Expansion in `out_http` 09.07.2026 7.2
CVE-2026-48492 Snipe-IT's selectlist visibility is too permissive 09.07.2026
CVE-2026-55470 HAPI FHIR: DSTU2 FHIRPathEngine.matches() missing RegexTimeout protection allows ReDoS 09.07.2026 7.5
CVE-2026-55471 HAPI FHIR: XXE in XsltUtilities.saxonTransform via unhardened Saxon TransformerFactory 09.07.2026
CVE-2026-55830 RestrictedPython guard hooks can be shadowed via positional-only arguments 09.07.2026 8.3
CVE-2026-55849 @cyclonedx/cyclonedx-npm: Shell Injection via Unsanitized `--workspace` Argument 08.07.2026
CVE-2026-55877 Symfony UX: XSS in symfony/ux-icons via unsanitized SVG content in local files and Iconify on-demand responses 09.07.2026 6.1
CVE-2026-55878 Symfony: Path Traversal in symfony/ux-toolkit Allows Arbitrary File Write and Read via Crafted Recipe Manifest 09.07.2026 7.8
CVE-2026-5923 Poly Voice – Potential Unauthorized Modification of WebUI using CSRF Attack 09.07.2026
CVE-2025-12506 Use of Incorrectly-Resolved Name or Reference in GitLab 09.07.2026 3.5
CVE-2026-11827 Insufficiently Protected Credentials in GitLab 09.07.2026 4.9
CVE-2026-13151 Incorrect Authorization in GitLab 09.07.2026 2.7
CVE-2026-13320 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 09.07.2026 7.3
CVE-2026-15163 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark 09.07.2026 5.5
CVE-2026-15164 Heap-based Buffer Overflow in ciscodump 09.07.2026 5.5
CVE-2026-15165 Heap-based Buffer Overflow in Wireshark 09.07.2026 5.5
CVE-2026-15166 Stack-based Buffer Overflow in Wireshark 09.07.2026 5.5
CVE-2026-15167 Stack-based Buffer Overflow in Wireshark 09.07.2026 7.5
CVE-2026-15169 Heap-based Buffer Overflow in Wireshark 09.07.2026 5.5
CVE-2026-15170 Heap-based Buffer Overflow in Wireshark 09.07.2026 5.5
CVE-2026-15171 NULL Pointer Dereference in Wireshark 09.07.2026 5.5
CVE-2026-15172 Unchecked Input for Loop Condition in Wireshark 09.07.2026 5.5
CVE-2026-15173 Heap-based Buffer Overflow in Wireshark 09.07.2026 4.7
CVE-2026-15174 Heap-based Buffer Overflow in Wireshark 09.07.2026 5.5
CVE-2026-35210 OpenCTI: Authorization Bypass via `synchronized-upsert` HTTP Header Injection 09.07.2026 7.1
CVE-2026-35211 OpenCTI: Elasticsearch Painless Script Injection via GraphQL `script` filter operator allows authenticated user to exfiltrate data and cause DoS 08.07.2026 6.5
CVE-2026-49866 libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays 09.07.2026 7.5
CVE-2026-54527 JupyterLab Git: Stored XSS leading to RCE 09.07.2026
CVE-2026-54528 jupyterlab-git excluded_paths Case-Sensitivity Bypass Allows Reading Excluded Directories 09.07.2026 7.1
CVE-2026-55778 Parse Server: Stored XSS via non-standard file extension bypassing file upload extension blocklist 09.07.2026
CVE-2026-57480 Parse Server: Denial of service via exponential-time processing of deeply nested query operators 09.07.2026
CVE-2026-57481 Parse Server: LiveQuery discloses object data to a subscriber across an ACL read-access change 08.07.2026
CVE-2026-58191 Appium: Reflected XSS / arbitrary JS in @appium/base-driver /test/guinea-pig* routes 09.07.2026 6.5
CVE-2026-58192 Appium: Unauthenticated arbitrary file/directory deletion in @appium/storage-plugin 09.07.2026 8.6
CVE-2026-58525 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability 09.07.2026 8.2
CVE-2026-59818 etcd: gRPC client listener does not enforce `--client-crl-file` certificate revocation 09.07.2026 6.5
CVE-2026-60105 Monsta FTP < 2.14.5 SSRF via IPv4-Mapped IPv6 Address Bypass 09.07.2026
CVE-2026-6352 Incorrect Authorization in GitLab 09.07.2026 2.7
CVE-2026-6896 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 09.07.2026 8.7
CVE-2026-7492 Missing Authorization in GitLab 09.07.2026 4.3
CVE-2026-8472 Missing Authorization in GitLab 09.07.2026 4.3
CVE-2026-0288 PAN-OS: Buffer Overflow Vulnerabilities in User-ID Terminal Server Agent 09.07.2026
CVE-2026-14896 Nomad vulnerable to cross-namespace host volume claim deletion 09.07.2026 4.2
CVE-2026-54590 AsyncSSH AuthorizedKeysFile username substitution bypass through ~ and environment expansion 08.07.2026 5.9
CVE-2026-54591 AsyncSSH: SCP Path Traversal to Arbitrary File Write 09.07.2026 8.1
CVE-2026-55195 py7zr: Decompression bomb (zip bomb) denial of service via unchecked extraction size 09.07.2026
CVE-2026-55206 py7zr: O(n^2) algorithmic complexity DoS in PackInfo._read() 09.07.2026
CVE-2026-55542 Snipe-IT's S3 signature image retrieval lacks authorization before temporary URL 09.07.2026
CVE-2026-55596 Plate: Media embed provider metadata can bypass URL sanitization and execute iframe JavaScript 09.07.2026 8.7
CVE-2026-56669 Elysia: Inefficient Algorithmic Complexity and Interpretation Conflict 08.07.2026 7.5
CVE-2026-58207 NATS Server: Remote crash via integer overflow in Connz pagination 09.07.2026 7.7
CVE-2026-58208 NATS Server: MQTT-over-WebSocket Path Can Crash WebSocket-Only JetStream Servers Before MQTT Is Enabled 09.07.2026 6.8
CVE-2026-58211 NATS Server: `no_auth_user` pre-CONNECT fast path bypasses user connection restrictions 09.07.2026 5.4
CVE-2026-58494 Wasmtime: WASI hard links bypass wasmtime-wasi's FilePerms for destination 09.07.2026 6.5
CVE-2026-14361 Consul-template is vulnerable to path redirection in writeToFile through symlink attack 08.07.2026 4.7
CVE-2026-14891 Nomad vulnerable to sandbox escape in Docker task driver 09.07.2026 8.7
CVE-2026-15154 Guardrails-detectors: guardrails-detectors: unauthenticated regular-expression denial of service (redos) via detector_params.regex 08.07.2026
CVE-2026-58209 NATS Server: MQTT retained and QoS replay bypass subscribe deny filters 09.07.2026 4.3
CVE-2026-58210 NATS Server: MQTT partial CONNECT packets can exhaust pre-auth memory 09.07.2026 7.5
CVE-2026-58212 08.07.2026
CVE-2026-58213 NATS Server: MQTT SUBSCRIBE Protocol Injection via Leaf Node/Route Forwarding allows arbitrary NATS command injection 09.07.2026 7.1
CVE-2026-58214 NATS Server: MQTT subscribe ACL bypass via $MQTT.deliver.pubrel prefix (incomplete fix for CVE-2026-33217) 09.07.2026 4.3
CVE-2026-58250 NATS Server: Pre-auth server crash via double INFO in leafnode handshake 09.07.2026 7.5
CVE-2026-58252 NATS Server: Subscribe Authz Bypass via Wildcard-Overlap 09.07.2026 6.5
CVE-2026-58253 NATS Server: Route API Auth Bypass 09.07.2026 8.8
CVE-2026-58254 NATS Server: Incomplete fix for CVE-2026-33249: Leaf node connections bypass Nats-Trace-Dest permission check 09.07.2026
CVE-2026-59805 Gumroad < 2026.07.06.2 - Insecure Direct Object Reference in PurchasesController 09.07.2026
CVE-2026-59806 Gradio < 6.20.0 - Open Redirect and SSRF via /gradio_api/file= endpoint 08.07.2026
CVE-2026-59807 Composio SDK < 0.2.32-beta.283 - Sensitive File Upload via tool-file-uploads.ts 09.07.2026
CVE-2026-8650 Authenticated Path Traversal allows MOVEit admins to view arbitrary system files 09.07.2026 4.5
CVE-2026-8651 IPv6 Loopback Spoof via Trusted Host Header Bypasses Origin Check in MOVEit Transfer 09.07.2026 3.7
CVE-2026-8800 Cross-Org External Token Metadata accessible to AuditUser role 09.07.2026 2.7
CVE-2026-8801 File Extension Restriction Bypass in MOVEit Transfer 09.07.2026 3.5
CVE-2026-14373 Nomad Docker driver Linux host namespace bypass 08.07.2026 7.7
CVE-2026-36027 08.07.2026
CVE-2026-36028 09.07.2026
CVE-2026-44332 Fiber: Username Enumeration via Timing Oracle in BasicAuth Default Authorizer 09.07.2026 5.3
CVE-2026-44512 ONNX: Null Pointer Dereference in Upsample Version Converter Adapter (Zero Inputs) 09.07.2026 5.5
CVE-2026-45045 Fiber: X-Real-IP Spoofing via Header.Add() in BalancerForward 09.07.2026 5.3
CVE-2026-53624 Fiber: HSTS header never set in helmet middleware due to incorrect protocol check 08.07.2026 4.8
CVE-2026-55404 yt-dlp: Downstream command injection via improper sanitization of yt-dlp --write-link output 09.07.2026 7.5
CVE-2026-55575 LiquidJS: `pop` filter bypasses `memoryLimit` accounting that its array-filter siblings enforce 09.07.2026
CVE-2026-55760 handlebars.java FileTemplateLoader Path Traversal 09.07.2026 7.5
CVE-2026-58251 NATS Server: Queue Subscribe Authz Bypass 09.07.2026 6.5
CVE-2026-58501 Zeep SSRF because Settings.forbid_external is not enforced 09.07.2026 5.9
CVE-2026-59802 PasswordPusher < 2.8.1 - Redirect-Based XSS via data URI in URL Push Payload 09.07.2026
CVE-2026-59803 rpcx - Denial of Service via Gzip Decompression Bomb in Wire Protocol 09.07.2026
CVE-2026-59804 Midscene Bridge Server - Session Hijack via Unauthenticated WebSocket 09.07.2026
CVE-2026-59819 LiteLLM: Local file read via request-supplied OIDC file references 09.07.2026
CVE-2026-59820 LiteLLM: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 09.07.2026
CVE-2026-59821 LiteLLM: Custom Code Guardrails production endpoints bypass code safety checks 09.07.2026
CVE-2026-59822 LiteLLM: MCP Authentication Bypass via OAuth2 Passthrough Fallback 09.07.2026
CVE-2026-59935 pypdf: Possible infinite loop for not terminated inline images (ASCII85 and ASCIIHex filter) 09.07.2026
CVE-2026-59936 pypdf: Possible infinite loop for not terminated inline images 09.07.2026
CVE-2026-59939 httplib2: Decompression Bomb Denial of Service via Unbounded gzip/deflate Response Handling 08.07.2026 7.5
CVE-2026-59946 Composer: Path traversal in package bin field lets dependencies chmod arbitrary host files 09.07.2026 6.1
CVE-2026-59947 Composer: URL-embedded HTTP-Basic username leaks to verbose logs (GitHub PAT exposure) 09.07.2026 4.7
CVE-2026-59948 Composer: Arbitrary file write outside vendor via malicious transitive package name 09.07.2026 7
CVE-2026-60104 Bitwarden Server < 2026.6.0 Authorization Bypass via Admin Auth Request 09.07.2026
CVE-2026-8649 Institution scope bypass vulnerability in custom reports 09.07.2026 6.4
CVE-2026-14362 Denial of service via crafted push/pull gossip message in memberlist 08.07.2026 4.9
CVE-2026-50812 08.07.2026
CVE-2026-50813 08.07.2026 6.1
CVE-2026-59937 pypdf: Possible long runtimes for repeated malformed cross-reference entries 09.07.2026
CVE-2026-59938 pypdf: Possible large memory usage for wrong image dimensions 09.07.2026