| CVE-2025-27462 |
WinPVDrivers: Excessive permissions on user-exposed devices |
09.07.2026 |
|
| CVE-2025-27463 |
WinPVDrivers: Excessive permissions on user-exposed devices |
09.07.2026 |
|
| CVE-2025-27464 |
WinPVDrivers: Excessive permissions on user-exposed devices |
09.07.2026 |
|
| CVE-2025-58146 |
XAPI UTF-8 string handling |
09.07.2026 |
|
| CVE-2025-58151 |
varstored: TOCTOU issues with mapped guest memory |
09.07.2026 |
|
| CVE-2026-11404 |
Cesanta Mongoose < 7.22 Out-of-Bounds Read in MG_TLS_BUILTIN ClientHello Session ID Parsing |
09.07.2026 |
|
| CVE-2026-15187 |
enquirer Public Package API Enquirer.set prototype pollution |
09.07.2026 |
|
| CVE-2026-15188 |
manjurulhoque django-job-portal Employee Dashboard Endpoint views.py EditEmployeeProfileAPIView access control |
09.07.2026 |
|
| CVE-2026-15189 |
aerostackdev aerostack-mcp mcp-whatsapp upload_media server-side request forgery |
09.07.2026 |
|
| CVE-2026-23556 |
oxenstored keeps quota related use counts across domain destruction |
09.07.2026 |
|
| CVE-2026-23559 |
Multiple RBAC issues in XAPI |
09.07.2026 |
|
| CVE-2026-23560 |
Multiple RBAC issues in XAPI |
09.07.2026 |
|
| CVE-2026-23561 |
Multiple RBAC issues in XAPI |
09.07.2026 |
|
| CVE-2026-23562 |
Multiple RBAC issues in XAPI |
09.07.2026 |
|
| CVE-2026-42486 |
Multiple RBAC issues in XAPI |
09.07.2026 |
|
| CVE-2026-58125 |
|
09.07.2026 |
|
| CVE-2026-59206 |
n8n: Prototype Pollution via Workflow Credentials Leads to Unauthenticated User and Project Enumeration |
09.07.2026 |
|
| CVE-2026-59207 |
n8n: "Allowed HTTP Request Domains" Restriction Bypass via AI Agents MCP Connector |
09.07.2026 |
|
| CVE-2026-59208 |
n8n: Cross-Issuer Token Exchange Account Binding via Subject-Only Identity Resolution |
09.07.2026 |
|
| CVE-2026-61474 |
MISP: Improper sharing group authorization check when adding attributes |
09.07.2026 |
|
| CVE-2026-54798 |
|
09.07.2026 |
6.5 |
| CVE-2026-54799 |
|
09.07.2026 |
6.7 |
| CVE-2026-54800 |
|
09.07.2026 |
4.8 |
| CVE-2026-54801 |
|
09.07.2026 |
7.2 |
| CVE-2026-56292 |
Joomla Extension - acymailing.com - SQL Injection in AcyMailing extension < 10.11.1 |
09.07.2026 |
|
| CVE-2026-5005 |
Stored XSS in Twiser's OKRs & Goals |
09.07.2026 |
5.4 |
| CVE-2026-60108 |
Zeek < 8.0.9 Uncontrolled Memory Consumption DoS via FTP Analyzer |
09.07.2026 |
|
| CVE-2026-60109 |
Zeek < 8.0.9 Null Pointer Dereference DoS via Kerberos KRB_ERROR Parsing |
09.07.2026 |
|
| CVE-2026-12116 |
CVE-2026-12116 |
09.07.2026 |
|
| CVE-2026-12593 |
Privilege escalation via forged API token creation in Axivion Dashboard OIDC/OAuth2/SSO subsystem |
09.07.2026 |
|
| CVE-2026-12879 |
Cross-Tenant Data Exfiltration in Apigee via BigQuery Confused Deputy |
09.07.2026 |
|
| CVE-2026-14261 |
CVE-2026-14261 |
09.07.2026 |
|
| CVE-2026-15185 |
GPAC MP4Box vobsub.c vobsub_read_idx out-of-bounds |
09.07.2026 |
|
| CVE-2026-15186 |
macrozheng mall Portal Endpoint create resource injection |
09.07.2026 |
|
| CVE-2026-4256 |
LDAP Injection in PEAKUP's PassGate |
09.07.2026 |
8.2 |
| CVE-2026-60094 |
Vinchin Backup & Recovery 9.0.0.86562 Heap Buffer Overflow via agentlink_server |
09.07.2026 |
|
| CVE-2026-60095 |
Vinchin Backup & Recovery 9.0.0.86562 Stack Buffer Overflow via ModuleHandShake |
09.07.2026 |
|
| CVE-2026-15184 |
GNU LibreDWG DWG File dwg.c dwg_next_entity null pointer dereference |
09.07.2026 |
|
| CVE-2026-15182 |
GNU LibreDWG BMP Image dwg.c dwg_bmp heap-based overflow |
09.07.2026 |
|
| CVE-2026-9253 |
WP Cost Estimation & Payment Forms Builder (E&P Forms) <= 10.5.97 - Unauthenticated Stored Cross-Site Scripting via 'customerInfos' Parameter |
09.07.2026 |
7.2 |
| CVE-2026-12428 |
Blocks for ACF Fields <= 1.6.2 - Missing Authorization to Authenticated (Author+) Arbitrary ACF Field Value Disclosure via 'id' Parameter |
09.07.2026 |
6.5 |
| CVE-2026-12590 |
body-parser vulnerable to denial of service when invalid limit value silently disables size enforcement |
09.07.2026 |
3.7 |
| CVE-2026-13441 |
EventPrime <= 4.3.4.2 - Unauthenticated Stored Cross-Site Scripting via 'new_event_type_background_color' Parameter |
09.07.2026 |
7.2 |
| CVE-2026-14372 |
Bit Form <= 3.1.1 - Authenticated (Subscriber+) Arbitrary File Deletion via '_old' Parameter |
09.07.2026 |
7.1 |
| CVE-2026-4275 |
Divi Torque Lite <= 4.2.3 - Cross-Site Request Forgery to Arbitrary Plugin Installation via 'install_plugin' REST Endpoint |
09.07.2026 |
8.8 |
| CVE-2026-4298 |
DSGVO All in one for WP <= 4.9 - Missing Authorization to Authenticated (Subscriber+) Settings Reset |
09.07.2026 |
4.3 |
| CVE-2026-50644 |
SQL Injection in SOPlanning Audit Retention Configuration |
09.07.2026 |
|
| CVE-2026-56288 |
NULL Pointer Dereference in GNU patch |
09.07.2026 |
|
| CVE-2026-56289 |
Loop with Unreachable Exit Condition in GNU patch |
09.07.2026 |
|
| CVE-2026-56291 |
Joomla Extension - balbooa.com - Unauthenticated file upload in Balbooa Forms extension < 2.4.1 |
09.07.2026 |
|
| CVE-2026-58303 |
|
09.07.2026 |
6.1 |
| CVE-2026-58304 |
|
09.07.2026 |
6.1 |
| CVE-2026-58305 |
|
09.07.2026 |
6.1 |
| CVE-2026-58306 |
|
09.07.2026 |
6.1 |
| CVE-2026-58307 |
|
09.07.2026 |
6.1 |
| CVE-2026-59691 |
Gstreamer: gstreamer: rfbsrc/librfb hextile heap out-of-bounds write with 16bpp framebuffer |
09.07.2026 |
|
| CVE-2026-59692 |
Gstreamer: gstreamer: dtls certificate subject dn stack buffer overflow in openssl_verify_callback |
09.07.2026 |
|
| CVE-2026-9021 |
Easy Invoice <= 2.1.19 - Unauthenticated Arbitrary Quote Accept/Decline and Invoice Creation via easy_invoice_accept_quote / easy_invoice_decline_quote AJAX Actions |
09.07.2026 |
5.3 |
| CVE-2026-9027 |
CorvusPay WooCommerce Payment Gateway <= 2.7.4 - Unauthenticated Improper Verification of Cryptographic Signature to Payment Bypass via /wp-json/corvuspay/success/ REST Endpoint |
09.07.2026 |
5.3 |
| CVE-2026-9028 |
CorvusPay WooCommerce Payment Gateway <= 2.7.4 - Missing Authorization to Unauthenticated Arbitrary Order Cancellation via 'order_number' Parameter |
09.07.2026 |
5.3 |
| CVE-2026-9235 |
DHL eCommerce (Benelux) for WooCommerce <= 2.2.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Shipping Label Creation and Deletion via dhlpwc_label_create and dhlpwc_label_delete AJAX Actions |
09.07.2026 |
4.3 |
| CVE-2026-9237 |
Employee, Leave and Recruitment Management System <= 1.2.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Job Deletion via crewhrm_singleJobAction AJAX Action |
09.07.2026 |
4.3 |
| CVE-2026-9240 |
Colissimo Officiel : Méthodes de livraison pour WooCommerce <= 2.9.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Order Shipment Modification via lpc_order_affect AJAX action |
09.07.2026 |
4.3 |
| CVE-2026-12433 |
Hydra Booking <= 1.2.1 - Authenticated (Custom+) Insecure Direct Object Reference to Sensitive Information Exposure via 'booking_id' Parameter |
09.07.2026 |
4.3 |
| CVE-2026-15158 |
Blocksy Companion <= 2.1.46 - Unauthenticated Arbitrary File Upload via 'blc-review-images[]' Parameter |
09.07.2026 |
9.8 |
| CVE-2026-1365 |
Information Disclosure in Sayax's OSOS |
09.07.2026 |
6.5 |
| CVE-2026-1989 |
IDOR in PAVO Inc.'s PAVO Pay |
09.07.2026 |
7.5 |
| CVE-2026-2342 |
XSS in Oceanicsoft's ValeApp |
09.07.2026 |
9.3 |
| CVE-2026-56458 |
HCL DevOps Deploy is susceptible to a Permissive Cross-domain Security Policy with Untrusted Domains |
09.07.2026 |
5.4 |
| CVE-2026-56459 |
HCL DevOps Deploy / HCL Launch is susceptible to sensitive information disclosure |
09.07.2026 |
6.2 |
| CVE-2026-56460 |
HCL DevOps Deploy / HCL Launch is susceptible to an Insertion of Sensitive Information Into Sent Data vulnerability |
09.07.2026 |
6.5 |
| CVE-2026-5793 |
XSS in Inrove Software's BiEticaret |
09.07.2026 |
6.1 |
| CVE-2026-5955 |
SQLi in Inrove Software's BiEticaret |
09.07.2026 |
9.8 |
| CVE-2026-11359 |
Memberships and User Profiles for WooCommerce <= 3.4 - Missing Authorization to Authenticated (Subscriber+) ProfileGrid Plugin Installation and Activation |
09.07.2026 |
4.3 |
| CVE-2026-12170 |
AcyMailing <= 10.10.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'alignment' Attribute |
09.07.2026 |
6.4 |
| CVE-2026-12406 |
User Frontend <= 4.3.7 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion via 'attach_id' Parameter |
09.07.2026 |
5.3 |
| CVE-2026-12418 |
User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration <= 4.3.7 - Insecure Direct Object Reference to Unauthenticated Arbitrary Post Modification via 'wpuf_files_data' Parameter |
09.07.2026 |
5.3 |
| CVE-2026-13011 |
ERP: Complete HR, Accounting & CRM Suite with Recruitment and WooCommerce CRM Support <= 1.17.5 - Authenticated (HR Manager+) SQL Injection via 'orderby' Parameter |
09.07.2026 |
6.5 |
| CVE-2026-13080 |
WPFunnels <= 3.12.7 - Authenticated (Administrator+) Local File Inclusion via 'logKey' Parameter |
09.07.2026 |
6.6 |
| CVE-2026-13253 |
Post Grid Gutenberg Blocks for News, Magazines, Blog Websites <= 5.0.31 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'moreResultsText' Block Attribute |
09.07.2026 |
6.4 |
| CVE-2026-13334 |
Mang Board WP <= 2.3.4 - Reflected Cross-Site Scripting via 'stag' Parameter |
09.07.2026 |
6.1 |
| CVE-2026-13450 |
GamiPress <= 7.9.4 - Insecure Direct Object Reference to Unauthenticated Sensitive Information Disclosure via 'access' Parameter |
09.07.2026 |
5.3 |
| CVE-2026-13771 |
Customer Reviews for WooCommerce <= 5.113.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'color' Shortcode Attribute |
09.07.2026 |
6.4 |
| CVE-2026-14245 |
miniOrange OTP Login, Verification and SMS Notifications <= 5.5.1 - Authentication Bypass to Administrator Account Takeover via 'username_b' Parameter |
09.07.2026 |
9.8 |
| CVE-2026-14342 |
Mail Mint <= 1.24.2 - Authenticated (Administrator+) SQL Injection via 'contact_ids' Parameter |
09.07.2026 |
4.9 |
| CVE-2026-14343 |
Download Manager <= 3.3.61 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'note_before' and 'note_after' Shortcode Attributes |
09.07.2026 |
6.4 |
| CVE-2026-15000 |
Connect Contact Form 7 and Mailchimp <= 0.9.78.06 - Unauthenticated Stored Cross-Site Scripting via Mailchimp Merge Field Values |
09.07.2026 |
7.2 |
| CVE-2026-31981 |
HTML injection in Diagram tab and Graph view in Guardian/CMC before 26.2.0 |
09.07.2026 |
|
| CVE-2026-31982 |
Open Redirect in SAML Single Sign-On in Guardian/CMC before 26.2.0 |
09.07.2026 |
|
| CVE-2026-31983 |
Missing authentication in SSH keys synchronization endpoint in Guardian/CMC before 26.2.0 |
09.07.2026 |
|
| CVE-2026-31984 |
DoS through oversized audit log entries in Guardian/CMC before 26.2.0 |
09.07.2026 |
|
| CVE-2026-31985 |
Disabled and non-configurable TLS certificate validation in n2os-tui when connecting the Remote Collector to a Guardian or CMC, in Remote Collector before v26.2.0 |
09.07.2026 |
|
| CVE-2026-33390 |
Incorrect privilege assignment for Arc sensors in Guardian/CMC before 26.2.0 |
09.07.2026 |
|
| CVE-2026-4653 |
Block, Suspend, Report for BuddyPress <= 3.6.4 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'link' Parameter |
09.07.2026 |
6.4 |
| CVE-2026-57111 |
Apache Helix REST: Permissive CORS Configuration in REST API Allows Unrestricted Cross-Origin |
09.07.2026 |
|
| CVE-2026-59269 |
Privilege Escalation via Active Directory LDAP injection in Pinniped Supervisor can be executed by an attacker who can edit LDAP Group DN entries |
09.07.2026 |
3.8 |
| CVE-2026-6910 |
Bookero.pl <= 2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes |
09.07.2026 |
6.4 |
| CVE-2026-7558 |
Age Verification & Identity Verification by Token of Trust <= 4.0.2 - Missing Authorization to Unauthenticated Information Exposure via 'tot_export_table' Parameter |
09.07.2026 |
5.3 |
| CVE-2026-8848 |
Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder <= 1.22.0 - Missing Authorization to Authenticated (Editor+) Arbitrary Plugin Installation |
09.07.2026 |
7.2 |
| CVE-2026-8996 |
Backup and Staging by WP Time Capsule <= 1.22.26 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure via download_recent_decrypted_file_wptc Function |
09.07.2026 |
6.5 |
| CVE-2026-11571 |
Everest Forms < 3.5.0 - Unauthenticated Sensitive Information Exposure via Residual CSV Artifacts |
09.07.2026 |
|
| CVE-2026-11869 |
WP DSGVO Tools (GDPR) < 3.1.40 - Unauthenticated Sensitive Information Disclosure via Subject Access Request |
09.07.2026 |
|
| CVE-2026-11875 |
WP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated Support Ticket Access via Session Cookie Forgery |
09.07.2026 |
|
| CVE-2026-12270 |
Everest Forms < 3.5.0 - Unauthenticated Missing Authorization via Site Assistant REST Endpoints |
09.07.2026 |
|
| CVE-2026-12516 |
Fediverse Embeds < 1.5.8 - Unauthenticated SSRF via Media Proxy |
09.07.2026 |
|
| CVE-2026-12517 |
Fediverse Embeds < 1.5.8 - Unauthenticated SSRF via Site Info Endpoint |
09.07.2026 |
|
| CVE-2026-47826 |
blobs.yaml Path Traversal Allows File Writes |
09.07.2026 |
|
| CVE-2026-47828 |
Missing TLS Certificate Verification in BOSH CLI Allows Root Code Execution via Man-in-the-Middle Credential Replay |
09.07.2026 |
|
| CVE-2026-47829 |
Argument Injection in BOSH CLI Allows Local Command Execution on Operator Workstations via Compromised Director |
09.07.2026 |
|
| CVE-2026-47830 |
Incorrect Permission Assignment Allows Local Privilege Escalation to SYSTEM via Executable Overwrite |
09.07.2026 |
|
| CVE-2026-47831 |
Cryptographically Weak Password Generation in bosh-windows-stemcell-builder Allows Remote SSH Brute-Force Attacks |
09.07.2026 |
|
| CVE-2026-47840 |
LDAP StartTLS unconditionally disables hostname verification |
09.07.2026 |
7.5 |
| CVE-2026-41857 |
BOSH CLI Shell Injection |
09.07.2026 |
|
| CVE-2026-5523 |
Divi Form Builder <= 5.1.8 - Authenticated (Subscriber+) Missing Authorization to Privilege Escalation via User Profile Update Form |
09.07.2026 |
8.8 |
| CVE-2026-15138 |
tumf mcp-text-editor text_editor.py _validate_file_path path traversal |
09.07.2026 |
|
| CVE-2026-15137 |
code-projects Interview Management System View.php sql injection |
09.07.2026 |
|
| CVE-2026-15135 |
code-projects Online Food Order System edit_food_items.php sql injection |
09.07.2026 |
|
| CVE-2026-47646 |
Dynamics 365 Customer Voice Spoofing Vulnerability |
08.07.2026 |
9.3 |
| CVE-2026-15134 |
CodeAstro Simple Online Leave Management System index.php sql injection |
09.07.2026 |
|
| CVE-2026-15107 |
|
09.07.2026 |
|
| CVE-2026-15108 |
|
09.07.2026 |
|
| CVE-2026-15109 |
|
09.07.2026 |
|
| CVE-2026-15110 |
|
09.07.2026 |
|
| CVE-2026-15111 |
|
09.07.2026 |
|
| CVE-2026-15112 |
|
09.07.2026 |
|
| CVE-2026-15113 |
|
09.07.2026 |
|
| CVE-2026-15114 |
|
09.07.2026 |
|
| CVE-2026-15115 |
|
09.07.2026 |
|
| CVE-2026-15116 |
|
09.07.2026 |
|
| CVE-2026-15117 |
|
09.07.2026 |
|
| CVE-2026-15118 |
|
09.07.2026 |
|
| CVE-2026-15119 |
|
09.07.2026 |
|
| CVE-2026-15120 |
|
09.07.2026 |
|
| CVE-2026-15121 |
|
09.07.2026 |
|
| CVE-2026-15122 |
|
09.07.2026 |
|
| CVE-2026-15123 |
|
09.07.2026 |
|
| CVE-2026-15124 |
|
09.07.2026 |
|
| CVE-2026-15125 |
|
09.07.2026 |
|
| CVE-2026-15126 |
|
09.07.2026 |
|
| CVE-2026-15127 |
|
09.07.2026 |
|
| CVE-2026-15128 |
|
09.07.2026 |
|
| CVE-2026-15129 |
|
09.07.2026 |
|
| CVE-2026-15130 |
|
09.07.2026 |
|
| CVE-2026-15131 |
|
09.07.2026 |
|
| CVE-2026-15132 |
|
09.07.2026 |
|
| CVE-2026-15133 |
|
09.07.2026 |
|
| CVE-2026-15105 |
davenardella snap7 ReadVar Request s7_server.cpp PerformFunctionRead deserialization |
09.07.2026 |
|
| CVE-2026-54499 |
Stanza: Remote Code Execution via Unsafe Pickle Deserialization in Model Loaders |
09.07.2026 |
7.5 |
| CVE-2026-54772 |
CoreWCF: Pre-authentication infinite-loop CPU exhaustion in CoreWCF net.tcp / net.pipe / net.uds framing handshake |
09.07.2026 |
7.5 |
| CVE-2026-54773 |
CoreWCF: WS-Security signature substitution via document-wide Signature lookup |
08.07.2026 |
5.9 |
| CVE-2026-54774 |
CoreWCF: SamlSerializer skips SignatureValue verification when SAML signing token is not an X.509 certificate |
09.07.2026 |
7.4 |
| CVE-2026-54775 |
CoreWCF: Kafka consume pump halts permanently on a Kafka tombstone (null-value record), causing persistent endpoint denial of service. |
09.07.2026 |
6.5 |
| CVE-2026-54776 |
CoreWCF: Unix Domain Socket PosixIdentity transport accepts connections that skip the security upgrade |
09.07.2026 |
4.4 |
| CVE-2026-54778 |
CoreWCF: UnixDomainSocket Non-Reentrant POSIX Identity Resolution |
09.07.2026 |
6.2 |
| CVE-2026-54779 |
CoreWCF: SAML token replay protection is inoperative |
09.07.2026 |
5.9 |
| CVE-2026-54780 |
CoreWCF: WS-Security Reference DigestMethod Algorithm-Suite Bypass |
08.07.2026 |
3.7 |
| CVE-2026-54781 |
CoreWCF: SAML SubjectConfirmation methods and holder-of-key proof keys are not enforced |
09.07.2026 |
7.4 |
| CVE-2026-54782 |
CoreWCF: Authentication bypass in CoreWCF SAML 1.1 / 2.0 token signature validation |
09.07.2026 |
10 |
| CVE-2026-54783 |
CoreWCF: XML Signature Wrapping in WS-Security endorsing/supporting signature verification allows replay of captured signed messages |
09.07.2026 |
7.4 |
| CVE-2026-54784 |
CoreWCF: SPNEGO SecurityContextToken proof key wrapped without confidentiality |
09.07.2026 |
7.4 |
| CVE-2026-59723 |
Cline: Cross-Origin WebSocket Hijacking in Cline Hub Dashboard (`/browser` endpoint) |
09.07.2026 |
8.8 |
| CVE-2026-15168 |
Use of Uninitialized Variable in Wireshark |
09.07.2026 |
2.5 |
| CVE-2026-31309 |
|
09.07.2026 |
|
| CVE-2026-35552 |
|
09.07.2026 |
|
| CVE-2026-39178 |
|
09.07.2026 |
|
| CVE-2026-39179 |
|
09.07.2026 |
|
| CVE-2026-51535 |
|
09.07.2026 |
|
| CVE-2026-52200 |
|
09.07.2026 |
|
| CVE-2026-54777 |
CoreWCF NetNamedPipe transport accepts attach to a pre-existing named pipe instance |
09.07.2026 |
6.5 |
| CVE-2026-5922 |
Poly Voice – Potential Unauthorized Modification of WebUI using XSS Attack |
09.07.2026 |
|
| CVE-2026-10037 |
Sandbox Escape in Ubuntu OpenJDK Packages via xdg-desktop-portal |
09.07.2026 |
8.8 |
| CVE-2026-44024 |
Fluentd: Remote Code Execution (RCE) via Arbitrary File Write in `${tag}` Placeholder |
09.07.2026 |
9.8 |
| CVE-2026-44025 |
Fluentd: Exposure of Sensitive Information via Monitor Agent API |
09.07.2026 |
7.5 |
| CVE-2026-44160 |
Fluentd: Denial of Service (DoS) via Gzip Decompression Bomb in `in_http` and `in_forward` |
08.07.2026 |
7.5 |
| CVE-2026-44161 |
Fluentd: Server-Side Request Forgery (SSRF) via Placeholder Expansion in `out_http` |
09.07.2026 |
7.2 |
| CVE-2026-48492 |
Snipe-IT's selectlist visibility is too permissive |
09.07.2026 |
|
| CVE-2026-55470 |
HAPI FHIR: DSTU2 FHIRPathEngine.matches() missing RegexTimeout protection allows ReDoS |
09.07.2026 |
7.5 |
| CVE-2026-55471 |
HAPI FHIR: XXE in XsltUtilities.saxonTransform via unhardened Saxon TransformerFactory |
09.07.2026 |
|
| CVE-2026-55830 |
RestrictedPython guard hooks can be shadowed via positional-only arguments |
09.07.2026 |
8.3 |
| CVE-2026-55849 |
@cyclonedx/cyclonedx-npm: Shell Injection via Unsanitized `--workspace` Argument |
08.07.2026 |
|
| CVE-2026-55877 |
Symfony UX: XSS in symfony/ux-icons via unsanitized SVG content in local files and Iconify on-demand responses |
09.07.2026 |
6.1 |
| CVE-2026-55878 |
Symfony: Path Traversal in symfony/ux-toolkit Allows Arbitrary File Write and Read via Crafted Recipe Manifest |
09.07.2026 |
7.8 |
| CVE-2026-5923 |
Poly Voice – Potential Unauthorized Modification of WebUI using CSRF Attack |
09.07.2026 |
|
| CVE-2025-12506 |
Use of Incorrectly-Resolved Name or Reference in GitLab |
09.07.2026 |
3.5 |
| CVE-2026-11827 |
Insufficiently Protected Credentials in GitLab |
09.07.2026 |
4.9 |
| CVE-2026-13151 |
Incorrect Authorization in GitLab |
09.07.2026 |
2.7 |
| CVE-2026-13320 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab |
09.07.2026 |
7.3 |
| CVE-2026-15163 |
Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-15164 |
Heap-based Buffer Overflow in ciscodump |
09.07.2026 |
5.5 |
| CVE-2026-15165 |
Heap-based Buffer Overflow in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-15166 |
Stack-based Buffer Overflow in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-15167 |
Stack-based Buffer Overflow in Wireshark |
09.07.2026 |
7.5 |
| CVE-2026-15169 |
Heap-based Buffer Overflow in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-15170 |
Heap-based Buffer Overflow in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-15171 |
NULL Pointer Dereference in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-15172 |
Unchecked Input for Loop Condition in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-15173 |
Heap-based Buffer Overflow in Wireshark |
09.07.2026 |
4.7 |
| CVE-2026-15174 |
Heap-based Buffer Overflow in Wireshark |
09.07.2026 |
5.5 |
| CVE-2026-35210 |
OpenCTI: Authorization Bypass via `synchronized-upsert` HTTP Header Injection |
09.07.2026 |
7.1 |
| CVE-2026-35211 |
OpenCTI: Elasticsearch Painless Script Injection via GraphQL `script` filter operator allows authenticated user to exfiltrate data and cause DoS |
08.07.2026 |
6.5 |
| CVE-2026-49866 |
libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays |
09.07.2026 |
7.5 |
| CVE-2026-54527 |
JupyterLab Git: Stored XSS leading to RCE |
09.07.2026 |
|
| CVE-2026-54528 |
jupyterlab-git excluded_paths Case-Sensitivity Bypass Allows Reading Excluded Directories |
09.07.2026 |
7.1 |
| CVE-2026-55778 |
Parse Server: Stored XSS via non-standard file extension bypassing file upload extension blocklist |
09.07.2026 |
|
| CVE-2026-57480 |
Parse Server: Denial of service via exponential-time processing of deeply nested query operators |
09.07.2026 |
|
| CVE-2026-57481 |
Parse Server: LiveQuery discloses object data to a subscriber across an ACL read-access change |
08.07.2026 |
|
| CVE-2026-58191 |
Appium: Reflected XSS / arbitrary JS in @appium/base-driver /test/guinea-pig* routes |
09.07.2026 |
6.5 |
| CVE-2026-58192 |
Appium: Unauthenticated arbitrary file/directory deletion in @appium/storage-plugin |
09.07.2026 |
8.6 |
| CVE-2026-58525 |
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability |
09.07.2026 |
8.2 |
| CVE-2026-59818 |
etcd: gRPC client listener does not enforce `--client-crl-file` certificate revocation |
09.07.2026 |
6.5 |
| CVE-2026-60105 |
Monsta FTP < 2.14.5 SSRF via IPv4-Mapped IPv6 Address Bypass |
09.07.2026 |
|
| CVE-2026-6352 |
Incorrect Authorization in GitLab |
09.07.2026 |
2.7 |
| CVE-2026-6896 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab |
09.07.2026 |
8.7 |
| CVE-2026-7492 |
Missing Authorization in GitLab |
09.07.2026 |
4.3 |
| CVE-2026-8472 |
Missing Authorization in GitLab |
09.07.2026 |
4.3 |
| CVE-2026-0288 |
PAN-OS: Buffer Overflow Vulnerabilities in User-ID Terminal Server Agent |
09.07.2026 |
|
| CVE-2026-14896 |
Nomad vulnerable to cross-namespace host volume claim deletion |
09.07.2026 |
4.2 |
| CVE-2026-54590 |
AsyncSSH AuthorizedKeysFile username substitution bypass through ~ and environment expansion |
08.07.2026 |
5.9 |
| CVE-2026-54591 |
AsyncSSH: SCP Path Traversal to Arbitrary File Write |
09.07.2026 |
8.1 |
| CVE-2026-55195 |
py7zr: Decompression bomb (zip bomb) denial of service via unchecked extraction size |
09.07.2026 |
|
| CVE-2026-55206 |
py7zr: O(n^2) algorithmic complexity DoS in PackInfo._read() |
09.07.2026 |
|
| CVE-2026-55542 |
Snipe-IT's S3 signature image retrieval lacks authorization before temporary URL |
09.07.2026 |
|
| CVE-2026-55596 |
Plate: Media embed provider metadata can bypass URL sanitization and execute iframe JavaScript |
09.07.2026 |
8.7 |
| CVE-2026-56669 |
Elysia: Inefficient Algorithmic Complexity and Interpretation Conflict |
08.07.2026 |
7.5 |
| CVE-2026-58207 |
NATS Server: Remote crash via integer overflow in Connz pagination |
09.07.2026 |
7.7 |
| CVE-2026-58208 |
NATS Server: MQTT-over-WebSocket Path Can Crash WebSocket-Only JetStream Servers Before MQTT Is Enabled |
09.07.2026 |
6.8 |
| CVE-2026-58211 |
NATS Server: `no_auth_user` pre-CONNECT fast path bypasses user connection restrictions |
09.07.2026 |
5.4 |
| CVE-2026-58494 |
Wasmtime: WASI hard links bypass wasmtime-wasi's FilePerms for destination |
09.07.2026 |
6.5 |
| CVE-2026-14361 |
Consul-template is vulnerable to path redirection in writeToFile through symlink attack |
08.07.2026 |
4.7 |
| CVE-2026-14891 |
Nomad vulnerable to sandbox escape in Docker task driver |
09.07.2026 |
8.7 |
| CVE-2026-15154 |
Guardrails-detectors: guardrails-detectors: unauthenticated regular-expression denial of service (redos) via detector_params.regex |
08.07.2026 |
|
| CVE-2026-58209 |
NATS Server: MQTT retained and QoS replay bypass subscribe deny filters |
09.07.2026 |
4.3 |
| CVE-2026-58210 |
NATS Server: MQTT partial CONNECT packets can exhaust pre-auth memory |
09.07.2026 |
7.5 |
| CVE-2026-58212 |
|
08.07.2026 |
|
| CVE-2026-58213 |
NATS Server: MQTT SUBSCRIBE Protocol Injection via Leaf Node/Route Forwarding allows arbitrary NATS command injection |
09.07.2026 |
7.1 |
| CVE-2026-58214 |
NATS Server: MQTT subscribe ACL bypass via $MQTT.deliver.pubrel prefix (incomplete fix for CVE-2026-33217) |
09.07.2026 |
4.3 |
| CVE-2026-58250 |
NATS Server: Pre-auth server crash via double INFO in leafnode handshake |
09.07.2026 |
7.5 |
| CVE-2026-58252 |
NATS Server: Subscribe Authz Bypass via Wildcard-Overlap |
09.07.2026 |
6.5 |
| CVE-2026-58253 |
NATS Server: Route API Auth Bypass |
09.07.2026 |
8.8 |
| CVE-2026-58254 |
NATS Server: Incomplete fix for CVE-2026-33249: Leaf node connections bypass Nats-Trace-Dest permission check |
09.07.2026 |
|
| CVE-2026-59805 |
Gumroad < 2026.07.06.2 - Insecure Direct Object Reference in PurchasesController |
09.07.2026 |
|
| CVE-2026-59806 |
Gradio < 6.20.0 - Open Redirect and SSRF via /gradio_api/file= endpoint |
08.07.2026 |
|
| CVE-2026-59807 |
Composio SDK < 0.2.32-beta.283 - Sensitive File Upload via tool-file-uploads.ts |
09.07.2026 |
|
| CVE-2026-8650 |
Authenticated Path Traversal allows MOVEit admins to view arbitrary system files |
09.07.2026 |
4.5 |
| CVE-2026-8651 |
IPv6 Loopback Spoof via Trusted Host Header Bypasses Origin Check in MOVEit Transfer |
09.07.2026 |
3.7 |
| CVE-2026-8800 |
Cross-Org External Token Metadata accessible to AuditUser role |
09.07.2026 |
2.7 |
| CVE-2026-8801 |
File Extension Restriction Bypass in MOVEit Transfer |
09.07.2026 |
3.5 |
| CVE-2026-14373 |
Nomad Docker driver Linux host namespace bypass |
08.07.2026 |
7.7 |
| CVE-2026-36027 |
|
08.07.2026 |
|
| CVE-2026-36028 |
|
09.07.2026 |
|
| CVE-2026-44332 |
Fiber: Username Enumeration via Timing Oracle in BasicAuth Default Authorizer |
09.07.2026 |
5.3 |
| CVE-2026-44512 |
ONNX: Null Pointer Dereference in Upsample Version Converter Adapter (Zero Inputs) |
09.07.2026 |
5.5 |
| CVE-2026-45045 |
Fiber: X-Real-IP Spoofing via Header.Add() in BalancerForward |
09.07.2026 |
5.3 |
| CVE-2026-53624 |
Fiber: HSTS header never set in helmet middleware due to incorrect protocol check |
08.07.2026 |
4.8 |
| CVE-2026-55404 |
yt-dlp: Downstream command injection via improper sanitization of yt-dlp --write-link output |
09.07.2026 |
7.5 |
| CVE-2026-55575 |
LiquidJS: `pop` filter bypasses `memoryLimit` accounting that its array-filter siblings enforce |
09.07.2026 |
|
| CVE-2026-55760 |
handlebars.java FileTemplateLoader Path Traversal |
09.07.2026 |
7.5 |
| CVE-2026-58251 |
NATS Server: Queue Subscribe Authz Bypass |
09.07.2026 |
6.5 |
| CVE-2026-58501 |
Zeep SSRF because Settings.forbid_external is not enforced |
09.07.2026 |
5.9 |
| CVE-2026-59802 |
PasswordPusher < 2.8.1 - Redirect-Based XSS via data URI in URL Push Payload |
09.07.2026 |
|
| CVE-2026-59803 |
rpcx - Denial of Service via Gzip Decompression Bomb in Wire Protocol |
09.07.2026 |
|
| CVE-2026-59804 |
Midscene Bridge Server - Session Hijack via Unauthenticated WebSocket |
09.07.2026 |
|
| CVE-2026-59819 |
LiteLLM: Local file read via request-supplied OIDC file references |
09.07.2026 |
|
| CVE-2026-59820 |
LiteLLM: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') |
09.07.2026 |
|
| CVE-2026-59821 |
LiteLLM: Custom Code Guardrails production endpoints bypass code safety checks |
09.07.2026 |
|
| CVE-2026-59822 |
LiteLLM: MCP Authentication Bypass via OAuth2 Passthrough Fallback |
09.07.2026 |
|
| CVE-2026-59935 |
pypdf: Possible infinite loop for not terminated inline images (ASCII85 and ASCIIHex filter) |
09.07.2026 |
|
| CVE-2026-59936 |
pypdf: Possible infinite loop for not terminated inline images |
09.07.2026 |
|
| CVE-2026-59939 |
httplib2: Decompression Bomb Denial of Service via Unbounded gzip/deflate Response Handling |
08.07.2026 |
7.5 |
| CVE-2026-59946 |
Composer: Path traversal in package bin field lets dependencies chmod arbitrary host files |
09.07.2026 |
6.1 |
| CVE-2026-59947 |
Composer: URL-embedded HTTP-Basic username leaks to verbose logs (GitHub PAT exposure) |
09.07.2026 |
4.7 |
| CVE-2026-59948 |
Composer: Arbitrary file write outside vendor via malicious transitive package name |
09.07.2026 |
7 |
| CVE-2026-60104 |
Bitwarden Server < 2026.6.0 Authorization Bypass via Admin Auth Request |
09.07.2026 |
|
| CVE-2026-8649 |
Institution scope bypass vulnerability in custom reports |
09.07.2026 |
6.4 |
| CVE-2026-14362 |
Denial of service via crafted push/pull gossip message in memberlist |
08.07.2026 |
4.9 |
| CVE-2026-50812 |
|
08.07.2026 |
|
| CVE-2026-50813 |
|
08.07.2026 |
6.1 |
| CVE-2026-59937 |
pypdf: Possible long runtimes for repeated malformed cross-reference entries |
09.07.2026 |
|
| CVE-2026-59938 |
pypdf: Possible large memory usage for wrong image dimensions |
09.07.2026 |
|