CVE Field Guide

Critical CVEs

CVE Title Updated Score
CVE-2026-45833 12.06.2026 9.4
CVE-2026-50083 Aqara hardcoded OAuth client credentials 12.06.2026 9.1
CVE-2026-50084 Aqara API cross-account access 12.06.2026 9.6
CVE-2026-50086 Aqara unauthenticated AES oracle 12.06.2026 10
CVE-2026-50090 Aqara OAuth redirect_uri validation bypass 12.06.2026 9.3
CVE-2026-50091 Aqara Home Android SDK hardcoded keys 12.06.2026 9.1
CVE-2026-10557 Yarbo Android/iOS Mobile Application and Cloud Infrastructure Use of Hard-coded Credentials 12.06.2026 9.3
CVE-2026-47131 vm2: Sandbox Escape 12.06.2026 10
CVE-2026-47137 vm2: GHSA-8hg8-63c5-gwmx patch bypass: nesting:true without explicit require still allows full RCE 12.06.2026 10
CVE-2026-47140 vm2: NodeVM builtin denylist bypass via process and inspector/promises allows host code execution 12.06.2026 10
CVE-2026-47208 vm2: Sandbox Breakout Using Promise Species 12.06.2026 10
CVE-2026-47210 vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass 12.06.2026 9.8
CVE-2026-53787 Amasty Order Attributes for Magento 2 < 4.0.0 Unauthenticated Arbitrary File Upload 12.06.2026 9.3
CVE-2026-54133 jmespath.php has CompilerRuntime code injection via unescaped function names 12.06.2026 9.8
CVE-2026-6853 OTP Bypass in Başbelen Group's Pause+ Mobile App 12.06.2026 9.8
CVE-2026-11849 IEI Integration Corp|iRM-IEI Remote Management - Hard-coded Credentials 12.06.2026 9.3
CVE-2026-11535 12.06.2026 9.4
CVE-2026-47365 12.06.2026 9.9
CVE-2026-47367 12.06.2026 9.9
CVE-2026-47369 12.06.2026 9.9
CVE-2026-47370 12.06.2026 9.9
CVE-2026-48611 12.06.2026 9.8
CVE-2026-42846 ClipBucket: Remote Play URL Command Injection 12.06.2026 9.8
CVE-2026-45060 ClipBucket: Blind SQL Injection in progress_video.php 12.06.2026 9.8
CVE-2026-39494 WordPress Product Filter by WBW plugin <= 3.1.2 - SQL Injection vulnerability 12.06.2026 9.3
CVE-2026-42647 WordPress JoomSport plugin <= 5.7.7 - SQL Injection vulnerability 11.06.2026 9.3
CVE-2026-49060 WordPress Hippoo Mobile App for WooCommerce plugin <= 1.9.4 - Privilege Escalation vulnerability 12.06.2026 9.8
CVE-2026-41005 UAA accepts SAML Encrypted Assertions authentication bypass 11.06.2026 9
CVE-2026-49973 Hermes WebUI < 0.51.358 Unauthenticated Password Takeover via /api/settings 11.06.2026 9.2
CVE-2026-45177 Idira Secrets Manager SaaS Edge: Authentication Bypass of an internal validation mechanism 11.06.2026 9.1
CVE-2026-47172 Quest Bot: Untrusted pull request code can be built and deployed by privileged `workflow_run` deployment. 11.06.2026 9.5
CVE-2026-47174 Duck Site: Untrusted pull request code can trigger privileged production deployment 11.06.2026 9.5
CVE-2026-49261 MariaDB server has unsafe parameter handling in `wsrep_notify_cmd` 12.06.2026 10
CVE-2026-11839 Arbitrary File Upload in Basarsoft's Rotaban 11.06.2026 9.9
CVE-2026-11561 SSTI in Soagen Informatics' Apinizer 12.06.2026 9.8
CVE-2026-7852 Unrestricted File Upload in Limatek's LimRAD NAC 11.06.2026 9.8
CVE-2026-4764 Privilege Escalation in Dialogflow CX via Playbook Import 11.06.2026 9.4
CVE-2026-35273 12.06.2026 9.8
CVE-2026-46695 BoxLite: Permission Bypass in boxlite Allows Modification of Read-Only Files 11.06.2026 10
CVE-2026-46703 BoxLite: Path Traversal Vulnerability in boxlite Leads to Arbitrary File Write on the Host 11.06.2026 9.6
CVE-2026-20253 Unauthenticated Arbitrary File Creation and Truncation in a PostgreSQL Sidecar Service Endpoint in Splunk Enterprise 11.06.2026 9.8
CVE-2026-46614 Fission router exposes /fission-function/<ns>/<name> on its public listener, allowing invocation of any function without an HTTPTrigger 11.06.2026 9.8
CVE-2026-50545 Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover 12.06.2026 9.9
CVE-2026-50563 Fission Container Executor Function PodSpec Injection Leading to Node Escape 12.06.2026 9.9
CVE-2026-50564 Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape 12.06.2026 9.9
CVE-2026-50566 Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation 12.06.2026 9.9
CVE-2026-45550 Roxy-WI: IDOR on PUT /smon/check — any user can rewrite any tenant's monitoring URL/IP/body 10.06.2026 9.1
CVE-2026-45552 Roxy-WI: Cross-tenant authorization bypass on /install/* — guest can run Ansible / SSH on every registered server 10.06.2026 9.9
CVE-2026-45556 Roxy-WI: Authenticated arbitrary file write on every managed load balancer (and downstream RCE) via WAF rule save `config_file_name` 10.06.2026 9.9
CVE-2026-45558 Roxy-WI: Authenticated RCE on every managed HAProxy load balancer via `option` field config injection in section save 10.06.2026 9.9
CVE-2026-53469 Migration-planner: unprotected delete endpoint wipes all tenant data 10.06.2026 9.1
CVE-2026-53470 Migration-planner: getsourcedownloadurl missing organization check 10.06.2026 9.6
CVE-2026-53471 Migration-planner: agent api ignores jwt source_id claim 10.06.2026 9.6
CVE-2026-53474 Migration-planner: second-order sql injection via rvtools upload 10.06.2026 9.6
CVE-2026-53475 Assisted-migration-agent: tls verification disabled on all vcenter connections 10.06.2026 9.3
CVE-2026-53476 Assisted-migration-agent: vddk tarball chained-symlink arbitrary file write 10.06.2026 9.6
CVE-2025-6254 Doctreat Core <= 1.6.8 - Unauthenticated Privilege Escalation 10.06.2026 9.8
CVE-2025-66276 QTS 10.06.2026 9.2
CVE-2026-45328 ESF-IDF: Out-of-Bounds Write in ESP-TEE Secure Service Wrappers 10.06.2026 9.3
CVE-2026-44963 10.06.2026 9.4
CVE-2026-47928 ColdFusion | Improper Input Validation (CWE-20) 11.06.2026 9.6
CVE-2026-47938 Adobe Campaign Classic (ACC) | Server-Side Request Forgery (SSRF) (CWE-918) 10.06.2026 10
CVE-2026-48303 Adobe Campaign Classic (ACC) | Incorrect Authorization (CWE-863) 10.06.2026 10
CVE-2026-34691 Adobe Experience Manager Forms JEE | Cross-site Scripting (Stored XSS) (CWE-79) 09.06.2026 9.3
CVE-2026-26142 Nuance PowerScribe Remote Code Execution Vulnerability 10.06.2026 9.8
CVE-2026-42904 Windows TCP/IP Elevation of Privilege Vulnerability 10.06.2026 9.6
CVE-2026-44815 DHCP Client Service Remote Code Execution Vulnerability 10.06.2026 9.8
CVE-2026-45602 Windows Dynamic Host Configuration Protocol (DHCP) Tampering Vulnerability 10.06.2026 9.1
CVE-2026-45657 Windows Kernel Remote Code Execution Vulnerability 10.06.2026 9.8
CVE-2026-47281 Visual Studio Code Elevation of Privilege Vulnerability 10.06.2026 9.6
CVE-2026-47291 HTTP.sys Remote Code Execution Vulnerability 10.06.2026 9.8
CVE-2026-47643 Azure Stack Edge Remote Code Execution Vulnerability 10.06.2026 9.8
CVE-2026-49840 FreeSWITCH: Pre-authentication heap buffer overflow in libesl `Content-Length` parsing 09.06.2026 9.1
CVE-2026-49841 FreeSWITCH: Pre-authentication heap buffer overflow in `mod_verto` HTTP POST body read 11.06.2026 9.8
CVE-2026-10520 12.06.2026 10
CVE-2026-10523 10.06.2026 9.9
CVE-2026-25089 10.06.2026 9.1
CVE-2026-8025 SQLi in MOSK Informatics' CBS Platform 09.06.2026 9.8
CVE-2026-7486 SQLi in Netcad's E-İmar 09.06.2026 9.8
CVE-2017-20251 WordPress Insert PHP Plugin 4.7.0 PHP Code Injection via REST API 09.06.2026 9.3
CVE-2026-10731 SQL injection in Nemon products 09.06.2026 9.3
CVE-2026-41031 A Stored Cross-Site Scripting (XSS) vulnerability occurs in Vinna Process Monitor 09.06.2026 9.3
CVE-2026-5067 Out-of-bounds read/write in HTTP WebSocket upgrade via non-null-terminated Sec-WebSocket-Key 09.06.2026 9.8
CVE-2026-27671 Memory Corruption vulnerability in Application Server ABAP of SAP NetWeaver and ABAP Platform 09.06.2026 9.8
CVE-2026-40128 Directory Traversal vulnerability in SAP NetWeaver Application Server Java (Web Container) 10.06.2026 9
CVE-2026-44748 XML Signature Wrapping in SAML Authentication in SAP NetWeaver AS ABAP and ABAP Platform 09.06.2026 9.9
CVE-2026-52778 YesWiki has Unsafe eval() in Formula Calculator - Remote Code Execution (RCE) & Denial of Service (DoS) 09.06.2026 9.8
CVE-2026-25555 OpenBullet2 0.3.2 Authentication Bypass via X-Api-Key Header 08.06.2026 9.3
CVE-2026-39910 STACKIT IaaS API Privilege Escalation via Service Account Attachment 09.06.2026 9.3
CVE-2026-41448 AdGuard Home Authentication Bypass via Path Traversal in Admin-Token Cookie 08.06.2026 9.2
CVE-2026-46442 Flowise: Authenticated Host RCE via POST /api/v1/node-custom-function and NodeVM Sandbox Escape 09.06.2026 9.4
CVE-2026-47430 Cordova Plugin InAppBrowser: iOS: Arbitrary Cordova callback IDs can be dispatched without validation from InAppBrowser WebViews 08.06.2026 9.5
CVE-2026-11499 Tenda HG7HG9/HG10 formDOMAINBLK stack-based overflow 08.06.2026 9.3
CVE-2023-54352 WordPress Seotheme Remote Code Execution Unauthenticated 08.06.2026 9.3
CVE-2024-58348 WordPress Background Image Cropper 1.2 Remote Code Execution 08.06.2026 9.3
CVE-2024-58349 WordPress Theme Travelscape 1.0.3 Arbitrary File Upload 08.06.2026 9.3
CVE-2026-11429 Path Traversal in Altium Vault ScriptsController Allows Unauthenticated Remote Code Execution 09.06.2026 10
CVE-2026-11423 Path Traversal in Altium Enterprise Server Collaboration Service Allows Privilege Escalation 08.06.2026 9.4
CVE-2026-11419 Path Traversal in Altium Enterprise Server Vault UploadController Allows Arbitrary File Write 05.06.2026 9.4
CVE-2026-11420 Path Traversal in Altium Enterprise Server NIS Allows Unauthenticated Arbitrary File Write and File Read 05.06.2026 10
CVE-2026-45758 Malicious code in guardrails-ai 0.10.1 (supply chain compromise) 08.06.2026 9.6
CVE-2026-45777 Open XDMoD Vulnerable to Unauthenticated Remote Code Execution (RCE) via OS Command Injection 05.06.2026 9.3
CVE-2026-45779 Open XDMoD Vulnerable to Unauthenticated SQL Injection Leading to Full Database Compromise 08.06.2026 9.3
CVE-2026-11414 Unauthenticated File Exfiltration in Altium Enterprise Server Vault Service via Hard-coded Cryptographic Key and Path Traversal 09.06.2026 10
CVE-2026-10580 Hippoo Mobile App for WooCommerce <= 1.9.4 - Unauthenticated Authentication Bypass to Administrator Account Takeover via REST API 06.06.2026 9.8
CVE-2026-46389 UDS Identity Config has a client authentication bypass in `ClientIdAndKubernetesSecretAuthenticator` 05.06.2026 10
CVE-2026-46395 HAX CMS Vulnerable to Private Key Disclosure via Broken HMAC Implementation 05.06.2026 9.3
CVE-2026-46396 HAX CMS has a stored XSS via <iframe> that allows access to sensitive client-side data and account takeover 09.06.2026 9.3
CVE-2026-46399 Authenticated Remote Code Execution via File Overwrite 08.06.2026 9.4
CVE-2026-46496 HAX CMS: Stored XSS via '<video-player>' component allows arbitrary JavaScript execution and token theft 05.06.2026 9.3
CVE-2025-71317 NetMan 204 Hard-coded Backdoor Credentials 05.06.2026 9.3
CVE-2025-71318 NetMan 204 Missing Authentication for Administrative Functions 08.06.2026 9.3
CVE-2026-45744 Termix has an OS Command Injection in File Manager resolvePath endpoint 10.06.2026 9.9
CVE-2026-45746 Termix Vulnerable to Arbitrary Command Execution via Session Hijacking 10.06.2026 9
CVE-2026-45748 Termix Vulnerable to Remote Code Execution via SSH Tunnel Forward Command Injection 10.06.2026 9.8
CVE-2026-45750 Termix Vulnerable to Arbitrary Command Execution in File Manager 10.06.2026 9

Latest Updates

CVE Title Updated Score
CVE-2026-40677 12.06.2026
CVE-2026-44206 Frappe: DB Schema Enumeration via Frappe-Authorization-Source 12.06.2026
CVE-2026-44207 Frappe: Insecure Direct Object Reference for email accounts 12.06.2026
CVE-2026-44208 Frappe: IDOR in `submit_discussion()` 12.06.2026
CVE-2026-44967 opentelemetry-cpp: OTLP HTTP exporters read unbounded HTTP response 12.06.2026 5.3
CVE-2026-44975 Frappe: Missing authorization on reset form tours 12.06.2026
CVE-2026-44976 Frappe: IDOR in update_onboarding_step 12.06.2026
CVE-2026-45830 12.06.2026
CVE-2026-45831 12.06.2026
CVE-2026-45832 12.06.2026
CVE-2026-45833 12.06.2026
CVE-2026-46690 unbounded-spsc: Sender::send pointer-as-value transmute causes OOB read and fake-Arc drop under TX/RX race 12.06.2026 5.8
CVE-2026-47182 Frappe: Broken Access Control on Private Files 12.06.2026
CVE-2026-47190 IPAM controller service account granted unnecessary full access to Secrets 12.06.2026 4.4
CVE-2026-47691 Netty has Insufficient Bailiwick Validation for NS Records 12.06.2026 8.7
CVE-2026-48006 Netty's Lack of Lifecycle Cleanup Leads to Pooled ByteBuf Leak in RedisArrayAggregator 12.06.2026
CVE-2026-48043 netty-codec-http2: ByteBuf Reference-Count Leak in DelegatingDecompressorFrameListener Leads to Memory Exhaustion 12.06.2026 5.3
CVE-2026-48059 Netty HAProxy: Unbalanced Reference Count in Nested PP2_TYPE_SSL TLV Parsing Leads to Memory Exhaustion 12.06.2026
CVE-2026-48748 Netty HTTP/3 QPACK Blocked Streams Memory Exhaustion 12.06.2026 7.5
CVE-2026-50009 Netty QUIC stateless reset token material exposed through header-visible connection IDs 12.06.2026 4.8
CVE-2026-50010 Netty's wrapping plain trust manager silently disables hostname verification 12.06.2026 7.5
CVE-2026-50011 Netty has unbounded pre-allocation in RedisArrayAggregator from RESP array length 12.06.2026 7.5
CVE-2026-50020 Netty's HttpObjectDecoder skips arbitrary initial control characters when only initial CRLF characters are permitted 12.06.2026 5.3
CVE-2026-50026 Frappe: Lack of permissions checks in 'relink' and 'set_email_password' endpoints 12.06.2026
CVE-2026-50082 Aqara Developer Portal insecure authentication token 12.06.2026 6.5
CVE-2026-50083 Aqara hardcoded OAuth client credentials 12.06.2026 9.1
CVE-2026-50084 Aqara API cross-account access 12.06.2026 9.6
CVE-2026-50085 Aqara Board IoT insecure debug API 12.06.2026 8.6
CVE-2026-50086 Aqara unauthenticated AES oracle 12.06.2026 10
CVE-2026-50087 Aqara IAM/SSO Gateway cross-origin resource sharing 12.06.2026 8.2
CVE-2026-50088 Aqara Developer Portal cross-origin resource sharing 12.06.2026 8.2
CVE-2026-50089 Aqara IAM/SSO Gateway open redirect 12.06.2026 6.1
CVE-2026-50090 Aqara OAuth redirect_uri validation bypass 12.06.2026 9.3
CVE-2026-50091 Aqara Home Android SDK hardcoded keys 12.06.2026 9.1
CVE-2026-50560 Netty susceptible to HTTP/2 Reset Attack with different on-the-wire signature 12.06.2026
CVE-2026-53568 Frappe: Stored XSS in Frappe Report/List View via 'set_link_title_field_value' 12.06.2026
CVE-2026-5792 Authentication Bypass in Related Digital's Related Marketing Cloud (RMC) 12.06.2026 6.5
CVE-2026-8828 12.06.2026
CVE-2026-9638 Crypt::PBKDF2 versions before 0.261630 for Perl generate insecure random values for salts 12.06.2026
CVE-2026-9641 Crypt::PBKDF2 versions before 0.261630 for Perl have a weak default algorithm and number of iterations 12.06.2026
CVE-2026-10557 Yarbo Android/iOS Mobile Application and Cloud Infrastructure Use of Hard-coded Credentials 12.06.2026
CVE-2026-41581 Frappe Vulnerable to Possible SQL Injection via get_blog_list 12.06.2026
CVE-2026-44205 Frappe: Stored Cross-Site Scripting (XSS) in User Profile through Image Upload 12.06.2026
CVE-2026-44893 Netty: HAProxy SSL TLV parsing leaks retained slice on invalid TLV length 12.06.2026 7.5
CVE-2026-44894 Netty's Default QUIC token handler accepts any client-supplied token 12.06.2026 7.5
CVE-2026-45416 Netty: SNI handler pre-allocates up to 16 MiB from nine attacker bytes 12.06.2026 7.5
CVE-2026-45536 Netty: Unix-socket fd receive leaks descriptors when peer sends two at once 12.06.2026 4
CVE-2026-45673 Netty: DNS Cache Poisoning due to Predictable PRNG and Default Static Source Port 12.06.2026 6.8
CVE-2026-45674 Netty Vulnerable to DNS Cache Poisoning via Missing Bailiwick Checks in CNAME Records 12.06.2026 8.7
CVE-2026-46340 Netty: SCTP reassembly nests buffers without bound 12.06.2026 7.5
CVE-2026-47131 vm2: Sandbox Escape 12.06.2026 10
CVE-2026-47135 vm2: Sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks 12.06.2026 8.7
CVE-2026-47137 vm2: GHSA-8hg8-63c5-gwmx patch bypass: nesting:true without explicit require still allows full RCE 12.06.2026 10
CVE-2026-47139 vm2: NodeVM network builtin exclusions bypass via internal _http_client and _http_server 12.06.2026 8.6
CVE-2026-47140 vm2: NodeVM builtin denylist bypass via process and inspector/promises allows host code execution 12.06.2026 10
CVE-2026-47141 vm2: NodeVM observability builtins leak host process and HTTP request data 12.06.2026
CVE-2026-47208 vm2: Sandbox Breakout Using Promise Species 12.06.2026 10
CVE-2026-47209 vm2: Bridge Proxy set trap ignores receiver parameter, enabling host object property injection via prototype chain 12.06.2026 8.6
CVE-2026-47210 vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass 12.06.2026 9.8
CVE-2026-47244 Netty HTTP/2: Advertised MAX_CONCURRENT_STREAMS are not enforced 12.06.2026 5.3
CVE-2026-47739 Frappe: Stored XSS in Note 12.06.2026
CVE-2026-53721 Nuxt: Route-rule middleware bypass via case-sensitivity mismatch between vue-router and the routeRules matcher 12.06.2026
CVE-2026-53722 Nuxt: Reflected XSS in `<NuxtLink>` via unsanitised `javascript:` or `data:` URL 12.06.2026
CVE-2026-53787 Amasty Order Attributes for Magento 2 < 4.0.0 Unauthenticated Arbitrary File Upload 12.06.2026
CVE-2026-54133 jmespath.php has CompilerRuntime code injection via unescaped function names 12.06.2026 9.8
CVE-2026-6211 Arbitrary File Upload in Global IT's WEOLL 12.06.2026 8.7
CVE-2026-6853 OTP Bypass in Başbelen Group's Pause+ Mobile App 12.06.2026 9.8
CVE-2026-7368 Yarbo Android/iOS Mobile Application and Cloud Infrastructure Missing Authorization 12.06.2026
CVE-2026-8694 Improper access control on the API documentation endpoint in PowerShell Universal 12.06.2026
CVE-2017-20240 Crypt::PBKDF2 versions before 0.261630 for Perl are vulnerable to timing attacks 12.06.2026
CVE-2026-11879 Arbitrary code execution in MobaXterm Personal Edition (Portable) 12.06.2026
CVE-2026-11967 Arbitrary code execution in MobaXterm Personal Edition (Portable) 12.06.2026
CVE-2026-12065 Groww Stock, Mutual Fund, Gold App WebView URL improper authorization in handler for custom url scheme 12.06.2026
CVE-2026-12066 PbootCMS Password MemberController.php retrieve password recovery 12.06.2026
CVE-2026-1836 Stored credentials in Redmine 12.06.2026
CVE-2026-45669 Nuxt: Reflected XSS in `navigateTo()` external redirect 12.06.2026
CVE-2026-45670 Nuxt: Dev server exposes built source over LAN to malicious sites (incomplete fix for GHSA-4gf7-ff8x-hq99) 12.06.2026
CVE-2026-46342 Nuxt: `__nuxt_island` endpoint does not bind responses to request props, enabling shared-cache poisoning 12.06.2026
CVE-2026-47200 Nuxt: Route middleware not enforced when rendering `.server.vue` pages via `/__nuxt_island/page_*` 12.06.2026
CVE-2026-49993 @nuxt/webpack-builder and @nuxt/rspack-builder dev server same-origin check bypassed when Sec-Fetch-Site, Origin, and Referer are all absent (incomplete fix for GHSA-6m52-m754-pw2g) 12.06.2026
CVE-2026-54101 12.06.2026
CVE-2026-54102 12.06.2026
CVE-2026-47195 Quest Bot: Per-channel permission overwrite bypass in purge and slowmode commands. 12.06.2026
CVE-2026-47196 Quest Bot: Empty automod rule causes every guild message to be deleted 12.06.2026
CVE-2026-47197 Quest Bot: Discord moderation role hierarchy bypass in ban, kick, mute, unmute, warn, and nickname commands 12.06.2026
CVE-2026-48485 Quest Bot: Stored warn reasons can still trigger bot-powered mass mentions through `/warns`. 12.06.2026
CVE-2026-49347 Quest Bot: Ticket creation has no per-user open-ticket limit or cooldown 12.06.2026
CVE-2026-11848 IEI Integration Corp| iRM-IEI Remote Management - Missing Authentication 12.06.2026
CVE-2026-11849 IEI Integration Corp|iRM-IEI Remote Management - Hard-coded Credentials 12.06.2026
CVE-2026-9266 12.06.2026
CVE-2026-11844 IEI Integration Corp|iVEC-IEI Virtualization Edge Computer - Arbitrary File Read 12.06.2026
CVE-2026-11845 IEI Integration Corp|iVEC-IEI Virtualization Edge Computer - OS Command Injection 12.06.2026
CVE-2026-11846 IEI Integration Corp|iVEC-IEI Virtualization Edge Computer - Arbitrary File Deletion 12.06.2026
CVE-2026-11847 Integration Corp|iVEC-IEI Virtualization Edge Computer - Arbitrary File Deletion 12.06.2026
CVE-2026-48914 Qemu-kvm: heap buffer overflow in virtio-blk scsi request handling 12.06.2026
CVE-2026-49875 Apache CXF: XML External Entity (XXE) Injection in W3CMultiSchemaFactory and EndpointReferenceUtils 12.06.2026
CVE-2026-50623 Apache CXF: Authentication Bypass in OAuth2 TokenIntrospectionService 12.06.2026
CVE-2026-50627 Apache CXF: OAuth2: Missing JWT Audience and Issuer Validation in Access Token Validator 12.06.2026
CVE-2026-50628 Apache CXF: OAuth2: Inverted IP Binding Check Defeats Security Control 12.06.2026
CVE-2026-50629 Apache CXF: OAuth2: Log Injection via Unsanitized Client Identifier 12.06.2026
CVE-2026-50630 Apache CXF: OAuth2: HTTP Response Splitting via WWW-Authenticate Realm Injection 12.06.2026
CVE-2026-50631 Apache CXF: OAuth2: TOCTOU Race Condition in Refresh Token Processing 12.06.2026
CVE-2026-50632 Apache CXF: JNDI Injection Vulnerability in JMSConfigFactory 12.06.2026
CVE-2026-50633 Apache CXF: JNDI Injection vulnerability in DispatchMDBMessageListenerImpl 12.06.2026
CVE-2026-50634 Apache CXF: WS JSON request filter trusts metadata from an unvalidated first signature entry 12.06.2026
CVE-2026-50645 Apache CXF: No restriction on attachment headers per message 12.06.2026
CVE-2026-11535 12.06.2026
CVE-2026-12058 12.06.2026
CVE-2026-12059 Cellopoint|CelloOS - Improper Access Control 12.06.2026
CVE-2026-12060 Hepta Platforms|Heptabase - Exposed Dangerous 12.06.2026
CVE-2026-9269 Secure Copy Content Protection and Content Locking < 5.1.5 - Admin+ Stored XSS via ays_sccp_sub_icon_image Parameter 12.06.2026
CVE-2026-9271 KeepInMind - Dashboard Notes < 0.8.4.2 - Contributor+ Stored XSS 12.06.2026
CVE-2026-44892 Netty has a Vulnerable Default Configuration Which Leads to Denial of Service via Unbounded HTTP/3 Header Size 12.06.2026 7.5
CVE-2026-45169 Idira Privileged Access Manager (PAM) Self-Hosted Vault: Denial of Service due to Unexpected Input Processing 12.06.2026
CVE-2026-20746 PingDirectory copying of virtual attributes leads to memory exhaustion 12.06.2026
CVE-2026-47365 12.06.2026 9.9
CVE-2026-47366 12.06.2026
CVE-2026-47367 12.06.2026 9.9
CVE-2026-47368 12.06.2026 8.6
CVE-2026-47369 12.06.2026 9.9
CVE-2026-47370 12.06.2026 9.9
CVE-2026-48610 12.06.2026 8.1
CVE-2026-48611 12.06.2026
CVE-2026-48612 12.06.2026
CVE-2026-48613 12.06.2026
CVE-2026-11933 Post-authentication use-after-free in server-side JavaScript BSON-to-array conversion 12.06.2026 8.8
CVE-2026-9125 The Ultimate Video Player For WordPress <= 4.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'link_url' Shortcode Attribute 12.06.2026 6.4
CVE-2026-45170 Idira Privilege Cloud Connector: Potential Security Bypass due to Incomplete TLS Certificate Validation 12.06.2026
CVE-2026-10676 11.06.2026
CVE-2026-49482 ClipBucket: SQL Wildcard Injection in Subtitle Edit Endpoint Allows Mass Subtitle Overwrite 12.06.2026 4.3
CVE-2026-42846 ClipBucket: Remote Play URL Command Injection 12.06.2026 9.8
CVE-2026-45060 ClipBucket: Blind SQL Injection in progress_video.php 12.06.2026 9.8
CVE-2026-45418 ClipBucket: Blind SQL Injection in subtitle_edit.php 12.06.2026 8.8
CVE-2026-47238 ClipBucket: IDOR in videos subtitle editor 11.06.2026 6.5
CVE-2026-45171 Idira Privileged Session Manager (PSM): Potential Code Execution due to an Incomplete Input Validation 12.06.2026
CVE-2026-45172 Idira Privileged Session Manager for SSH (PSMP): Arbitrary Command Execution via Improper Neutralization of Special Elements used in an OS Command 12.06.2026
CVE-2026-45173 Idira Identity Browser Extension: Unauthorized Application Interaction via Origin Validation Failure 12.06.2026
CVE-2026-12007 12.06.2026
CVE-2026-12008 12.06.2026
CVE-2026-12009 12.06.2026
CVE-2026-12010 12.06.2026
CVE-2026-12011 12.06.2026
CVE-2026-12012 12.06.2026
CVE-2026-12013 12.06.2026
CVE-2026-12014 12.06.2026
CVE-2026-12015 12.06.2026
CVE-2026-12016 12.06.2026
CVE-2026-12017 12.06.2026
CVE-2026-12018 12.06.2026
CVE-2026-12019 12.06.2026
CVE-2026-12020 12.06.2026
CVE-2026-12022 12.06.2026
CVE-2026-12023 12.06.2026
CVE-2026-12024 12.06.2026
CVE-2026-12025 12.06.2026
CVE-2026-12026 11.06.2026
CVE-2026-12027 12.06.2026
CVE-2026-12028 12.06.2026
CVE-2026-12029 12.06.2026
CVE-2026-12030 12.06.2026
CVE-2026-12031 12.06.2026
CVE-2026-12032 12.06.2026
CVE-2026-12033 12.06.2026
CVE-2026-12034 12.06.2026
CVE-2026-12035 12.06.2026
CVE-2026-39494 WordPress Product Filter by WBW plugin <= 3.1.2 - SQL Injection vulnerability 12.06.2026 9.3
CVE-2026-42647 WordPress JoomSport plugin <= 5.7.7 - SQL Injection vulnerability 11.06.2026 9.3
CVE-2026-42653 WordPress SliceWP plugin <= 1.2.6 - Cross Site Scripting (XSS) vulnerability 12.06.2026 7.1
CVE-2026-44249 Netty has an IPv6 Subnet Filter Bypass via Incorrect Comparator Masking 11.06.2026 8.1
CVE-2026-44250 Netty: Memory Exhaustion in RedisArrayAggregator due to Deeply Nested Arrays 12.06.2026 7.5
CVE-2026-44890 Netty has Unbounded Direct Memory Consumption in its RedisDecoder 12.06.2026 7.5
CVE-2026-45174 Idira Endpoint Privilege Manager Linux Agent: Potential bypass of Agent Daemon Initialization 12.06.2026
CVE-2026-49060 WordPress Hippoo Mobile App for WooCommerce plugin <= 1.9.4 - Privilege Escalation vulnerability 12.06.2026 9.8
CVE-2026-6250 Authenticated Format String Injection on TP-Link Tapo C110 11.06.2026
CVE-2026-41005 UAA accepts SAML Encrypted Assertions authentication bypass 11.06.2026 9
CVE-2026-50005 Brickcom Cameras Use of Default Credentials 12.06.2026
CVE-2026-50245 Brickcom Cameras Missing Authentication for Critical Function 12.06.2026 7.7
CVE-2026-53806 OpenClaw < 2026.5.12 - Shell Option Parsing Bypass in Exec Revalidation 12.06.2026
CVE-2026-53807 OpenClaw < 2026.5.6 - Authorization Bypass in Telegram Interactive Callbacks via commands.allowFrom 12.06.2026
CVE-2026-53808 OpenClaw < 2026.5.6 - Approval Policy Bypass in Skill Workshop Apply Flow 12.06.2026
CVE-2026-53809 OpenClaw < 2026.4.25 - Provider Alias Confusion in Embedded Runner Policy 11.06.2026
CVE-2026-53810 OpenClaw < 2026.5.18 - Arbitrary Code Execution via Unscanned Marketplace Runtime Extension Metadata 12.06.2026
CVE-2026-53811 OpenClaw < 2026.5.7 - Privilege Escalation via Mutable Display Names in Matrix allowFrom 11.06.2026
CVE-2026-53812 OpenClaw < 2026.5.18 - Private-Network Navigation Bypass via Browser Act Interactions 12.06.2026
CVE-2026-53813 OpenClaw < 2026.4.25 - Arbitrary Artifact Loading via Fake Package Root Resolution 12.06.2026
CVE-2026-53814 OpenClaw < 2026.5.20 - Privilege Escalation via Hook-Triggered CLI MCP Tool Authority 11.06.2026
CVE-2026-53815 OpenClaw < 2026.5.19 - Channel Allowlist Bypass in Message Read Actions 12.06.2026
CVE-2026-53816 OpenClaw < 2026.5.18 - Exec Lifecycle Event Forgery via Paired Node 11.06.2026
CVE-2026-53817 OpenClaw < 2026.5.22 - Control UI Locality Spoofing in Device Pairing 12.06.2026
CVE-2026-53818 OpenClaw < 2026.4.24 - Owner-Only Tool Policy Bypass via MCP Loopback 12.06.2026
CVE-2026-53819 OpenClaw < 2026.5.27 - Arbitrary Homebrew Executable Execution via Workspace .env Override 12.06.2026
CVE-2026-12038 11.06.2026
CVE-2026-45175 Idira Endpoint Privilege Manager Agent: Security Control and Cryptographic Validation Bypass in Internal Agent Validation Processes 12.06.2026
CVE-2026-45802 FPDI: Memory Exhaustion and Endless Loop in FPDI leads to Denial of Service 12.06.2026
CVE-2026-46489 SolidInvoice: Unrestricted file upload with no MIME validation allows stored XSS via malicious SVG logo 12.06.2026 8.1
CVE-2026-46622 SolidInvoice: API tokens stored as plaintext in the database allowing full credential compromise on database breach 11.06.2026 8.1
CVE-2026-49949 CodexBar < 0.33.0 Credential Leakage via HTTP Redirect 12.06.2026
CVE-2026-49973 Hermes WebUI < 0.51.358 Unauthenticated Password Takeover via /api/settings 11.06.2026
CVE-2026-53781 Summarize < 0.17.0 Disk Exhaustion via Uncapped Media Download 12.06.2026
CVE-2026-53782 Summarize < 0.17.0 SSRF via podcast:transcript URL fetch 11.06.2026
CVE-2025-24165 11.06.2026
CVE-2025-24268 11.06.2026
CVE-2025-24284 11.06.2026
CVE-2025-30431 11.06.2026
CVE-2025-30459 11.06.2026
CVE-2025-31272 12.06.2026
CVE-2025-43278 11.06.2026
CVE-2025-43339 11.06.2026
CVE-2025-46293 11.06.2026
CVE-2025-46308 11.06.2026
CVE-2025-46313 11.06.2026
CVE-2025-46315 11.06.2026
CVE-2026-11774 389-ds-base: 389-ds-base: integer overflow in sasl packet length bypasses size limit leading to heap buffer overflow 12.06.2026
CVE-2026-45176 Idira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communication or File Operation Manipulation 11.06.2026
CVE-2026-45177 Idira Secrets Manager SaaS Edge: Authentication Bypass of an internal validation mechanism 11.06.2026
CVE-2026-45178 Idira Secrets Manager Self-Hosted: Improper Access Control in Internal Cluster Endpoints 11.06.2026
CVE-2026-46519 mcp-server-kubernetes Affected By Tool Access Control Bypass: Presentation-Layer Filtering Without Execution-Layer Enforcement 11.06.2026 8.8
CVE-2026-47162 Vim: Vimscript Code Injection in netrw NetrwBookHistSave() via crafted directory name 12.06.2026
CVE-2026-47163 Quest Bot: Unprivileged users can create and remove AutoMod rules. 11.06.2026
CVE-2026-47167 Vim: Vimscript Code Injection in cucumber filetype plugin via crafted step-definition regex 12.06.2026
CVE-2026-47169 Quest Bot: Manage Server users can configure AutoRole to grant Administrator to controlled joining accounts 11.06.2026
CVE-2026-47170 Garlic-Hub: SSRF vulnerability in uploadFromUrl endpoint 11.06.2026 7.7
CVE-2026-47171 Quest Bot: Reminder messages allow stored mass mentions through `@everyone` and `@here` 11.06.2026
CVE-2026-47172 Quest Bot: Untrusted pull request code can be built and deployed by privileged `workflow_run` deployment. 11.06.2026
CVE-2026-47173 Quest Bot: Ticket reason allows mass-mention injection 12.06.2026
CVE-2026-47174 Duck Site: Untrusted pull request code can trigger privileged production deployment 11.06.2026
CVE-2026-47175 Quest Bot: Moderation reason fields allow bot-powered `@everyone` / `@here` pings 11.06.2026
CVE-2026-47176 Quest Bot: Logging module can disclose private-channel message contents to a lower-visibility log channel 11.06.2026
CVE-2026-47177 Quest Bot: Ticket transcripts can disclose private ticket contents to a lower-visibility channel 11.06.2026
CVE-2026-47181 PenguinMod-BackendApi: NoSQL Injection in Password Reset Endpoint Allows Account Takeover 11.06.2026
CVE-2026-47188 Quest Bot: Unban and unwarn reason fields still allow bot-powered mass mentions. 11.06.2026
CVE-2026-47189 Quest Bot: AutoMod removal can delete rules from another guild by global rule ID 11.06.2026
CVE-2026-47250 mcp-server-kubernetes: kubectl-generic flag injection enables Kubernetes bearer token exfiltration 11.06.2026 6.1
CVE-2026-48547 KanaDojo < 0.1.18 Command Injection via patchNotesData.json in release.yml 11.06.2026
CVE-2026-52858 Vim: Arbitrary Code Execution via Python Omni-Completion 12.06.2026
CVE-2026-52859 Vim: Out-of-bounds Read in Terminal Screen Snapshot 11.06.2026
CVE-2026-52860 Vim: Arbitrary Code Execution via Python Omni-Completion 12.06.2026
CVE-2026-53701 Gstreamer1-plugins-bad-free: gstreamer: out-of-bounds write in h.266/vvc pps picture partition parser 11.06.2026
CVE-2026-53702 Gstreamer1-plugins-bad-free: gstreamer: stack buffer overflow in h.265 buffering period sei parser 11.06.2026
CVE-2026-48546 KanaDojo < 0.1.18 Sandbox Escape RCE via messages.cjs 11.06.2026