4931786 matches found
UBUNTU-CVE-2026-11386
An input validation and injection vulnerability exists in Canonical ubuntu-pro-client formerly ubuntu-advantage-tools. The client constructs APT source files such as /etc/apt/sources.list.d/ubuntu-.list or their DEB822 equivalents using data received directly from the contract server response via...
UBUNTU-CVE-2026-9494
An information disclosure vulnerability exists in Canonical ubuntu-pro-client formerly ubuntu-advantage-tools. The client validates Ubuntu Pro APT credentials by executing /usr/lib/apt/apt-helper using the download-file command. During this process, the secret bearer token is embedded directly in...
UBUNTU-CVE-2026-12391
An insecure symlink following vulnerability exists in Canonical ubuntu-pro-client formerly ubuntu-advantage-tools within the pro collect-logs command framework. The utility creates or utilizes predictable temporary file paths or user-accessible log directories when gathering diagnostic informatio...
CVE-2026-8616
The Fense Proxy & VPN Blocker plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check and missing nonce validation on the fensebpvtsavesettings function in versions up to, and including, 3.0.1. The callback is registered to both wpajax and...
CVE-2026-11324
The WooCommerce Placetopay Gateway and PlacetoPay/AvalPay gateway plugins for WordPress are vulnerable to Reflected Cross-Site Scripting via the 'redirect-url' parameter in versions up to, and including, 3.2.2 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2026-15159
The Ninja Forms - Excel Export plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.3.6 via the 'spreadsheetexportformid' parameter due to missing validation on a user controlled key. This makes it possible for authenticated attackers, wit...
CVE-2026-15160
The Ninja Forms - Excel Export plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.6 via the 'spreadsheetexporttmpname' parameter. This makes it possible for authenticated attackers, with subscriber-level access and above, to write .xls/.xlsx files ...
CVE-2026-15395
The Kali Forms — Contact Form & Drag-and-Drop Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'digitalSignature' Field Value in all versions up to, and including, 2.4.18 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2026-62231
creationtimestamp| type| source ---|---|--- 2026-07-17 03:33:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqssvvbovb2s...
CVE-2026-62202
creationtimestamp| type| source ---|---|--- 2026-07-17 03:28:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqssmwu5wm2n...
CVE-2026-62234
creationtimestamp| type| source ---|---|--- 2026-07-17 03:18:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqss2zusdv2o...
CVE-2026-62230
creationtimestamp| type| source ---|---|--- 2026-07-17 03:13:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsrs36hcw2w...
CVE-2026-62229
creationtimestamp| type| source ---|---|--- 2026-07-17 03:08:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsrkfmfyx2c...
CVE-2026-62223
creationtimestamp| type| source ---|---|--- 2026-07-17 03:05:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsrdon7ah2c...
CVE-2026-62386
creationtimestamp| type| source ---|---|--- 2026-07-17 03:01:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsr5pk5ux2s...
CVE-2026-62203
creationtimestamp| type| source ---|---|--- 2026-07-17 02:58:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsqydgkra2n...
CVE-2026-62209
creationtimestamp| type| source ---|---|--- 2026-07-17 02:56:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsqtgyf7t2x...
CVE-2026-62233
creationtimestamp| type| source ---|---|--- 2026-07-17 02:53:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsqoxkcre2u...
CVE-2026-62207
creationtimestamp| type| source ---|---|--- 2026-07-17 02:51:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsqkt3uoy2m...
CVE-2026-62215
creationtimestamp| type| source ---|---|--- 2026-07-17 02:49:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqsqgy4pt32i...