2848169 matches found
EUVD-2026-41684
A security vulnerability has been detected in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 13fd582aaf49aeab7438acc0fc3eb973a1f5e6a7. The affected element is the function getCartItems in the library application/libraries/ShoppingCart.php. The manipulation of the argument shoppingcart leads to...
CVE-2026-58299
creationtimestamp| type| source ---|---|--- 2026-07-04 17:03:50+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mptk5alcyx2n 2026-07-04 23:00:59+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpu63ulapi2m...
CVE-2026-14634
Summary (CVE-2026-14634) The vulnerability exists in kirilkirkov’s Ecommerce-CodeIgniter-Bootstrap (up to commit 213babdbaa949e94557246414db0130e01394517) and affects the function checkForPostRequests in the file application/core/MY_Controller.php for the Subscribed Emails Admin Page. Manipulatio...
CVE-2026-14622
creationtimestamp| type| source ---|---|--- 2026-07-04 16:01:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mptgodkan32e 2026-07-04 23:10:32+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mpu6mxdsdk2o...
CVE-2026-14534
creationtimestamp| type| source ---|---|--- 2026-07-04 15:00:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mptdapphgk2e 2026-07-04 17:21:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mptl5ij5me2o...
CVE-2026-14535
creationtimestamp| type| source ---|---|--- 2026-07-04 15:00:24+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mptdaiw4eg2o 2026-07-04 17:26:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mptlggwepy2o...
DEBIAN-CVE-2026-53362
In the Linux kernel, the following vulnerability has been resolved: ipv6: account for fraggap on the paged allocation path In ip6appenddata, when the paged-allocation branch is taken MSGMORE / NETIFFSG / large fraglen, alloclen and pagedlen are computed as alloclen = fragheaderlen + transhdrlen;...
DEBIAN-CVE-2026-53360
In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use As per the GHCB spec, when using GHCB v2+ require the software scratch area to reside in the GHCB's shared buffer. Note, things like Page State Change PSC requests rely...
DEBIAN-CVE-2026-53361
In the Linux kernel, the following vulnerability has been resolved: afunix: Set gcinprogress to true in unixgc. Igor Ushakov reported that unixgc could run with gcinprogress being false if the work is scheduled while running: Thread 1 Thread 2 Thread 3 -------- -------- -------- unixschedulegc...
EUVD-2026-41676
In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditionally calls AnalysisContext.shortencodenode on every import node it inspects, regardless of whether the import is flagged as unsafe. This call registers the shortened code representation in...
CVE-2026-14627
The vulnerability CVE-2026-14627 affects NousResearch hermes-agent up to 0.15.2, specifically the Discord Platform Integration’s DiscordAdapter._is_allowed_user in gateway/platforms/discord.py. The root cause is improper authentication caused by manipulation of this function, enabling a remote at...
EUVD-2026-41671
HestiaCP panel cronjob feature is affected by a broken access control vulnerability. Low privilege users can modify the panel cronjob to execute scripts HestiaCP management scripts with passwordless sudo. This could result in the takeover of administrator users in the application and the underlyi...
CVE-2026-14624
A vulnerability was identified in omec-project amf up to 2.0.2/2.1.1. Impacted is an unknown function of the file /go/src/amf/ngap/handler.go of the component NGSetupRequest Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit is public...
EUVD-2026-41663
A vulnerability was identified in omec-project amf up to 2.0.2/2.1.1. Impacted is an unknown function of the file /go/src/amf/ngap/handler.go of the component NGSetupRequest Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit is public...
CVE-2026-14623
CVE-2026-14623 affects omec-project amf up to 2.1.1. The vulnerability lies in the NGAP Message Handler function RRCInactiveTransitionReport, where manipulation can cause a remote denial of service. Exploit code maturity is shown as PROOF-OF-CONCEPT, and a public exploit has been disclosed. A pat...
EUVD-2026-41661
A vulnerability was found in jairiidriss restaurant-website-php-mysql up to 521428b5b612449df0cf4a5d15ee40cba67f3d35. This vulnerability affects unknown code of the file /admin/ajaxfiles of the component AJAX Endpoint. Performing a manipulation results in missing authentication. The attack is...
EUVD-2026-41660
A vulnerability has been found in FederatedAI FATE up to 2.2.0. This affects the function QueuePushReqStreamObserver.initEggroll of the file java/osx/osx-broker/src/main/java/org/fedai/osx/broker/grpc/QueuePushReqStreamObserver.java of the component OSX Broker. Such manipulation of the argument...
CVE-2025-71367
creationtimestamp| type| source ---|---|--- 2026-07-04 05:33:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpsdkzbpgt2o 2026-07-04 13:00:58+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpt4kx6m7d27...
CVE-2025-71362
creationtimestamp| type| source ---|---|--- 2026-07-04 05:23:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpscz4fsdo2o 2026-07-04 12:01:21+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpszae66bj2o...
CVE-2025-71380
creationtimestamp| type| source ---|---|--- 2026-07-04 05:18:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpscq5xwk62k 2026-07-04 07:00:46+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpsiguotxr26...