CVE-2026-9526

creationtimestamp| type| source ---|---|--- 2026-05-26 08:53:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmqml7wzde2c...

CVE-2026-9526 itsourcecode Electronic Judging System edit_team.php sql injection

A vulnerability was found in itsourcecode Electronic Judging System 1.0. This vulnerability affects unknown code of the file /admin/editteam.php. The manipulation of the argument numid results in sql injection. The attack may be launched remotely. The exploit has been made public and could be use...

CVE-2026-26930

SmarterTools SmarterMail before 9526 allows XSS via MAPI requests...

📄 SmarterMail 9518 Cross Site Scripting

SmarterMail versions 9518 and below have an issue where user input passed through the MailboxId GET parameter to the MAPI endpoints is not properly sanitized before being used to generate HTML output. This can be exploited by attackers to perform reflective cross site scripting attacks which, in...

CVE-2026-26930

CVE-2026-26930 affects SmarterTools SmarterMail prior to version 9526, where XSS is possible via MAPI requests. The CVSS v3.1 base score is 7.2 (HIGH) with network attack vector, no privileges required, user interaction not required, and a changed scope. Patch guidance is to upgrade to 9526 or la...

CVE-2026-26930

SmarterTools SmarterMail before 9526 allows XSS via MAPI requests...

CVE-2026-26930

SmarterTools SmarterMail before 9526 allows XSS via MAPI requests...

PT-2026-8360

Name of the Vulnerable Software and Affected Versions SmarterTools SmarterMail versions prior to 9526 Description SmarterTools SmarterMail is susceptible to a cross-site scripting XSS issue through MAPI requests. The issue allows for the injection of malicious scripts via crafted MAPI requests...

SmarterTools SmarterMail 安全漏洞

SmarterTools SmarterMail is a set of email server software developed by SmarterTools Corporation. This software supports features such as spam filtering, data statistics, and Simple Mail Transfer Protocol SMTP authentication. Previous versions of SmarterTools SmarterMail version 9526 had security...

RockyLinux 9 : pam (RLSA-2025:9526)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:9526 advisory. linux-pam: Linux-pam directory Traversal CVE-2025-6020 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. Note...

CVE-2025-9526

creationtimestamp| type| source ---|---|--- 2025-08-27 13:09:13+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115100886714680020...

CVE-2025-9526 Linksys E1700 setSysAdm stack-based overflow

A vulnerability has been found in Linksys E1700 1.0.0.4.003. Affected by this issue is the function setSysAdm of the file /goform/setSysAdm. Such manipulation of the argument rmport leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the...

MAL-2025-9526 Malicious code in @teamteanpm2024/ipsa-quaerat-minima (npm)

The package @teamteanpm2024/ipsa-quaerat-minima was found to contain malicious code...

CGA-9526-H72H-JCHC

Bulletin has no description...

AlmaLinux 9 : pam (ALSA-2025:9526)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9526 advisory. linux-pam: Linux-pam directory Traversal CVE-2025-6020 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note th...

Oracle Linux 9 : pam (ELSA-2025-9526)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9526 advisory. 1.5.1-25.0.1 - pamlimits: fix use after free in pamsmopensession Orabug: 36406534 1.5.1-25 - pamnamespace: fix potential privilege escalation. Resolves:...

CVE-2020-9526

CS2 Network P2P through 3.x, as used in millions of Internet of Things devices, suffers from an information exposure flaw that exposes user session data to supernodes in the network, as demonstrated by passively eavesdropping on user video/audio streams, capturing credentials, and compromising...

CVE-2024-9526

creationtimestamp| type| source ---|---|--- 2024-11-18 13:36:36+00:00| seen| https://infosec.exchange/users/cve/statuses/113504222958844877 2024-11-18 15:42:50+00:00| seen| https://t.me/cvedetector/11337...

CVE-2024-9526 Stored XSS in Kubeflow Pipeline View

There exists a stored XSS Vulnerability in Kubeflow Pipeline View web UI. The Kubeflow Web UI allows to create new pipelines. When creating a new pipeline, it is possible to add a description. The description field allows html tags, which are not filtered properly. Leading to a stored XSS. We...

CGA-8PH8-2PH8-9526

Bulletin has no description...