Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

219106 matches found

Vulnrichment
Vulnrichmentadded 2026/06/09 10:48 a.m.6 views

CVE-2026-11607 TYPO3 CMS - Broken Access Control in Form Framework

Backend users with access to the Form Framework were able to use files not ending in .form.yaml as form definitions, which were processed without denying the incorrect file extension. Maliciously crafted form definition files can be used to execute arbitrary SQL statements, allowing attackers to...

7.6CVSS6AI score0.00414EPSS
Exploits0References3
CVE
CVEadded 2026/06/09 10:48 a.m.19 views

CVE-2026-11607

TYPO3 CMS vulnerability CVE-2026-11607 affects the Form Framework in multiple TYPO3 releases (before 10.4.57, 11.x before 11.5.51, 12.x before 12.4.46, 13.x before 13.4.31, and 14.x before 14.3.3). A back-end user with access to the Form Framework can upload or reference form definitions from fil...

7.6CVSS6AI score0.00414EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/06/09 10:48 a.m.28 views

CVE-2026-11607 TYPO3 CMS - Broken Access Control in Form Framework

Backend users with access to the Form Framework were able to use files not ending in .form.yaml as form definitions, which were processed without denying the incorrect file extension. Maliciously crafted form definition files can be used to execute arbitrary SQL statements, allowing attackers to...

7.6CVSS0.00414EPSS
Exploits0References3
Snyk
Snykadded 2026/06/09 10:23 a.m.3 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization due to insufficient access controls on the API endpoints handling unlisted questions. An attacker can retrieve sensitive content, including unlisted questions, their answers, comments, and revision history, by...

7.1CVSS5.3AI score0.00325EPSS
Exploits0References2
Snyk
Snykadded 2026/06/09 10:23 a.m.3 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization due to insufficient access controls on the API endpoints handling unlisted questions. An attacker can retrieve sensitive content, including unlisted questions, their answers, comments, and revision history, by...

7.1CVSS5.3AI score0.00325EPSS
Exploits0References2
NVD
NVDadded 2026/06/09 10:16 a.m.14 views

CVE-2025-40808

A vulnerability has been identified in SIPROTEC 5 6MD84 CP300 All versions, SIPROTEC 5 6MD85 CP200 All versions, SIPROTEC 5 6MD85 CP300 All versions, SIPROTEC 5 6MD86 CP200 All versions, SIPROTEC 5 6MD86 CP300 All versions, SIPROTEC 5 6MD89 CP300 All versions, SIPROTEC 5 6MU85 CP300 All versions,...

6.9CVSS0.00186EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/06/09 9:47 a.m.8 views

Malicious code in os-ulid-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 531ba01f5b5d2442cc8070ae6feec31976f9b67957fa3b0936c2cea7b6034b81 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.5AI score
Exploits0References1
OSV
OSVadded 2026/06/09 9:47 a.m.7 views

MAL-2026-5348 Malicious code in os-ulid-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 531ba01f5b5d2442cc8070ae6feec31976f9b67957fa3b0936c2cea7b6034b81 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.5AI score
Exploits0References1
Friends Of PHP
Friends Of PHPadded 2026/06/09 9:6 a.m.7 views

TYPO3-CORE-SA-2026-019: Broken Access Control in Form Framework

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-019...

7.6CVSS5.4AI score0.00414EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 9:1 a.m.5 views

TYPO3-CORE-SA-2026-016: Broken Access Control in File Abstraction Layer

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-016...

2.1CVSS5.4AI score0.00521EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 9:1 a.m.6 views

TYPO3-CORE-SA-2026-015: Broken Access Control in Backend API

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-015...

5.3CVSS5.4AI score0.00414EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 9:0 a.m.5 views

TYPO3-CORE-SA-2026-014: Broken Access Control in Clipboard

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-014...

5.3CVSS5.4AI score0.00238EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 8:59 a.m.6 views

TYPO3-CORE-SA-2026-013: Broken Access Control in Media Module

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-013...

7.1CVSS5.4AI score0.00459EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 8:58 a.m.6 views

TYPO3-CORE-SA-2026-012: Broken Access Control in DataHandler

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-012...

5.3CVSS5.4AI score0.00414EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 8:58 a.m.5 views

TYPO3-CORE-SA-2026-011: Broken Access Control in Recycler

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-011...

5.3CVSS5.4AI score0.00414EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 8:56 a.m.7 views

TYPO3-CORE-SA-2026-008: Broken Access Control in Form Framework

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-008...

7.6CVSS5.4AI score0.00439EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/09 8:55 a.m.5 views

TYPO3-CORE-SA-2026-007: Broken Access Control in File Abstraction Layer

More info at https://typo3.org/security/advisory/typo3-core-sa-2026-007...

7.2CVSS5.4AI score0.00414EPSS
Exploits0Affected Software1
Cvelist
Cvelistadded 2026/06/09 8:46 a.m.31 views

CVE-2025-40808

A vulnerability has been identified in SIPROTEC 5 6MD84 CP300 All versions, SIPROTEC 5 6MD85 CP200 All versions, SIPROTEC 5 6MD85 CP300 All versions, SIPROTEC 5 6MD86 CP200 All versions, SIPROTEC 5 6MD86 CP300 All versions, SIPROTEC 5 6MD89 CP300 All versions, SIPROTEC 5 6MU85 CP300 All versions,...

6.9CVSS0.00186EPSS
Exploits0References1
NVD
NVDadded 2026/06/09 8:16 a.m.10 views

CVE-2026-41973

Permission control vulnerability in calls. Impact: Successful exploitation of this vulnerability may affect availability...

5.9CVSS0.00111EPSS
Exploits0References1
NVD
NVDadded 2026/06/09 8:16 a.m.10 views

CVE-2026-41974

Permission control vulnerability in service notifications. Impact: Successful exploitation of this vulnerability may affect availability...

3.6CVSS0.00106EPSS
Exploits0References2
Rows per page
Query Builder