Lucene search
K

1418 matches found

NVD
NVD
added 2026/05/27 6:16 p.m.23 views

CVE-2026-45718

Budibase is an open-source low-code platform. Prior to 3.38.1, the row action trigger endpoint POST /api/tables/:sourceId/actions/:actionId/trigger fails to validate that the user-supplied rowId is within the scope of the view's row filters. A user with access to a filtered view can trigger row...

5.4CVSS0.00146EPSS
Exploits0References2
Veeam
Veeam
added 2026/05/27 12:0 a.m.34 views

Vulnerability Resolved in Veeam Service Provider Console 9.2.1

All vulnerabilities documented in this article were resolved in Veeam Service Provider Console 9.2.1.33875. Veeam Software Security Commitment Veeam® is committed to ensuring its products protect customers from potential risks. As part of that commitment, we operate a Vulnerability Disclosure...

9.4CVSS6.2AI score0.00403EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2026/05/26 4:34 p.m.47 views

CVE-2026-45721 Algernon: handler.lua discovery walks parent directories above the server root

Algernon is a small self-contained pure-Go web server. Prior to 1.17.7, when Algernon is asked for any URL path that resolves to a directory without an index file, DirPage walks upward through parent directories — past the configured server root — looking for a file named handler.lua to execute a...

9CVSS0.00437EPSS
Exploits0References1
Debian
Debian
added 2026/05/21 6:38 p.m.28 views

[SECURITY] [DSA 6288-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6288-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 21, 2026 https://www.debian.org/security/faq -...

9.8CVSS6.1AI score0.00605EPSS
Exploits0
CVE
CVE
added 2026/05/20 7:27 p.m.20 views

CVE-2026-39352

Frappe is affected by an Arbitrary File Read via Path Traversal in render_include. Versions prior to 15.105.0 and 16.15.0 are vulnerable; the issue is resolved in 16.15.0, 15.105.0 and later. Affected software: Frappe framework (full-stack web app). Root cause: path traversal in render_include en...

8.7CVSS5.8AI score0.01279EPSS
Exploits0References2
CVE
CVE
added 2026/05/20 9:21 a.m.43 views

CVE-2026-42960

Unbound CVE-2026-42960 affects versions up to 1.25.0. The vulnerability arises from poisoning attempts using promiscuous RRSets in the authority section; an attacker could spoof replies or leverage fragmentation to inject non-NS address records in the additional section and have Unbound cache the...

10CVSS5.7AI score0.00249EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/05/19 7:3 p.m.17 views

EUVD-2026-30972

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and below, a crafted 792-byte HEIF sequence file with samplesperchunk=0 in the stsc box causes an unsigned integer underflow in the Chunk constructor mlastsample = 0 + 0 - 1 = UINT32MAX, mapping all samples to an empty...

6.5CVSS5.7AI score0.00301EPSS
Exploits1References1
NVD
NVD
added 2026/05/18 9:16 p.m.18 views

CVE-2026-25244

WebdriverIO is a test automation framework for unit, e2e and component testing using WebDriver, WebDriver BiDi and Appium. Versions below 9.24.0 contain a command injection vulnerability leading to remote code execution RCE in test orchestration. Git permits branch names containing shell...

9.8CVSS0.02799EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/05/15 7:41 p.m.48 views

CVE-2026-44559 Open WebUI: Missing Access Check on Channel Members Endpoint for Standard Channels

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the GET /api/v1/channels/id/members endpoint only checks membership for group and dm channel types lines 467-469. For standard channels — including private ones — there is no...

4.3CVSS0.00221EPSS
Exploits1References1
NVD
NVD
added 2026/05/15 5:16 p.m.13 views

CVE-2026-45539

Microsoft APM is an open-source, community-driven dependency manager for AI agents. From 0.5.4 to 0.12.4, two primitive integrators in apm-cli enumerate package files with bare Path.glob / Path.rglob calls and read each match with Path.readtext, transparently following symbolic links. A symlink...

7.4CVSS0.00654EPSS
Exploits0References1
OSV
OSV
added 2026/05/14 12:0 p.m.15 views

RUSTSEC-2026-0142 Double-free in `vmem` storage reachable from safe Rust (predecessor of `oneringbuf`)

mutringbuf is the archived predecessor of oneringbuf — the crate was renamed and the GitHub repository was archived on 2025-11-20. All released versions up to 1.0.0 carry the same vmem-feature double-free bug that affects oneringbuf, with the same code paths and the same reproduction shape. When...

5.9AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/13 8:30 p.m.8 views

CVE-2026-44372 Nitro: Open Redirect via Protocol-Relative URL Bypass in Wildcard Route Rules

Nitro is a next generation server toolkit. Prior to 3.0.260429-beta, an attacker could turn a redirect route rule using wildcards rewrite into a cross-host redirect by sliding an extra slash in after the rule prefix. This vulnerability is fixed in 3.0.260429-beta...

5.3CVSS5.8AI score0.00237EPSS
Exploits0References4
NVD
NVD
added 2026/05/13 7:17 p.m.12 views

CVE-2026-42582

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final, when decoding header blocks, the non-Huffman branch of io.netty.handler.codec.http3.QpackDecoderdecodeHuffmanEncodedLiteral may execute new bytelength for a string literal before verifying that length byt...

7.5CVSS0.00437EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/13 6:0 p.m.35 views

CVE-2026-42577 Netty: epoll transport denial of service via RST on half-closed TCP connection

Netty is an asynchronous, event-driven network application framework. From 4.2.0.Final to 4.2.13.Final , Netty's epoll transport fails to detect and close TCP connections that receive a RST after being half-closed, leading to stale channels that are never cleaned up and, in some code paths, a 100...

7.5CVSS0.00408EPSS
Exploits0References3
NVD
NVD
added 2026/05/13 5:16 p.m.21 views

CVE-2026-44574

Next.js is a React framework for building full-stack web applications. From 15.4.0 to before 15.5.16 and 16.2.5, applications that rely on middleware to protect dynamic routes can be vulnerable to authorization bypass. In affected deployments, specially crafted query parameters can alter the...

8.1CVSS0.00485EPSS
Exploits2References6
NVD
NVD
added 2026/05/13 4:16 p.m.43 views

CVE-2026-44292

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs generated message constructors copied enumerable properties from a provided properties object without filtering the proto key. If an application constructed a message from an...

5.3CVSS0.00264EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/12 9:33 p.m.6 views

CVE-2026-44302

Snappier is a high performance C implementation of the Snappy compression algorithm. Prior to 1.3.1, Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. This vulnerability is fixed in 1.3.1...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/12 3:31 p.m.23 views

EUVD-2026-29466

Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150.0.3...

5.8AI score0.00298EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/11 9:5 p.m.32 views

CVE-2026-43887 Outline: Stored XSS via Comment Mentions

Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.6.1, the Outline comment section permits users to mention other users; however, the backend does not validate or sanitize the href attribute associated with these mentions. As a result, potentially dangerous...

7.3CVSS0.00245EPSS
Exploits0References1
PyPA
PyPA
added 2026/05/11 6:16 p.m.30 views

PYSEC-2026-128

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, package folder names are sanitized using insufficient string replacement. The pattern ....// becomes .. after replacement partial removal, leaving .. which can be exploited when the path is later resolve...

6.5CVSS5.8AI score0.00342EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder