Lucene search
K

16788 matches found

NVD
NVD
added yesterday2 views

CVE-2026-50363

Heap-based buffer overflow in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS
Exploits0References1
NVD
NVD
added yesterday3 views

CVE-2026-44800

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

7.8CVSS
Exploits0References1
CVE
CVE
added yesterday5 views

CVE-2026-50363

CVE-2026-50363 is a Windows Push Notifications elevation-of-privilege vulnerability characterized by a heap-based buffer overflow. An authorized, local attacker could escalate privileges. Microsoft has released updates addressing this (e.g., KB5095051 and MSRC/MSVC advisories) and recommends appl...

7.8CVSS6.1AI score
Exploits0References1
Cvelist
Cvelist
added yesterday12 views

CVE-2026-44800 Windows Push Notifications Elevation of Privilege Vulnerability

...

7.8CVSS
Exploits0References1
Positive Technologies
Positive Technologies
added yesterday4 views

PT-2026-58346

Name of the Vulnerable Software and Affected Versions Windows Push Notifications affected versions not specified Description A heap-based buffer overflow exists in Windows Push Notifications. This flaw allows an authorized attacker to elevate privileges locally. A heap-based buffer overflow occur...

7.8CVSS6.1AI score
Exploits0References3
Positive Technologies
Positive Technologies
added yesterday3 views

PT-2026-58126

Name of the Vulnerable Software and Affected Versions Windows Push Notifications affected versions not specified Description A race condition exists in Windows Push Notifications, where concurrent execution using a shared resource with improper synchronization allows an authorized attacker to...

7.8CVSS6.2AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2 days ago3 views

CVE-2026-53365

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix zerocopy completion for multi-skb sends When a large message is fragmented into multiple skbs, the zerocopy uarg is only allocated and attached to the last skb in the loop. Non-final skbs carry pinned user pages...

6AI score0.00155EPSS
Exploits0References4Affected Software1
NVD
NVD
added 5 days ago12 views

CVE-2026-58225

SQL Injection vulnerability in elixir-ecto postgrex allows an attacker who can influence a LISTEN channel name to inject SQL into the reconnect replay query, causing a denial of service of the notification connection. Postgrex.Notifications sanitizes channel names with quotechannel/1, which doubl...

2.1CVSS0.00163EPSS
Exploits0References4
Cvelist
Cvelist
added 5 days ago32 views

CVE-2026-58225 SQL injection via unescaped dollar-quote in Postgrex.Notifications reconnect replay causes notification denial of service

SQL Injection vulnerability in elixir-ecto postgrex allows an attacker who can influence a LISTEN channel name to inject SQL into the reconnect replay query, causing a denial of service of the notification connection. Postgrex.Notifications sanitizes channel names with quotechannel/1, which doubl...

2.1CVSS0.00163EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 5 days ago5 views

CVE-2026-58225

SQL Injection vulnerability in elixir-ecto postgrex allows an attacker who can influence a LISTEN channel name to inject SQL into the reconnect replay query, causing a denial of service of the notification connection. Postgrex.Notifications sanitizes channel names with quotechannel/1, which doubl...

2.1CVSS6.3AI score0.00163EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 5 days ago8 views

CVE-2026-58225 SQL injection via unescaped dollar-quote in Postgrex.Notifications reconnect replay causes notification denial of service

SQL Injection vulnerability in elixir-ecto postgrex allows an attacker who can influence a LISTEN channel name to inject SQL into the reconnect replay query, causing a denial of service of the notification connection. Postgrex.Notifications sanitizes channel names with quotechannel/1, which doubl...

2.1CVSS6.3AI score0.00163EPSS
Exploits0References4
EUVD
EUVD
added 5 days ago6 views

EUVD-2026-42867

SQL Injection vulnerability in elixir-ecto postgrex allows an attacker who can influence a LISTEN channel name to inject SQL into the reconnect replay query, causing a denial of service of the notification connection. Postgrex.Notifications sanitizes channel names with quotechannel/1, which doubl...

2.1CVSS6.3AI score0.00163EPSS
Exploits0References4
CVE
CVE
added 5 days ago13 views

CVE-2026-58225

This CVE affects postgrex (specifically Postgrex.Notifications) used with elixir-ecto. The root cause is a SQL injection-like flaw in the reconnect replay: on (re)connect, handle_connect/1 concatenates LISTEN statements and wraps them in a dollar-quoted block (DO $$ ... $$). quote_channel/1 doubl...

2.1CVSS6.3AI score0.00163EPSS
Exploits0References4
CVE
CVE
added 6 days ago8 views

CVE-2026-53961

CVE-2026-53961 concerns Discourse, an open-source discussion platform. Prior to the fixed versions, the AWS SES bounce webhook at POST /webhooks/aws did not bind SNS-signed messages to trusted TopicArn values, enabling any AWS account holder to publish forged Bounce notifications that revoke a ta...

6.5CVSS6AI score0.00221EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 6 days ago31 views

CVE-2026-53961 Discourse: Forged AWS SNS bounce notifications can disable a targeted user's email (missing TopicArn binding)

Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, the AWS SES bounce webhook at POST /webhooks/aws verified that SNS messages were signed by Amazon but did not bind them to trusted TopicArn values, allowing any AWS account holder to publish...

6.5CVSS0.00221EPSS
Exploits0References9
NVD
NVD
added 6 days ago9 views

CVE-2025-58146

There are multiple issues. 1. Updates to the XAPI database sanitise input strings, but try generating the notification using the unsanitised input. This causes the database's event thread to terminate and cease further processing. 2. XAPI's UTF-8 encoder implements v3.0 of the Unicode spec, but...

9.4CVSS0.00137EPSS
Exploits0References3
NVD
NVD
added 2026/07/06 8:16 a.m.13 views

CVE-2024-6228

The Notifications for Forms & WordPress Actions WordPress plugin before 2.6 does not validate a user-supplied value before using it to build a server-side file inclusion path, allowing authenticated users with subscriber-level access and above to include and execute arbitrary local PHP files on t...

7.5CVSS0.00318EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/06 6:0 a.m.5 views

EUVD-2024-55649

The Notifications for Forms & WordPress Actions WordPress plugin before 2.6 does not validate a user-supplied value before using it to build a server-side file inclusion path, allowing authenticated users with subscriber-level access and above to include and execute arbitrary local PHP files on t...

7.5CVSS6.2AI score0.00318EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/06 12:0 a.m.8 views

PT-2026-55863

Name of the Vulnerable Software and Affected Versions Notifications for Forms & WordPress Actions versions prior to 2.6 Description Authenticated users with subscriber-level access and above can include and execute arbitrary local PHP files on the server. This occurs because the plugin fails to...

7.5CVSS6.3AI score0.00318EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/07/03 12:0 a.m.8 views

Ubuntu 26.04 LTS : Linux kernel (OEM) vulnerabilities (USN-8489-1)

"The remote Ubuntu 26.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8489-1 advisory. It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag....

9.8CVSS7.3AI score0.93235EPSS
Exploits78References166
Rows per page
Query Builder