1402 matches found
CVE-2026-7299
Appsmith’s SQL query editor’s autocomplete functionality fails to sanitize database object names before rendering them in innerHTML, allowing an authenticated Developer to inject persistent XSS by a malicious table or column names triggering arbitrary code execution in the sessions of other...
CVE-2026-39814
A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.1 through 7.4.12, FortiWeb 7.2.7 through 7.2.12, FortiWeb 7.0.10 through 7.0.12 may allow attacker to execute unauthorized code or commands via...
CVE-2026-39812
A improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox PaaS 5.0.0 through 5.0.5, FortiSandbox PaaS 4.4.0 through 4.4.8,...
CVE-2026-9208
Tanium addressed an unauthorized code execution vulnerability in Connect...
CVE-2026-9207
Tanium addressed an unauthorized code execution vulnerability in Connect...
FortiWLM - Directory Traversal
A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specially crafted web requests. id: CVE-2023-34990 info: name: FortiWLM - Directory Traversal author: DhiyaneshDk severity: critical...
CVE-2026-9038
A stack-based buffer overflow vulnerability in the charging controller’s signal-processing logic allows an attacker with physical access to the charging interface to supply message fields that exceed expected bounds. Because the input is not sufficiently validated, memory corruption may occur,...
CVE-2026-9038 Stack-based buffer overflow in XCharge C6
A stack-based buffer overflow vulnerability in the charging controller’s signal-processing logic allows an attacker with physical access to the charging interface to supply message fields that exceed expected bounds. Because the input is not sufficiently validated, memory corruption may occur,...
CVE-2026-44277
A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticator 6.6.0 through 6.6.8, FortiAuthenticator 6.5.0 through 6.5.6 may allow attacker to execute unauthorized code or commands via crafted requests...
SolarView Compact 6.00 - OS Command Injection
SolarView Compact 6.00 was discovered to contain a command injection vulnerability, attackers can execute commands by bypassing internal restrictions through downloader.php. id: CVE-2023-23333 info: name: SolarView Compact 6.00 - OS Command Injection author: Mr-xn severity: critical description: ...
EUVD-2026-32667
Tanium addressed an unauthorized code execution vulnerability in Connect...
CVE-2026-9208
Tanium addressed an unauthorized code execution vulnerability in Connect...
CVE-2026-45989
A flaw was found in the Linux kernel, specifically within the testdrvprobe function. This vulnerability, known as a use-after-free, occurs because the system prematurely releases a memory reference and then attempts to access that freed memory. This can be triggered by a local user, potentially...
CVE-2026-9208
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2026-9208 Tanium addressed an unauthorized code execution vulnerability in Connect.
Tanium addressed an unauthorized code execution vulnerability in Connect...
CVE-2026-9208 Tanium addressed an unauthorized code execution vulnerability in Connect.
Tanium addressed an unauthorized code execution vulnerability in Connect...
CVE-2026-9208
Tanium addressed an unauthorized code execution vulnerability in Connect...
CVE-2026-9207
Tanium addressed an unauthorized code execution vulnerability in Connect...
CVE-2026-9207
Tanium addressed an unauthorized code execution vulnerability in Connect...
EUVD-2026-32035
Tanium addressed an unauthorized code execution vulnerability in Connect...