Lucene search
K

1392 matches found

Github Security Blog
Github Security Blog
added 2026/04/24 3:36 p.m.15 views

RedwoodSDK has Same-site CSRF through lack of origin validation in its server actions

Summary Server actions in rwsdk apply HTTP method enforcement but no origin validation. A request originating from a different origin that the browser treats as same-site can invoke a server action with the victim's session cookie attached. Impact An attacker who controls any origin the browser...

5.3CVSS5.3AI score0.00111EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/24 12:24 p.m.6 views

CVE-2026-5265

When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the ICMP error body using the IP header's self-declared total length iptotlen for IPv4, ip6plen for IPv6 without validating it against the actual packet buffer size...

6.5CVSS5.1AI score0.00629EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/23 11:58 p.m.28 views

CVE-2026-40623 SenseLive X3050 Missing Authorization

A vulnerability in SenseLive X3050's web management interface allows critical system and network configuration parameters to be modified without sufficient validation and safety controls. Due to inadequate enforcement of constraints on sensitive functions, parameters such as IP addressing, watchd...

8.1CVSS0.00324EPSS
Exploits0References3
CVE
CVE
added 2026/04/23 11:58 p.m.16 views

CVE-2026-40623

SenseLive X3050 is affected by a vulnerability in its web management interface where insufficient validation of sensitive configuration changes (e.g., IP addressing, watchdog timers, reconnect intervals, and service ports) allows an attacker to modify core behavior and recovery mechanisms. The un...

8.1CVSS5.7AI score0.00324EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/23 8:38 p.m.6 views

CVE-2026-4133

The TextP2P Texting Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 1.7. This is due to missing nonce validation in the imTextP2POptionPage function which processes settings updates. The form at line 314 does not include a wpnoncefield,...

4.3CVSS5.7AI score0.00156EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:54 p.m.3 views

CVE-2026-32885

DDEV is an open-source tool for running local web development environments for PHP and Node.js. Versions prior to 1.25.2 have unsanitized extraction in both Untar and Unzip functions in pkg/archive/archive.go. Downloads and extracts archives from remote sources without path validation. Version...

6.5CVSS5.8AI score0.00418EPSS
Exploits3References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/22 9:40 a.m.5 views

CVE-2026-33262 Insufficient validation of cookie reply

An attacker can send replies that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service. Cookies are disabled by default...

5.9CVSS5.8AI score0.00418EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/22 9:31 a.m.4 views

EUVD-2026-24682

The Ni WooCommerce Order Export plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 3.1.6. This is due to missing nonce validation in the niorderexportaction AJAX handler function. The handler processes settings updates when the 'page' parameter is...

4.3CVSS5.6AI score0.00156EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/22 9:31 a.m.5 views

EUVD-2026-24678

The DX Unanswered Comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7. This is due to missing nonce validation on the plugin's settings form in the dxuc-unanswered-comments-admin-page.php file. This makes it possible for...

4.3CVSS5.7AI score0.00193EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/04/22 7:54 a.m.8 views

freerdp: FreeRDP: Denial of Service via FastGlyph parsing buffer overflow

A flaw was found in FreeRDP. A malicious server can exploit a vulnerability in FastGlyph parsing, which improperly trusts data length without sufficient validation. This can lead to a client-side global buffer overflow, resulting in a denial of service DoS due to a crash. For this vulnerability t...

7.5CVSS5.8AI score0.00481EPSS
Exploits1References10
Cvelist
Cvelist
added 2026/04/22 7:45 a.m.26 views

CVE-2026-4138 DX Unanswered Comments <= 1.7 - Cross-Site Request Forgery via Settings Update

The DX Unanswered Comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7. This is due to missing nonce validation on the plugin's settings form in the dxuc-unanswered-comments-admin-page.php file. This makes it possible for...

4.3CVSS0.00193EPSS
Exploits0References9
CVE
CVE
added 2026/04/22 7:45 a.m.9 views

CVE-2026-4118

The CVE-2026-4118 entry concerns the WordPress Call To Action Plugin (versions update(). This enables unauthenticated attackers to modify configuration fields (e.g., title, content, link URL, image URL, colors) by forging requests, provided a site administrator is induced to perform an action suc...

4.3CVSS5.7AI score0.00208EPSS
Exploits0References9
CVE
CVE
added 2026/04/22 7:45 a.m.13 views

CVE-2026-4133

The TextP2P Texting Widget WordPress plugin (versions ≤ 1.7) is vulnerable to Cross-Site Request Forgery due to missing nonce validation in imTextP2POptionPage(). The settings form (line 314) lacks wp_nonce_field(), and the POST handler (line 7) does not call check_admin_referer() or wp_verify_no...

4.3CVSS5.7AI score0.00156EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.4 views

PT-2026-34309

Name of the Vulnerable Software and Affected Versions Google PageRank Display versions prior to 1.5 Description Cross-Site Request Forgery occurs due to missing nonce validation in the gpdisplay option function, which manages the plugin settings page. The settings form lacks a wp nonce field, and...

4.3CVSS5.2AI score0.002EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.9 views

PT-2026-34294

Name of the Vulnerable Software and Affected Versions TextP2P Texting Widget versions prior to 1.8 Description The TextP2P Texting Widget plugin for WordPress is susceptible to Cross-Site Request Forgery. This occurs because the imTextP2POptionPage function, which handles settings updates, lacks...

4.3CVSS5.7AI score0.00156EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.10 views

PT-2026-37156

Name of the Vulnerable Software and Affected Versions locize versions prior to 4.0.21 Description The locize client SDK registers a window.addEventListener"message", … handler that dispatches to internal handlers such as editKey, commitKey, commitKeys, isLocizeEnabled, and requestInitialize witho...

7.5CVSS5.8AI score0.00101EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/04/21 5:14 p.m.5 views

CVE-2026-40594 pyLoad: Session Cookie Security Downgrade via Untrusted X-Forwarded-Proto Header Spoofing (Global State Race Condition)

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev98, the setsessioncookiesecure beforerequest handler in src/pyload/webui/app/init.py reads the X-Forwarded-Proto header from any HTTP request without validating that the request originates from a trusted prox...

4.8CVSS5.8AI score0.00171EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/21 3:18 p.m.6 views

EUVD-2026-23992

Glances has CQL Injection in its Cassandra Export Module via Unsanitized Config Values...

6.3CVSS5.8AI score0.00212EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.7 views

PT-2026-33995

Visitor Management System 1.0 by sanjay1313 is vulnerable to Unrestricted File Upload in vms/php/admin user insert.php and vms/php/update 1.php. The move uploaded file function is called without any MIME type, extension, or content validation, allowing an authenticated admin to upload a PHP...

5.9AI score0.00807EPSS
Exploits1References3
CNVD
CNVD
added 2026/04/20 12:0 a.m.5 views

PraisonAI Operating System Command Injection Vulnerability

PraisonAI is a low-code multi-intelligent body collaboration framework. PraisonAI suffers from an operating system command injection vulnerability that stems from the --mcp CLI parameter being passed directly without any validation, whitelist checking, or cleanup, which can be exploited by an...

9.8CVSS5.7AI score0.00824EPSS
Exploits1
Rows per page
Query Builder