CVE-2026-26188 Solspace Freeform plugin affected by Stored Cross-Site Scripting (XSS) in Freeform Craft Plugin CP UI (builder/integrations)

Solspace Freeform plugin for Craft CMS 5.x is a super flexible form-building tool. An authenticated, low-privilege user able to create/edit forms can inject arbitrary HTML/JS into the Craft Control Panel CP builder and integrations views. User-controlled form labels and integration metadata are...

PT-2023-4962 · Zoom · Zoom Desktop Client For Windows

Name of the Vulnerable Software and Affected Versions: Zoom Desktop Client for Windows versions prior to 5.14.7 Description: The issue is related to insufficient input validation, which can be exploited by a remote attacker to gain elevated privileges. This can potentially allow an unauthenticate...

Zoom Client Security Vulnerability

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A security vulnerability previously existed in Zoom Desktop Client for Windows version 5.14.7, which stemmed from an improper input validation issue...

Zoom Client Path Traversal Vulnerability

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A security vulnerability previously existed in Zoom Desktop Client for Windows version 5.14.7, which stemmed from a path traversal issue...

PT-2023-4693 · Zoom · Zoom

Name of the Vulnerable Software and Affected Versions: Zoom versions prior to 5.14.7 Description: The issue is related to uncontrolled resource consumption, which may allow an unauthenticated user to cause a denial of service via network access. This can be exploited by a remote attacker to disru...

Zoom Client SDK Security Vulnerability

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A security vulnerability exists in Zoom Client SDKs prior to version 5.14.7 that stems from an uncontrolled resource consumption issue...