14418 matches found
PT-2026-45700
The rognone plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'a' parameter in versions up to, and including, 0.6.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...
ASB-A-463258435
Bulletin has no description...
ASB-A-480646333
Bulletin has no description...
ASB-A-500172039
Bulletin has no description...
ASB-A-497587545
Bulletin has no description...
ASB-A-497587546
Bulletin has no description...
ASB-A-497585112
Bulletin has no description...
ASB-A-493235107
In TBD of TBD, there is a possible TBD due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-500171842
Bulletin has no description...
ASB-A-497208298
Bulletin has no description...
ASB-A-488928606
Bulletin has no description...
ASB-A-489081387
Bulletin has no description...
ASB-A-497208290
Bulletin has no description...
Malicious Package
Overview private-next-instrumentation-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization an...
CVE-2026-45611
Further research determined the issue is not a vulnerability...
PT-2026-44934
Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.28.8 and earlier, authenticated OS command injection in the application.updateTraefikConfig tRPC endpoint allows admin/owner users to execute arbitrary system commands on remote servers via unsanitized echo shell interpolation...
PT-2026-45139
CVE-2026-45611 - Cisco Router Authentication Bypass CVE ID :CVE-2026-45611 Published : May 29, 2026, 1:16 p.m. | 1 hour, 13 minutes ago Description :Rejected reason: Further research determined the issue is not a vulnerability. Severity: 0.0 | NA Visit the link for more details, such as CVSS...
FreeScout 授权问题漏洞
FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.221 contained an authorization vulnerability. This vulnerability stemmed from a lack of email membership checks in the...
EUVD-2026-33018
Vulnerability in Oracle REST Data Services component: Backend-as-a-Service. Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services. While the vulnerability is in...
PT-2026-44531
Name of the Vulnerable Software and Affected Versions Oracle REST Data Services versions 24.2.0 through 26.1.0 Description An issue exists in the Backend-as-a-Service component of Oracle REST Data Services. An unauthenticated attacker with network access via HTTPS can exploit this flaw to...