44180 matches found
CVE-2026-54483
CVE-2026-54483 affects Dell PowerProtect Data Domain: versions 7.7.1.0–8.6, LTS2026 8.6.1.0–8.6.1.10, LTS2025 8.3.1.0–8.3.1.30, and LTS2024 7.13.1.0–7.13.1.70. The vulnerability is described as OS command injection caused by improper neutralization of special elements in certain OS commands. A hi...
CVE-2026-10055
creationtimestamp| type| source ---|---|--- 2026-07-03 11:16:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpqgb2rrz72w 2026-07-03 12:00:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116855932778535722 2026-07-03 12:00:33+00:00| seen|...
CVE-2026-47896
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Lucene.Net Lucene.Net.Replicator library. This issue affects Apache Lucene.Net.Replicator: from 4.8.0-beta00005 through 4.8.0-beta00017. Users are recommended to upgrade to version 4.8.0-beta00018...
CVE-2026-35159
Dell Client Platform BIOS contains an Authentication Bypass by Primary Weakness vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure...
CVE-2026-4322
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Raera - Ankara Web Design and Digital Advertising Agency Destekz allows Reflected XSS. This issue affects Destekz: through 02062026. NOTE: The vendor was contacted and it was learned that the produ...
CVE-2026-8804
creationtimestamp| type| source ---|---|--- 2026-07-03 08:29:40+00:00| seen| https://bsky.app/profile/suriq.io/post/3mpq4ww3j3j2y 2026-07-03 10:11:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpqcmxo5yy2h...
CVE-2026-11900
The Ad Inserter – Ad Manager & AdSense Ads plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to and including 2.8.16 via the 'data' attribute of the adinserter shortcode. This is due to the replaceaitags function processing a reusable-block-N tag pattern that...
CVE-2026-8804
Puppet resourceapi shipped in Puppet Core 8.x and Puppet Enterprise 2023.8.x and 2025.x does not preserve the sensitive flag on parameters defined via the resource-api, causing values such as passwords to be stored in cleartext in the agent's local transaction state cache. Affected versions of th...
EUVD-2026-41515
A flaw was found in HPLIP HP Linux Imaging and Printing Software. This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer overflow in the hpcups processing path when handling...
CVE-2026-14544
A flaw was found in HPLIP HP Linux Imaging and Printing Software. This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer overflow in the hpcups processing path when handling...
CVE-2026-54405
creationtimestamp| type| source ---|---|--- 2026-07-03 07:15:58+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppyt5twew27 2026-07-03 09:40:45+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqavzqfls2i...
CVE-2026-9546
A vulnerability in libcurl caused the HTTP Referer: header to persis...
CVE-2026-8927
CVE-2026-8927 affects libcurl: when reusing a handle for sequential transfers driven by environment-variable proxies, the proxy authentication state is not cleared between requests, causing leakage of the Proxy-Authorization header from an initial proxy (proxyA) to a subsequent proxy (proxyB). Af...
CVE-2026-8926
When asking curl to use a .netrc file to find credentials and at the...
CVE-2026-8925
The curl logic that works with SASL authentication could end up cleani...
CVE-2026-8286
A vulnerability exists where a new transfer that uses STARTTLS to upgr...
CVE-2026-12064
When a user invokes curl using a schemeless URL combined with --proto...
CVE-2026-11586
By default, curl automatically responds to WebSocket PING frames. Beca...
CVE-2026-10536
A use-after-free vulnerability exists in libcurl when an application c...
CVE-2026-9725
creationtimestamp| type| source ---|---|--- 2026-07-03 05:58:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppuinqzrc24 2026-07-03 06:00:26+00:00| seen| https://infosec.exchange/users/offseq/statuses/116854516946886983 2026-07-03 06:00:27+00:00| seen|...