9198 matches found
PT-2026-46339
Unauthenticated Local File Inclusion in Snow Club = 1.1 versions...
PT-2026-46358
Unauthenticated Local File Inclusion in Top Dog = 1.0.5 versions...
PT-2026-46326
Unauthenticated Local File Inclusion in Raider Spirit = 1.1.2 versions...
PT-2026-46353
Unauthenticated Local File Inclusion in Preservation = 1.10 versions...
PT-2026-46333
Unauthenticated Local File Inclusion in Iona = 1.0.8 versions...
PT-2026-46347
Subscriber Broken Access Control in Genemy = 1.6.6 versions...
PT-2026-46373
Unauthenticated Local File Inclusion in Eventicity = 1.5 versions...
PT-2026-46354
Unauthenticated Local File Inclusion in Gat = 1.16 versions...
PT-2026-46321
Unauthenticated Cross Site Scripting XSS in Qreatix = 1.9.4 versions...
PT-2026-46331
Unauthenticated Local File Inclusion in MaxiNet = 1.2.10 versions...
PT-2026-46335
Unauthenticated Local File Inclusion in CopyPress = 1.4.5 versions...
PT-2026-46357
Unauthenticated Local File Inclusion in Quirky = 1.23 versions...
PT-2026-46356
Unauthenticated Local File Inclusion in Putter = 1.17 versions...
CVE-2026-46255
In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: don't explicitly disable clocks in .remove The clocks in fsledmaengine::muxclk are allocated and enabled with devmclkgetenabled, which automatically cleans these resources up, but these clocks are also manual...
CVE-2026-46255 dmaengine: fsl-edma: don't explicitly disable clocks in .remove()
In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: don't explicitly disable clocks in .remove The clocks in fsledmaengine::muxclk are allocated and enabled with devmclkgetenabled, which automatically cleans these resources up, but these clocks are also manual...
EUVD-2026-34095
GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to versions 10.0.25 and 11.0.7, low privilege users with access to planning can delete any object in GLPI. Upgrade to 11.0.7 or 10.0.25 to receive a patch. As a workaround, disable delete rights for User'...
PT-2026-45957
GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to versions 10.0.25 and 11.0.7, low privilege users with access to planning can delete any object in GLPI. Upgrade to 11.0.7 or 10.0.25 to receive a patch. As a workaround, disable delete rights for User'...
PT-2026-46018
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the dmaengine fsl-edma component where clocks in fsl edma engine::muxclk are allocated and enabled using devm clk get enabled. This function automatically manages...
CVE-2026-42074
OpenClaude
CVE-2026-42074
OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the dangerouslyDisableSandbox parameter is exposed as part of the BashTool input schema, meaning the LLM an untrusted principal per the project's own threat model can set ...