538 matches found
CVE-2026-35282
Technical details for CVE-2026-35282 are not publicly provided in the supplied documents. Monitor for updates from Oracle security alerts and CVE records.
CVE-2026-53694
Improper Neutralization of Argument Delimiters in a Command 'Argument Injection' vulnerability in Nomachine allows Argument Injection.This issue affects Nomachine: before 9.5.7, before 8.23.2...
CVE-2022-42479
Missing Authorization vulnerability in TemplateHouse Soledad allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Soledad: from n/a through 8.2.5...
CVE-2022-42479 WordPress Soledad premium theme <= 8.2.5 - Broken Access Control vulnerability
Missing Authorization vulnerability in TemplateHouse Soledad allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Soledad: from n/a through 8.2.5...
PT-2026-48633
Missing Authorization vulnerability in TemplateHouse Soledad allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Soledad: from n/a through 8.2.5...
CVE-2026-25541 affecting package rust-afterburn for versions less than 5.8.2-2
CVE-2026-25541 affecting package rust-afterburn for versions less than 5.8.2-2. A patched version of the package is available...
CVE-2026-50219
libexpat before 2.8.2 lacks handler call depth tracking for calls to XMLGetBuffer, XMLParse, XMLParseBuffer, XMLParserFree, or XMLParserReset from within handlers in cases of a policy violation. Thus, a use-after-free can occur,...
CVE-2026-45278 Nextcloud: Open Redirect in user_oidc login flow via protocol-relative URL bypass
Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft links that would redirect users to another website, when the victim uses the attackers link to log in via user OIDC. This issue has been patched in version 8.2.2...
php:8.2 security update
An update is available for module.libzip, php-pear, libzip, php, php-pecl-rrd, module.php, module.php-pecl-xdebug3, module.php-pecl-apcu, php-pecl-xdebug3, module.php-pecl-rrd, php-pecl-zip, module.php-pecl-zip, module.php-pear, php-pecl-apcu. This update affects Rocky Linux 8. A Common...
RHSA-2026:22143 Red Hat Security Advisory: php:8.2 security update
Bulletin has no description...
Important: Red Hat Security Advisory: php:8.2 security update
An update for the php:8.2 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2026-42728
HT Contact Form 7 WordPress plugin (ht-contactform) < = 2.8.2 is affected by CVE-2026-42728: Improper neutralization of input during web page generation, enabling Stored XSS. Root cause: input not properly sanitized before page generation. CVSSv3.1 base score 7.1 (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I...
Astra Linux - уязвимость в vim
Access to memory location before the start of the buffer in the GitHub repository for vim/vim prior to version 8.2...
Astra Linux - уязвимость в vim
Heap-based Buffer Overflow; GitHub repository for Vim/Vim before version 8.2...
Astra Linux - уязвимость в vim
Use After Free in the GitHub repository vim/vim before version 8.2...
Astra Linux - уязвимость в vim
Buffer over-reading in the GitHub repository vim/vim before version 8.2...
Astra Linux - уязвимость в vim
Heap-based Buffer Overflow in the GitHub repository for vim/vim before version 8.2...
Astra Linux - уязвимость в vim
Heap-based Buffer Overflow in the GitHub repository for Vim before version 8.2...
CVE-2026-34754 MantisBT allows unauthorized users to upload attachments to restricted issues via REST API
Mantis Bug Tracker MantisBT is an open source issue tracker. Versions 2.28.1 and prior allow an authenticated user to upload attachments to private Issues they are not authorized to access. This issue has been fixed in version 2.28.2...
EUVD-2026-30777
Creating a "2dspherebucket" index on a non-timeseries bucket collection will succeed, but any subsequent attempt to insert a document which triggers updating that index will crash the server. A similar issue occurs when creating "queryableencryptedrange" indices. This issue affects MongoDB Server...