CVE-2026-48241 Open ISES Tickets < 3.44.2 Hardcoded MySQL Database Credentials in loader.php

Open ISES Tickets before 3.44.2 contains hardcoded MySQL database credentials in loader.php a public-facing database utility that are committed to the source repository. Any actor with access to the public source tree or an unauthenticated attacker with read access to the file on a deployed...

CVE-2026-28204 CTEK Chargeportal Insufficiently Protected Credentials

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

EUVD-2026-10436

Parse Server has Regular Expression Denial of Service ReDoS via $regex query in LiveQuery...

CVE-2026-27027 Everon api.everon.io Insufficiently Protected Credentials

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

CVE-2026-27027

Technical details about CVE-2026-27027 are not publicly available in the provided documents. Monitor for updates from listed sources; none of the connected records disclose affected products, versions, root cause, or fixes.

CVE-2026-20791

Technical details for CVE-2026-20791 are not publicly available in the provided documents. No specifics on affected products, versions, root cause, or remediation are disclosed here. Monitor for updates from the connected sources.

CVE-2026-20791 Chargemap chargemap.com Insufficiently Protected Credentials

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

The vulnerability of microprogrammed software in embedded network control controllers for building automation systems, such as ASPECT Enterprise, NEXUS Series, and MATRIX Series, arises from improper validation of certain types of input data. This allows unauthorized access by attackers to the device.

The vulnerability of microprogrammed software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series is related to improper validation of certain types of input data. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized acces...

Jenkins Plugin Dimensions 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

Dell EMC PowerStore Access Control Error Vulnerability

The Dell EMC PowerStore is a storage device from Dell USA. A security vulnerability exists in Dell EMC PowerStore version 1.0.3.0.5.007 and earlier versions, which can be exploited by an attacker to gain access to compromised applications with privileges of the compromised account using publicly...

Dell EMC PowerStore 访问控制错误漏洞

The Dell EMC PowerStore is a storage device from Dell USA. A security vulnerability exists in Dell EMC PowerStore version 1.0.3.0.5.007 and earlier versions, which can be exploited by an attacker to gain access to compromised applications with privileges of the compromised account using publicly...