5139 matches found
GHSA-8MG2-6588-R4HW
creationtimestamp| type| source ---|---|--- 2026-07-12 09:01:47+00:00| published-proof-of-concept| https://t.me/bdufstecru/3229 2026-07-13 00:00:48+00:00| published-proof-of-concept| https://t.me/bdufstecru/3229...
CVE-2026-15286
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to unauthorized post publication in all versions up to, and including, 3.5.32 due to a misconfigured capability check on the 'getitemspermissioncheck' function permission callback of the...
CVE-2026-15286
The CVE-2026-15286 entry concerns the Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress. Affected component: a misconfigured capability check on the get_items_permission_check function within the process_pattern REST API endpoint, which affects all versions up to...
EUVD-2026-42795
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to unauthorized post publication in all versions up to, and including, 3.5.32 due to a misconfigured capability check on the 'getitemspermissioncheck' function permission callback of the...
CVE-2026-15286
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to unauthorized post publication in all versions up to, and including, 3.5.32 due to a misconfigured capability check on the 'getitemspermissioncheck' function permission callback of the...
CVE-2026-15286 Gutenberg Blocks with AI by Kadence WP – Page Builder Features <= 3.5.32 - Incorrect Authorization to Authenticated (Contributor+) Post Publication
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to unauthorized post publication in all versions up to, and including, 3.5.32 due to a misconfigured capability check on the 'getitemspermissioncheck' function permission callback of the...
CVE-2026-52777
creationtimestamp| type| source ---|---|--- 2026-07-09 21:48:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqame5dcxj25 2026-07-09 22:35:05+00:00| published-proof-of-concept| https://github.com/YesWiki/yeswiki/security/advisories/GHSA-9369-69wj-7m2f...
CVE-2026-54777
CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. Prior to 1.8.1 and 1.9.1, CoreWCF NetNamedPipe transport accepts attachment to a pre-existing named pipe instance, allowing local interception of NetNamedPipe traffic when an attacker races NamedPipeListen...
GHSA-F74W-488G-8X5R
creationtimestamp| type| source ---|---|--- 2026-07-07 01:11:51+00:00| seen| https://gist.github.com/alon710/8f065297b373724c4dd370345047c8bb...
CVE-2026-14791
creationtimestamp| type| source ---|---|--- 2026-07-06 04:06:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpx7negsoo23 2026-07-08 02:52:08+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mq44fxergo2i...
CVE-2026-54887
creationtimestamp| type| source ---|---|--- 2026-07-03 08:41:00+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq5l6hjry2b 2026-07-03 09:33:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqaikpjzt2n 2026-07-03 10:37:19+00:00| seen|...
CVE-2026-13376
creationtimestamp| type| source ---|---|--- 2026-07-03 02:30:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppivbz7ib2s 2026-07-03 19:00:47+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpra7gzx7t23...
MINI-H39J-F3HF-WXCX
Bulletin has no description...
CVE-2026-13323
A flaw was found in Open VSX Registry. The /vscode/unpkg/ endpoint serves user-supplied HTML files with a Content-Type of text/html without Content-Security-Policy or Content-Disposition: attachment response headers. An attacker with a registered publisher account can upload a VSIX containing a...
CVE-2026-58038
creationtimestamp| type| source ---|---|--- 2026-07-01 16:17:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mplw6dlatg2v 2026-07-02 02:47:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmzdnjc5n2q 2026-07-02 06:47:04+00:00| seen|...
CVE-2026-29090
creationtimestamp| type| source ---|---|--- 2026-07-01 02:50:35+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-6j7p-qjhg-9947...
CVE-2026-53252
creationtimestamp| type| source ---|---|--- 2026-07-01 02:44:02+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0812 2026-07-06 06:51:42+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260706...
CVE-2026-49049
creationtimestamp| type| source ---|---|--- 2026-06-29 16:04:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpgui7cu3k2o 2026-07-03 17:15:04+00:00| seen| https://dnsc.ro/citeste/alerta-vulnerabilitate-exploatata-activ-in-joomla-helix3 2026-07-04 07:04:36+00:00| seen|...
CVE-2026-54369
creationtimestamp| type| source ---|---|--- 2026-06-29 15:21:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpgs4dpc3w2o 2026-06-29 15:48:37+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpgtm5meg22t...
CVE-2026-49336
creationtimestamp| type| source ---|---|--- 2026-06-27 00:35:44+00:00| published-proof-of-concept| https://github.com/microsoft/kiota-typescript/security/advisories/GHSA-396q-4vc8-28x9...