PT-2026-49308

Discuz! X5.0 releases 20260320 through 20260501 contains a CAPTCHA bypass vulnerability that allows unauthenticated remote attackers to defeat challenge controls by exploiting limited complexity and predictable character sets in generated CAPTCHA images. Attackers can train a custom optical...

The vulnerability of software for managing traffic in hybrid and multi-cloud environments, such as VMware Avi Load Balancer, stems from insufficient protection of registration data. This allows attackers to exploit the vulnerabilities to disclose sensitive information.

The vulnerability of the software for managing traffic in hybrid and multi-cloud environments of VMware Avi Load Balancer is related to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

The vulnerability of the CI/CD system’s registration data protection mechanism in TeamCity allows unauthorized access by attackers, enabling them to obtain unauthorized access to protected information.

The vulnerability of the CI/CD application integration and delivery system of JetBrains TeamCity is related to insufficient protection for registration data. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the AppleEvents component in macOS operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the AppleEvents component in macOS operating systems is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...