3688 matches found
CVE-2026-35436 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40418
Technical details (affected product, vulnerable component, version, exploit method) are not publicly available in the provided documents. Monitor for updates from official advisories.
CVE-2026-40418 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40418 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40419 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40419
CVE-2026-40419 : A use-after-free vulnerability in Microsoft Office (Click-To-Run) could allow an authorized local attacker to achieve elevation of privilege. The underlying cause is a use-after-free issue in Office components, leading to local privilege escalation. Documented impact is local, wi...
CVE-2026-40419 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-42045
LobeHub is a work-and-lifestyle space to find, build, and collaborate with agent teammates that grow with you. Prior to 2.1.48, when LobeChat processes custom tags in the Render process of src/features/Portal/Artifacts/Body/Renderer/index.tsx, if no type match is found, it will choose to call the...
CVE-2026-42045 LobeHub: Cross-Site Scripting(XSS) escalate to Remote Code Execution(RCE)
LobeHub is a work-and-lifestyle space to find, build, and collaborate with agent teammates that grow with you. Prior to 2.1.48, when LobeChat processes custom tags in the Render process of src/features/Portal/Artifacts/Body/Renderer/index.tsx, if no type match is found, it will choose to call the...
CVE-2026-43937
YetAnotherForum.NET YAF.NET is a C ASP.NET forum. Prior to 4.0.5, Any admin OnPost… handler executes its side effects before the ResultFilterAttribute rewrites the response to a 302 to /Info/4. The most impactful abuse is /Admin/RunSql, whose OnPostRunQuery binds Editor from the POST body and...
CVE-2026-43937
Summary: CVE-2026-43937 affects YetAnotherForum.NET (YAF.NET) prior to 4.0.5. An admin handler (OnPost… in /Admin/RunSql) can bypass authorization due to PageSecurityCheckAttribute executing after the handler, allowing arbitrary SQL execution via IDbAccess.RunSql when a low-privileged user posts ...
CVE-2026-43937 YAF.NET: Pre-Handler Authorization Bypass on Admin Pages Enabling Blind SQL Execution via `/Admin/RunSql`
YetAnotherForum.NET YAF.NET is a C ASP.NET forum. Prior to 4.0.5, Any admin OnPost… handler executes its side effects before the ResultFilterAttribute rewrites the response to a 302 to /Info/4. The most impactful abuse is /Admin/RunSql, whose OnPostRunQuery binds Editor from the POST body and...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
Description of the security update for Word 2016: May 12, 2026 (KB5002858)
Description of the security update for Word 2016: May 12, 2026 KB5002858 Summary This security update resolves a Microsoft Office remote code execution vulnerability and Microsoft Word Information Disclosure Vulnerability. To learn more about the vulnerabilities, see the following security...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
CVE-2026-5029 RCE in Code Runner MCP Server
A remote code execution vulnerability exists in Code Runner MCP Server when run with the --transport http option, which exposes the /mcp JSON-RPC endpoint without authentication on port 3088. An unauthenticated remote attacker can invoke the run-code MCP tool to supply arbitrary source code and...
CVE-2026-5029
A remote code execution vulnerability exists in Code Runner MCP Server when run with the --transport http option, which exposes the /mcp JSON-RPC endpoint without authentication on port 3088. An unauthenticated remote attacker can invoke the run-code MCP tool to supply arbitrary source code and...
Malicious code in dcchbot (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df79831d1b486c8ca704295b410cec7b66be85aa87c3244d97ff1e87f643183a The package performs multiple installer-hostile behaviors. 1 dcchbot/init.py auto-invokes run on import, which triggers interactive input prompts and...