Lucene search
K

133 matches found

EUVD
EUVD
added 4 hours ago4 views

EUVD-2026-44561

Illustrator is affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed...

9.3CVSS6.5AI score
Exploits0References2
NVD
NVD
added yesterday5 views

CVE-2026-48287

CAI Content Credentials is affected by an Untrusted Search Path vulnerability that could result in arbitrary code execution in the context of the current user. Exploit depends on conditions beyond the attacker's control. Exploitation of this issue requires user interaction in that a victim must...

7.4CVSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added yesterday3 views

CVE-2026-48290

CAI Content Credentials is affected by a Server-Side Request Forgery SSRF vulnerability that could result in arbitrary code execution in the context of the current user. An attacker could exploit this vulnerability to inject malicious scripts into a web page, potentially gaining elevated access o...

8.2CVSS6.4AI score
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-48275

CVE-2026-48275 : Illustrator is affected by an Untrusted Search Path (CWE-426) vulnerability that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file) and the issue involves a scope change . The CVSS da...

8.6CVSS6.5AI score
Exploits0References1
EUVD
EUVD
added yesterday4 views

EUVD-2026-44553

ColdFusion is affected by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.1CVSS6.5AI score
Exploits0References1
EUVD
EUVD
added yesterday3 views

EUVD-2026-44551

ColdFusion is affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope...

9.9CVSS6.2AI score
Exploits0References1
EUVD
EUVD
added yesterday3 views

EUVD-2026-44550

ColdFusion is affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added yesterday8 views

CVE-2026-48319 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)

ColdFusion is affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.1CVSS
Exploits0References1
EUVD
EUVD
added yesterday4 views

EUVD-2026-44546

ColdFusion is affected by an Incorrect Authorization vulnerability that could result in privilege escalation. An attacker could leverage this vulnerability to gain unauthorized read and write access. Exploitation of this issue does not require user interaction. Scope is changed...

9.3CVSS6.1AI score
Exploits0References1
EUVD
EUVD
added yesterday4 views

EUVD-2026-44544

ColdFusion is affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.6CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added yesterday8 views

CVE-2026-48284 ColdFusion | Improper Input Validation (CWE-20)

ColdFusion is affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.6CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday12 views

CVE-2026-48325 ColdFusion | Missing Authentication for Critical Function (CWE-306)

ColdFusion is affected by a Missing Authentication for Critical Function vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.3CVSS
Exploits0References1
CVE
CVE
added yesterday8 views

CVE-2026-48272

CVE-2026-48272 affects Creative Cloud Desktop and involves an Uncontrolled Search Path Element (CWE-427) that could lead to arbitrary code execution in the context of the current user. Exploitation is local, does not require user interaction, and the attack surface is constrained by the patch/sco...

7.8CVSS6.5AI score
Exploits0References1
CVE
CVE
added yesterday5 views

CVE-2026-48346

Summary (CVE-2026-48346): Animate is affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. The affected scope has changed. The CVSS vector indi...

7.9CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added yesterday9 views

CVE-2026-48346 Animate | Untrusted Search Path (CWE-426)

Animate is affected by an Untrusted Search Path vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed...

7.9CVSS
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-48347

Animate is affected by an OS Command Injection (CWE-78) due to improper neutralization of special elements in an input that is used in an OS command. This can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malici...

7.7CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added yesterday7 views

CVE-2026-48347 Animate | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)

Animate is affected by an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

7.7CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-48348

Animate is affected by an Incorrect Authorization (CWE-863) vulnerability that could lead to arbitrary code execution in the context of the current user. The exploit depends on conditions beyond the attacker’s control and requires user interaction (the victim must open a malicious file). The CVE ...

7.7CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added yesterday7 views

CVE-2026-48358 Adobe Commerce | Improper Encoding or Escaping of Output (CWE-116)

Adobe Commerce is affected by an Improper Encoding or Escaping of Output vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.1CVSS
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-48261

Adobe Experience Manager is affected by a DOM-based XSS vulnerability. An attacker could manipulate the DOM to execute JavaScript in the victim’s browser, with user interaction required (victim visits a crafted page). The vulnerability is scope-changed; CVSS 3.1 base score 5.4 (MEDIUM) with NETWO...

5.4CVSS6.1AI score
Exploits0References1
Rows per page
Query Builder