832 matches found
CVE-2026-61976 WordPress JetBlocks For Elementor plugin <= 1.5.0 - Sensitive Data Exposure vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Crocoblock JetBlocks For Elementor jet-blocks allows Retrieve Embedded Sensitive Data.This issue affects JetBlocks For Elementor: from n/a through = 1.5.0...
CVE-2026-58588
Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal Drupal Canvas allows Cross-Site Scripting XSS. This issue affects Drupal Canvas versions: from 0.0.0 to 1.4.2, from 1.5.0 to 1.5.2, from 1.6.0 to 1.6.1, from 1.7.0 to 1.7.1...
Critical: Red Hat Security Advisory: Cluster Observability Operator 1.5.0
The Cluster Observability Operator COO is a Red Hat OpenShift Container Platform Operator that you can deploy to manage observability component stacks by using custom resource descriptions CRDs. The 1.5 release of COO...
PYSEC-2026-341 Flask-Reuploaded vulnerable to Remote Code Execution via Server-Side Template Injection
Impact A critical path traversal and extension bypass vulnerability in Flask-Reuploaded allows remote attackers to achieve arbitrary file write and remote code execution through Server-Side Template Injection SSTI. Patches Flask-Reuploaded has been patched in version 1.5.0 Workarounds 1. Do not...
CVE-2025-69106
Unauthenticated Local File Inclusion in Imba = 1.5.0 versions...
CVE-2025-69106 WordPress Imba theme <= 1.5.0 - Local File Inclusion vulnerability
Unauthenticated Local File Inclusion in Imba = 1.5.0 versions...
EUVD-2026-37022
Use of a non-secure protocol as the default FTP configuration in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
EUVD-2026-37019
Improper validation of server certificates in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
EUVD-2026-37018
Improper validation of SSH host keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
CVE-2026-9261
Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
CVE-2026-9260
Use of hard-coded cryptographic keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
CVE-2026-9262
CVE-2026-9262 affects Canon EOS Network Setting Tool (Version 1.5.0 or earlier). The issue is the use of a non-secure protocol by default in FTP configuration. Reported CVSS metrics indicate a Network attack with high confidentiality impact (CVSS 3.1: 6.5 base, MEDIUM) and a notable impact under ...
CVE-2026-9262
Use of a non-secure protocol as the default FTP configuration in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
CVE-2026-9261
The CVE relates to Canon EOS Network Setting Tool (Canon) versions 1.5.0 or earlier that use weak SSH cryptographic algorithms. Root cause: weak SSH crypto in the tool could affect confidentiality and integrity (per CVSS metrics indicating high impact on these areas) with network access as the at...
CVE-2026-9261
Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
CVE-2026-9260
Use of hard-coded cryptographic keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
CVE-2026-9259
Improper validation of server certificates in Canon EOS Network Setting Tool Version 1.5.0 or earlier...
CVE-2026-9259
Canon EOS Network Setting Tool, version 1.5.0 and earlier, is affected by an improper validation of server certificates. The vulnerability (CVE-2026-9259) is network-exposed with low attack complexity and no user interaction required, potentially impacting confidentiality, integrity, and availabi...
CVE-2026-39534
Unauthenticated Broken Access Control in WP Directory Kit = 1.5.0 versions...
Important: Red Hat Security Advisory: Cluster Observability Operator 1.5.0
The Cluster Observability Operator COO is a Red Hat OpenShift Container Platform Operator that you can deploy to manage observability component stacks by using custom resource descriptions CRDs. The 1.5 release of COO...