CVE-2026-3208

The Mercado Pago payments for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'mppiximage' WooCommerce API endpoint in all versions up to, and including, 8.7.11. This makes it possible for unauthenticated attackers to retrieve...

Zimbra < 8.6.0 Patch10, 8.7.x < 8.7.11 Patch2, 8.8.x < 8.8.8 Patch1 CSRF Vulnerability

Zimbra is prone to a cross-site request forgery CSRF vulnerability. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...