2856046 matches found
IServ Schoolserver User Enumeration
IServ Schoolserver suffers from a user enumeration vulnerability. The vendor does not feel this is an issue...
EUVD-2026-43574
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hvexts. When building the extension hash via extensions, extensionsbylongname, extensionsbyoid, or hasextensionoid, the code passes OBJobj2txt's return value as the hash-key...
EUVD-2026-43571
OpenClaw versions 2026.6.5 before 2026.6.9 contain a vulnerability in the plugin install wrappers that could skip the install policy authorization check. When the affected feature is enabled and reachable, a lower-trust caller or a configured input path could execute or persist actions beyond the...
EUVD-2026-43567
OpenClaw versions before 2026.6.9 contain a symlink following vulnerability in the mirror sync feature that allows lower-trust callers to perform actions requiring stronger authorization. Attackers can exploit remote symlink parents to bypass policy checks and authorization boundaries when the...
EUVD-2026-43553
A weakness has been identified in antv layout 2.0.0. This impacts the function setNestedValue in the library lib/util/object.js. Executing a manipulation of the argument path can lead to improperly controlled modification of object prototype attributes. The attack can be launched remotely. The...
EUVD-2026-43561
A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. The impacted element is an unknown function of the file /subject.php. Such manipulation of the argument subject leads to cross site scripting. It is possible to launch the attack remotely. The exploit is...
The vulnerability of the pg_dump utility in the PostgreSQL database management system allows a hacker to execute arbitrary code.
The vulnerability of the pgdump utility in the PostgreSQL database management system is related to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
CVE-2026-15605
A security vulnerability has been detected in wandb 0.25.2.dev1. Affected is the function ArtifactManifestEntry.download in the library wandb/sdk/lib/hashutil.py of the component Artifact Integrity Validation. The manipulation leads to use of weak hash. The attack may be initiated remotely. A hig...
CVE-2026-58489
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not...
CVE-2026-58486
CVE-2026-58486: HedgeDoc prior to 1.11.0 is vulnerable to a YAML alias bomb in note frontmatter. HedgeDoc parses frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, resolving YAML anchors and potentially expanding a malicious payload into a huge object, consuming CPU on each req...
DEBIAN-CVE-2026-40469
Bulletin has no description...
CVE-2026-55773
creationtimestamp| type| source ---|---|--- 2026-07-13 21:01:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mqkllwplkm2l 2026-07-13 21:57:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqkoqqunqx2l...
CVE-2026-55771
creationtimestamp| type| source ---|---|--- 2026-07-13 21:01:04+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mqkllprtr22c 2026-07-13 22:25:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqkqcx5wqd2e...
CVE-2026-58409
creationtimestamp| type| source ---|---|--- 2026-07-13 20:52:04+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqkl3nckeb2q 2026-07-13 21:43:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqknxvjjbd2z 2026-07-13 22:01:11+00:00| seen|...
GHSA-WVR7-3CPQ-C6MG vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-V66C-278H-3VJ4 vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-R2P6-2GJ6-77XG vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-Q66R-H3M9-74HH vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-9MQJ-G68Q-H5RW vulnerabilities
Vulnerabilities for packages: chromium...