2856100 matches found
IServ Schoolserver User Enumeration
IServ Schoolserver suffers from a user enumeration vulnerability. The vendor does not feel this is an issue...
Security Bulletin: IBM WebSphere Application Server Liberty is affected by a server-side request forgery vulnerability (CVE-2026-11546)
Summary IBM WebSphere Application Server Liberty is affected by a server-side request forgery vulnerability with the adminCenter-1.0 feature enabled. Vulnerability Details CVEID:CVE-2026-11546 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a...
EUVD-2026-43574
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hvexts. When building the extension hash via extensions, extensionsbylongname, extensionsbyoid, or hasextensionoid, the code passes OBJobj2txt's return value as the hash-key...
EUVD-2026-43571
OpenClaw versions 2026.6.5 before 2026.6.9 contain a vulnerability in the plugin install wrappers that could skip the install policy authorization check. When the affected feature is enabled and reachable, a lower-trust caller or a configured input path could execute or persist actions beyond the...
EUVD-2026-43567
OpenClaw versions before 2026.6.9 contain a symlink following vulnerability in the mirror sync feature that allows lower-trust callers to perform actions requiring stronger authorization. Attackers can exploit remote symlink parents to bypass policy checks and authorization boundaries when the...
EUVD-2026-43553
A weakness has been identified in antv layout 2.0.0. This impacts the function setNestedValue in the library lib/util/object.js. Executing a manipulation of the argument path can lead to improperly controlled modification of object prototype attributes. The attack can be launched remotely. The...
EUVD-2026-43561
A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. The impacted element is an unknown function of the file /subject.php. Such manipulation of the argument subject leads to cross site scripting. It is possible to launch the attack remotely. The exploit is...
The vulnerability of the pg_dump utility in the PostgreSQL database management system allows a hacker to execute arbitrary code.
The vulnerability of the pgdump utility in the PostgreSQL database management system is related to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
CVE-2026-15605
A security vulnerability has been detected in wandb 0.25.2.dev1. Affected is the function ArtifactManifestEntry.download in the library wandb/sdk/lib/hashutil.py of the component Artifact Integrity Validation. The manipulation leads to use of weak hash. The attack may be initiated remotely. A hig...
CVE-2026-58489
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not...
CVE-2026-58486
CVE-2026-58486: HedgeDoc prior to 1.11.0 is vulnerable to a YAML alias bomb in note frontmatter. HedgeDoc parses frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, resolving YAML anchors and potentially expanding a malicious payload into a huge object, consuming CPU on each req...
CVE-2026-48849
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:42+00:00| seen| https://t.me/GithubRedTeam/88901 2026-07-14 00:00:41+00:00| seen| https://t.me/GithubRedTeam/88901...
CVE-2026-38194
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:42+00:00| seen| https://t.me/GithubRedTeam/89018 2026-07-14 00:00:41+00:00| seen| https://t.me/GithubRedTeam/89018...
CVE-2026-39949
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:42+00:00| seen| https://t.me/GithubRedTeam/89169 2026-07-14 00:00:41+00:00| seen| https://t.me/GithubRedTeam/89169 2026-07-14 01:00:05+00:00| seen| https://t.me/bdufstecru/3271...
CVE-2026-54686
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:42+00:00| seen| https://t.me/GithubRedTeam/89060 2026-07-14 00:00:41+00:00| seen| https://t.me/GithubRedTeam/89060...
CVE-2026-54337
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:22+00:00| seen| https://t.me/GithubRedTeam/89729 2026-07-14 00:00:38+00:00| seen| https://t.me/GithubRedTeam/89729...
CVE-2026-39676
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:21+00:00| seen| https://t.me/GithubRedTeam/90020 2026-07-14 00:00:37+00:00| seen| https://t.me/GithubRedTeam/90020...
CVE-2025-48907
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:21+00:00| seen| https://t.me/GithubRedTeam/90152 2026-07-14 00:00:37+00:00| seen| https://t.me/GithubRedTeam/90152...
CVE-2020-8636
creationtimestamp| type| source ---|---|--- 2026-07-13 22:00:19+00:00| seen| https://t.me/GithubRedTeam/90443 2026-07-14 00:00:36+00:00| seen| https://t.me/GithubRedTeam/90443...