366883 matches found
CVE-2026-9646
CVE-2026-9646 describes a reflected cross-site scripting issue in URL handling affecting ScadaBR (Unauthenticated). Root cause: insufficient sanitization/validation of URL input leading to reflected script execution. Impact: low confidentiality and integrity impact; no availability impact reporte...
CVE-2026-9645
Technical details about CVE-2026-9645 are not publicly available in the provided documents. No explicit affected product/version or root cause is disclosed here. Monitor for updates from the sources.
CVE-2026-42071
Summary: CVE-2026-42071 affects MantisBT, specifically versions 2.23.0 through 2.28.1, where a missing authorization check in the file visibility function allows any authenticated user (REPORTER+) to download attachments from private bugnotes via REST API GET /api/rest/issues/{id}/files and SOAP ...
CVE-2026-42070
Summary: MantisBT prior to 2.28.2 is vulnerable to Authorization Bypass in bugnote editing via the Issue Update API. The mc_issue_update() function allows users with update_bug_threshold (UPDATER, default) to edit, change view state, and modify time tracking on bugnotes owned by other users, bypa...
CVE-2026-44655
Affected software: MantisBT (Mantis Bug Tracker). Vulnerable versions: 1.3.0–2.28.1. Component: Move Attachments admin page, where Unescaped Project Name can be set by users with manager/administrator access. Root cause: unescaped project name leads to HTML injection (stored XSS). Impact: stored ...
CVE-2026-41897
CVE-2026-41897 affects MantisBT (Mantis Bug Tracker) from versions 1.0.0 through 2.28.1. The root cause is lack of validation of the filter_target parameter in return_dynamic_filters.php, used for AJAX on the View Issues page, which allows an attacker to inject arbitrary HTML when the target is a...
CVE-2026-44657
CVE-2026-44657 – MantisBT : Before version 2.28.2, an attacker can execute code by exploiting a stored XSS vector in file_download.php. When the request uses show_inline=1 together with a valid file_show_inline CSRF token and the uploader references a crafted XHTML attachment that points to a Jav...
CVE-2026-45288
Marten (a .NET transactional document DB for PostgreSQL) prior to version 8.36.1 interpolated the user-supplied regConfig parameter directly into SQL within full-text search APIs, without parameterization or validation, creating a SQL injection sink on any code path where regConfig is exposed. Th...
CVE-2026-46841
Oracle REST Data Services (ORDS) is affected, specifically versions 24.2.0–26.1.0 in the General component. The vulnerability allows an unauthenticated attacker with network access over HTTPS to potentially read a subset of ORDS data. CVSS 3.1 base score is 5.3 (Confidentiality impact: Low). No e...
CVE-2026-46843
Affected product: Oracle REST Data Services (Core). Affected versions: 24.2.0–26.1.0. Vulnerability: unauthenticated, network-accessible via HTTPS, can cause a partial denial of service (partial DOS) to Oracle REST Data Services. Impact: CVSS v3.1 Base Score 5.3 (Availability impact). Exploitabil...
CVE-2026-46842
The CVE-2026-46842 entry concerns Oracle REST Data Services (ORES) Core. Affected versions are 24.2.0–26.1.0. The vulnerability is exploitable by an unauthenticated attacker over HTTPS, potentially leading to unauthorized update, insert, or delete operations on some ORES data. The CVSSv3.1 base s...
CVE-2026-46839
CVE-2026-46839 affects Oracle REST Data Services (ORDS) Core. Affected versions are 24.2.0–26.1.0. The vulnerability allows a low-privileged attacker with network access via HTTPS to compromise ORDS and can lead to takeover, with CVSS v3.1 base score 9.9 (CRITICAL) and impact to Confidentiality, ...
CVE-2026-46837
CVE-2026-46837 affects Oracle E-Business Suite — Flow Manufacturing (component: Security). Affected versions are 12.2.9–12.2.15. The vulnerability allows a low-privileged attacker with network access via SQL to compromise Oracle Flow Manufacturing, potentially taking over the product. Concretely,...
CVE-2026-46840
CVE-2026-46840 affects Oracle REST Data Services (Backend-as-a-Service). Affected versions are 24.2.0–26.1.0. An unauthenticated attacker with network access via HTTPS can compromise ORDS, with potential takeover and full impact on related products. CVSS 3.1 base score is 10.0 (C/I/A = High). The...
CVE-2026-46835
The CVE-2026-46835 entry concerns Oracle Database Server’s Net Service component. Affected are Oracle versions 23.4.0 through 23.26.2. An unauthenticated attacker who can access the Net Service over TLS can cause the Net Service to hang or crash, resulting in a complete denial of service. The doc...
CVE-2026-46833
CVE-2026-46833 : Vulnerability in the Net Service component of Oracle Database Server. Affects supported versions 23.4.0–23.26.2. The issue allows an unauthenticated attacker with network access via TLS to compromise Net Service, with potential scope changes to impact additional products and poss...
CVE-2026-46834
The CVE-2026-46834 entry concerns Oracle Database Server’s Net Service component. Affected versions are 23.4.0 through 23.26.2. The vulnerability is remotely exploitable by an unauthenticated attacker over TLS, enabling a hang or frequent crash of Net Service (complete DOS) as described in the so...
CVE-2026-46830
Oracle REST Data Services (ORDS) Mongoapi component is affected. Affected versions: 24.2.0–26.1.0. The vulnerability allows an unauthenticated attacker with network access via HTTPS to read a subset of ORDS data. The CVSS v3.1 base score is 5.3 (Medium) with vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:...
CVE-2026-46829
The vulnerability CVE-2026-46829 affects Oracle REST Data Services (component: Mongoapi) in versions 24.2.0–26.1.0. An unauthenticated attacker with network access over HTTPS can compromise the service, potentially causing a hang or complete DoS. The CVSS v3.1 base score is 7.5 (Availability high...
CVE-2026-46828
CVE-2026-46828 affects Oracle Payroll (Oracle E-Business Suite) in the Internal Operations component for软件 12.2.3–12.2.15. The vulnerability allows a low-privilege, network-accessible attacker (via HTTP) to compromise Oracle Payroll, enabling unauthorized creation, deletion or modification of cri...
CVE-2026-46824
CVE-2026-46824 affects the Oracle Universal Work Queue within Oracle E-Business Suite, specifically the component Work Provider Site Level Administration . Affected versions are 12.2.3–12.2.15 . The issue allows a low-privileged attacker with network access via HTTP to compromise the Oracle Unive...
CVE-2026-46826
Summary of CVE-2026-46826 (Oracle E-Business Suite Oracle Payroll) : A vulnerability in the Oracle Payroll component (Internal Operations) affecting EBS 12.2.3–12.2.15. An attacker with network access over HTTPS and only low privileges can exploit this to compromise Oracle Payroll, with potential...
CVE-2026-46827
Oracle E-Business Suite’s Oracle Payroll self service manager component is affected in versions 12.2.3–12.2.15. The vulnerability allows a low-privilege attacker with network access via HTTP to compromise Oracle Payroll, potentially leading to takeover of the Oracle Payroll service. CVSS v3.1 bas...
CVE-2026-46822
CVE-2026-46822 affects Oracle iAssets within Oracle E-Business Suite (component: Internal Operations). Affected versions are 12.2.3–12.2.15. The issue is exploitable by a low-privilege attacker with network access via HTTP, potentially leading to takeover of Oracle iAssets and potentially affecti...
CVE-2026-46821
The CVE-2026-46821 entry concerns Oracle E-Business Suite, specifically the Oracle Financials Common Modules (Common Components). Affected versions are 12.2.3–12.2.15. The vulnerability allows a low-privileged attacker with network access via HTTP to compromise Oracle Financials Common Modules, w...
CVE-2026-46823
Oracle E-Business Suite Public Sector Financials (International) contains an Authorization component vulnerability affecting versions 12.2.6–12.2.15. The issue allows a low-privilege attacker with network access over HTTPS to potentially access critical data or gain complete access to Oracle Publ...
CVE-2026-46820
Oracle E-Business Suite (Oracle Financials Common Modules, Common Components) versions 12.2.3–12.2.15 are affected by CVE-2026-46820. The vulnerability allows a low-privileged, network-accessible attacker (HTTP) to compromise the Oracle Financials Common Modules, with potential scope impact to ad...
CVE-2026-46818
CVE-2026-46818 affects Oracle Payments within Oracle E-Business Suite (component: File Transmission). Affected are versions 12.2.3 through 12.2.15. The vulnerability allows an unauthenticated attacker with network access over HTTPS to compromise Oracle Payments, potentially leading to unauthorize...
CVE-2026-46819
CVE-2026-46819 affects Oracle E-Business Suite’s Oracle Internet Procurement Connector (Internal Operations). Affected are versions 12.2.3–12.2.15. The vulnerability can be exploited remotely by an unauthenticated attacker over HTTP to gain unauthorized creation, deletion, or modification of data...
CVE-2026-46775
Oracle REST Data Services (Core) is affected in versions 24.2.0–26.1.0. The vulnerability allows a low-privileged, unauthenticated attacker with HTTPS network access to compromise the service, potentially taking over the Oracle REST Data Services and impacting related products. CVSS 3.1 base scor...
CVE-2026-35277
CVE-2026-35277 affects Oracle REST Data Services (Core). Affected versions: 24.2.0–26.1.0. The vulnerability is exploitable by a low-privileged attacker with network access via HTTPS, potentially leading to unauthorized creation, deletion or modification of data, or unauthorized access to Oracle ...
CVE-2026-46817
The CVE-2026-46817 entry concerns Oracle E-Business Suite’s Oracle Payments (File Transmission) vulnerable across 12.2.3–12.2.15. An unauthenticated attacker with network access over HTTP can compromise Oracle Payments, potentially taking over the service. CVSS v3.1 Base score is 9.8 (HIGH impact...
CVE-2026-34311
CVE-2026-34311 concerns Oracle Hospitality OPERA 5 Property Services (Opera component). Affected versions are 5.6.19.24, 5.6.22, 5.6.25.19, 5.6.27.6, and 5.6.28. The vulnerability is exploitable over HTTP with network access and unauthenticated, leading to takeover of Oracle Hospitality OPERA 5 P...
CVE-2026-35266
CVE-2026-35266 concerns Oracle REST Data Services (Core). Affected: ORO REST Data Services versions 24.2.0–26.1.0. The vulnerability allows a low-privilege, network-accessible attacker (via HTTPS) to compromise Oracle REST Data Services, with exploitation requiring user interaction. Impacts inclu...
CVE-2026-47144
CVE-2026-47144 is associated with a path traversal vulnerability in the project “shame next” controlled through an attacker-supplied shamefile.yaml. The advisory states that an attacker-controlled shamefile.yaml can disclose repository outside files one line at a time to the terminal, indicating ...
CVE-2026-47128
GHSA-27VP-2MMC-VMH3 describes a Linux sandbox escape in the nono project via D-Bus. The root cause is incomplete mediation of local Unix domain socket access within Landlock/seccomp policies, allowing a sandboxed process to reach the per-user systemd D-Bus socket and escape confinement. Impact is...
CVE-2026-49093
CVE-2026-49093 describes a Server-Side Request Forgery (SSRF) in Kibana that can be exploited by an authenticated user with connector management privileges to bypass the operator-configured allowlist and make Kibana issue outbound requests to blocked destinations. The issue affects Kibana 9.x ver...
CVE-2026-49094
CVE-2026-49094 affects Kibana’s analytics collections management endpoint. An authenticated user with viewer-level access can submit an oversized input, causing Kibana to exhaust CPU/memory and become unavailable (DoS). Affected versions include 8.x up to 8.19.15; mitigation is to upgrade to 8.19...
CVE-2026-49095
Kibana Fleet policy management feature is affected by CVE-2026-49095 due to improper input validation (CWE-20). An authenticated user with Fleet management privileges can inject values into a configuration override mechanism, causing Elastic Agents to be issued API keys with elevated Elasticsearc...
CVE-2026-42398
Kibana is affected by SSRF (CWE-918) where authenticated users with connector-management privileges can bypass the operator-configured allowlist by configuring a Webhook connector to target destinations. The issue allows outbound requests to blocked destinations as per egress controls. Affected v...
CVE-2026-42399
CVE-2026-42399 describes an Uncontrolled Resource Consumption (CWE-400) vulnerability in Kibana where an authenticated, low-privilege user can trigger a denial of service by submitting a specially crafted Timelion visualization expression with deeply chained function calls. This causes an exponen...
CVE-2026-42400
CVE-2026-42400 affects Kibana with Uncontrolled Resource Consumption (CWE-400). An authenticated user can send a specially crafted compressed request payload that is processed before authorization checks, causing excessive memory and CPU usage and potentially making the Kibana instance unresponsi...
CVE-2026-42401
CVE-2026-42401 affects Kibana, where improper neutralization of input during web page generation (CWE-79) allows stored HTML injection. A user with write access to an Elasticsearch index can persist crafted markup that, when rendered in a Kibana view by another user, may not be sufficiently sanit...
CVE-2026-33463
The CVE-2026-33463 issue affects Kibana and is caused by a logic error in validating expiration timestamps, allowing time-bounded public file share tokens to remain usable after expiration and enabling an unauthenticated actor with the token to access content. Affected versions include Kibana 8.x...
CVE-2026-33464
Summary: CVE-2026-33464 affects Kibana and causes denial of service through uncontrolled resource consumption when an authenticated, low-privilege user submits an oversized payload to an internal Kibana API, exhausting resources and making the service unresponsive. Affected product and versions (...
CVE-2026-33462
CVE-2026-33462 : Path traversal in Kibana dashboard management allows an authenticated, low-privileged user to craft a dashboard ID that, when deleted by an admin, can be redirected to an unintended endpoint, potentially enabling unauthorized deletion of user accounts or other resources. Affected...
CVE-2026-32847
DeepCode (commit c991dc2) exposes a path traversal vulnerability in the SPA catch-all route of new_ui/backend/main.py. An unauthenticated attacker can read arbitrary files by sending percent-encoded path segments to GET /{full_path:path}, bypassing Starlette path normalization via %2F and %2E%2E....
CVE-2026-33590
CVE-2026-33590 affects Portainer CE. Insecure default permissions grant regular (non-admin) users with endpoint access privileges to read host files and potentially obtain root-equivalent access on the host through privileged operations exposed by Portainer. The NVD entry and CVE records describe...
CVE-2026-49130
MPD (Music Player Daemon) prior to version 0.24.11 is affected by a CRLF injection vulnerability in the XSPF playlist plugin’s xspf_char_data function. By supplying a malicious XSPF playlist that exploits XML numeric character references, an attacker can cause Expat decoding to insert literal CR/...
CVE-2026-49129
Music Player Daemon (MPD) <= 0.24.10 contains a server-side request forgery (SSRF) in CurlInputPlugin by setting CURLOPT_FOLLOWLOCATION without CURLOPT_REDIR_PROTOCOLS_STR. This allows unauthenticated attackers to bypass the http/https scheme restriction and redirect to non-HTTP protocols (e.g...