366150 matches found
CVE-2026-1291
CVE-2026-1291 concerns the Meow Gallery WordPress plugin. A missing capability check on the REST API endpoint /wp-json/meow-gallery/v1/save_shortcode allows authenticated users with Author-level access or higher to arbitrarily create or overwrite gallery shortcode records by supplying a user-cont...
CVE-2026-9629
The Canvas plugin for WordPress (Canvas) contains a Stored Cross-Site Scripting vulnerability via the 'tag' parameter in all versions up to 2.5.2 due to insufficient input sanitization and output escaping. An authenticated attacker with contributor-level access or higher can inject scripts that e...
CVE-2026-2470
The CVE concerns the WordPress Page Builder: Pagelayer plugin (
CVE-2026-3297
The CVE-2026-3297 entry concerns the Page Builder: Pagelayer (WordPress) plugin. Affected version: up to and including 2.0.9. Vulnerability type: Stored Cross-Site Scripting via the Anchor block due to insufficient input sanitization and output escaping. Exploitation requires authenticated access...
CVE-2026-9134
The FooGallery WordPress plugin is vulnerable to Stored XSS in versions up to 3.1.31 through the custom_attribute_key shortcode parameter. Root cause: incomplete JavaScript event handler blacklist in foogallery_sanitize_javascript() and failure to escape the attribute key in foogallery_build_cont...
CVE-2026-9062
The CVE-2026-9062 entry concerns the Store Locator WordPress plugin (affected versions prior to 1.6.9). The vulnerability arises from insufficient validation of a parameter used in a file path, enabling high-privilege users (e.g., administrators) to read arbitrary PHP files from the server, inclu...
CVE-2026-9061
CVE-2026-9061 affects the Store Locator WordPress plugin prior to 1.6.9. The description in the provided documents states that store logo metadata is not sanitized/escaped before storage and output on the admin page, allowing high-privilege users (e.g., administrators) to perform a Stored XSS att...
CVE-2026-9109
CVE-2026-9109 : Stored Cross-Site Scripting in GPTranslate – Multilingual AI Translation for WordPress (versions ≤ 2.31) due to insufficient input sanitization and output escaping in REST API Translation Storage. Unauthenticated users can inject scripts; the API key (SHA-256 of site URL) is print...
CVE-2026-54164
Technical details for CVE-2026-54164 are not publicly available in the provided documents; monitor for updates.
CVE-2026-11769
Grafana Operator CVE-2026-11769 affects all versions
CVE-2026-54231
CVE-2026-54231 affects ABRT’s post-create event handler scripts in libreport. The event script reads journal entries for the crashed process and writes results to files in the dump directory without sanitizing embedded control characters. A local user can inject arbitrary content into the journal...
CVE-2026-54230
CVE-2026-54230 describes a symlink-following vulnerability in ABRT’s libreport post-create event handler scripts. The scripts write output via shell redirections without O_NOFOLLOW, so if a target file is replaced with a symlink, a root process can overwrite arbitrary files on the system. This is...
CVE-2026-54229
Affects the abrt-dbus D-Bus service’s ChownProblemDir method. A race condition occurs when ChownProblemDir opens the dump directory with DD_OPEN_READONLY and then calls dd_chown to change ownership of all files to the caller’s UID, which succeeds even while post-create event handlers hold a write...
CVE-2026-54228
Vulnerability context (CVE-2026-54228) : A TOCTOU race in the abrt-dbus D-Bus service’s SetElement method allows a local user to write arbitrary text files into the root-owned dump directory between dump directory creation and post-create, bypassing package validation and causing crashes of unpac...
CVE-2026-9848
The WP Ticket WordPress plugin (versions up to 6.0.4) is vulnerable to SQL Injection via the WordPress search parameter s. The vulnerability arises when unauthenticated front-end search triggers wp_ticket_com_posts_request(), which calls emd_author_search_results() and concatenates the raw s valu...
CVE-2026-12089
The vulnerability CVE-2026-12089 affects the WordPress plugin “LWS Optimize – All-in-One Speed Booster & Cache Tools” up to version 3.3.19. The root cause is in the combine_current_css() function, which trusts href values harvested from page HTML and converts same-site URLs to absolute filesyste...
CVE-2026-49452
Technical details for CVE-2026-49452 are not publicly available in the provided documents. Monitor for updates.
CVE-2026-49853
Technical details for CVE-2026-49853 are not publicly available in the provided documents. The connected entries describe fixes for a different PT security issue in openSUSE Tumbleweed. Monitor for updates and new disclosures.
CVE-2026-49855
Technical details about CVE-2026-49855 are not publicly available in the provided documents. No affected product, impact, or remediation information is described. Please monitor for updates as information may be released later.
CVE-2026-11443
CVE-2026-11443 affects Allegra via the downloadAttachment method, where insufficient validation of user-supplied data enables cross-site scripting and an authentication bypass. This allows remote attackers to execute arbitrary script in the context of the current user after visiting a malicious p...
CVE-2026-11442
CVE-2026-11442 affects Allegra, via the exportReport method. The vulnerability arises from inadequate validation of a user-supplied path used in file operations, enabling an attacker to disclose sensitive information with the service account’s context. The CVE notes a directory traversal and info...
CVE-2026-12068
CVE-2026-12068 describes an information disclosure in Avira Password Manager when used with Mozilla Firefox across Windows, macOS, and Linux. A remote attacker in a cross-origin iframe can cause incorrect autofill field selection to reveal credentials autofilled on the parent page. Affected compo...
CVE-2026-6676
CVE-2026-6676 is a heap-based out-of-bounds write in Avira Antivirus engine when scanning a malformed POSIX tar archive. Affects Windows, macOS, and Linux engine builds prior to 8.3.27.12. It may enable local code execution or cause a denial-of-service of the antivirus engine process. The descrip...
CVE-2025-14098
Avira Antivirus engine heap buffer out-of-bounds write (integer overflow) when scanning a malformed MS-DOS executable file. Affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.104. Impact: local code execution or denial-of-service of the antivirus engine process. ...
CVE-2025-9033
The CVE-2025-9033 issue affects Avira Antivirus engine on Windows, macOS, and Linux for engine builds before 8.3.70.76. It is a heap buffer out-of-bounds read in the scanner when processing a malformed PDF, variant 3, which may allow Local Execution of Code or Denial-of-Service of the antivirus e...
CVE-2025-9032
CVE-2025-9032 is a heap buffer out-of-bounds read vulnerability in the Avira Antivirus engine when scanning a malformed Windows PE file. Affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.98. The issue can lead to Local Execution of Code or Denial-of-Service of t...
CVE-2025-7019
CVE-2025-7019 describes a stack overflow in Avast/Gen Digital antivirus scanning of malformed Office Open XML files, causing Denial-of-Service of the antivirus process. Affected products include Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows/m...
CVE-2025-7018
CVE-2025-7018 is a null pointer dereference in Avira Antivirus engine when scanning malformed Windows PE files, potentially causing Denial-of-Service of the antivirus engine process. Affected product: Avira Antivirus across Windows, macOS, and Linux, with vulnerable engine builds prior to 8.3.70....
CVE-2025-7017
Affected product: Avira Antivirus engine. Vulnerability: heap buffer out-of-bounds read when scanning a malformed Windows MSI file. Root cause: out-of-bounds heap read in the engine (details not provided beyond the description). Impact: local code execution or denial-of-service of the antivirus e...
CVE-2025-7011
This CVE-2025-7011 describes a heap out-of-bounds read in the Avast Gen Digital antivirus engine when processing a malformed ZIP containing XML, potentially enabling local code execution or antivirus process denial-of-service. Affected products include Avast Antivirus, AVG Antivirus, Norton Antiv...
CVE-2025-7010
CVE-2025-7010 describes a stack overflow vulnerability (uncontrolled recursion) in Avast’s scanning engine when processing a malformed PDF, leading to Denial‑of‑Service of the antivirus process. Affected products include Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Busin...
CVE-2025-7009
The CVE-2025-7009 issue is a heap buffer out-of-bounds read in the Avast/Gen Digital scanning engine when processing malformed Windows PE files. Affected products include Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux, for vi...
CVE-2025-7008
CVE-2025-7008 describes a heap buffer out-of-bounds read in Gen Digital antivirus engines ( Avast Antivirus, AVG, Norton, Avast One/Business) when scanning malformed Windows PE files containing .NET metadata. Root cause: heap OOB read in the scanning logic when processing such PE files; impact in...
CVE-2025-7006
CVE-2025-7006 describes a use-after-free in Avast Gen Digital antivirus scanning logic when processing malformed Windows PE files, causing denial-of-service to the antivirus process. Affected products include Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antiviru...
CVE-2025-7005
CVE-2025-7005 describes an uncontrolled recursion vulnerability in Avast Antivirus when scanning a malformed Windows PE file, potentially causing denial-of-service of the antivirus process. Affected products include Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business A...
CVE-2025-7004
CVE-2025-7004 describes a heap buffer out-of-bounds write in Avast/Gen Digital antivirus products when scanning a malformed Windows PE file, potentially allowing Local Execution of Code or Denial-of-Service of the antivirus process. Affected products include Avast Antivirus, AVG Antivirus, Norton...
CVE-2025-7003
CVE-2025-7003 describes a heap buffer out-of-bounds read in the Avira Antivirus engine when scanning malformed PDF files, potentially enabling local code execution or denial-of-service. Affected: Avira Antivirus engine on Windows, macOS, and Linux for builds prior to 8.3.70.56. Exploitation detai...
CVE-2025-7002
CVE-2025-7002 is a heap buffer out-of-bounds read vulnerability in the Avira Antivirus engine when scanning a malformed PDF, potentially allowing local code execution or crashing the antivirus process. Affected products are Avira Antivirus engines on Windows, macOS, and Linux with builds prior to...
CVE-2026-41158
Summary of CVE-2026-41158: The vulnerability concerns GPU DDK where backed sparse PMRs are not handled by the deferred free mechanism after shrink, allowing a non-privileged user to perform GPU system calls that write to arbitrarily freed physical pages. The root cause is that physical memory all...
CVE-2026-53868
Capgo before 12.128.2 contains a denial-of-service vulnerability where attackers can register accounts with arbitrary, unverified emails and then delete them, causing pending deletions that lock legitimate users out for up to 30 days. Root cause: unverified email ownership in account lifecycle op...
CVE-2026-53867
Capgo before 12.128.2 does not delete previously uploaded profile images, leaving orphaned files accessible via previously generated URLs, enabling unauthorized retrieval of user-uploaded content. This affects Capgo's backend storage handling when users replace or remove images. The CVE notes MED...
CVE-2026-53838
OpenClaw is affected by a state mutation vulnerability in node pairing reconnection prior to version 2026.5.27. The issue lets paired nodes confuse approval scope decisions by manipulating reconnection logic, potentially restoring or presenting broader node authority than intended and bypassing a...
CVE-2026-53839
OpenClaw before 2026.5.7 has a hostname validation flaw in the retry endpoint checks that allows matching hostname prefixes instead of exact hostnames. This can enable an attacker to craft a hostname prefix that resembles a trusted host, potentially causing authentication material to be sent to u...
CVE-2026-53837
CVE-2026-53837 affects OpenClaw prior to 2026.5.6, where an improper access control vulnerability in Mattermost event handlers fails to validate channel type metadata. Attackers can bypass DM policy decisions by sending crafted Mattermost events that omit channel type information, enabling proces...
CVE-2026-53836
OpenClaw is affected by an allowlist bypass in PowerShell encoded-command handling prior to 2026.5.12. The vulnerability lets remote authenticated operators bypass the execution allowlist by using abbreviated or unrecognized encoded-command alias forms to run arbitrary PowerShell content. This ca...
CVE-2026-53835
OpenClaw (pre-2026.5.6) contains a configuration enforcement bypass in Feishu dynamic-agent bindings. The flaw allows authenticated senders to create or update bindings without honoring configured config-write controls, enabling changes to sender-agent binding state beyond policy. Affected compon...
CVE-2026-53834
OpenClaw (OpenClaw before 2026.4.27) contains an authorization bypass in QQBot pre-dispatch slash commands that allows authenticated senders to bypass allowFrom policy checks. Attackers can invoke slash commands before access control policies are applied, potentially triggering command handling f...
CVE-2026-53833
OpenClaw before 2026.4.29 contains an authorization bypass in the QQBot streaming command that lets authenticated senders mutate configuration without explicit allowFrom restrictions. Attackers can modify QQBot streaming configuration outside the intended admin policy by accessing the affected co...
CVE-2026-53832
CVE-2026-53832 affects OpenClaw prior to 2026.5.18. The issue is an identity header validation flaw that lets local, same-host callers forge trusted-proxy identity headers, enabling them to assume operator identity and potentially escalate privileges when they have access to the proxy-facing Gate...
CVE-2026-53831
OpenClaw