CVE-2026-48039

The connected GitHub OSV entry and accompanying advisory summarize CVE-2026-48039 as a real, exploitable issue in Meta Ads MCP: unauthenticated HTTP requests to the MCP tool endpoint are allowed, with no 401 when no credentials are present. The root cause is in http_auth_integration.py: the middl...

CVE-2026-48068

Summary: The CVE-2026-48068 entry is complemented by official advisories for “@grpc/grpc-js” describing a vulnerability where an invalid HTTP/2 stream initiation can crash a server process. This affects all servers built with @grpc/grpc-js and is confirmed across multiple advisories (GitHub GHSA ...

CVE-2026-48069

The CVE entry itself is reserved, but connected advisories show a vulnerability in @grpc/grpc-js where an invalid incoming compressed message can crash a client or server. Affected component: @grpc/grpc-js (all clients/servers using it). Root cause: processing malformed compressed messages leads ...

CVE-2026-48038

The vulnerability described in GHSA-Q7CG-457F-VX79 affects the joi validation library (hapijs/joi) when processing deeply nested input through recursive link schemas, leading to a Denial of Service via an uncaught RangeError. The impact varies by how validation is invoked: an unhandled RangeError...

CVE-2026-48054

OpenZeppelin Contracts Wizard has a Code Injection vulnerability in generated Hardhat and Foundry tests through unsanitized inputs (opts.name/opts.uri). A crafted input could make generated test files parse as code, leading to arbitrary code execution when running tests. Patches fix has been rele...

CVE-2026-48022

The connected advisories describe a vulnerability in @hapi/wreck where credential headers (Authorization, Cookie, Proxy-Authorization) are leaked across cross-port and cross-scheme redirects due to an origin check that only compares hostnames. The fix is to perform a full-origin check (scheme, ho...

CVE-2026-48007

Element Call versions 0.5.17 through 0.19.3 report analytics data to a PostHog server when enabled, exposing full URLs of visited pages (including fragments) in fields like $initial_person_info, $session_entry_url, and $current_url. Patched in Element Call 0.19.4. Workarounds include disabling an...

CVE-2026-47781

CVE-2026-47781 is evidenced in connected documents as a PDM vulnerability where project-local .pdm-plugins content is loaded during Core initialization via site.addsitedir(). This allows processing of attacker-controlled .pth files before normal CLI handling, enabling arbitrary code execution wit...

CVE-2026-47780

The CVE-2026-47780 entry concerns the free5GC UDR, where the EE subscription handlers accept arbitrary non-3GPP ueId values due to a flawed regular expression: ^(imsi-[0-9]{5,15}|nai-.+|msisdn-[0-9]{5,15}|extid-[^@]+@[^@]+|gci-.+|gli-.+|.+)$. The final |.+ branch permits any non-empty string, all...

CVE-2026-53661

CVE-2026-53661 affects Boruta (standalone OAuth2/OpenID Connect server). Prior to 0.9.1, session cookies (_boruta_web_key) and identity remember-me cookie (_boruta_identity_web_user_remember_me) were set without Secure; in plaintext HTTP this enables cookie capture and impersonation. Affected com...

CVE-2026-53723

Guzzle Services (guzzlehttp/guzzle-services) contains an XML request serialization flaw in versions before 1.5.4 where scalar XML element values may include the CDATA terminator ]]>, causing the CDATA to end early and injecting XML markup into outgoing requests. This is an outgoing request‑bod...

CVE-2026-49214

CVE-2026-49214 affects guzzlehttp/psr7 up to version 2.10.1. Versions prior to 2.10.2 do not reject ASCII control characters/whitespace/DEL in URI host components. If a user-controlled URL is used to build a PSR-7 Uri/Request and the host contains CRLF or similar, the host may be copied into the ...

CVE-2026-48998

GuzzleHttp/psr7 (PHP) before version 2.10.2 is affected by improper Host header validation when parsing raw HTTP requests or deriving a server request URI from server variables. An attacker can supply a Host header containing URI delimiters (for example [email protected]) that can be r...

CVE-2026-11561

CVE-2026-11561 describes an expression language injection in Apinizer by Soagen Informatics Technologies Software and Consulting Inc. The issue arises from improper neutralization of special elements used in an expression language statement, enabling code injection. Affected versions are Apinizer...

CVE-2026-7852

CVE-2026-7852 describes an unrestricted upload of a file with a dangerous type in LimRAD NAC by Limatek System Inc., enabling Remote Code Inclusion. Affected product: LimRAD NAC prior to 5.5.7.3.9. The provided documents do not specify affected components beyond the product/version, nor any remed...

CVE-2026-11956

CVE-2026-11956 affects TwiN gatus 5.36.0, specifically the OIDC Session Cookie Handler (setSessionCookie). The issue is a missing Secure attribute on the session cookie, enabling potential exposure of sensitive cookie data via remote manipulation. The description indicates high attack complexity ...

CVE-2023-32959

CVE-2023-32959 is a WordPress Broken Access Control issue affecting multiple themes (e.g., MetroStore, SparkleStore, Kathmag, Online eStore, Appzend, SpiderMag, BuzzStore, Fitness Park, Sparklestore, etc.) with vulnerable versions generally prior to or equal to 1.x.y depending on the theme. The r...

CVE-2023-25969

CVE-2023-25969 is aBroken Access Control issue reported across multiple WordPress plugins with unauthenticated access. Connected advisories show: Lead Form Elementor Builder: vulnerable <= 1.8.4; fixed in 1.8.5 TH Side Cart and Menu Cart for WooCommerce: vulnerable <= 1.1.1; fixed in 1.1.2 ...

CVE-2026-53423

CVE-2026-53423 affects membrane_mp4_plugin (Elixir/Membrane) from version 0.3.0 up to

CVE-2022-47150

CVE-2022-47150 concerns CSRF in WordPress plugins referencing WooCommerce Conversion Tracking. Affected product: WooCommerce Conversion Tracking plugin for WordPress, versions up to and including 2.0.10. Underlying issue: Cross-Site Request Forgery, enabling unauthenticated or unauthorized action...

CVE-2022-45813

CVE-2022-45813 affects multiple WordPress/WooCommerce plugins via Broken Access Control and authorization bypass concerns. The BeRocket Advanced AJAX Product Filters entry cites a vulnerability in the plug‑in’s access control; Patchstack confirms the issue across several plugins (e.g., Product Ta...

CVE-2026-8464

CVE-2026-8464 : Golem OEE MES is affected by an unauthenticated path-traversal vulnerability that could allow an attacker in the same local network to read arbitrary files from the server by manipulating HTTP request paths. The issue is fixed in version 11.6.0. Affected product: Golem OEE MES; vu...

CVE-2026-1500

GitLab CE/EE (versions 17.10 prior to 18.10.8, 18.11 prior to 18.11.5, and 19.0 prior to 19.0.2) are affected by CVE-2026-1500. An authenticated user could trigger denial of service via uncontrolled resource consumption when processing a specially crafted file upload. The issue has been remediate...

CVE-2026-3553

GitLab CE/EE was vulnerable to an incorrect authorization check that could allow an authenticated user to view confidential issue details. Affected versions were all 12.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2. The issue has been remediated in patch releases: GitLab 18.10.8,...

CVE-2026-6269

CVE-2026-6269 : GitLab CE/EE remediation for a flaw where, under certain conditions, an authenticated user with developer-role permissions could modify hidden merge requests due to incorrect authorization enforcements. Affected versions: 15.10 prior to 18.10.8, 18.11 prior to 18.11.5, and 19.0 pr...

CVE-2026-6277

GitLab EE contains an incorrect authorization issue (CVE-2026-6277) that could allow an authenticated user with Security Manager permissions to manage project security configuration even when the feature was disabled. Affects GitLab EE versions: 13.9 prior to 18.10.8, 18.11 prior to 18.11.5, and ...

CVE-2026-6552

GitLab Elasticsearch? No—this CVE concerns GitLab Enterprise Edition (GitLab EE). Affected versions: 15.5 up to but not including 18.10.8, 18.11 up to but not including 18.11.5, and 19.0 up to but not including 19.0.2. Root cause: improper authorization in Group SAML identity management allowed a...

CVE-2026-6976

GitLab CVE-2026-6976 affects GitLab CE/EE with versions 15.9–1x prior to 18.10.8, 18.11 prior to 18.11.5, and 19.0 prior to 19.0.2. An authenticated user with developer permissions could, under certain conditions, hide changes in merge request diff views due to improper input handling of file nam...

CVE-2026-7250

GitLab CVE-2026-7250 affects GitLab CE/EE: versions 12.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 could, under certain conditions, allow an unauthenticated user to cause a denial of service due to improper input validation in the API request parsing middleware. Root cause is ...

CVE-2026-8589

GitLab EE is affected by CVE-2026-8589 due to improper sanitization of user-supplied input in certain group setting fields. This could allow an authenticated user to add unauthorized email addresses to another user’s account. Affected versions are 13.1.4 before 18.10.8, 18.11 before 18.11.5, and ...

CVE-2026-9204

CVE-2026-9204 describes a Server-Side Request Forgery (SSRF) in GitLab CE/EE where an authenticated user could read arbitrary files from the Gitaly server and access internal network resources during repository import, due to insufficient validation of secondary URLs. Affected versions: 18.10 bef...

CVE-2026-9694

GitLab CE/EE (all supported lines affected) had a vulnerability allowing an unauthenticated user to impersonate the GitLab Support Bot and inject arbitrary content via a specially crafted Service Desk email reply. Root cause: improper neutralization in email template processing. Remediation: patc...

CVE-2026-10087

GitLab Analytics Dashboard vulnerability (CVE-2026-10087) affects GitLab Enterprise Edition with disclosure that all 17.1–<18.10.8, all 18.11–<18.11.5, and all 19.0–

CVE-2026-10733

GitLab CVE-2026-10733 affects GitLab CE/EE versions prior to 18.10.8 (from 17.0 line), 18.11 prior to 18.11.5, and 19.0 prior to 19.0.2. Root cause: improper sanitization that could allow an authenticated user to cause a denial-of-service on the CI/CD Catalog page. Remediation: upgrade to the pat...

CVE-2026-4764

The CVE reports a Missing Authorization in Dialogflow CX’s playbook import on Google Cloud Platform. An authenticated user with specific roles can escalate privileges via a malicious playbook import, potentially taking over a GCP project. The issue affects Dialogflow CX playbook import functional...

CVE-2026-53912

Cerebrate before version 1.37 exposed credential material from self-registration requests. The self-registration workflow stored registrant password hashes in the inbox message payload, which were returned unredacted through inbox index/view responses (HTML/JSON/CSV) and could be written unredact...

CVE-2022-44630

The CVE-2022-44630 entry pertains to the WordPress plugin YITH WooCommerce Product Slider Carousel (vulnerable:

CVE-2026-11850

CVE-2026-11850 affects MIT Kerberos 5; the vulnerability is an integer underflow in berval2tl_data() inside ldap_principal2.c, where unsigned bv_len - 2 lacks bounds checking. When bv_len is 0 or 1, the subtraction underflows to 0xFFFE/0xFFFF and is then memcpy’d from a 0–1 byte buffer, causing a...

CVE-2022-42479

CVE-2022-42479 concerns a Broken Access Control in WordPress Soledad premium theme versions

CVE-2026-53911

CVE-2026-53911 affects Cerebrate up to version 1.36, where the id primary key could be supplied via request input during CRUD edits and patching flows for several entity types (User, Role, UserSetting, LocalTool, PermissionLimitation, EnumerationCollection). An authenticated attacker could includ...

CVE-2025-7064

ABB Freelance is affected by CVE-2025-7064 with an authentication bypass described as a primary weakness. Affected releases include Freelance through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, and 2024. Metrics show CVSS v3.1: Low impact on confidentiality, High impact on integ...

CVE-2026-5497

CVE-2026-5497 affects vLLM 0.8.0 and later, where VideoMediaIO.load_base64() can perform unbounded frame processing for video/jpeg data URLs, leading to an Out-of-Memory DoS. An attacker can craft a single API request with thousands of comma-separated base64 JPEG frames, causing the server to dec...

CVE-2026-53901

CVE-2026-53901 affects Cerebrate, before v1.37, where the generic CRUD add path allowed mass assignment of attacker-controlled identifiers. The add() handler attempted to strip an id from $params prior to __massageInput() normalization, but a supplied id could still be present in the normalized i...

CVE-2023-40200

CVE-2023-40200 affects the WordPress plugin WP Logo Showcase Responsive Slider and Carousel (versions

CVE-2024-32110

CVE-2024-32110 is a CSRF vulnerability in the WordPress plugin Event Manager and Tickets Selling Plugin for WooCommerce (WpEvently) for versions up to 4.1.2. The connected Wordfence listing confirms the issue exists and notes a patch status of Patched, indicating a fix has been applied by the ven...

CVE-2023-33999

Technical details on CVE-2023-33999 are not provided in the supplied documents. Please monitor for updates from vendors/security advisories before assessing impact, affected products, or fixes.

CVE-2026-10795

UpdraftPlus (WordPress plugin)

CVE-2026-41856

CVE-2026-41856 affects Spring GraphQL’s annotation detection for @Controller data fetchers, where resolution of annotations in type hierarchies may be incorrect. This can lead to security annotations being ignored at runtime when all conditions are met and annotations are used for authorization d...

CVE-2026-41700

Spring for GraphQL with WebSocket transport is affected by Cross-Site WebSocket Hijacking. Affected versions: Spring for GraphQL 2.0.0–2.0.3; 1.4.0–1.4.5; 1.3.0–1.3.8; 1.0.0–1.0.6. Description confirms the issue: an attacker can lure an authenticated user to a malicious page to execute arbitrary ...

CVE-2026-41699

CVE-2026-41699 : Spring for GraphQL is affected by an Unsafe Deserialization flaw when processing paginated GraphQL queries (Connection fields). If the classpath contains specific deserialization-related classes, a crafted GraphQL request can lead to Remote Code Execution. Affected versions: Spri...