Lucene search
K
CvelistRecent

363619 matches found

Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•27 views

CVE-2026-56006 WordPress H5P plugin <= 1.17.6 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in H5P = 1.17.6 versions...

7.1CVSS0.00175EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•27 views

CVE-2026-56013 WordPress License Manager for WooCommerce plugin <= 3.0.15 - Insecure Direct Object References (IDOR) vulnerability

Unauthenticated Insecure Direct Object References IDOR in License Manager for WooCommerce = 3.0.15 versions...

6.5CVSS0.00235EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•28 views

CVE-2026-56005 WordPress WP Activity Log plugin <= 5.6.3.1 - Cross Site Scripting (XSS) vulnerability

Subscriber Cross Site Scripting XSS in WP Activity Log = 5.6.3.1 versions...

7.1CVSS0.0023EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•30 views

CVE-2026-54849 WordPress Premmerce Wishlist for WooCommerce plugin <= 1.1.11 - SQL Injection vulnerability

Unauthenticated SQL Injection in Premmerce Wishlist for WooCommerce = 1.1.11 versions...

9.3CVSS0.00229EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•29 views

CVE-2026-54845 WordPress MDTF plugin <= 1.3.8 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in MDTF = 1.3.8 versions...

8.1CVSS0.00274EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•28 views

CVE-2026-54844 WordPress CheckView Automated Testing plugin <= 2.1.0 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in CheckView Automated Testing = 2.1.0 versions...

7.5CVSS0.00238EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•28 views

CVE-2026-54843 WordPress MDTF plugin <= 1.3.7 - SQL Injection vulnerability

Unauthenticated SQL Injection in MDTF = 1.3.7 versions...

9.3CVSS0.00229EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•28 views

CVE-2026-54841 WordPress Vitepos plugin <= 3.4.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in Vitepos = 3.4.2 versions...

7.5CVSS0.00294EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•28 views

CVE-2026-54838 WordPress WC Vendors Marketplace plugin <= 2.6.8 - SQL Injection vulnerability

Subscriber SQL Injection in WC Vendors Marketplace = 2.6.8 versions...

8.5CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•29 views

CVE-2026-54830 WordPress Five Star Restaurant Reservations plugin <= 2.7.19 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Five Star Restaurant Reservations = 2.7.19 versions...

7.5CVSS0.00238EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•27 views

CVE-2026-54828 WordPress Motors plugin <= 1.4.109 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Motors = 1.4.109 versions...

7.5CVSS0.00238EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•30 views

CVE-2026-54823 WordPress Widget Options plugin <= 4.2.3 - Remote Code Execution (RCE) vulnerability

Contributor Remote Code Execution RCE in Widget Options = 4.2.3 versions...

9.9CVSS0.00426EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•29 views

CVE-2026-54821 WordPress Visual Link Preview plugin <= 2.3.1 - Sensitive Data Exposure vulnerability

Subscriber Sensitive Data Exposure in Visual Link Preview = 2.3.1 versions...

7.4CVSS0.00264EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•31 views

CVE-2026-54822 WordPress SALESmanago & Leadoo plugin <= 3.11.2 - SQL Injection vulnerability

Subscriber SQL Injection in SALESmanago & Leadoo = 3.11.2 versions...

8.5CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•28 views

CVE-2026-27366 WordPress MainWP Child plugin <= 6.1.1 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in MainWP Child = 6.1.1 versions...

7.5CVSS0.00223EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:12 p.m.•31 views

CVE-2026-57619 WordPress Elementor Website Builder plugin <= 4.1.3 - Sensitive Data Exposure vulnerability

Contributor Sensitive Data Exposure in Elementor Website Builder = 4.1.3 versions...

6.5CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:1 p.m.•27 views

CVE-2026-52690 Spoofed answers can mark an authoritative non-EDNS capable

Spoofing replies to Recursor might mark an IP of an authoritative server as not supporting EDNS, causing valdiation of DNSSEC records served by that server to fail...

5.9CVSS0.00352EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 1:1 p.m.•32 views

CVE-2026-42390 ZONEMD validation can be bypassed

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS0.00213EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:59 p.m.•28 views

CVE-2026-42388 Missing input validation for catalog zones

Incomplete validation of the SOA record present in a catalog zone might lead to a crash...

5.9CVSS0.004EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:59 p.m.•27 views

CVE-2026-42387 Insufficient input validation in ZoneToCache

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS0.004EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:58 p.m.•29 views

CVE-2026-40012 Information about ECS zero scoped answers might leak to clients that use a specific ECS

ECS zero scoped answers are stored in the packet cache while they should not. This impacts only configurations that have ECS enabled;...

5.3CVSS0.00305EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:58 p.m.•32 views

CVE-2026-33612 ZoneToCache can poison the cache

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to cache poisoning...

7.5CVSS0.00119EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:24 p.m.•30 views

CVE-2026-42004 EDNS options smuggling

An attacker can send a crafted EDNS OPT record that will be ignored by DNSdist’s filtering rules, but will be rewritten as a valid OPT record when EDNS Client Subnet is inserted, causing the backend to see the EDNS options that DNSdist did not filter...

3.7CVSS0.00162EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:23 p.m.•29 views

CVE-2026-40211 Denial of service via crafted DoH3 queries

An attacker can send crafted DNS over HTTP/3 queries, triggering an exception that prevents some buffer from being freed right away. The buffer will be freed at the end of the QUIC connection, but on some setups it might be possible to open enough concurrent DoH3 streams to trigger an out-of-memo...

5.3CVSS0.00413EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:23 p.m.•30 views

CVE-2026-40210 Out-of-bounds read in SetMacAddrAction

An out-of-bounds read might happen when SetMacAddrAction is used, potentially resulting in uninitialized memory being sent over the network or a crash...

4.8CVSS0.00336EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:23 p.m.•30 views

CVE-2026-40209 Denial of service via IXFR queries

An attacker might be able to cause outgoing TCP connections to backend to be stuck until a timeout occurs instead of being released immediately, by sending IXFR queries. This could be used to cause a denial of service if there is a limit to the number of concurrent connections to this backend, or...

5.3CVSS0.00404EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:22 p.m.•29 views

CVE-2026-40208 Denial of service via DoH3 queries

An attacker might be able to delay the processing of DoH3 queries by sending DoH3 GET queries with an invalid DATA frame...

3.7CVSS0.00285EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 12:22 p.m.•31 views

CVE-2026-40011 Prometheus denial of service via crafted DNS queries

An attacker sending a large number of crafted DNS queries might be able to trigger a dynamic block being inserted with a value causing invalid output to be produced in the prometheus endpoint. The prometheus endpoint will then be rejected by the scraper until the dynamic block expires...

3.7CVSS0.00158EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 11:57 a.m.•32 views

CVE-2026-42005 Insufficient input validation of internal web server

An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default...

4.3CVSS0.00479EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 8:45 a.m.•27 views

CVE-2026-56091 Apache Shiro: Authentication bypass in Guice-Web integration

When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. This vulnerability is similar to https://vulners.com/cve/CVE-2020-1957 https://www.cve.org/CVERecord , except that it affects the shiro-guice module...

8.2CVSS0.00422EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 8:44 a.m.•25 views

CVE-2026-56130 Apache Shiro: Remember-me cookie isn't checked for expiry on the server

"Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, even after the configured expiration time has passed. This issue affects all Apache Shiro versions from 1.2.4 through 2.x, and 3.0.0-alpha-1, only whe...

2CVSS0.00224EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/25 8:40 a.m.•29 views

CVE-2026-53277 KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walks1 and kvmwalknesteds2 expect to be called while holding kvm-srcu to guard against memslot changes. While this is generally the case,...

8.8CVSS0.00111EPSS
Exploits0References3
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•30 views

CVE-2026-53275 ipv6: mcast: Fix use-after-free when processing MLD queries

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when processing MLD queries When processing an MLD query, a pointer to the multicast group address is retrieved when initially parsing the packet. This pointer is later dereferenced without being...

8.8CVSS0.00252EPSS
Exploits0References7
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•32 views

CVE-2026-53276 Bluetooth: ISO: Fix a use-after-free of the hci_conn pointer

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix a use-after-free of the hciconn pointer In isosockrebindbc, the bis pointer is cached, then the socket lock is dropped: bis = isopisk-conn-hcon; / Release the socket before lookups since that requires hcidevlo...

7.8CVSS0.0012EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•25 views

CVE-2026-53274 net/smc: fix sleep-inside-lock in __smc_setsockopt() causing local DoS

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix sleep-inside-lock in smcsetsockopt causing local DoS A logic flaw in smcsetsockopt allows a local unprivileged user to cause a Denial of Service DoS by holding the socket lock indefinitely. The function smcsetsockopt...

0.00181EPSS
Exploits0References6
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•28 views

CVE-2026-53272 erofs: fix use-after-free on sbi->sync_decompress

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

0.00164EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•29 views

CVE-2026-53273 tee: optee: prevent use-after-free when the client exits before the supplicant

In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when the client exits before the supplicant Commit 70b0d6b0a199 "tee: optee: Fix supplicant wait loop" made the client wait as killable so it can be interrupted during shutdown or after a...

7.8CVSS0.00126EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•26 views

CVE-2026-53271 ksmbd: fix NULL-deref of opinfo->conn in oplock/lease break notifiers

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix NULL-deref of opinfo-conn in oplock/lease break notifiers smb2oplockbreaknoti and smb2leasebreaknoti read opinfo-conn into a local with neither READONCE nor a NULL check. Both run from oplockbreak after opinfogetlist h...

0.00164EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•28 views

CVE-2026-53269 netfilter: synproxy: add mutex to guard hook reference counting

In the Linux kernel, the following vulnerability has been resolved: netfilter: synproxy: add mutex to guard hook reference counting As the synproxy infrastructure register netfilter hooks on-demand when a user adds the first iptables target or nftables expression, if done concurrently they can ra...

0.00172EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•28 views

CVE-2026-53270 ipvs: clear the svc scheduler ptr early on edit

In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on edit ipvseditservice while unbinding the old scheduler clears the svc-scheduler ptr after the scheduler module initiates RCU callbacks. This can cause packets to use the old scheduler at...

7.8CVSS0.00129EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•27 views

CVE-2026-53268 netfilter: conntrack_irc: fix possible out-of-bounds read

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrackirc: fix possible out-of-bounds read When parsing fails after we've matched the command string we should bail out instead of trying to match a different command. This helper should be deprecated, given...

8.2CVSS0.00364EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•28 views

CVE-2026-53267 netfilter: nft_ct: bail out on template ct in get eval

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: bail out on template ct in get eval I noticed this issue while looking at a historic syzbot report 1. A rule like the one below is enough to trigger the bug: table ip t chain pre type filter hook prerouting...

7.8CVSS0.00128EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•43 views

CVE-2026-53266 netfilter: bridge: make ebt_snat ARP rewrite writable

In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebtsnat ARP rewrite writable The ebtables SNAT target keeps the Ethernet source address rewrite behind skbensurewritableskb, 0. This is intentional: at the bridge ebtables hooks the Ethernet header is...

8.8CVSS0.00129EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•28 views

CVE-2026-53265 dm cache policy smq: check allocation under invalidate lock

In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: check allocation under invalidate lock commit 2d1f7b65f5de "dm cache policy smq: fix missing locks in invalidating cache blocks" added mq-lock around the destructive part of smqinvalidatemapping, but left the...

7.8CVSS0.00129EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•27 views

CVE-2026-53264 net/sched: act_api: use RCU with deferred freeing for action lifecycle

In the Linux kernel, the following vulnerability has been resolved: net/sched: actapi: use RCU with deferred freeing for action lifecycle When NEWTFILTER and DELFILTER are run concurrently it is possible to create a race with an associated action. Let's illustrate with CPU0 running NEWTFILTER and...

7.8CVSS0.00129EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•25 views

CVE-2026-53263 6lowpan: fix off-by-one in multicast context address compression

In the Linux kernel, the following vulnerability has been resolved: 6lowpan: fix off-by-one in multicast context address compression The second memcpy in lowpaniphcmcastctxaddrcompress uses &data1 as destination and &ipaddr-s6addr11 as source, but both should be offset by one: &data2 and...

0.00172EPSS
Exploits0References8
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•29 views

CVE-2026-53262 l2tp: pppol2tp: hold reference to session in pppol2tp_ioctl()

In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session in pppol2tpioctl pppol2tpioctl read sock-sk-skuserdata directly without any locks or reference counting. If a controllable sleep was induced during copyfromuser e.g. via a userfaultfd pag...

7.8CVSS0.00125EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•26 views

CVE-2026-53260 tcp: Add preempt_{disable,enable}_nested() in reqsk_queue_hash_req().

In the Linux kernel, the following vulnerability has been resolved: tcp: Add preemptdisable,enablenested in reqskqueuehashreq. syzbot reported a weird reqsk-rskrefcnt underflow in inetcskreqskqueuedrop. The captured reqskput in inetcskreqskqueuedrop is called only when it successfully removes req...

9.8CVSS0.00349EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•28 views

CVE-2026-53261 devlink: Release nested relation on devlink free

In the Linux kernel, the following vulnerability has been resolved: devlink: Release nested relation on devlink free devlink relation state is normally released from devlunregister, which calls devlinkrelput. This misses devlink instances that get a nested relation before registration and then fa...

0.00163EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/06/25 8:39 a.m.•27 views

CVE-2026-53259 ipv6: anycast: insert aca into global hash under idev->lock

In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash under idev-lock syzbot reported a splat 1: a slab-use-after-free in ipv6chkacastaddr, which walks the global inet6acaddrlst hash under RCU and dereferences a struct ifacaddr6 that has...

7.8CVSS0.00123EPSS
Exploits0References3
Total number of security vulnerabilities363619