363367 matches found
CVE-2026-58426
Gitea Actions Artifacts V4 signed URL HMAC ambiguity allows cross-repository artifact read and cross-task upload-state write...
CVE-2026-58522
Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally...
CVE-2026-58300
Absolute path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally...
CVE-2026-58418
SSRF via HTTP Redirect in Repository Migration...
CVE-2026-58419
Notification API leaks private issue metadata after access revocation...
CVE-2026-58421
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...
CVE-2026-58423
LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories...
CVE-2026-58422
Improper authorization on OAuth sign-in callback silently re-enables administrator-disabled accounts...
CVE-2026-58292
Improper input validation in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58293
External control of file name or path in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58295
Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-58294
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58296
Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network...
CVE-2026-58297
Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network...
CVE-2026-58298
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-58299
Time-of-check time-of-use toctou race condition in Microsoft Edge for Android allows an unauthorized attacker to execute code over a network...
CVE-2026-58285
Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58289
Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58290
Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58291
Operation on a resource after expiration or release in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...
CVE-2026-58284
Improper authorization in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58286
Improper access control in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-58287
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58288
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-57988
Relative path traversal in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58283
Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-57991
Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...
CVE-2026-57992
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-57993
Server-side request forgery ssrf in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-58278
Server-side request forgery ssrf in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-58276
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-58282
Improper access control in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-57975
Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-57985
Improper input validation in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-57987
Server-side request forgery ssrf in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-57986
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-57977
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-57981
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-57983
Improper authorization in Microsoft Edge Chromium-based allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-57984
Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-28744
Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenticated with bearer tokens to bypass repository token scope checks...
CVE-2026-45489
Microsoft Edge Chromium-based Spoofing Vulnerability...
CVE-2026-56645
Heap-based buffer overflow in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-56646
Exposure of sensitive information to an unauthorized actor in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-57974
Integer overflow or wraparound in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...
CVE-2026-45488
User interface ui misrepresentation of critical information in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-55945
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Edge Chromium-based allows an authorized attacker to disclose information locally...
CVE-2026-27771
Gitea versions up to and including 1.26.1 have insufficient permission checks for Composer package source links, which can expose private or internal package source information...
CVE-2026-27775
Gitea 1.25.5 caches a branch-specific write-permission result across multiple refs in one pre-receive hook session, allowing a per-branch maintainer-edit grant to be reused for other refs and escalate to full repository write access...
CVE-2026-28699
Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypassed through HTTP Basic authentication...