363781 matches found
CVE-2026-49113
Subscriber Arbitrary Code Execution in Cornerstone 7.8.8 versions...
CVE-2026-49778
Unauthenticated Cross Site Scripting XSS in WPFunnels Pro = 2.9.4 versions...
CVE-2026-49107
Unauthenticated PHP Object Injection in Thrive Apprentice 10.8.10.2 versions...
CVE-2026-49080
Unauthenticated SQL Injection in wpDataTables = 7.3.6 versions...
CVE-2026-49075
Contributor PHP Object Injection in JetEngine = 3.8.9.1 versions...
CVE-2026-49076
Unauthenticated SQL Injection in JetEngine = 3.8.9.1 versions...
CVE-2026-49074
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.9.1 versions...
CVE-2026-49079
Unauthenticated SQL Injection in JetSearch = 3.5.17 versions...
CVE-2026-49072
Unauthenticated Broken Access Control in WooCommerce Anti-Fraud = 7.2.6 versions...
CVE-2026-49071
Unauthenticated Broken Authentication in WooCommerce Dropshipping = 5.2.4 versions...
CVE-2026-49073
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpWax Directorist Booking allows Blind SQL Injection. This issue affects Directorist Booking: from n/a through 3.0.3...
CVE-2026-48967
Subscriber SQL Injection in Geo Mashup = 1.13.19 versions...
CVE-2026-49057
Unauthenticated Broken Access Control in JobSearch = 3.2.7 versions...
CVE-2026-48875
Unauthenticated SQL Injection in JetSmartFilters = 3.8.1 versions...
CVE-2026-49058
Unauthenticated Privilege Escalation in LoginPress Pro = 6.2.2 versions...
CVE-2026-48929
Rocket.Chat in versions 8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6, 8.0.7, 7.13.9, and 7.10.13 is vulnerable to unauthenticated file deletion. The deleteFileMessage Meteor method permanently deletes any uploaded file by ID without requiring authentication. When called via an unauthenticated DDP WebSocket...
CVE-2026-48869
Unauthenticated Cross Site Scripting XSS in Enfold = 7.1.4 versions...
CVE-2026-48783
Postiz is an AI social media scheduling tool. Versions prior to 2.21.8 contained an unauthenticated endpoint that accepted a signed token and applied subscription-enforcement side effects to the organization referenced in that token's claims, without verifying the token's intended purpose. The...
CVE-2026-48797
Backpropagate is a Python library for fine-tuning large language models on a single GPU. In versions 1.1.0 and 1.1.1, the optional Reflex web UI exposes a training control plane without authentication: dataset upload, model load, training start/stop, multi-run orchestration, GGUF export, and...
CVE-2026-48782
Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. In versions 1.56.0 through 1.101.0, 2.0.0b1, and 2.0.0b2, the cloud-metadata blocklist could be bypassed by encoding the metadata IP in an IPv6 transition form that the previous fix, CVE-2026-46678...
CVE-2026-48788
Remark42 is a self-hosted comment engine for blogs, articles, or any other place where readers can add comments. Versions 1.6.0 through 1.15.0 contain a Cross-Site Scripting XSS vulnerability exploitable through content-type spoofing. The Remark42 image proxy fetches an arbitrary remote URL and...
CVE-2026-48781
Postiz is an AI social media scheduling tool. In versions prior to 2.21.8, the Skool integration callback signed an attacker-controlled JSON blob into a session-shape JWT using the application's JWTSECRET, and the auth middleware trusted every claim in that JWT without re-resolving the user from...
CVE-2026-48616
Rocket.Chat versions 8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6, 8.0.7, 7.13.9, 7.10.13 has an access control vulnerability in Livechat files. Protected file downloads at /file-upload/:fileId/:name authorize livechat access using rcroomtype=l with rcrid+rctoken, but the authorization path does not verify...
CVE-2026-48745
Traccar Client is a GPS tracking mobile app for sending location updates to private servers using the open-source Traccar platform. In versions 9.7.19 and below, a single crafted deep link can silently hijack all GPS tracking parameters and redirect telemetry to an attacker-controlled server. The...
CVE-2026-48055
Streambert is a cross-platform Electron Desktop App to stream and download any video media. In versions 2.4.0 and prior, a high-severity Zip Slip vulnerability was identified in Streambert's subtitle extraction logic. The application does not sanitize archive entry filenames during extraction,...
CVE-2026-48779
ws is an open source WebSocket client and server for Node.js. All versions from 1.1.0 up to but not including 5.2.5, from 6.0.0 up to 6.2.4, from 7.0.0 up to 7.5.11, and from 8.0.0 up to 8.21.0 are affected by a memory exhaustion DoS vulnerability. A peer can send a high volume of exceptionally...
CVE-2026-47277
Runtipi is a personal homeserver orchestrator. In versions 4.9.1 through 4.9.3, Runtipi serves marketplace app logos from files inside cloned app-store repositories through an unauthenticated endpoint, which leads to arbitrary file read through app-store logo symlinks. The path guard checks only...
CVE-2026-47340
Allow authenticated users to access alert instances associated with alert groups they do not have permission to access. in Apache DolphinScheduler. This issue affects Apache DolphinScheduler: before 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes the issue...
CVE-2026-42629
Unauthenticated Broken Authentication in PowerPack Pro for Elementor v2.13.0 versions...
CVE-2026-42385
Unauthenticated Cross Site Scripting XSS in Profile Builder Pro = 3.15.0 versions...
CVE-2026-44587
CarrierWave is a framework to upload files from Ruby applications. In versions prior to 2.2.7 and 3.1.3, the contenttypedenylist check fails to escape regex metacharacters in string entries, causing the denylist to silently not match the content types it is intended to block. In...
CVE-2026-45436
Subscriber Broken Access Control in WPBakery Page Builder = 8.7.2 versions...
CVE-2026-42380
Unauthenticated PHP Object Injection in AI Lab 5.4.2 versions...
CVE-2026-42357
Incorrect Authorization vulnerability allows users to access workflow instance information belonging to projects they do not have permission to access. This issue affects Apache DolphinScheduler versions prior to 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes this issue...
CVE-2026-40783
Contributor Remote Code Execution RCE in Blocksy Companion Pro = 2.1.37 versions...
CVE-2026-41557
Unauthenticated Cross Site Scripting XSS in Kapee 1.7.1 versions...
CVE-2026-41280
Incorrect Authorization vulnerability allows users with system login privileges to delete task definitions in unauthorized projects This issue affects Apache DolphinScheduler versions prior to 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes this issue...
CVE-2026-40760
Unauthenticated PHP Object Injection in Behold = 1.5 versions...
CVE-2026-40759
Unauthenticated PHP Object Injection in Esmée = 1.4 versions...
CVE-2026-40755
Unauthenticated PHP Object Injection in TechLink = 1.3 versions...
CVE-2026-40761
Unauthenticated PHP Object Injection in Valeska = 1.2.2 versions...
CVE-2026-40758
Unauthenticated PHP Object Injection in Léonie = 1.2.1 versions...
CVE-2026-40765
Unauthenticated Cross Site Scripting XSS in collectchat = 2.4.9 versions...
CVE-2026-40768
Unauthenticated Insecure Direct Object References IDOR in Salon booking system = 10.30.24 versions...
CVE-2026-40753
Unauthenticated PHP Object Injection in EasyMeals = 1.5.1 versions...
CVE-2026-40739
Unauthenticated PHP Object Injection in LuxeDrive = 1.4 versions...
CVE-2026-40746
Subscriber Arbitrary File Upload in Restaurant Zone = 0.7.8 versions...
CVE-2026-40751
Unauthenticated PHP Object Injection in Ashtanga = 1.2 versions...
CVE-2026-40747
Subscriber Arbitrary File Upload in Ecommerce Zone = 0.9.7 versions...
CVE-2026-40748
Subscriber Arbitrary File Upload in Kids Gift Shop = 0.5.4 versions...