PT-2026-47895

Name of the Vulnerable Software and Affected Versions Windows NT OS Kernel affected versions not specified Description An integer underflow wrap or wraparound in the kernel allows an authorized attacker to elevate privileges locally. This issue can be used as a post-breach maneuver to gain full...

PT-2026-48013

User interface ui misrepresentation of critical information in Microsoft Bing allows an unauthorized attacker to perform spoofing over a network...

PT-2026-48152

LimeSurvey constructs account password-reset links from the client-supplied HTTP Host header without validating it. The optional allowedHosts allowlist that would constrain this is undefined in the default and documented configuration, so LSHttpRequest::checkIsAllowedHost results in no operation....

PT-2026-47930

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally...

PT-2026-47814

A NETGEAR security issue that could allow an attacker with ability to intercept and tamper with traffic between the router and the Internet to run commands on your device when the device administrator performs certain specific management actions. This issue affects NETGEAR Orbi 370 series devices...

PT-2026-47636

Name of the Vulnerable Software and Affected Versions TinyMCE shortcode Addon plugin for WordPress versions prior to 1.0.1 Description Insufficient input sanitization and output escaping allow authenticated attackers with contributor-level access or higher to perform Stored Cross-Site Scripting...

PT-2026-47813

CWE-611 Improper Restriction of XML External Entity Reference vulnerability exists that could cause information disclosure of server-side file contents when an attacker with a Data Center Expert user account submits crafted XML payloads to SOAP service endpoints...

PT-2026-48040

Name of the Vulnerable Software and Affected Versions Windows Hyper-V affected versions not specified Description An out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute arbitrary code locally or remotely, affecting the system. An out-of-bounds read occurs when a progr...

PT-2026-48335

BuddyPress 14.4.0 contains an insecure direct object reference vulnerability in the messages REST API that allows authenticated attackers to access arbitrary private message threads by supplying a user id parameter in the request. Attackers can pass another user's identifier to the get item...

PT-2026-48110

Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description A protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. Secure Boot is a security standard developed by members of the PC...

PT-2026-48020

Name of the Vulnerable Software and Affected Versions Visual Studio Code affected versions not specified Microsoft Defender affected versions not specified Description Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network. Additionall...

PT-2026-48269

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could exploit this vulnerability to gain elevated access or control over the victim...

PT-2026-48223

Name of the Vulnerable Software and Affected Versions Dreamweaver Desktop versions 21.7 and earlier Description A dependency on a vulnerable third-party component allows for arbitrary code execution in the context of the current user. This issue requires user interaction, specifically the opening...

PT-2026-48253

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

PT-2026-48135

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

PT-2026-48143

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a...

PT-2026-47909

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally...

PT-2026-48049

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

PT-2026-47986

Name of the Vulnerable Software and Affected Versions UI Automation Manager affected versions not specified Description A race condition occurs in the UI Automation Manager uiamanager.dll due to concurrent execution using a shared resource with improper synchronization. This allows an authorized...

PT-2026-48127

Name of the Vulnerable Software and Affected Versions AMD Secure Processor affected versions not specified Description Improper access control for the register interface in the input-output memory management unit IOMMU allows a privileged attacker, such as a malicious hypervisor, to cause...

PT-2026-47788

In the Linux kernel, the following vulnerability has been resolved: Revert "net/smc: Introduce TCP ULP support" This reverts commit d7cd421da9da2cc7b4d25b8537f66db5c8331c40. As reported by Al Viro, the TCP ULP support for SMC is fundamentally broken. The implementation attempts to convert an acti...

PT-2026-47908

Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

PT-2026-47990

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

PT-2026-48187

Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.32204 was discovered to contain multiple stack overflows in the R7WebsSecurityHandler function via the username and password parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted HTTP...

PT-2026-48141

InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this...

PT-2026-48061

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.24 and earlier Adobe Experience Manager versions LTS SP1 and earlier Adobe Experience Manager versions 2026.04 and earlier Description A stored Cross-Site Scripting XSS issue allows a low-privileged attack...

PT-2026-47715

Name of the Vulnerable Software and Affected Versions Apache Answer versions prior to 2.0.1 Description An unrestricted upload of files with dangerous types allows an authenticated user to cause a server process crash. This occurs when a crafted TIFF image triggers excessive memory allocation...

PT-2026-47875

Svelte is a performance oriented web framework. Prior to version 5.55.7, when using spread syntax to render attributes from untrusted data, event handler properties are included in the rendered HTML output. If an application spreads user-controlled or external data as element attributes, an...

PT-2026-48011

Name of the Vulnerable Software and Affected Versions Active Directory Domain Services affected versions not specified Description A stack-based buffer overflow allows an authorized attacker to execute arbitrary code over a network, which can affect the system. A stack-based buffer overflow occur...

PT-2026-47797

📣 ADVISORY: Researcher Trung Nguyen from @CyStackSecurity discovered Zip Slip vulnerability in EMQX MQTT Broker CVE-2026-44725, High - enabling arbitrary file write on the system via plugin installation mechanism. Details: https://t.co/iN6SWM48ig EMQX IoT Vulnerability https://t.co/DcfVVoz0qQ...

PT-2026-47697

Out-of-bounds write vulnerability in the IPC module. Impact: Successful exploitation of this vulnerability may affect availability...

PT-2026-48252

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 24.001.30365 through 26.001.21651 Description A Use After Free issue exists in the annotation component, which could result in arbitrary code execution in the context of the current user. Exploitation requires user...

PT-2026-47531

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

PT-2026-47626

Impact Puma is vulnerable to source IP spoofing when set remote address proxy protocol: :v1 is enabled and persistent connections are used. PROXY protocol v1 is a connection-level protocol. Support was added to Puma in v5.5.0. A proxy sends one PROXY header at the beginning of a TCP connection,...

PT-2026-47650

A WebFlux application with a compromised subdomain for example, compromised via cross-site scripting XSS is vulnerable to an escalation attack exchanging a known session ID for that of an authenticated user. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0...

PT-2026-47666

In an untrusted JMS environment, org.springframework.jms.support.converter.MappingJackson2MessageConverter and org.springframework.jms.support.converter.JacksonJsonMessageConverter allow arbitrary class instantiation, which can lead to unauthorized actions via gadget class deserialization. Affect...

PT-2026-48268

Name of the Vulnerable Software and Affected Versions ColdFusion versions 2023.19 and earlier ColdFusion versions 2025.8 and earlier Description Improper Input Validation allows for arbitrary code execution in the context of the current user. This issue can be exploited without requiring any user...

PT-2026-47731

A Stored Cross-Site Scripting vulnerability in Vinna Process Monitor Version 4.0 Service Pack 1 Build 63255 allows an authenticated remote attacker with low privileges to inject malicious JavaScript code into the application. This enables attackers to steal administrative access tokens and sessio...

PT-2026-47785

In the Linux kernel, the following vulnerability has been resolved: dm: fix unlocked test for dm suspended md The function dm blk report zones tests if the device is suspended with the "dm suspended md" call. However, this function is called without holding any locks, so the device may be suspend...

PT-2026-47680

Name of the Vulnerable Software and Affected Versions WP-Ultimate-Map versions prior to 1.2 Description The plugin is subject to Cross-Site Request Forgery CSRF and Stored Cross-Site Scripting XSS. The issue occurs because the process init function, which is hooked to admin init, fails to validat...

PT-2026-47761

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter nf tables component where the functions nft netdev unregister hooks and nft unregister flowtable net hooks fail to use list del rcu. This is problematic...

PT-2026-48043

Name of the Vulnerable Software and Affected Versions Windows Boot Manager affected versions not specified Description A protection mechanism failure in Windows Boot Manager allows an authorized attacker to bypass a security feature locally. Recommendations At the moment, there is no information...

PT-2026-47750

When creating an export of all reusable media, the secrets of connected gift cards were included in the export even if the user creating the export does not have permission to view gift cards. This is inconsistent with the UI and API where only the first letters of the gift card secret are shown...

PT-2026-47975

Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server affected versions not specified Description An improper authorization issue leads to Server-side Request Forgery SSRF, a flaw where a server is tricked into making unintended requests to an internal or external...

PT-2026-47755

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel where hugetlb VMA lock allocation is incorrectly handled during the mmap prepare stage. If an allocation fails after mmap prepare is called, it may...

PT-2026-47760

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The skb gro receive function fails to check the zerocopy status, specifically the SKBFL MANAGED FRAG REFS flag, when copying fragments between the source and Generic Receive Offload GRO...

PT-2026-48314

Correlation IDs for replies in the RabbitTemplate.sendAndReceive with the fixed reply queue are predictable due to internal simple counter. Affected versions: Spring AMQP 4.0.0 through 4.0.3; 3.2.0 through 3.2.10; 3.1.0 through 3.1.15; 2.4.0 through 2.4.17...

PT-2026-48017

Name of the Vulnerable Software and Affected Versions Windows UEFI affected versions not specified Description A protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feature locally. Recommendations At the moment, there is no information about a newer...

PT-2026-48121

Hermes WebUI before version 0.51.311 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary commands by placing malicious executable Git configuration in a workspace repository's .git/config file. Attackers can exploit Git subprocess invocations in...

PT-2026-48074

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...