Lucene search
K
RedhatcveRecent

206586 matches found

RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•13 views

CVE-2026-9104

The Draft List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Draft Post Title in all versions up to, and including, 2.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with author-level access and above, to...

6.4CVSS5.7AI score0.0022EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•12 views

CVE-2026-27415

Cross-Site Request Forgery CSRF vulnerability in PluginUs.Net BEAR allows Cross Site Request Forgery. This issue affects BEAR: from n/a through 1.1.5...

4.3CVSS5.4AI score0.00095EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•8 views

CVE-2026-27694

Traccar is an open source GPS tracking system. In org.traccar:traccar versions starting at 6.11.1 before 6.13.0, the email notification templates insert user-controlled device, geofence, and driver names into HTML email output without proper escaping. An attacker with low privileges can store...

5.4CVSS5.5AI score0.00162EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-27329

Authorization Bypass Through User-Controlled Key vulnerability in YITH YITH WooCommerce Wishlist allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects YITH WooCommerce Wishlist: from n/a through 4.12.0...

5.3CVSS5.4AI score0.00315EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•9 views

CVE-2026-27416

Missing Authorization vulnerability in bPlugins PDF Poster allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects PDF Poster: from n/a through 2.4.1...

5.3CVSS5.4AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•9 views

CVE-2026-27676

Due to missing authorization checks in the SAP S/4HANA OData Service Manage Technical Object Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability results in a low impact on integrity, while confidentiality and...

4.3CVSS5.5AI score0.00158EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-27644

Traccar is an open source GPS tracking system. In versions between 6.11.1 and 6.13.0, the CSV export functionality writes position data, including user-controlled device and computed attributes, to CSV output without proper escaping. An attacker can inject spreadsheet formulas through exported...

6.5CVSS5.6AI score0.00228EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-27331

Missing Authorization vulnerability in Magepeople inc. WpTravelly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpTravelly: from n/a through 2.1.5...

6.3CVSS5.4AI score0.00157EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•12 views

CVE-2026-27892

FacturaScripts is an open source accounting and invoicing software. In versions prior to 2026, the Library module stores and serves uploaded images byte-for-byte, without stripping EXIF/XMP/IPTC metadata. Any authenticated user who downloaded an image could extract the uploader's embedded metadat...

6.5CVSS5.3AI score0.00227EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-27766

in OpenHarmony v6.0 and prior versions allow a local attacker cause information leak...

5.5CVSS5.4AI score0.00103EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-27393

Missing Authorization vulnerability in Tobias CF7 WOW Styler allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CF7 WOW Styler: from n/a through 1.7.6...

5.3CVSS5.4AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-27405

Missing Authorization vulnerability in Magepeople inc. WpBookingly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpBookingly: from n/a through 1.2.9...

6.5CVSS5.4AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-27357

Missing Authorization vulnerability in Cornel Raiu WP Search Analytics allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Search Analytics: from n/a before 1.5.0...

5.3CVSS5.4AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-27427

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Dylan Kuhn Geo Mashup allows Stored XSS. This issue affects Geo Mashup: from n/a through 1.13.18...

6.5CVSS5.4AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-27672

The Material Master application does not enforce authorization checks for authenticated users when executing reports, resulting in the disclosure of sensitive information. This vulnerability has a low impact on confidentiality and does not affect integrity and availability of the system...

4.3CVSS5.5AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45435

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Melapress WP Activity Log allows DOM-Based XSS. This issue affects WP Activity Log: from n/a through 5.6.3...

6.5CVSS5.4AI score0.00197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•9 views

CVE-2026-27678

Due to missing authorization checks in the SAP S/4HANA backend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS5.5AI score0.00181EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•12 views

CVE-2026-27683

SAP BusinessObjects Business Intelligence application allows an authenticated attacker to inject malicious JavaScript payloads through crafted URLs. When a victim accesses the URL, the script executes in the user�s browser, potentially exposing restricted information. This results in a low impact...

4.1CVSS5.5AI score0.00185EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45299

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, the profileimageurl field on the user profile update form accepted arbitrary data: URI values without MIME-type validation, resulting in a XSS vulnerability. This vulnerability is...

5.4CVSS5.6AI score0.00199EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45413

MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.1, user passwords are stored using unsalted MD5 hashes, making them trivially crackable via rainbow tables or GPU-accelerated brute force hashcat. This vulnerability is fixed in 2.9.1...

6.9CVSS5.5AI score0.00083EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•9 views

CVE-2026-45215

Insertion of Sensitive Information Into Sent Data vulnerability in Saad Iqbal WP EasyPay wp-easy-pay allows Retrieve Embedded Sensitive Data.This issue affects WP EasyPay: from n/a through = 4.3.0...

5.3CVSS5.5AI score0.00197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45026

WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, a Stored Cross-Site Scripting XSS vulnerability allows an authenticated user to inject malicious JavaScript into the Processo de Aceitação html/atendido/processoaceitacao.php page, which is executed when user access t...

6.8CVSS5.4AI score0.0023EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-27351

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

5.4CVSS5.4AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-27421

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WProyal Royal Elementor Addons allows Stored XSS. This issue affects Royal Elementor Addons: from n/a before 1.7.1053...

6.5CVSS5.4AI score0.00176EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•12 views

CVE-2026-45543

Nextcloud is an open source content collaboration platform. From version 4.3.0 to before version 5.2.7, a removed collaborator retains unauthorized read access to uploaded respondent files for the affected form. The scope is limited to uploaded files for forms where that user previously had resul...

5.3CVSS5.3AI score0.00269EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45701

Sulu is an open-source PHP content management system based on the Symfony framework. Prior to versions 2.6.23 and 3.0.6, the password reset tokenand API key generation uses a weak cryptographical hash algorithm. This issue has been patched in versions 2.6.23 and 3.0.6...

6.9CVSS5.4AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45660

Statamic is a Laravel and Git powered content management system CMS. Prior to 5.73.22 and 6.18.1, the Glide image proxy's URL validation could be bypassed using an IP representation that wasn't normalized before the public-IP check. An unauthenticated user could cause the server to make HTTP...

5.4CVSS5.5AI score0.00151EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45080

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, improper access control allows disclosure of password hash. This issue has been patched in version 2.10.4...

6.9CVSS5.3AI score0.00249EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45448

CWE-601 URL redirection to untrusted site 'open redirect'...

4.3CVSS5.3AI score0.00166EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•15 views

CVE-2026-45147

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, POST /api/tag/getTag is registered with model.CheckAuth only, omitting both model.CheckAdminRole and model.CheckReadonly, despite the handler performing a configuration write that is normally guarded by both. Any...

4.3CVSS5.5AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•13 views

CVE-2026-45286

Nextcloud is an open source content collaboration platform. From versions 5.5.13 to before 5.5.17, and 6.2.0 to before 6.2.3, an authenticated user can enumerate users on the same Nextcloud instance by using the Calendar app's endpoint for suggesting attendees. The sharing restrictions, applied t...

4.3CVSS5.3AI score0.00281EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45736

A flaw was found in ws, an open source WebSocket client and server for Node.js. The websocket.close implementation is vulnerable to uninitialized memory disclosure when a TypedArray is passed as the reason argument. This can lead to the disclosure of sensitive information from uninitialized memor...

7.5CVSS5.2AI score0.00745EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-27737

BigBlueButton is an open-source virtual classroom. In versions prior to 3.0.19, the recording playback presentation format was not sanitizing user's input in public chat. This allowed for a malicious actor to craft and carry out a targeted XSS attack, activated on anyone replaying the recording...

6.5CVSS5.3AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•12 views

CVE-2026-45264

Nextcloud is an open source content collaboration platform. From versions 17.0.0 to before 17.0.15, 18.0.0 to before 18.1.12, 19.0.0 to before 19.1.16, 20.0.0 to before 20.1.11, and 21.0.0 to before 21.0.4, a user with READ and CREATE permission, but no UPDATE permission for a team folder can...

4.3CVSS5.3AI score0.00229EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•12 views

CVE-2026-27346

Missing Authorization vulnerability in Kings Plugins B2BKing allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects B2BKing: from n/a before 5.2.10...

4.9CVSS5.4AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45246

Summarize prior to 0.15.1 contains an insecure file permission vulnerability in the refresh-free configuration rewrite path that allows local users to read sensitive credentials by exploiting default filesystem permissions. When the refresh-free path rewrites the configuration file, it creates th...

6.8CVSS5.5AI score0.00137EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45620

WWBN AVideo is an open source video platform. In 29.0 and earlier, objects/mention.json.php has no User::loginCheck or admin gate. It only has an entry guard: pregmatch'/^@/', $REQUEST'term' and hard-coded rowCount=10. This enables unauthenticated user enumeration...

5.3CVSS5.4AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•12 views

CVE-2026-45217

Authentication Bypass Using an Alternate Path or Channel vulnerability in ThemeHigh Stripe Payment Gateway for WooCommerce allows Password Recovery Exploitation. This issue affects Stripe Payment Gateway for WooCommerce: from n/a through 5.0.7...

6.5CVSS5.4AI score0.00352EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45442

Missing Authorization vulnerability in Brainstorm Force Presto Player allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Presto Player: from n/a through 4.1.3...

4.3CVSS5.4AI score0.00238EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45307

Speakr is a personal, self-hosted web application designed for transcribing audio recordings. Prior to 0.8.20-alpha, the issafeurl helper used to validate post-login redirect targets applied urljoinrequest.hosturl, target before parsing, while the controller passed the raw target to redirect. A...

6.1CVSS5.5AI score0.00153EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45682

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the custom CappedConcurrentHashMap introduced for Java TLS state tracking never removes keys from its insertion-order queue when entries are deleted. In long-running...

5.5CVSS5.3AI score0.00161EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45684

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, OBI's log enricher mishandles writev buffers by reading only the first iovec entry but using the total ioviter.count as the copy length. When log...

5.3CVSS5.4AI score0.00172EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45387

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, when setting model permissions so that a group has read access to it, intending for other users to use it, those users also can read the model's system prompt. However users may...

4.3CVSS5.4AI score0.0022EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•9 views

CVE-2026-45396

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, the POST /api/v1/evaluations/feedback endpoint in Open WebUI v0.9.2 is vulnerable to mass assignment via FeedbackForm, which uses modelconfig = ConfigDictextra='allow'. Due to an...

5.4CVSS5.6AI score0.00307EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45231

DumbAssets through 1.0.11 contains a stored cross-site scripting vulnerability in asset fields including name, description, modelNumber, serialNumber, and tags that are stored without server-side sanitization and rendered using innerHTML without client-side escaping. Attackers can create or updat...

6.1CVSS5.6AI score0.00186EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•10 views

CVE-2026-45619

WWBN AVideo is an open source video platform. In 29.0 and earlier, EpgParser.php, plugin/AI/receiveAsync.json.php, and other locations do not use the $resolvedIP out-param of isSSRFSafeURL for DNS pinning via CURLOPTRESOLVE, opening DNS-rebinding TOCTOU...

6.5CVSS5.4AI score0.00136EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•9 views

CVE-2026-45679

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI exports raw Redis error text as the span status message. Because Redis error replies can contain attacker-controlled or sensitive values, this behavior can exfiltrate...

6.5CVSS5.3AI score0.00212EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45284

Nextcloud is an open source content collaboration platform. From version 1.3.6 to before version 8.4.0, an improper check allowed users that where provided by LDAP to still authenticate towards user OIDC after they where deleted. This issue has been patched in version 8.4.0...

8.8CVSS5.3AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•11 views

CVE-2026-45222

Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, allowing local attackers to read bearer tokens and API credentials stored in /.summarize/daemon.json...

6.9CVSS5.5AI score0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:33 p.m.•13 views

CVE-2026-45554

NiceGUI is a Python-based UI framework. Prior to version 3.12.0, two FastAPI routes that serve per-component static assets in NiceGUI accept a sub-path parameter that may resolve to a directory rather than a file. Requests that resolve to a directory raise an unhandled RuntimeError inside...

5.3CVSS5.5AI score0.00343EPSS
Exploits0References1
Total number of security vulnerabilities206586