Lucene search
K
RedhatcveRecent

206531 matches found

RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-6628

A flaw has been found in phili67 Ecclesia CRM up to 8.0.0. This affects the function ValidateInput of the file /v2/query/view/ of the component Query Viewer Component. This manipulation of the argument custom causes sql injection. The attack can be initiated remotely. The exploit has been publish...

6.5CVSS6.3AI score0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-33447

CVE-2026-33447 is a buffer overflow in a message parsing function of the Secure Access client prior to 14.50. Attackers with control of a modified server can send a special packet that can overwrite a small portion of memory conceivably leading to memory corruption or denial of service...

9.8CVSS5.9AI score0.00252EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-6268

The EventPress WordPress theme before 22.2 does not sanitize or escape the 'id' parameter in the eventpresscustomizernotifydismissaction AJAX handler before outputting it back in the response, allowing unauthenticated attackers to perform Reflected Cross-Site Scripting attacks against logged-in...

7.1CVSS5.5AI score0.00164EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-33858

Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly trusted, severity of this issue is Low. Users are recommended to upgrade to Apache Airflow 3.2.0,...

8.8CVSS5.9AI score0.00592EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-6611

A vulnerability was found in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component File Upload Endpoint. Performing a manipulation of the argument SECRETKEY results in use of hard-coded cryptographic key . Remote exploitation o...

3.1CVSS4.5AI score0.00248EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-33446

CVE-2026-33446 is a buffer overflow in the authentication sub-system of the Secure Access client prior to 14.50. Attackers with control of a modified server can send a special packet that can overwrite a small portion of memory conceivably leading to memory corruption or a denial of service...

9.8CVSS5.9AI score0.00287EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•9 views

CVE-2026-33212

Weblate is a web based localization tool. In versions prior to 5.17, the tasks API didn't verify user access for pending tasks. This could expose logs of in-progress operations to users who don't have access to given scope. The attacker needs to brute-force the random UUID of the task, so...

3.1CVSS5.5AI score0.00221EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•13 views

CVE-2026-6497

A vulnerability was determined in prasathmani TinyFileManager up to 2.6. Affected by this vulnerability is an unknown functionality of the file /filemanager.php?p= ajax=true=upload of the component File Upload Handler. This manipulation of the argument uploadurl causes server-side request forgery...

6.5CVSS6.2AI score0.00267EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•9 views

CVE-2026-33386

QuickCMS is vulnerable to Cross-Site Scripting XSS through its insecure HTTP-based plugin‑fetching mechanism. A malicious attacker can perform a Man‑in‑the‑Middle MITM attack by impersonating the opensolution.org server and serving arbitrary HTML or JavaScript at the plugin list endpoint. When a...

2.3CVSS5.6AI score0.00185EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-33814

When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGSMAXFRAMESIZE with a value of 0...

7.5CVSS5.4AI score0.00781EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•16 views

CVE-2026-33877

ApostropheCMS is an open-source Node.js content management system. Versions 4.28.0 and prior contain a timing side-channel vulnerability in the password reset endpoint /api/v1/@apostrophecms/login/reset-request that allows unauthenticated username and email enumeration. When a user is not found,...

3.7CVSS5.4AI score0.00365EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•9 views

CVE-2026-33659

EspoCRM is an open source customer relationship management application. In versions 9.3.3 and below, the POST /api/v1/Attachment/fromImageUrl endpoint is vulnerable to Server-Side Request Forgery SSRF via a DNS rebinding TOCTOU condition. Host validation uses dnsgetrecord but the actual HTTP...

3.5CVSS6.2AI score0.00333EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-33558

Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient component will output entire requests and responses information in the DEBUG log level in the logs. By default, the log level is set to INFO level. If the DEBUG level is enabled, the sensitive information wi...

5.3CVSS5.3AI score0.00535EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-33449

CVE-2026-33449 is a buffer overflow in a message handling function of the Secure Access client prior to 14.50. Attackers with control of a modified server can send a cryptographically valid message to the client, overwriting a small portion of memory conceivably leading to a denial of service...

7.5CVSS5.8AI score0.00235EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-33565

in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS...

3.3CVSS5.4AI score0.00094EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-33585

Improper management of the idle timeout parameter in the Keycloak interface of the Arqit SKA-Platform enables an attacker to impersonate an authenticated tenant user via an unexpired browser session. This issue affects Symmetric Key Agreement Platform: before 26.03...

3.8CVSS5.5AI score0.00134EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42474

SQL injection vulnerability in MixPHP Framework 2.x thru 2.2.17 via crafted data array to the data function in BuildHelper.php...

6.5CVSS5.6AI score0.00201EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-33637

A flaw was found in Faraday, an HTTP client library. This vulnerability allows a remote attacker to perform off-host request forgery by exploiting a protocol-relative host override when a request target is passed as a URI object. This can redirect a request from a fixed-base Faraday connection to...

6.5CVSS5.9AI score0.00272EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•9 views

CVE-2026-42443

NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, an integer divide-by-zero exists in the UFS/UFS2 filesystem image parser in NanaZip. The vulnerability is triggered when opening a crafted UFS image where the superblock field fsipg inodes per cylinder group is set to...

5.5CVSS5.5AI score0.00111EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42186

A flaw was found in OpenBao. When the initial deletion of a namespace fails, subsequent attempts to remove it do not fully clear all associated data before the namespace is marked as deleted. This can result in residual data, such as outstanding leases and unrelated storage entries, not being...

7.5CVSS5.2AI score0.00248EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42478

An issue was discovered in VrmlDataIndexedFaceSet::TShape in the VRML V2.0 parser in Open CASCADE Technology OCCT V800rc5 allows attackers to cause a denial of service via a crafted VRML file. The issue occurs because malformed VRML input can trigger dereference of a corrupt or unvalidated pointe...

7.5CVSS5.5AI score0.00219EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-6745

A vulnerability was determined in Bagisto up to 2.3.15. Affected by this vulnerability is an unknown functionality of the component Custom Scripts Handler. This manipulation causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may...

5.1CVSS4.1AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42508

A flaw was found in golang.org/x/crypto/ssh/knownhosts. This vulnerability occurs because the system did not correctly check for the revocation status of a SignatureKey belonging to a Certificate Authority CA. A remote attacker could potentially exploit this by presenting a revoked key, leading t...

9.1CVSS5.4AI score0.00487EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-42481

Open CASCADE Technology OCCT V800rc5 contains multiple vulnerabilities in its IGES and STEP file parsers that can be triggered by crafted IGES or STEP files. These issues include an out-of-bounds read in Geom2dBSplineCurve::EvalD0 during IGES B-spline curve evaluation, an out-of-bounds read in...

5.5CVSS5.4AI score0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-42865

Inbox Zero is an AI personal assistant for email. Prior to 2.29.3, the cleaner email stream endpoint used a shared Redis subscription listener, which could deliver thread events for one authenticated account to another authenticated account using the cleaner feature at the same time. This...

4.3CVSS5.5AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•14 views

CVE-2026-42472

Unsafe deserialization vulnerability in MixPHP Framework 2.x thru 2.2.17. The session and cache handlers use unserialize on data from Redis in the RedisHandler object...

9.8CVSS5.5AI score0.0038EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-42498

A flaw was found in Apache Tomcat. During WebSocket authentication, the HTTP Authentication Header can be exposed to unexpected hosts. This vulnerability leads to information disclosure, potentially allowing an attacker to gain access to sensitive authentication credentials...

7.3CVSS7AI score0.00548EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42360

A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking e.g. nested password / token / secret / apikey keys inside a JSON template structure to be bypassed when the rendered field exceeded core maxtemplatedfieldlength: Airflow stringified the structure befor...

6.5CVSS5.4AI score0.00335EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•9 views

CVE-2026-42476

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V800rc5 exist in RWStlReader::ReadAscii because buffers returned by StandardReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

7.1CVSS5.5AI score0.00106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-42485

AGL agl-service-can-low-level contains a stack buffer overflow in the uds-c library. The senddiagnosticrequest function in uds.c allocates a 6-byte stack buffer MAXDIAGNOSTICPAYLOADSIZE=6 but copies up to 7 bytes MAXUDSREQUESTPAYLOADLENGTH=7 via memcpy at an offset of 1+pidlength 2-3 bytes,...

7.5CVSS5.9AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42467

An issue was discovered in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe 2025-11-30 in SAEJ1939ReadBinaryDataTransferDM16 causing a denial of service via crafted CAN frame on the J1939 bus...

7.5CVSS5.5AI score0.00268EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•9 views

CVE-2026-42473

Unsafe deserialization vulnerability in MixPHP Framework 2.x thru 2.2.17. The session and cache handlers use unserialize on data from the filesystem in the FileHandler object...

9.8CVSS5.5AI score0.0038EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•9 views

CVE-2026-42524

Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

8CVSS5.5AI score0.00281EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-42506

A flaw was found in golang.org/x/net/html. When parsing arbitrary HTML that is subsequently rendered, an unexpected HTML tree can be generated. A remote attacker could leverage this vulnerability to execute Cross-Site Scripting XSS attacks in applications that attempt to sanitize input HTML befor...

6.1CVSS6AI score0.00188EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•8 views

CVE-2026-42523

Jenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of JavaScript implementing validation of the feature "GitHub hook trigger for GITScm polling", resulting in a stored cross-site scripting XSS vulnerability exploitable by non-anonymous attackers with...

9CVSS5.5AI score0.00281EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•8 views

CVE-2026-42502

A flaw was found in golang.org/x/net/html. This vulnerability allows an attacker to manipulate how HTML is processed and displayed. By providing specially crafted HTML, an attacker can cause an unexpected structure in the rendered output. This can lead to Cross-Site Scripting XSS attacks, where...

6.1CVSS6AI score0.00178EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-42873

WeGIA is a web manager for charitable institutions. In versions prior to 3.6.10, when attempting to upload a file with malicious content to funcionario/docdependenteupload.php, the application responds with an overly descriptive error message. This leads to information disclosure, effectively...

5.4AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•14 views

CVE-2026-42499

Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322...

7.5CVSS5.4AI score0.00798EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•13 views

CVE-2026-42520

Jenkins Credentials Binding Plugin 719.v80e905ef14eb and earlier does not sanitize file names for file and zip file credentials, allowing attackers able to provide credentials to a job to write files to arbitrary locations on the node filesystem, which can lead to remote code execution if Jenkins...

7.5CVSS6.7AI score0.00411EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•18 views

CVE-2026-42040

Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, the encode function in lib/helpers/AxiosURLSearchParams.js contains a character mapping charMap at line 21 that reverses the safe percent-encoding of null bytes. After encodeURIComponent'\x00' correctly...

3.7CVSS5.5AI score0.00217EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•13 views

CVE-2026-42525

Jenkins Microsoft Entra ID previously Azure AD Plugin 666.v6060de32f87d and earlier does not restrict the redirect URL after login, allowing attackers to perform phishing attacks...

4.3CVSS5.4AI score0.00212EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-42526

In the AWS Secrets Manager and SSM Parameter Store secrets backends of apache-airflow-providers-amazon prior to 9.28.0, the team-scoping logic could resolve a connid containing a / e.g. "myteam/conn" to the same path as another team's team-scoped secret when the caller had no team context. A...

5.3CVSS5.4AI score0.00413EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42475

SQL injection vulnerability in MixPHP Framework 2.x thru 2.2.17 via crafted on array to the joinOn function in BuildHelper.php...

6.5CVSS5.6AI score0.00201EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-42448

Magic Wormhole makes it possible to get arbitrary-sized files and directories from one computer to another. Prior to 0.24.0, there is a path traversal when a receiver who specifies "--output " where that output directory currently exists as a directory. This vulnerability is fixed in 0.24.0...

3.5CVSS5.5AI score0.00197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-42480

A stack-based out-of-bounds read vulnerability in VrmlDataScene::ReadLine in the VRML parser in Open CASCADE Technology OCCT V800rc5 allows attackers to cause a denial of service via a crafted VRML file. The issue occurs because the quoted-string escape handler uses ptr++anOffset without proper...

5.5CVSS5.5AI score0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-2900

GitLab has remediated an issue in GitLab EE affecting all versions from 16.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that when instance-level approval rule editing prevention was enabled, could have allowed an authenticated user with Maintainer permissions to modify or dele...

2.7CVSS5.5AI score0.00219EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•12 views

CVE-2026-42670

Missing Authorization vulnerability in Etoile Web Design Incorporated Five Star Restaurant Reservations allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Five Star Restaurant Reservations: from n/a through 2.7.14...

7.5CVSS5.4AI score0.00252EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-2401

CWE-532 Insertion of Sensitive Information into Log File vulnerability exists that could cause confidential information to be exposed when a Web Admin user executes a malicious file provided by an attacker...

5CVSS5.4AI score0.00103EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•10 views

CVE-2026-20685

An attacker in a privileged network position may be able to leak sensitive information. A path handling issue was addressed with improved validation. This issue is fixed in PCC Release 5E290.3...

6.5CVSS5.4AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:46 p.m.•11 views

CVE-2026-42522

A missing permission check in Jenkins GitHub Branch Source Plugin 1967.vdead580c1aba and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL with attacker-specified GitHub App credentials...

4.3CVSS5.4AI score0.00184EPSS
Exploits0References1
Total number of security vulnerabilities206531