Lucene search
K
RedhatcveRecent

206531 matches found

RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•13 views

CVE-2026-31380

Improper Neutralization of Special Elements used in an Expression Language Statement 'Expression Language Injection' vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

6.5CVSS5.4AI score0.00487EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-31168

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the recHour parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-31266

Craft CMS 5.9.5 and earlier contains a Missing Authorization vulnerability in the migrate endpoint /actions/app/migrate...

7.3CVSS5.4AI score0.00283EPSS
Exploits3References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-31228

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. The robustness evaluation function for PyTorch models uses the unsafe eval function to dynamically evaluate user-supplied strings for the LossFn and Optimizer parameters...

9.8CVSS6.5AI score0.0061EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•12 views

CVE-2026-31379

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting', Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Improper Control of Generation of Code 'Code Injection' vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06...

6.1CVSS5.4AI score0.00588EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-31224

The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability CWE-502 in the MultitaskClassifier.load method of the MultitaskClassifier class. The method loads model weight files using torch.load without enabling the security-restrictive weightsonly=True parameter. This...

8.8CVSS6.3AI score0.00392EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-31178

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the stunMaxAlive parameter to /cgi-bin/cstecgi.cgi...

9.8CVSS5.9AI score0.00578EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-31165

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the pppoeServiceName parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•8 views

CVE-2026-31013

Dovestones Softwares ADPhonebook 4.0.1.1 has a reflected cross-site scripting XSS vulnerability in the search parameter of the /ADPhonebook?Department=HR endpoint. User-supplied input is reflected in the HTTP response without proper input validation or output encoding, allowing execution of...

6.1CVSS5.6AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-31176

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the stunuser parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•12 views

CVE-2026-31051

An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to cause a denial of service via the Client Balance component...

3.8CVSS5.5AI score0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-31169

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the week parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•8 views

CVE-2026-31174

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the informEnable parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•13 views

CVE-2026-31388

Improper Access Control vulnerability in Apache OFBiz in multi-tenant deployments. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

5.3CVSS5.4AI score0.00416EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-31192

Insufficient validation of Chrome extension identifiers in Raindrop.io Bookmark Manager Web App 5.6.76.0 allows attackers to obtain sensitive user data via a crafted request...

6.5CVSS5.5AI score0.00281EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-31181

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the stunServerAddr parameter to /cgi-bin/cstecgi.cgi...

9.8CVSS5.9AI score0.00578EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•12 views

CVE-2026-31163

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the dhcpMtu parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-31172

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the user parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-31019

In the Website module of Dolibarr ERP & CRM 22.0.4 and below, the application uses blacklist-based filtering to restrict dangerous PHP functions related to system command execution. An authenticated user with permission to edit PHP content can bypass this filtering, resulting in full remote code...

8.8CVSS6.8AI score0.00572EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-31923

Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. This can occur due to sslverify in openid-connect plugin configuration being set to false by default. This issue affects Apache APISIX: from 0.7 through 3.15.0. Users are recommended to upgrade to version 3.16.0, whic...

7.5CVSS5.4AI score0.0025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-31167

An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557B20221024 allowing attackers to execute arbitrary commands via the mode parameter to /cgi-bin/cstecgi.cgi...

6.5CVSS5.9AI score0.00279EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-31378

Improper Input Validation vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

6.5CVSS5.4AI score0.00574EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-31910

Server-Side Request Forgery SSRF vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

7.5CVSS5.4AI score0.0046EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-4935

The OttoKit: All-in-One Automation Platform WordPress plugin before 1.1.23 does not properly sanitize user input before using it in a SQL statement, which could allow unauthenticated attackers to perform SQL injection attacks...

8.6CVSS5.6AI score0.00262EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-4432

The YITH WooCommerce Wishlist WordPress plugin before 4.13.0 does not properly validate wishlist ownership in the savetitle AJAX handler before allowing wishlist renaming operations. The function only checks for a valid nonce, which is publicly exposed in the page source of the /wishlist/ page,...

6.5CVSS5.5AI score0.00226EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-4643

Mattermost Desktop App versions =6.1 6.0.1 5.4.13.0 fail to prevent server-rendered content from closing an underlying application view in the Mattermost Desktop App which allows a malicious server or plugin to crash the desktop client via invoking window.close in the renderer context, leading to...

3.5CVSS5.5AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-31239

The mamba language model framework thru 2.2.6 is vulnerable to insecure deserialization CWE-502 when loading pre-trained models from HuggingFace Hub. The MambaLMHeadModel.frompretrained method uses torch.load to load the pytorchmodel.bin weight file without enabling the security-restrictive...

9.8CVSS5.8AI score0.00409EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-4313

AdaptiveGRC is vulnerable to Stored XSS via text type fields across the forms. Authenticated attacker can replace the value of the text field in the HTTP POST request. Improper parameter validation by the server results in arbitrary JavaScript execution in the victim's browser. Critically, this m...

2.4CVSS5.9AI score0.0059EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-4916

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user with custom role permissions to demote or remove higher-privileged group members due to improper authorization...

2.7CVSS5.5AI score0.00348EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-31909

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

7.5CVSS5.4AI score0.00486EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•14 views

CVE-2026-31369

PcManager is affected by type privilege bypass, successful exploitation of this vulnerability may affect service availability...

3.2CVSS5.4AI score0.001EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-4079

The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality...

6.5CVSS5.7AI score0.00186EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•13 views

CVE-2026-31387

Improper Authentication vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

5.3CVSS5.4AI score0.00515EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-4106

The HT Mega Addons for Elementor WordPress plugin before 3.0.7 contains an unauthenticated AJAX action returning some PII such as full name, city, state and country of customers who placed orders in the last 7 days...

5.3CVSS5.5AI score0.00742EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-4053

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13 fail to enforce the PostEditTimeLimit on non-message post fields which allows an authenticated user to modify post file attachments, props, and pin status after the edit window has expired via the post patch and update API endpoints...

4.3CVSS5.5AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-4273

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13 fail to validate that the RefreshedToken differs from the original invite token during remote cluster invite confirmation which allows an authenticated attacker to bypass token rotation and reuse the original invite token via sending a craft...

4.3CVSS5.5AI score0.00142EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-22166

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable subsequent exploit on the...

8.1CVSS5.5AI score0.00346EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-4338

The ActivityPub WordPress plugin before 8.0.2 does not properly filter posts to be displayed, allowed unauthenticated users to access drafts/scheduled/pending posts...

7.5CVSS5.4AI score0.0035EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-22167

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

7.8CVSS5.5AI score0.00148EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-40072

web3.py allows you to interact with the Ethereum blockchain using Python. From 6.0.0b3 to before 7.15.0 and 8.0.0b2, web3.py implements CCIP Read / OffchainLookup EIP-3668 by performing HTTP requests to URLs supplied by smart contracts in offchainlookuppayload"urls". The implementation uses these...

7.2CVSS5.7AI score0.00228EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-22165

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger a write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable further exploits on the...

8.1CVSS5.5AI score0.00346EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-22014

Vulnerability in the Oracle User Management product of Oracle E-Business Suite component: Workflow and Business Events. Supported versions that are affected are 12.2.7-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle User...

3.8CVSS7.3AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-40131

SQL injection vulnerability exists in @sap/hdi-deploy package, where SQL queries are dynamically constructed using user input without proper parameterization or prepared statements. Successful exploitation could allow the high privileged users to alter the SELECT statements impacting...

3.4CVSS5.6AI score0.00173EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•10 views

CVE-2026-4512

The reCaptcha by WebDesignBy WordPress plugin before 2.0 does not sanitize or escape the Site Key setting before outputting it in a JavaScript string context via the grecaptchajs function. This allows administrators on multisite installations who do not have the unfilteredhtml capability to injec...

3.5CVSS5.7AI score0.002EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-40263

Note Mark is an open-source note-taking application. In versions 0.19.1 and prior, the login endpoint performs bcrypt password verification only when the supplied username exists, returning immediately for nonexistent usernames. This timing discrepancy allows unauthenticated attackers to enumerat...

3.7CVSS5.3AI score0.002EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•12 views

CVE-2026-40947

Yubico libfido2 before 1.17.0, python-fido2 before 2.2.0, and yubikey-manager before 5.9.1 have an unintended DLL search path...

2.9CVSS5.5AI score0.00131EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-40969

The raw message of every server-side AuthenticationException is returned to the unauthenticated remote caller in the gRPC status description. This allows an attacker to obtain information about the authentication failure, which may be useful for further attacks. Affected versions: Spring gRPC:...

5.3CVSS5.5AI score0.002EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•9 views

CVE-2026-4286

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13 fail to check if teamid was being changed when updating playbooks, allowing users with only Manage Playbook Configurations permission to change a playbook's team, bypassing manage members restriction via PUT api. Mattermost Advisory ID:...

4.3CVSS5.4AI score0.00143EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-40690

The asset dependency graph did not restrict nodes by the viewer's DAG read permissions: a user with read access to at least one DAG could browse the asset graph for any other asset in the deployment and learn the existence and names of DAGs and assets outside their authorized scope. Users are...

4.3CVSS5.4AI score0.00352EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:45 p.m.•11 views

CVE-2026-40963

The structuredata endpoint in the Airflow UI returned external dependency graph nodes for linked Dags without checking whether the caller had read permission on those linked Dags. An authenticated UI/API user authorized for one Dag could enumerate linked Dag IDs and dependency metadata for other...

3.1CVSS5.5AI score0.00459EPSS
Exploits0References1
Total number of security vulnerabilities206531