VIR Vulnerability Intelligence Relay

Search

Found 69,854 results in 2738ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-4293 medium 5.3 5.3 17d ago The affected Kieback & Peter DDC building controllers are vulnerable to cross-site scripting, enabling JavaScript to be executed by the victim's browser, which allows the attacker to control the brow…
CVE-2026-39047 high 7.5 7.5 17d ago Buffer Overflow vulnerability in EPSON L14150 FL27PB allows a remote attacker to execute arbitrary code via the RAW Printing Service (JetDirect) on TCP port 9100
CVE-2025-32750 high 7.5 7.5 dell 17d ago Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An unauthenticated attacker with remote access could potentially exploit thi…
CVE-2023-7346 medium 4.0 4.0 17d ago Ledger Bitcoin app versions 2.1.0 and 2.1.1 contain an address derivation vulnerability that allows attackers to cause incorrect Bitcoin addresses to be displayed by exploiting improper handling of m…
CVE-2026-46420 medium 5.5 17d ago Setup PHP: Command Injection in Repository-Derived PHP Version Resolution
CVE-2026-45804 high 8.0 17d ago Diffusers: TOCTOU Trust Remote Code Bypass
CVE-2026-45792 medium 5.5 17d ago RTK improperly trusts project-local filter configuration, allowing silent tampering of command output shown to LLM
CVE-2026-8485 high 7.5 7.5 progress 17d ago Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation allows Excessive Allocation. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.
CVE-2026-22554 high 7.8 7.8 mediaarea 17d ago MediaArea MediaInfoLib Channel Splitting heap-based buffer overflow vulnerability
CVE-2026-21836 medium 6.5 6.5 17d ago The HCL DominoIQ RAG feature is affected by a Broken Access Control vulnerability.  Under certain circumstances, document level access restrictions will be ignored when determining what data to retur…
CVE-2026-5950 medium 5.3 5.3 FIX debian debian sleswindows windows isc 17d ago An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cause severe resource exhaustion by sendin…
CVE-2026-5947 medium 5.9 5.9 FIX debian debian sleswindows windows isc 17d ago Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. …
CVE-2026-5946 high 7.5 7.5 FIX debian debian sleswindows windows isc 17d ago Important: bind9.16 security update
CVE-2026-45584 high 8.1 8.1 windows windows microsoft 17d ago Heap-based buffer overflow in Microsoft Defender allows an unauthorized attacker to execute code over a network.
CVE-2026-45443 medium 5.0 5.0 17d ago Missing Authorization vulnerability in ADD-ONS.ORG PDF for Elementor Forms + Drag And Drop Template Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affect…
CVE-2026-42834 high 7.8 7.8 windows windows microsoft 17d ago Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
CVE-2026-42383 high 7.6 7.6 17d ago Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Blind SQL Injection. This issue affects YITH WooCom…
CVE-2026-41091 high 7.8 9.3 KEV windows windows microsoft 17d ago Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally.
CVE-2026-3592 medium 5.3 5.3 FIX debian debian sleswindows windows isc 17d ago BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack. If a victim resolver makes a query to a specially crafted zone, the resolver will consume disproportionate resou…
CVE-2026-3039 high 7.5 7.5 FIX debian debian sleswindows windows isc 17d ago Important: bind9.16 security update
CVE-2026-29518 high 7.0 7.0 FIX slesdebian debianwindows windows samba 17d ago Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file handling that allows attackers to redirect file writes outside intended directories by replac…
CVE-2026-27424 medium 4.3 4.3 17d ago Missing Authorization vulnerability in WP Chill Image Photo Gallery Final Tiles Grid allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Image Photo Gallery F…
CVE-2026-27405 medium 6.5 6.5 17d ago Missing Authorization vulnerability in Magepeople inc. WpBookingly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpBookingly: from n/a through 1.2.9.
CVE-2026-24573 medium 6.5 6.5 17d ago Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeisle Visualizer allows Stored XSS. This issue affects Visualizer: from n/a before 4.0.0.
CVE-2025-11954 high 8.0 8.0 17d ago Cross-Site request forgery (CSRF) vulnerability in Sitemio Information Technologies Trade Ltd. Co. WISECP allows Cross Site Request Forgery. This issue affects WISECP: through 20022026. NOTE: The ve…
CVE-2026-45498 medium 4.0 5.5 KEV windows windows microsoft 17d ago Microsoft Defender Denial of Service Vulnerability
CVE-2025-31985 medium 6.5 6.5 hcltech 18d ago HCL BigFix Service Management (SM) is affected by a security misconfiguration due to a missing or insecure “X-Content-Type-Options” header. This could allow browsers to perform MIME-type sniffing, p…
CVE-2026-25602 medium 4.4 4.4 18d ago Insufficient Verification of Data Authenticity vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component makes it possible to send messages to any email address. This i…
CVE-2026-22315 high 7.2 7.2 18d ago Incorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables the export  of user data, including cleartext passwords, via the SQL ed…
CVE-2026-0857 medium 6.0 6.0 18d ago Cleartext Storage of Sensitive Information in Memory vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component. This issue affects Meona Client Launcher Component: thr…
CVE-2026-0856 high 7.8 7.8 18d ago Improper Access Control vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables a normal user gaining access to the admin panel. This issue affects Meona Clie…
CVE-2026-9064 high 7.5 7.5 debian debian sles rhel redhat 18d ago A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enforce an upper bound on the number of controls per LDAP message. A remote, unauthenticated a…
CVE-2026-6728 medium 5.3 5.3 18d ago The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.0.9 via the 'get_stream_data()' function. This makes it possible for una…
CVE-2026-44933 high 7.8 7.8 sles 18d ago `PluginScript` attempts to `chroot` the plugin to the `repoManagerRoot`, this root is frequently `/` (the system root) in standard configurations or when using `--root`. If the chroot target is `/`, …
CVE-2026-44608 medium 5.9 5.9 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a locking inconsistency vulnerability that when certain conditions are met (multi-threaded, RPZ XFR reload, RPZ zone with 'rpz-nsip'/'…
CVE-2026-44390 medium 5.3 5.3 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses…
CVE-2026-42959 high 7.5 7.5 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in the DNSSEC validator that can lead to a crash given malicious upstream replies. When Unbound constructs …
CVE-2026-42944 high 7.5 7.5 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow when encoding multiple NSID and/or DNS Cookie EDNS and/or EDNS Padding options in the re…
CVE-2026-42923 medium 5.3 5.3 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability in the DNSSEC validator where the code path to consult the negative cache for DS records does not take into account the limit…
CVE-2026-42534 medium 5.3 5.3 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability in the jostle logic that could defeat its purpose and degrade resolution performance. Retransmits of the same query could ren…
CVE-2026-41292 high 7.5 7.5 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related to parsing long lists of incoming EDNS options. An adversary sending queries with too ma…
CVE-2026-41054 high 7.8 7.8 FIX debian debian sleswindows windows 18d ago In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting user is not root (`…
CVE-2026-40622 high 7.5 7.5 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound 1.16.2 up to and including version 1.25.0 has a vulnerability of the 'ghost domain names' family of attacks that could extend the ghost domain window by up to one cached TTL config…
CVE-2026-35070 medium 6.7 6.7 dell 18d ago Dell SmartFabric Storage Software, versions prior to 1.4.5, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A high privileged attacker w…
CVE-2026-32792 medium 5.3 5.3 FIX slesdebian debianwindows windows nlnetlabs 18d ago NLnet Labs Unbound 1.6.2 up to and including version 1.25.0 has a denial of service vulnerability when compiled with DNSCrypt support ('--enable-dnscrypt'). A bad DNSCrypt query could underflow Unbou…
CVE-2026-6405 medium 4.3 4.3 18d ago The Anomify AI – Anomaly Detection and Alerting plugin for WordPress is vulnerable to Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) in versions up to and including 0.…
CVE-2026-5200 high 8.8 8.8 18d ago The AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 10.8.2. Th…
CVE-2026-46640 high 8.0 FIX debian debian 18d ago Twig: Arbitrary PHP code execution via `_self.(<string>)` macro-reference compilation
CVE-2026-46639 high 8.0 FIX debian debian 18d ago Twig: Sandbox property and method bypass via object-destructuring assignment
CVE-2026-46638 medium 5.5 FIX debian debian 18d ago Twig: `{% sandbox %}{% include %}` skips checkSecurity() on cached templates (incomplete fix for CVE-2024-45411)
CVE-2026-46634 medium 5.5 FIX debian debian 18d ago Twig: `template_from_string()` escapes a SourcePolicy-driven sandbox via synthesized template name
CVE-2026-45077 high 8.0 FIX debian debian 18d ago Symfony has Unauthenticated PHP Object Deserialization in MonologBridge server:log Listener
CVE-2026-45075 medium 5.5 FIX debian debian 18d ago Synfony's HEAD Request Bypasses methods: ['GET'] Filter in #[IsGranted] / #[IsSignatureValid] / #[IsCsrfTokenValid]
CVE-2026-45074 medium 5.5 FIX debian debian 18d ago Symfony's Cas2Handler Derives CAS service URL from Client Host Header → Cross-Service Ticket Replay
CVE-2026-45073 medium 5.5 FIX debian debian 18d ago Symfony Vulnerable to SQL Injection in PdoAdapter::doClear() via Unsanitized $prefix
CVE-2026-45070 medium 5.5 FIX debian debian 18d ago Symfony has Email Header Injection via Non-Token Characters in Mime Parameter Names
CVE-2026-45069 medium 5.5 FIX debian debian 18d ago Symfony's OidcTokenHandler Accepts JWTs Missing aud/iss/exp Claims
CVE-2026-45068 medium 5.5 FIX debian debian 18d ago Symfony has an Argument Injection in SendmailTransport via Dash-Prefixed Recipient Address
CVE-2026-45067 high 8.0 FIX debian debian 18d ago Symfony has Email Header / SMTP Command Injection via CRLF in Symfony\Component\Mime\Address
CVE-2026-45066 medium 5.5 FIX debian debian 18d ago Symfony has an HtmlSanitizer allowLinkHosts() / allowMediaHosts() Bypass via URL-Parser Differentials and <area> Misclassification
CVE-2026-45065 medium 5.5 FIX debian debian 18d ago Symfony has a UrlGenerator Route-Requirement Bypass via Unanchored Regex Alternation → Off-Site //host URL Injection
CVE-2026-45064 medium 5.5 FIX debian debian 18d ago Symfony's HtmlSanitizer URL Attributes Pass Through BiDi Override Characters → Visual href Spoofing
CVE-2026-45063 high 8.0 FIX debian debian 18d ago Symfony Vulnerable to Identity Spoofing via Unanchored DN Regex in X509Authenticator
CVE-2026-7385 medium 5.8 5.8 18d ago The Decent Comments WordPress plugin before 3.0.2 does not restrict access to comment author email addresses and post author email addresses via its REST API endpoint, allowing unauthenticated attack…
CVE-2026-6566 medium 4.3 4.3 18d ago The Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to and including 4.2.0. This is due to insuffic…
CVE-2026-5776 medium 6.1 6.1 18d ago The Email Encoder WordPress plugin before 2.4.7 does not escape email addresses retrieved via user input, allowing unauthenticated attackers to perform Stored XSS attacks
CVE-2026-47784 high 8.1 8.1 FIX slesdebian debianwindows windows memcached 18d ago In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass.
CVE-2026-47783 high 8.1 8.1 FIX slesdebian debianwindows windows memcached 18d ago In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by sasl_server_userdb_checkpass.
CVE-2026-44392 medium 4.3 4.3 18d ago Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be execute…
CVE-2026-2955 medium 6.4 6.4 18d ago The AI Chatbot & Workflow Automation by AIWU plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'X-Forwarded-For' header in versions up to, and including, 1.4.14 due to insuffi…
CVE-2026-9057 high 8.2 8.2 18d ago A broken access control issue has been identified in the Talend Administration Center, that allows a user with “View” permission to modify the Talend Studio update URL. This issue was resolved in a p…
CVE-2026-9056 medium 5.4 5.4 18d ago A stored cross-site scripting vulnerability has been found in the Talend Administration Center. An attacker with permission to manage servers can store a XSS payload that can be triggered by a differ…
CVE-2026-7522 high 8.8 8.8 18d ago The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes it possible for aut…
CVE-2026-5075 medium 4.3 4.3 18d ago The All in One SEO plugin for WordPress is vulnerable to Sensitive Information Exposure via 'internalOptions' localized script data in versions up to, and including, 4.9.7 due to sensitive internal o…
CVE-2026-9010 high 7.5 7.5 18d ago The Boost plugin for WordPress is vulnerable to time-based SQL Injection via the 'current_url' and 'user_name' parameters in versions up to, and including, 2.0.3 due to insufficient escaping on the u…
CVE-2026-9003 high 7.5 7.5 18d ago E-LAN Hybrid Recording System developed by TONNET has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.
CVE-2026-24215 high 7.5 7.5 nvidia 18d ago NVIDIA Triton Inference Server contains a vulnerability in the DALI backend, where an attacker could cause uncontrolled resource consumption. A successful exploit of this vulnerability might lead to …
CVE-2026-24210 high 7.5 7.5 linux-kernel nvidia 18d ago NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause an integer overflow. A successful exploit of this vulnerability might lead to denial of service.
CVE-2026-24209 high 7.5 7.5 linux-kernel nvidia 18d ago NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a path traversal issue. A successful exploit of this vulnerability might lead to denial of service.
CVE-2026-24208 high 7.5 7.5 linux-kernel nvidia 18d ago NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a path traversal issue. A successful exploit of this vulnerability might lead to denial of service.
CVE-2026-24160 high 7.5 7.5 nvidia 18d ago NVIDIA TRT-LLM for any platform contains a vulnerability where an attacker could cause an unchecked return value to a null pointer dereference. A successful exploit of this vulnerability might lead …
CVE-2025-15369 medium 5.3 5.3 18d ago The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the get_content_editor function in all versio…
CVE-2026-8685 medium 6.5 6.5 18d ago The Infility Global plugin for WordPress is vulnerable to SQL Injection via the 'orderby' and 'order' parameters in all versions up to, and including, 2.15.16. This is due to insufficient escaping on…
CVE-2026-8627 medium 6.1 6.1 18d ago The Correct Prices plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $_SERVER['PHP_SELF'] variable in versions up to and including 1.0. This is due to the correct_prices_pa…
CVE-2026-8626 medium 6.1 6.1 18d ago The SponsorMe plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Parameter in all versions up to, and including, 0.5.2 due to insufficient input sanitization and output…
CVE-2026-8624 medium 6.1 6.1 18d ago The LJ comments import: reloaded plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Parameter in all versions up to, and including, 0.97.1 due to insufficient input san…
CVE-2026-8610 medium 4.3 4.3 18d ago The TypeSquare Webfonts for ConoHa plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.4. This is due to the plugin not properly verifying that a user…
CVE-2026-8424 medium 4.3 4.3 18d ago The Remove Yellow BGBOX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the 'rybb_a…
CVE-2026-8423 medium 4.3 4.3 18d ago The JaviBola Custom Theme Test plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.5. This is due to missing or incorrect nonce validation on th…
CVE-2026-8420 medium 6.1 6.1 18d ago The BLOGCHAT Chat System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.6.3. This is due to missing or incorrect nonce validation on a func…
CVE-2026-8419 medium 4.3 4.3 18d ago The Amazon Scraper plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. This is due to missing or incorrect nonce validation on a function. This…
CVE-2026-8418 medium 4.3 4.3 18d ago The Games Catalog plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.0. This is due to missing or incorrect nonce validation on the gc_crud() funct…
CVE-2026-8038 medium 6.4 6.4 18d ago The Faces of Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'default' shortcode attribute in the 'facesofusers' shortcode in all versions up to, and including, 0.0.3 …
CVE-2026-7472 medium 4.9 4.9 18d ago The Read More & Accordion plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and including, 3.5.7. This is due to the use of esc_s…
CVE-2026-7467 high 8.8 8.8 18d ago The Read More & Accordion plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.5.7. This is due to the 'RadMoreAjax::importData' function not restricting…
CVE-2026-7462 medium 6.1 6.1 18d ago The VatanSMS WP SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `page` parameter in all versions up to, and including, 1.01. This is due to insufficient input sanitiz…
CVE-2026-6549 medium 6.4 6.4 18d ago The Logo Manager For Enamad plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' attribute of the `vc_enamad_namad`, `vc_enamad_shamed`, and `vc_enamad_custom` shortcodes…
CVE-2026-6456 high 8.8 8.8 18d ago The Account Switcher plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.2. This is due to the `rememberLogin` REST API endpoint using a loose compari…
CVE-2026-6452 medium 4.3 4.3 18d ago The Bigfishgames Syndicate plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2. This is due to missing or incorrect nonce validation on the bigf…
CVE-2026-6404 medium 4.4 4.4 18d ago The Anomify AI – Anomaly Detection and Alerting plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'anomify_api_key' parameter in versions up to and including 0.3.6. This is du…