VIR Vulnerability Intelligence Relay

Search

Found 69,858 results in 2951ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-44541 high 8.0 24d ago ethyca-fides has a DOM-based XSS vulnerability in fides.js via fides_description override
CVE-2026-45011 high 8.0 24d ago Apostrophe has stored XSS via javascript: URL in Image Widget Link
CVE-2026-45013 high 8.0 24d ago Apostrophe has a Weak Password Recovery Mechanism for Forgotten Password and Improper Input Validation
CVE-2026-45012 high 8.0 24d ago Apostrophe has authenticated SSRF in rich-text widget import via @apostrophecms/area/validate-widget
CVE-2026-44973 high 8.1 8.1 debian debian 24d ago Billy is an interface filesystem abstraction for Go. Prior to 5.9.0, multiple path traversal issues exist across different components of go-billy. Insufficient path sanitization and boundary enforcem…
CVE-2026-44968 medium 5.5 24d ago dbt MCP Server has an Argument Injection in dbt CLI Tool Wrappers via node_selection and resource_type Parameters
CVE-2026-6332 high 7.5 7.5 schneider-electric 24d ago CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the disclosure of a sensitive information which could result in revealing protected source code and loss of …
CVE-2026-46469 medium 5.5 5.5 FIX debian debian slesubuntu ubuntu freedesktop 24d ago GStreamer Good Plugins vulnerabilities
CVE-2026-44544 medium 5.5 debian debian 24d ago gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log (RSL) can roll back the current policy to any previous policy trusted …
CVE-2026-44520 medium 5.7 5.7 24d ago docling-graph has SSRF via Missing Internal IP Validation in URLInputHandler
CVE-2026-44283 medium 4.3 4.3 FIX debian debian sleswindows windows etcd 24d ago etcd RBAC bypass allows unauthorized data access via PrevKv/lease attachment in nested transaction Put requests
CVE-2026-42897 high 8.1 9.6 KEV windows windows microsoft 24d ago Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-42572 medium 6.5 6.5 hatchet 24d ago Hatchet affected by cross-tenant information disclosure in `listTasksByDAGIds`
CVE-2026-42334 high 7.5 7.5 mongoosejs 24d ago Mongoose's Improper Sanitization of $nor in sanitizeFilter May Allow NoSQL Injection
CVE-2026-41888 medium 6.5 6.5 debian debian sles distribution 24d ago Distribution's tag deletion bypasses `storage.delete.enabled` configuration
CVE-2025-15024 high 8.8 8.8 24d ago Improper Control of Generation of Code ('Code Injection') vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System …
CVE-2025-15023 high 8.8 8.8 24d ago Incorrect Authorization vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploiting Incorrectly Conf…
CVE-2026-45448 medium 4.3 4.3 24d ago CWE-601 URL redirection to untrusted site ('open redirect')
CVE-2026-44827 high 8.8 8.8 huggingface 24d ago Diffusers has a `trust_remote_code` bypass via `custom_pipeline` and local custom components
CVE-2026-44516 high 7.6 7.6 24d ago Valtimo has sensitive data exposure through HTTP request/response logging in LoggingRestClientCustomizer
CVE-2026-44514 medium 6.5 6.5 24d ago Kubetail has a Cross-Site WebSocket Hijacking issue that allows attacker to read Kubernetes logs from authenticated users
CVE-2026-44513 high 8.8 8.8 huggingface 24d ago Diffusers has a `trust_remote_code` bypass via `custom_pipeline` and local custom components
CVE-2026-20224 high 8.6 8.6 24d ago A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system.…
CVE-2026-20210 medium 5.4 5.4 24d ago A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to modify configurations and perform …
CVE-2026-20209 medium 5.4 5.4 24d ago A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low …
CVE-2025-62313 medium 5.4 5.4 24d ago HCL AION is affected by a vulnerability where adequate protections against brute-force attempts are not enforced. This may allow repeated authentication attempts, potentially leading to unauthorized …
CVE-2025-62311 medium 4.3 4.3 24d ago HCL AION is affected by a vulnerability where backend service details may be transmitted over insecure HTTP channels. This may expose sensitive information to potential interception or unauthorized a…
CVE-2025-62310 medium 5.4 5.4 24d ago HCL AION is affected by a vulnerability where encryption is not enforced for certain data transmissions or operations. This may expose sensitive information to potential interception or unauthorized …
CVE-2025-62308 medium 5.1 5.1 24d ago HCL AION is affected by a vulnerability where sensitive backend infrastructure details may be exposed. Exposure of such information could reveal internal system architecture or configuration details,…
CVE-2025-62305 medium 5.1 5.1 24d ago HCL AION is affected by a vulnerability where certain operations may trigger out-of-band interactions, potentially resulting in unintended disclosure of sensitive information. Such behaviour may allo…
CVE-2026-44898 medium 6.1 6.1 slesdebian debianwindows windows mistune_project 24d ago Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, render_toc_ul() builds a <ul> table-of-contents tree from a list of (level, id, text) tuples. Both the id value (used a…
CVE-2026-45292 medium 5.3 5.3 24d ago opentelemetry-java is the Java implementation of the OpenTelemetry API for recording telemetry, and SDK for managing telemetry recorded by the API. Prior to 1.62.0, a vulnerability affects the baggag…
CVE-2026-44884 medium 6.5 6.5 portainer 24d ago Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
CVE-2026-44883 high 7.5 7.5 portainer 24d ago Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
CVE-2026-44849 high 8.8 8.8 portainer 24d ago Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
CVE-2026-44882 high 8.1 8.1 portainer 24d ago Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
CVE-2026-44850 high 8.5 8.5 portainer 24d ago Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
CVE-2026-44885 medium 5.5 5.5 portainer 24d ago Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
CVE-2026-44848 high 8.8 8.8 portainer 24d ago Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
CVE-2026-46480 high 8.0 24d ago FlowiseAI: Evaluator create+update mass-assignment allows cross-workspace evaluator takeover
CVE-2026-46479 high 8.0 24d ago FlowiseAI: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover
CVE-2026-46478 high 8.0 24d ago FlowiseAI: DatasetRow create+update mass-assignment allows cross-workspace row takeover
CVE-2026-46477 high 8.0 24d ago FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover
CVE-2026-46476 high 8.0 24d ago FlowiseAI: CustomTemplate create+update mass-assignment allows cross-workspace template takeover
CVE-2026-46475 high 8.0 24d ago FlowiseAI: Assistant create+update mass-assignment allows cross-workspace assistant takeover
CVE-2026-46444 high 8.0 24d ago FlowiseAI: Vector Store No Permission Checks
CVE-2026-45078 medium 5.5 5.5 FIX debian debian element 24d ago Synapse is an open source Matrix homeserver implementation. Prior to 1.152.1, local authenticated users can cause Synapse to starve other requests of CPU and lead to other requests failing, causing o…
CVE-2026-45732 high 8.0 24d ago n8n Has a Cross-user Authorization Bypass in Dynamic Credential OAuth Endpoints
CVE-2026-44792 high 8.0 24d ago n8n Has a Source Control Pull SQL Injection
CVE-2026-44722 medium 5.5 24d ago pyzipper has an encryption bypass for small files encrypted using it
CVE-2026-43978 high 8.0 24d ago wger: Privilege escalation via trainer-login session chaining allows gym trainer to impersonate gym manager
CVE-2026-44504 high 8.0 24d ago Aegra has cross-user run injection in /threads/{thread_id}/runs (IDOR)
CVE-2026-44501 high 7.1 7.1 datahub 24d ago DataHub is an open-source metadata platform. Prior to 1.5.0.3, The DataHub frontend (datahub-frontend-react) deserializes attacker-controlled Java objects from the REDIRECT_URL HTTP cookie during the…
CVE-2026-42597 medium 5.9 5.9 thecodingmachine 24d ago Gotenberg allows Chromium URL conversion routes to read arbitrary files under /tmp via file:// scheme
CVE-2026-42595 high 8.6 8.6 thecodingmachine 24d ago Gotenberg: Server-Side Request Forgery via Chromium URL Endpoint with Redirect-Based Deny-List Bypass
CVE-2026-42594 high 7.5 7.5 thecodingmachine 24d ago Gotenberg has an unauthenticated denial of service via echo.Context pool reuse in webhook async goroutine
CVE-2026-42593 medium 5.3 5.3 thecodingmachine 24d ago Gotenberg has arbitrary PDF read via stampExpression and watermarkExpression in merge, split, and convert routes
CVE-2026-42592 medium 5.3 5.3 thecodingmachine 24d ago Gotenberg's DNS rebinding bypasses SSRF validation on Chromium URL conversion routes
CVE-2026-42591 high 8.2 8.2 thecodingmachine 24d ago Gotenberg has a Server-Side Request Forgery (SSRF) Issue
CVE-2026-42590 high 8.2 8.2 thecodingmachine 24d ago Gotenberg's ExifTool group-prefix syntax bypasses dangerous-tag blocklist
CVE-2026-42283 high 7.8 7.8 devspace 24d ago DevSpace UI Server WebSocket CheckOrigin does not validate source
CVE-2026-42281 high 8.6 8.6 magicmirror 24d ago MagicMirror vulnerable to unauthenticated SSRF via /cors endpoint
CVE-2026-43977 high 8.0 24d ago wger Vulnerable to IDOR: Authenticated Users Can Read Any User's Private Workout Session Data via Template Routine API
CVE-2026-42159 medium 5.4 5.4 flowsint 24d ago Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, Flowsint allows a user to create investigations, whic…
CVE-2026-40893 high 8.2 8.2 thecodingmachine 24d ago Gotenberg has an ExifTool Dangerous Tag Blocklist Bypass via Group-Prefixed Tag Names that Allows Arbitrary File Rename and Move
CVE-2026-42853 medium 5.5 24d ago @apostrophecms/cli: Command Injection in apos create via Unsanitized Password Input
CVE-2026-44375 high 7.5 7.5 24d ago Nerdbank.MessagePack: Attacker-controlled stackalloc in DateTime decoding causes process-terminating StackOverflowException
CVE-2026-44374 medium 4.3 4.3 linuxfoundation 24d ago Backstage is an open framework for building developer portals. Prior to 0.6.11, the unprocessed entities read endpoints in @backstage/plugin-catalog-backend-module-unprocessed do not enforce permissi…
CVE-2026-44308 medium 5.5 24d ago Spring Cloud AWS missing SNS message signature verification allows spoofing of HTTP/HTTPS endpoint notifications
CVE-2026-42186 high 7.5 7.5 openbao 24d ago OpenBao's Namespace Deletion May Not Delete Data Properly
CVE-2026-41937 high 7.2 7.2 24d ago Vvveb before 1.0.8.3 contains an unrestricted file upload vulnerability in the plugin upload endpoint that allows super_admin users to execute arbitrary PHP code by uploading a malicious plugin ZIP f…
CVE-2026-41935 high 7.1 7.1 24d ago Vvveb before 1.0.8.3 contains an uncontrolled recursion vulnerability in the admin controller dispatch cycle where Base::init() repeatedly invokes permission() on error handlers, causing infinite rec…
CVE-2026-41933 medium 5.3 5.3 24d ago Vvveb before 1.0.8.3 contains a directory listing information disclosure vulnerability that allows unauthenticated attackers to enumerate files and directories by accessing multiple paths lacking pro…
CVE-2026-41932 medium 6.1 6.1 24d ago Vvveb before 1.0.8.3 contains a stored cross-site scripting vulnerability in the customer signup flow where the Signup::addUser() controller copies raw POST username values into the display_name fiel…
CVE-2026-24712 high 7.3 7.3 debian debian northern.tech 24d ago Northern.tech CFEngine Enterprise and Community before 3.21.8, 3.24.3, and 3.27.0 allows Command injection.
CVE-2026-24711 medium 5.3 5.3 northern.tech 24d ago Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 has Incorrect Access Control.
CVE-2026-24710 medium 6.1 6.1 northern.tech 24d ago Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 allows XSS.
CVE-2026-21730 medium 6.1 6.1 verint 24d ago Verba is affected by a Stored Cross-Site Scripting (XSS) vulnerability within its login logging mechanism. When an unauthenticated remote attacker attempts to log in using an incorrect username and p…
CVE-2025-69443 medium 6.3 6.3 24d ago Remote Code Execution in coleam00 Archon 0.1.0. A crafted HTML page, when accessed by a victim, can execute commands, run prompts on behalf of the user, control the Archon UI features, and steal all …
CVE-2026-46443 high 8.0 24d ago FlowiseAI Vulnerable to Credential Data Leak
CVE-2026-46441 high 8.0 24d ago FlowiseAI has Mass Assignment in Assistant Update Endpoint that Allows Cross-Workspace Resource Reassignment
CVE-2026-46440 high 8.0 24d ago FlowiseAI Exposes Basic Auth Credentials via API
CVE-2026-42863 high 8.0 24d ago FlowiseAI has Mass Assignment in Chatflow Update Endpoint that Allows Cross-Workspace AgentFlow Reassignment
CVE-2026-42862 high 8.0 24d ago FlowiseAI has Mass Assignment in Tool Update Endpoint that Allows Cross-Workspace Resource Reassignment
CVE-2026-42861 high 8.0 24d ago FlowiseAI has Mass Assignment in Variable Update Endpoint that Allows Cross-Workspace Resource Reassignment
CVE-2026-6638 high 8.8 8.8 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6637 high 8.8 8.8 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6575 medium 4.3 4.3 FIX slesdebian debianubuntu ubuntu postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6479 high 7.5 7.5 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6478 medium 6.5 6.5 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6477 high 8.8 8.8 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6476 high 7.2 7.2 FIX slesdebian debianubuntu ubuntu postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6475 high 8.8 8.8 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6474 medium 4.3 4.3 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6473 high 8.8 8.8 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2026-6472 medium 5.4 5.4 FIX slesdebian debianwindows windows postgresql 24d ago PostgreSQL vulnerabilities
CVE-2025-15025 high 8.8 8.8 24d ago Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Ex…
CVE-2026-41249 high 8.2 8.2 24d ago CoreShop is a Pimcore enhanced eCommerce solution. In versions 5.0.1 through 5.1.0-beta.1,, the GitHub Actions workflow (`.github/workflows/static.yml`) uses the `pull_request_target` trigger but dan…
CVE-2026-6008 medium 6.8 6.8 24d ago Authorization bypass through User-Controlled key vulnerability in Im Park Information Technology, Electronics, Press, Publishing and Advertising, Education Ltd. Co. DijiDemi allows Privilege Abuse. …
CVE-2026-4031 high 7.5 7.5 24d ago The Database Backup for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.5.2. This is due to the plugin not restricting access to the wp_db…