Most recent entries from cvelistv5 https://vulnerability.circl.lu Contains only the most 10 recent entries. http://www.rssboard.org/rss-specification python-feedgen en Wed, 10 Jun 2026 09:15:22 +0000 cve-2026-9060 https://vulnerability.circl.lu/vuln/cve-2026-9060 Agile Store Locator < 1.6.6 - Admin+ Stored XSS via map_style Agile Store Locator < 1.6.6 - Admin+ Stored XSS via map_style https://vulnerability.circl.lu/vuln/cve-2026-9060 Wed, 10 Jun 2026 06:00:11 +0000 cve-2026-9067 https://vulnerability.circl.lu/vuln/cve-2026-9067 Schema & Structured Data for WP & AMP < 1.60 - Unauthenticated Arbitrary Media Upload Schema & Structured Data for WP & AMP < 1.60 - Unauthenticated Arbitrary Media Upload https://vulnerability.circl.lu/vuln/cve-2026-9067 Wed, 10 Jun 2026 06:00:12 +0000 cve-2026-29115 https://vulnerability.circl.lu/vuln/cve-2026-29115 https://vulnerability.circl.lu/vuln/cve-2026-29115 Wed, 10 Jun 2026 06:08:21 +0000 cve-2026-29116 https://vulnerability.circl.lu/vuln/cve-2026-29116 https://vulnerability.circl.lu/vuln/cve-2026-29116 Wed, 10 Jun 2026 06:16:34 +0000 cve-2026-10846 https://vulnerability.circl.lu/vuln/cve-2026-10846 Insufficient verification that responses belong to a query Insufficient verification that responses belong to a query https://vulnerability.circl.lu/vuln/cve-2026-10846 Wed, 10 Jun 2026 06:37:59 +0000 cve-2026-11815 https://vulnerability.circl.lu/vuln/cve-2026-11815 Insecure Deserialization via MITM in Layer 7 Policy Manager Insecure Deserialization via MITM in Layer 7 Policy Manager https://vulnerability.circl.lu/vuln/cve-2026-11815 Wed, 10 Jun 2026 06:39:26 +0000 cve-2026-9019 https://vulnerability.circl.lu/vuln/cve-2026-9019 Easy Image Collage <= 1.13.6 - Authenticated (Author+) Stored Cross-Site Scripting via 'grid[properties][borderColor]' and 'grid[images][N][attachment_url]' Parameters Easy Image Collage <= 1.13.6 - Authenticated (Author+) Stored Cross-Site Scripting via 'grid[properties][borderColor]' and 'grid[images][N][attachment_url]' Parameters https://vulnerability.circl.lu/vuln/cve-2026-9019 Wed, 10 Jun 2026 06:48:28 +0000 cve-2026-10721 https://vulnerability.circl.lu/vuln/cve-2026-10721 Concrete CMS below 9.5.2 is vulnerable to PHP Object Injection via unserialize() calls in the in Permission, Cache, and Search components Concrete CMS below 9.5.2 is vulnerable to PHP Object Injection via unserialize() calls in the in Permission, Cache, and Search components https://vulnerability.circl.lu/vuln/cve-2026-10721 Wed, 10 Jun 2026 06:59:03 +0000 cve-2026-8853 https://vulnerability.circl.lu/vuln/cve-2026-8853 MW WP Form <= 5.1.3 - Authenticated (Editor+) Stored Cross-Site Scripting via 'memo' Parameter MW WP Form <= 5.1.3 - Authenticated (Editor+) Stored Cross-Site Scripting via 'memo' Parameter https://vulnerability.circl.lu/vuln/cve-2026-8853 Wed, 10 Jun 2026 07:50:55 +0000 cve-2026-8613 https://vulnerability.circl.lu/vuln/cve-2026-8613 aThemes Addons for Elementor <= 1.1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'title_tag' Widget Setting aThemes Addons for Elementor <= 1.1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'title_tag' Widget Setting https://vulnerability.circl.lu/vuln/cve-2026-8613 Wed, 10 Jun 2026 07:50:56 +0000