Vulnerabilities
Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-45357 |
7.5 (3.1)
|
LiquidJS: Memory and render limit bypass via unboundedā¦ |
harttle |
liquidjs |
2026-06-17T22:32:20.643Z | 2026-06-18T12:49:15.361Z |
| CVE-2026-9199 |
4.3 (3.1)
|
Equalize Digital Accessibility Checker <= 1.42.1 - Misā¦ |
equalizedigital |
Equalize Digital Accessibility Checker ā WCAG, ADA, EAA and Section 508 compliance |
2026-06-18T04:31:07.632Z | 2026-06-18T12:49:05.539Z |
| CVE-2026-12568 |
6.5 (3.1)
|
Arbitrary File Write in postman_download module |
Black Lantern Security |
BBOT |
2026-06-17T21:53:47.543Z | 2026-06-18T12:48:02.115Z |
| CVE-2026-48759 |
7.1 (3.1)
|
TypeBot: Cross-Workspace Theme Template IDOR (Modificaā¦ |
baptisteArno |
typebot.io |
2026-06-17T21:56:35.844Z | 2026-06-18T12:47:31.567Z |
| CVE-2026-12407 |
8.8 (3.1)
|
E2Pdf <= 1.32.26 - Missing Authorization to Authenticaā¦ |
oleksandrz |
E2Pdf ā Export Pdf Tool for WordPress |
2026-06-18T03:41:39.487Z | 2026-06-18T12:46:32.925Z |
| CVE-2026-12120 |
5.3 (3.1)
|
FireBox Popups <= 3.1.7 - Unauthenticated Sensitive Inā¦ |
fireplugins |
FireBox Popups ā Increase Sales and Grow Your Email List |
2026-06-18T04:31:08.565Z | 2026-06-18T12:44:12.103Z |
| CVE-2026-11360 |
4.9 (3.1)
|
Advanced Order Export For WooCommerce <= 4.0.10 - Authā¦ |
algolplus |
Advanced Order Export For WooCommerce |
2026-06-18T05:34:24.013Z | 2026-06-18T12:43:31.312Z |
| CVE-2024-24769 |
2.1 (4.0)
|
Vantage6: No limit on emails sent for password/MFA reset |
vantage6 |
vantage6 |
2026-06-17T22:07:59.310Z | 2026-06-18T12:43:29.340Z |
| CVE-2026-12111 |
4.3 (3.1)
|
Appointment Booking Calendar <= 1.4.01 - Authenticatedā¦ |
codepeople |
Appointment Booking Calendar |
2026-06-18T06:50:06.952Z | 2026-06-18T12:42:19.850Z |
| CVE-2025-10560 |
9.3 (4.0)
|
Hardcoded cloud credentials in Worksnaps client applicā¦ |
Silver Leaf Technologies, Inc. |
Worksnaps.net Worksnaps |
2026-06-18T08:32:14.717Z | 2026-06-18T12:38:58.358Z |
| CVE-2026-54533 |
6.9 (4.0)
|
vantage6 node has an Improper Access Control issue |
vantage6 |
vantage6 |
2026-06-17T22:17:08.550Z | 2026-06-18T12:36:58.300Z |
| CVE-2026-53676 |
7.2 (3.0)
8.6 (4.0)
|
ThingsBoard contains a prototype pollution vulnerā¦ |
ThingsBoard |
ThingsBoard |
2026-06-17T22:53:56.122Z | 2026-06-18T12:35:51.412Z |
| CVE-2026-10029 |
5.3 (3.1)
|
Event Koi Lite <= 1.3.13.1 - Missing Authorization to ā¦ |
eventkoi |
Event Koi Lite ā Events Calendar, Event Management, RSVP, and Tickets |
2026-06-18T04:31:09.312Z | 2026-06-18T12:34:33.636Z |
| CVE-2026-11402 |
6.4 (3.1)
|
Services Section Block <= 1.4.4 - Authenticated (Contrā¦ |
bplugins |
Services Section Block ā Showcase Service Details in Grid or Columns |
2026-06-18T05:34:26.069Z | 2026-06-18T12:32:58.800Z |
| CVE-2026-55746 |
7.6 (3.1)
7 (4.0)
|
Cotonti stored XSS via PFS folder title |
Cotonti |
Cotonti |
2026-06-18T06:46:57.622Z | 2026-06-18T12:32:08.737Z |
| CVE-2026-12136 |
6.4 (3.1)
|
SysBasics Customize My Account for WooCommerce <= 4.3.ā¦ |
phppoet |
SysBasics Customize My Account for WooCommerce ā Dashboard, Endpoints, Avatar & Menu Manager |
2026-06-18T06:50:04.743Z | 2026-06-18T12:31:19.266Z |
| CVE-2026-40455 |
8.6 (4.0)
|
SQL Injection in LMS |
LMS |
LMS |
2026-06-18T10:58:50.184Z | 2026-06-18T12:30:22.279Z |
| CVE-2026-50643 |
5.1 (4.0)
|
OutāofāBounds Read in 8cc |
rui314 |
8cc |
2026-06-18T08:58:01.908Z | 2026-06-18T12:29:43.415Z |
| CVE-2026-40456 |
8.6 (4.0)
|
OS Command Injection in LMS |
LMS |
LMS |
2026-06-18T10:58:51.790Z | 2026-06-18T12:29:40.271Z |
| CVE-2026-40457 |
2.1 (4.0)
|
Reflected XSS in LMS |
LMS |
LMS |
2026-06-18T10:58:53.193Z | 2026-06-18T12:29:09.151Z |
| CVE-2026-11958 |
7.3 (4.0)
|
Local privilege escalation in ANSSIās DFIR-ORC |
ANSSI |
DFIR-ORC |
2026-06-18T11:01:16.727Z | 2026-06-18T12:28:09.762Z |
| CVE-2026-8461 |
8.8 (3.1)
|
Heap out-of-bounds write via odd slice_height in FFmpeā¦ |
FFmpeg |
FFmpeg |
2026-06-18T11:29:00.668Z | 2026-06-18T12:26:59.855Z |
| CVE-2026-11717 |
9.3 (4.0)
|
An authentication bypass vulnerability exists in ā¦ |
Google |
MCP Toolbox for Databases (googleapis/mcp-toolbox) |
2026-06-18T11:50:23.665Z | 2026-06-18T12:23:15.209Z |
| CVE-2026-8811 |
7.1 (4.0)
|
Path traversal in PDF generation module |
SEPPmail AG |
Secure Email Gateway |
2026-06-18T09:05:46.285Z | 2026-06-18T12:14:45.784Z |
| CVE-2026-44942 |
6.5 (3.1)
|
libzypp .repo files can have an optional path which caā¦ |
SUSE |
libzypp |
2026-06-18T09:57:12.821Z | 2026-06-18T12:09:37.292Z |
| CVE-2026-54419 |
9.8 (3.1)
9.3 (4.0)
|
PIAF-HMS multiple unauthenticated SQL injection vulnerā¦ |
claudiopizzillo |
PIAF-HMS |
2026-06-18T10:21:47.135Z | 2026-06-18T12:05:05.175Z |
| CVE-2026-11719 |
8.6 (4.0)
|
An authenticated authorization bypass vulnerabiliā¦ |
Google |
MCP Toolbox for Databases (googleapis/mcp-toolbox) |
2026-06-18T11:55:03.666Z | 2026-06-18T11:55:03.666Z |
| CVE-2026-11718 |
9.3 (4.0)
|
An authentication bypass vulnerability exists in ā¦ |
Google |
MCP Toolbox for Databases (googleapis/mcp-toolbox) |
2026-06-18T11:52:42.327Z | 2026-06-18T11:52:42.327Z |
| CVE-2026-55200 |
9.2 (4.0)
8.1 (3.1)
|
libssh2 - Out-of-Bounds Write via Unchecked packet_lenā¦ |
libssh2 |
libssh2 |
2026-06-17T19:03:15.183Z | 2026-06-18T11:46:01.897Z |
| CVE-2026-55199 |
8.2 (4.0)
5.9 (3.1)
|
libssh2 - Pre-Authentication DoS via SSH_MSG_EXT_INFO ā¦ |
libssh2 |
libssh2 |
2026-06-17T18:44:18.048Z | 2026-06-18T11:45:37.547Z |