Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
5.3 MEDIUM
CVE-2026-8086 — OSGeo gdal SWapi.c SWnentries heap-based overflow

A vulnerability was identified in OSGeo gdal up to 3.13.0dev-4. This issue affects the function SWnentries of the file frmts/hdf4/hdf-eos/SWapi.c. Such manipulation of the argument DimensionName lead…

| Memory Corruption
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
3.3 LOW
CVE-2026-8084 — OSGeo gdal HDF-EOS Grid File SWapi.c memmove out-of-bounds

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This…

| Memory Corruption
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.5 HIGH
CVE-2026-8083 — SourceCodester Pharmacy Sales and Inventory System ajax.php save_user sql injection

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /ajax.php?action=save_user. The manipulation of the argument ID results i…

Remote | Injection
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.2 HIGH
CVE-2026-44742 — Postorius HTML Injection

Postorius through 1.3.13 does not escape HTML in the message subject when rendering it in the Held messages pop-up, as exploited in the wild in May 2026.

Remote | Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.8 HIGH
CVE-2026-44244 — GitPython: Newline injection in config_writer().set_value() enables RCE via core.hooksPath

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.49, GitConfigParser.set_value() passes values to Python's configparser without validating for newlines. GitP…

| Misconfiguration
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.8 HIGH
CVE-2026-44243 — GitPython: Path traversal in GitPython reference APIs allows arbitrary file write and del…

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.48, a vulnerability in GitPython allows attackers who can supply a crafted reference path to an application …

Remote | Path Traversal
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
8.1 HIGH
CVE-2026-42284 — GitPython: Unsafe option check validates multi_options before shlex.split transforms it

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.47, _clone() validates multi_options as the original list, then executes shlex.split(" ".join(multi_options)…

Remote | Misconfiguration
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
8.8 HIGH
CVE-2026-42215 — GitPython: Command injection via Git options bypass

GitPython is a python library used to interact with Git repositories. From version 3.1.30 to before version 3.1.47, GitPython blocks dangerous Git options such as --upload-pack and --receive-pack by …

Remote | Injection
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.8 HIGH
CVE-2026-42214 — Improper Control of Generation of Code ('Code Injection') in dail8859/NotepadNext

Notepad Next is a cross-platform, reimplementation of Notepad++. Prior to version 0.14, NotepadNext's detectLanguageFromExtension() function interpolates a file's extension directly into a Lua script…

| Injection
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.1 HIGH
CVE-2026-41906 — FreeScout: Conversation Change-Customer Cross-Mailbox Authorization Bypass

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.214, the Change Customer modal correctly hides out-of-scope customers through the mailbox-filte…

Remote | Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.7 HIGH
CVE-2026-41905 — FreeScout vulnerable to SSRF via Helper::sanitizeRemoteUrl: redirect destination not re-v…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, Helper::sanitizeRemoteUrl() in app/Misc/Helper.php follows HTTP redirects via curlGetLastR…

Remote | Server-Side Request Forgery
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.6 HIGH
CVE-2026-41904 — FreeScout Stored XSS vulnerability in mailbox auto-reply: payload reaches every customer'…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user with updateAutoReply permission can store an XSS payload in the mailbox auto-reply …

Remote | Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
5.4 MEDIUM
CVE-2026-41903 — FreeScout IDOR Vulnerability: PERM_EDIT_USERS allows modifying any user's notification su…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user holding the PERM_EDIT_USERS permission (intended for general user-profile editing) …

Remote | Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
9.1 CRITICAL
CVE-2026-41902 — FreeScout's user invitation hash never expires: permanent unauthenticated account takeove…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, the /user-setup/{hash} endpoint accepts a 60-character random invite_hash to set a new use…

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.0 HIGH
CVE-2026-41653 — BentoPDF: Stored XSS via Markdown Editor Leading to Persistent File Exfiltration

BentoPDF is a client-side PDF toolkit that is self hostable. Prior to version 2.8.3, a cross-site scripting vulnerability was identified in BentoPD. An attacker may be able to execute arbitrary JavaS…

Remote | Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-8087 — OSGeo gdal GDapi.c GDnentries heap-based overflow

A security flaw has been discovered in OSGeo gdal up to 3.13.0dev-4. Impacted is the function GDnentries of the file frmts/hdf4/hdf-eos/GDapi.c. Performing a manipulation of the argument DataFieldNam…

| Memory Corruption
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-42259 — Saltcorn: Open Redirect in `POST /auth/login` due to incomplete `is_relative_url` validat…

Saltcorn is an extensible, open source, no-code database application builder. Prior to versions 1.4.6, 1.5.6, and 1.6.0-beta.5, Saltcorn validates the post-login dest parameter with a string check th…

| Server-Side Request Forgery
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-42241 — ParquetSharp: Possible Stack Overflow When Reading a ParquetFile with Large Decimal Type …

ParquetSharp is a .NET library for reading and writing Apache Parquet files. From version 18.1.0 to before version 23.0.0.1, DecimalConverter.ReadDecimal makes a stackalloc using what might be an att…

| Denial of Service
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-43510 — CISA manage.get.gov insecure portfolio administrative privileges

manage.get.gov is the .gov TLD registrar maintained by CISA. manage.get.gov allows an organization administrator to assign domain manager privileges for domains not already in another organization. F…

| Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-42239 — Budibase auth session cookies are set with httpOnly:false — any XSS can lead to full acco…

Budibase is an open-source low-code platform. Prior to version 3.35.10, the budibase:auth cookie containing the JWT session token is set with httpOnly: false at packages/backend-core/src/utils/utils.…

| Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
Showing 20 of 5879 Results