Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
0.0 NA
CVE-2026-8086 — OSGeo gdal SWapi.c SWnentries heap-based overflow

A vulnerability was identified in OSGeo gdal up to 3.13.0dev-4. This issue affects the function SWnentries of the file frmts/hdf4/hdf-eos/SWapi.c. Such manipulation of the argument DimensionName lead…

| Memory Corruption
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-41653 — BentoPDF: Stored XSS via Markdown Editor Leading to Persistent File Exfiltration

BentoPDF is a client-side PDF toolkit that is self hostable. Prior to version 2.8.3, a cross-site scripting vulnerability was identified in BentoPD. An attacker may be able to execute arbitrary JavaS…

| Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-8084 — OSGeo gdal HDF-EOS Grid File SWapi.c memmove out-of-bounds

A vulnerability was determined in OSGeo gdal up to 3.13.0dev-4. This vulnerability affects the function memmove of the file frmts/hdf4/hdf-eos/SWapi.c of the component HDF-EOS Grid File Handler. This…

| Memory Corruption
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-44243 — GitPython: Path traversal in GitPython reference APIs allows arbitrary file write and del…

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.48, a vulnerability in GitPython allows attackers who can supply a crafted reference path to an application …

| Path Traversal
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-44244 — GitPython: Newline injection in config_writer().set_value() enables RCE via core.hooksPath

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.49, GitConfigParser.set_value() passes values to Python's configparser without validating for newlines. GitP…

| Misconfiguration
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-42284 — GitPython: Unsafe option check validates multi_options before shlex.split transforms it

GitPython is a python library used to interact with Git repositories. Prior to version 3.1.47, _clone() validates multi_options as the original list, then executes shlex.split(" ".join(multi_options)…

| Misconfiguration
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-42215 — GitPython: Command injection via Git options bypass

GitPython is a python library used to interact with Git repositories. From version 3.1.30 to before version 3.1.47, GitPython blocks dangerous Git options such as --upload-pack and --receive-pack by …

| Injection
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
6.5 MEDIUM
CVE-2026-8081 — router-for-me CLIProxyAPI api_tools.go server-side request forgery

A vulnerability has been found in router-for-me CLIProxyAPI 6.9.29. Affected by this issue is some unknown functionality of the file internal/api/handlers/management/api_tools.go of the component API…

Remote | Server-Side Request Forgery
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
9.8 CRITICAL
CVE-2026-37709 — Snipe-IT Insecure Permissions Code Execution Vulnerability

Insecure Permissions vulnerability in grokability snipe-it v.8.4.0 and before and fixed after 2026-03-10 commit 676a9958 allows a remote attacker to execute arbitrary code via the app/Http/Controller…

Remote | Misconfiguration
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-8083 — SourceCodester Pharmacy Sales and Inventory System ajax.php save_user sql injection

A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /ajax.php?action=save_user. The manipulation of the argument ID results i…

| Injection
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-42214 — Improper Control of Generation of Code ('Code Injection') in dail8859/NotepadNext

Notepad Next is a cross-platform, reimplementation of Notepad++. Prior to version 0.14, NotepadNext's detectLanguageFromExtension() function interpolates a file's extension directly into a Lua script…

| Injection
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-41906 — FreeScout: Conversation Change-Customer Cross-Mailbox Authorization Bypass

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.214, the Change Customer modal correctly hides out-of-scope customers through the mailbox-filte…

| Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.2 HIGH
CVE-2026-44742 — Postorius HTML Injection

Postorius through 1.3.13 does not escape HTML in the message subject when rendering it in the Held messages pop-up, as exploited in the wild in May 2026.

Remote | Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-41905 — FreeScout vulnerable to SSRF via Helper::sanitizeRemoteUrl: redirect destination not re-v…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, Helper::sanitizeRemoteUrl() in app/Misc/Helper.php follows HTTP redirects via curlGetLastR…

| Server-Side Request Forgery
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-41904 — FreeScout Stored XSS vulnerability in mailbox auto-reply: payload reaches every customer'…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user with updateAutoReply permission can store an XSS payload in the mailbox auto-reply …

| Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-41902 — FreeScout's user invitation hash never expires: permanent unauthenticated account takeove…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, the /user-setup/{hash} endpoint accepts a 60-character random invite_hash to set a new use…

| Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
0.0 NA
CVE-2026-41903 — FreeScout IDOR Vulnerability: PERM_EDIT_USERS allows modifying any user's notification su…

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user holding the PERM_EDIT_USERS permission (intended for general user-profile editing) …

| Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
9.8 CRITICAL
CVE-2026-7415 — Open MQTT orchestration without read/write ACLs in Yarbo robot firmware

The MQTT broker embedded in Yarbo firmware v2.3.9 is configured to allow anonymous connections with no topic-level read or write ACLs. Any host on the same network can subscribe to sensitive telemetr…

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
9.8 CRITICAL
CVE-2026-7414 — Hardcoded credentials in Yarbo robot firmware

Yarbo firmware v2.3.9 contains hardcoded administrative credentials embedded in the firmware image. These credentials are identical across all devices running this firmware and cannot be changed or r…

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.2 HIGH
CVE-2026-7413 — Persistent undocumented backdoor access in Yarbo robot

A hidden, persistent backdoor was found in Yarbo firmware v2.3.9 that provides remote, unauthenticated (or weakly authenticated) access to privileged functionality. The backdoor is undocumented, cann…

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
Showing 20 of 5886 Results