Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.7 HIGH
CVE-2026-41673 — xmldom: Denial of service via uncontrolled recursion in XML serialization

xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior,…

Remote | Denial of Service
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
8.7 HIGH
CVE-2026-41672 — xmldom: XML node injection through unvalidated comment serialization

xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior,…

Remote | XML External Entity
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
6.8 MEDIUM
CVE-2026-41671 — Admidio: OIDC Token Introspection Endpoint Returns Active for All Tokens Without Validati…

Admidio is an open-source user management solution. Prior to version 5.0.9, the OIDC token introspection endpoint (/modules/sso/index.php/oidc/introspect) always returns {"active": true} for every re…

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
8.2 HIGH
CVE-2026-41670 — Admidio: SAML Response Sent to Unvalidated Assertion Consumer Service URL from AuthnReque…

Admidio is an open-source user management solution. Prior to version 5.0.9, the SAML IdP implementation in Admidio's SSO module uses the AssertionConsumerServiceURL value directly from incoming SAML …

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
8.2 HIGH
CVE-2026-41669 — Admidio: SAML Signature Validation Result Ignored — Forged AuthnRequests and LogoutReques…

Admidio is an open-source user management solution. Prior to version 5.0.9, the Admidio SAML Identity Provider implementation discards the return value of its validateSignature() method at both call …

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
3.5 LOW
CVE-2026-41663 — Admidio: CSRF on Admin Preferences Triggers Unauthorized Backup, .htaccess Write, and Ema…

Admidio is an open-source user management solution. Prior to version 5.0.9, several administrative operations in Admidio's preferences module (database backup, test email, htaccess generation) fire v…

Remote | Cross-Site Request Forgery
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
5.2 MEDIUM
CVE-2026-41662 — Admidio: Missing Minimum Administrator Check in Role Membership Removal

Admidio is an open-source user management solution. Prior to version 5.0.9, Role::stopMembership() does not verify whether removing a user from the administrator role leaves zero administrators. The …

Remote | Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
6.1 MEDIUM
CVE-2026-41661 — Admidio: Reflected XSS in msg_window.php via Square Bracket to HTML Tag Conversion

Admidio is an open-source user management solution. Prior to version 5.0.9, an unauthenticated attacker can execute arbitrary JavaScript in any Admidio user's browser through a reflected XSS in syste…

Remote | Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.1 HIGH
CVE-2026-41660 — Admidio: Inverted 2FA Reset Authorization Check Lets Group Leaders Strip Admin TOTP

Admidio is an open-source user management solution. Prior to version 5.0.9, a logic error in Admidio's two-factor authentication reset inverts the authorization check. Non-admin users cannot remove t…

Remote | Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
2.7 LOW
CVE-2026-41659 — Admidio: Hidden Profile Field Values Leaked via Blind Search Oracle in Member Assignment

Admidio is an open-source user management solution. Prior to version 5.0.9, the member assignment DataTables endpoint (members_assignment_data.php) includes hidden profile fields (BIRTHDAY, STREET, C…

Remote | Information Disclosure
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
6.5 MEDIUM
CVE-2026-41658 — Admidio: Missing Authorization on Inventory Module Destructive Endpoints Allows Any Authe…

Admidio is an open-source user management solution. Prior to version 5.0.9, the Admidio inventory module enforces authorization for destructive operations (delete, retire, reinstate) only in the UI l…

Remote | Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
4.9 MEDIUM
CVE-2026-41657 — Admidio: Cross-Organization Member Data Exposure via Permission Check Mismatch in contact…

Admidio is an open-source user management solution. Prior to version 5.0.9, the contacts_data.php endpoint uses a weaker permission check (isAdministratorUsers(), requiring only rol_edit_user=true) t…

Remote | Authorization
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
4.5 MEDIUM
CVE-2026-41656 — Admidio: Path Traversal via Unvalidated `name` Parameter in Document Add Mode Enables Arb…

Admidio is an open-source user management solution. Prior to version 5.0.9, the add mode in modules/documents-files.php accepts a name parameter validated only as 'string' type (HTML encoding), allow…

Remote | Path Traversal
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
6.5 MEDIUM
CVE-2026-41655 — Admidio: Path Traversal in ECard Preview Allows Reading Arbitrary Server Files Including …

Admidio is an open-source user management solution. Prior to version 5.0.9, the ecard_preview.php endpoint does not validate that the ecard_template POST parameter is a safe filename before passing i…

Remote | Path Traversal
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
7.5 HIGH
CVE-2026-41640 — NocoBase Vulnerable to SQL Injection via String Concatenation in Recursive Eager Loading

NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.39, the queryParentSQL() function in the core database package co…

Remote | Injection
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
8.6 HIGH
CVE-2026-41587 — CI4MS: Unrestricted PHP File Upload via Theme Installation Leads to Authenticated Remote …

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. From version 0.26.0.0 to before version 0.31.7.0, a theme…

Remote | Authentication
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
9.4 CRITICAL
CVE-2026-41203 — ci4ms Theme::upload is vulnerable to Zip Slip leading to RCE

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.5.0, ci4ms Theme::upload extracts u…

Remote | Path Traversal
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
9.4 CRITICAL
CVE-2026-41202 — ci4ms Backup::restore is vulnerable to Zip Slip leading to RCE

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.5.0, ci4ms Backup::restore extracts…

Remote | Path Traversal
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
9.1 CRITICAL
CVE-2026-41201 — CI4MS: Backup Management Full Account Takeover for All-Roles & Privilege-Escalation via S…

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. In version 0.31.4.0, an attacker can achieve Full Account…

Remote | Cross-Site Scripting
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
8.8 HIGH
CVE-2026-41142 — OpenEXR is Vulnerable to Integer overflow in ImageChannel::resize leads to heap OOB write…

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3…

Remote | Memory Corruption
May 07, 2026 May 07, 2026
May 07, 2026
May 07, 2026
Showing 20 of 5962 Results