Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
7.3 HIGH
CVE-2026-34462 — Sandboxie-Plus ProcessServer boxname stack buffer overflows via unterminated wide string …

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, several ProcessServer handlers (KillAllHandler, SuspendAllHandler, and RunSandboxedHandl…

| Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
7.3 HIGH
CVE-2026-34461 — Sandboxie-Plus SbieIniServer RunSbieCtrl stack buffer overflow allows local privilege esc…

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieIniServer RunSbieCtrl handler contains a stack buffer overflow. The MSGID_SBIE_I…

| Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.8 HIGH
CVE-2026-34459 — Sandboxie-Plus sandbox escape via uninitialized memory leak and stack overflow in GetRawI…

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieSvc proxy service's GetRawInputDeviceInfoSlave handler contains two vulnerabilit…

| Information Disclosure
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.3 CRITICAL
CVE-2026-34458 — Sandboxie-Plus privilege escalation via INI CRLF injection bypassing EditAdminOnly

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, an INI injection vulnerability allows any standard local user to bypass configuration re…

| Injection
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.2 CRITICAL
CVE-2026-34084 — PhpSpreadsheet SSRF and RCE via PHP stream wrappers in IOFactory::load

PhpSpreadsheet is a library for reading and writing spreadsheet files. In versions 1.30.2 and earlier, 2.0.0 through 2.1.14, 2.2.0 through 2.4.3, 3.3.0 through 3.10.3, and 4.0.0 through 5.5.0, when t…

Remote | Server-Side Request Forgery
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.3 HIGH
CVE-2026-33975 — twenty-server SSRF protection bypass via IPv4-mapped IPv6 address normalization

Twenty is an open source CRM built with NestJS (Node.js). In versions 1.18.0 and earlier, the SSRF protection in twenty-server's SecureHttpClientService can be bypassed using IPv4-mapped IPv6 address…

Remote | Server-Side Request Forgery
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.2 HIGH
CVE-2026-33489 — CoreDNS transfer plugin subzone ACL bypass via lexicographic zone comparison

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the transfer plugin can select the wrong ACL stanza when both a parent zone and a more-specific subzone are configured. The l…

Remote | Misconfiguration
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
5.3 MEDIUM
CVE-2026-33420 — Vaultwarden missing authorization check allows Manager-role users to enumerate all collec…

Vaultwarden is a Bitwarden-compatible server written in Rust. In version 1.35.4 and earlier, the get_org_collections_details endpoint (GET /api/organizations/{org_id}/collections/details) is missing …

Remote | Authorization
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.4 CRITICAL
CVE-2026-33324 — SQLBot prompt injection allows arbitrary SQL execution and remote code execution

SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. In versions 1.7.0 and earlier, the Text2SQL chat interface is vulnerable to prompt injection. The user-provided que…

Remote | Injection
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.7 HIGH
CVE-2026-33190 — CoreDNS TSIG authentication bypass on encrypted DNS transports

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the tsig plugin can be bypassed on non-plain-DNS transports (DoT, DoH, DoH3, DoQ, and gRPC) because it trusts the transport w…

Remote | Authentication
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.7 HIGH
CVE-2026-32936 — CoreDNS DoH GET path missing size validation causes CPU and memory amplification

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the DNS-over-HTTPS (DoH) GET path accepts oversized dns= query parameter values and performs URL query parsing, base64 decodi…

Remote | Denial of Service
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.7 HIGH
CVE-2026-32934 — CoreDNS DNS-over-QUIC unbounded goroutine growth leads to denial of service

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the DNS-over-QUIC (DoQ) server can be driven into unbounded goroutine and memory growth by a remote client that opens many QU…

Remote | Denial of Service
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
5.3 MEDIUM
CVE-2026-32699 — FacturaScripts unauthorized modification of immutable nick field via EditUser controller

FacturaScripts is an open source accounting and invoicing software. In versions 2025.92 and earlier, the application fails to validate the nick parameter during a POST request to the EditUser control…

Remote | Authorization
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.2 HIGH
CVE-2026-32603 — Sandboxie kernel driver denial of service via malformed IOCTL from sandboxed process

Sandboxie is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a local denial of service vulnerability exists in the Sandboxie kernel driver. An unprivilege…

| Denial of Service
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
6.8 MEDIUM
CVE-2026-31893 — Tunnelblick arbitrary file read via symlink following in tunnelblickd

Tunnelblick is an open source graphic user interface for OpenVPN on macOS. In versions 3.3beta26 through 9.0beta01, any local user can read arbitrary root-owned files by exploiting a symlink followin…

| Path Traversal
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
0.0 NA
CVE-2024-52911 — Bitcoin Core Denial of Service Vulnerability

Bitcoin Core through 28.x has a security issue, the details of which are not disclosed. The earliest affected version is 0.14.

May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
0.0 NA
CVE-2026-35527 — Incus blind SSRF via image import preflight HEAD request

Incus is an open source container and virtual machine manager. In versions prior to 7.0.0, the image import flow issues an outbound HEAD request to a user-supplied URL before validating the request a…

| Server-Side Request Forgery
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.0 HIGH
CVE-2026-7855 — D-Link DI-8100 HTTP Request tggl.asp tggl_asp buffer overflow

A vulnerability was detected in D-Link DI-8100 16.07.26A1. Affected by this issue is the function tggl_asp of the file /tggl.asp of the component HTTP Request Handler. Performing a manipulation of th…

Remote | Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
10.0 HIGH
CVE-2026-7854 — D-Link DI-8100 POST Parameter url_rule.asp url_rule_asp buffer overflow

A security vulnerability has been detected in D-Link DI-8100 16.07.26A1. Affected by this vulnerability is the function url_rule_asp of the file /url_rule.asp of the component POST Parameter Handler.…

Remote | Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
7.7 HIGH
CVE-2026-42997 — Dell Idrac Authorization Credential Exposure

An issue was discovered in idrac in OpenStack Ironic before 35.0.1. During import, a user invoking molds can request authorization to be sent to a remote endpoint. The credential forwarded is a time-…

Remote | Authorization
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
Showing 20 of 5696 Results