Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
8.3 HIGH
CVE-2026-7856 — D-Link DI-8100 Web Management url_member.asp buffer overflow

A flaw has been found in D-Link DI-8100 16.07.26A1. This affects an unknown part of the file /url_member.asp of the component Web Management Interface. Executing a manipulation of the argument Name c…

Remote | Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.1 HIGH
CVE-2026-44331 — ProFTPD SQL Injection Vulnerability

In ProFTPD through 1.3.9a before 7666224, a SQL injection vulnerability in sqltab_fetch_clients_cb() in contrib/mod_wrap2_sql.c allows a remote attacker to inject arbitrary SQL commands via a crafted…

Remote | Injection
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.3 CRITICAL
CVE-2026-40331 — Masa CMS unauthenticated SQL injection via altTable parameter in JSON API

Masa CMS is an open source content management system. In versions 7.2.0 through 7.2.9, 7.3.0 through 7.3.14, 7.4.0 through 7.4.9, and 7.5.0 through 7.5.2, the unauthenticated JSON API accepts an altT…

Remote | Injection
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.3 CRITICAL
CVE-2026-40330 — Masa CMS SQL injection via sortDirection parameter in beanFeed

Masa CMS is an open source content management system. In versions 7.2.0 through 7.2.9, 7.3.0 through 7.3.14, 7.4.0 through 7.4.9, and 7.5.0 through 7.5.2, a SQL injection vulnerability exists in the …

Remote | Injection
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.3 CRITICAL
CVE-2026-40329 — SQL Injection vulnerability via sortBy in beanFeed

Masa CMS is an open source content management system. In versions 7.5.2 and earlier, a SQL injection vulnerability exists in the beanFeed.cfc component within the getQuery function's processing of th…

Remote | Injection
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
7.8 HIGH
CVE-2026-40280 — Gotenberg SSRF via case-insensitive URL scheme bypass in webhook and downloadFrom deny-li…

Gotenberg is an API-based document conversion tool. In versions 8.30.1 and earlier, the default private-IP deny-lists for the --webhook-deny-list and --api-download-from-deny-list flags use a case-se…

gotenberg | Remote | Server-Side Request Forgery
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
0.0 NA
CVE-2026-38947 — FluentCMS TextHTML Plugin Cross Site Scripting Vulnerability

FluentCMS 1.2.3 is vulnerable to Cross Site Scripting (XSS) in TextHTML plugin.

| Cross-Site Scripting
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
4.8 MEDIUM
CVE-2026-35453 — PhpSpreadsheet XSS via number format text substitution in HTML Writer

PhpSpreadsheet is a library for reading and writing spreadsheet files. In versions 1.30.3 and earlier, 2.0.0 through 2.1.15, 2.2.0 through 2.4.4, 3.3.0 through 3.10.4, and 4.0.0 through 5.6.0, the HT…

phpspreadsheet | Remote | Cross-Site Scripting
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
7.6 HIGH
CVE-2026-35397 — jupyter-server path traversal allows access to sibling directories sharing root_dir name …

Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, a path traversal vulnerability in the REST API allows an authenticated user to escape the configured root_d…

Remote | Path Traversal
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
5.4 MEDIUM
CVE-2026-34596 — Sandboxie-Plus local privilege escalation via TOCTOU race condition in UpdUtil addon inst…

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a Time-of-Check-to-Time-of-Use (TOCTOU) race condition exists during addon installation.…

| Race Condition
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
2.0 LOW
CVE-2026-34527 — Sandboxie-Plus EditPassword hash entropy reduced from 160 bits to 80 bits due to incorrec…

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, SbieIniServer::HashPassword converts a SHA-1 digest to hexadecimal incorrectly. The high…

| Cryptography
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.8 HIGH
CVE-2026-34464 — Sandboxie-Plus NamedPipeServer OpenHandler stack overflow via unterminated server field

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, NamedPipeServer::OpenHandler copies the server field from NAMED_PIPE_OPEN_REQ into a fix…

| Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
7.3 HIGH
CVE-2026-34462 — Sandboxie-Plus ProcessServer boxname stack buffer overflows via unterminated wide string …

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, several ProcessServer handlers (KillAllHandler, SuspendAllHandler, and RunSandboxedHandl…

| Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
7.3 HIGH
CVE-2026-34461 — Sandboxie-Plus SbieIniServer RunSbieCtrl stack buffer overflow allows local privilege esc…

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieIniServer RunSbieCtrl handler contains a stack buffer overflow. The MSGID_SBIE_I…

| Memory Corruption
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.8 HIGH
CVE-2026-34459 — Sandboxie-Plus sandbox escape via uninitialized memory leak and stack overflow in GetRawI…

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieSvc proxy service's GetRawInputDeviceInfoSlave handler contains two vulnerabilit…

| Information Disclosure
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.3 CRITICAL
CVE-2026-34458 — Sandboxie-Plus privilege escalation via INI CRLF injection bypassing EditAdminOnly

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, an INI injection vulnerability allows any standard local user to bypass configuration re…

| Injection
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
9.2 CRITICAL
CVE-2026-34084 — PhpSpreadsheet SSRF and RCE via PHP stream wrappers in IOFactory::load

PhpSpreadsheet is a library for reading and writing spreadsheet files. In versions 1.30.2 and earlier, 2.0.0 through 2.1.14, 2.2.0 through 2.4.3, 3.3.0 through 3.10.3, and 4.0.0 through 5.5.0, when t…

phpspreadsheet | Remote | Server-Side Request Forgery
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.3 HIGH
CVE-2026-33975 — twenty-server SSRF protection bypass via IPv4-mapped IPv6 address normalization

Twenty is an open source CRM built with NestJS (Node.js). In versions 1.18.0 and earlier, the SSRF protection in twenty-server's SecureHttpClientService can be bypassed using IPv4-mapped IPv6 address…

Remote | Server-Side Request Forgery
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
8.2 HIGH
CVE-2026-33489 — CoreDNS transfer plugin subzone ACL bypass via lexicographic zone comparison

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the transfer plugin can select the wrong ACL stanza when both a parent zone and a more-specific subzone are configured. The l…

coredns | Remote | Misconfiguration
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
5.3 MEDIUM
CVE-2026-33420 — Vaultwarden missing authorization check allows Manager-role users to enumerate all collec…

Vaultwarden is a Bitwarden-compatible server written in Rust. In version 1.35.4 and earlier, the get_org_collections_details endpoint (GET /api/organizations/{org_id}/collections/details) is missing …

Remote | Authorization
May 05, 2026 May 05, 2026
May 05, 2026
May 05, 2026
Showing 20 of 5694 Results