Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
7.9 HIGH
CVE-2026-42487 — x86 HVM I/O port list traversal

HVM guest I/O port accesses are subject to either emulation or at least translation. Translations are managed by the device model (via XEN_DOMCTL_ioport_mapping), and hence the linked list used may …

xen | Race Condition
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
2.1 LOW
CVE-2026-40457 — Reflected XSS in LMS

A Reflected Cross-Site Scripting (XSS) vulnerability exists in LMS (LAN Management System) before commit 9c5651b in the "dbrecover.php" and "netremap.php" modules where unsanitized GET parameters are…

lms | Remote | Cross-Site Scripting
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
8.6 HIGH
CVE-2026-40456 — OS Command Injection in LMS

An OS Command Injection vulnerability exists in LMS (LAN Management System) before commit 9fcb4de due to an IP address parameter being passed to the "exec()" function without proper validation, allow…

lms | Injection
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
8.6 HIGH
CVE-2026-40455 — SQL Injection in LMS

An SQL Injection vulnerability exists in LMS (LAN Management System) before commit 4cb30a7 within the "tarifflist.php" module due to insufficient sanitization of the POST "tg[]" parameter. The applic…

lms | Injection
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
5.7 MEDIUM
CVE-2026-12539 — Docker Sandboxes ICMP egress restriction bypass after daemon restart

Docker Sandboxes (sbx) blocks ICMP egress with an authorizer applied only at network-creation time, and does not re-apply it to networks rebuilt from disk when the Docker daemon restarts, so a restar…

sandboxes | Misconfiguration
Jun 18, 2026 Jun 30, 2026
Jun 18, 2026
Jun 30, 2026
6.0 MEDIUM

A broken authorization boundary in the RTSP media delivery pipeline of Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803 enables unauthenticated network …

| Authorization
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
5.7 MEDIUM
CVE-2026-12039 — Docker Sandboxes network egress allowlist bypass via unfiltered DNS resolution

Docker Sandboxes (sbx) enforces an HTTP/S-only egress allowlist but does not apply it to DNS resolution: the per-network embedded DNS server forwards any queried name to the host resolver whenever th…

sandboxes | Misconfiguration
Jun 18, 2026 Jun 30, 2026
Jun 18, 2026
Jun 30, 2026
7.3 HIGH
CVE-2026-11958 — Local privilege escalation in ANSSI’s DFIR-ORC

Local privilege escalation by loading DLLs from a shared temporary directory in ANSSI’s DFIR-ORC, versions 10.2.7 and prior. An attacker with prior access to the system, can place a malicious DLL in …

| Authorization
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
8.6 HIGH
CVE-2026-11719 — MCP Toolbox for Databases Authorization Bypass

An authenticated authorization bypass vulnerability exists in MCP Toolbox for Databases due to missing scope enforcement across older protocol handlers. While the 2025-11-25 protocol version handler…

mcp_toolbox_for_databases | Remote | Authorization
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
9.3 CRITICAL
CVE-2026-11718 — Google Cloud Token Validation Authentication Bypass

An authentication bypass vulnerability exists in the generic opaque token validation path (validateOpaqueToken) of googleapis/mcp-toolbox. When the toolbox validates an opaque token via an OAuth 2.0…

mcp_toolbox_for_databases | Remote | Authentication
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
9.3 CRITICAL
CVE-2026-11717 — Google Cloud Platform OAuth Authentication Bypass

An authentication bypass vulnerability exists in the generic opaque token validation path (validateOpaqueToken) of googleapis/mcp-toolbox. When verifying an unparsed opaque token via an OAuth 2.0 in…

mcp_toolbox_for_databases | Remote | Authentication
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
7.1 HIGH
CVE-2026-8811 — Path traversal in PDF generation module

SEPPmail versions before 15.0.5 allow improper handling of attachment filenames during encrypted PDF generation. An attacker can exploit this to create new files outside the intended directory, poten…

secure_email_gateway | Remote | Path Traversal
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
6.4 MEDIUM
CVE-2026-8039 — Fancy Testimonials <= 1.0 - Authenticated (Author+) Stored Cross-Site Scripting

The Fancy Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'author' shortcode attribute in the 'testimonial' shortcode in all versions up to, and including, 1.0 …

Remote | Cross-Site Scripting
Jun 18, 2026 Jun 18, 2026
Jun 18, 2026
Jun 18, 2026
5.1 MEDIUM
CVE-2026-50643 — Out‑of‑Bounds Read in 8cc

8cc is vulnerable to an Out‑of‑Bounds Read due to improper handling of #line directives and GNU linemarkers. The compiler accepts attacker-controlled filename and line number metadata and later uses …

| Memory Corruption
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
6.4 MEDIUM
CVE-2026-2021 — Slideshow Gallery LITE <= 1.8.5 - Authenticated (Contributor+) Stored Cross-Site Scriptin…

The Slideshow Gallery LITE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'alwaysauto' shortcode attribute in all versions up to, and including, 1.8.5. This is due to insuf…

Remote | Cross-Site Scripting
Jun 18, 2026 Jun 18, 2026
Jun 18, 2026
Jun 18, 2026
9.3 CRITICAL
CVE-2025-10560 — Hardcoded cloud credentials in Worksnaps client application binaries expose production cl…

Worksnaps before version 1.6.20260201 contains hardcoded cloud credentials and related secret material in the Worksnaps client application binaries. The exposed credentials included AWS access keys, …

Remote | Misconfiguration
Jun 18, 2026 Jun 23, 2026
Jun 18, 2026
Jun 23, 2026
6.5 MEDIUM
CVE-2026-9815 — MagicForm <= 0.1.3 - Unauthenticated Arbitrary File Upload to RCE

The MagicForm WordPress plugin through 0.1.3 does not properly validate the type of files uploaded through an unauthenticated AJAX action when a form's per-field extension allowlist is left empty, al…

Remote | Misconfiguration
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
7.6 HIGH
CVE-2026-55746 — Cotonti stored XSS via PFS folder title

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to stored Cross-Site Scripting in the Personal File Storage (PFS) module. A folder title (pff_title) is imported with the 'TXT' filter, wh…

Remote | Cross-Site Scripting
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
5.4 MEDIUM
CVE-2026-55745 — Cotonti CSRF in PFS folder edit allows unauthorized folder modification

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the Personal File Storage (PFS) module. In modules/pfs/inc/pfs.editfolder.php, the folder update action (…

Remote | Cross-Site Request Forgery
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
8.6 HIGH
CVE-2026-55744 — Cotonti CSRF in PFS allows forced arbitrary file upload

Cotonti 1.0.0 (master branch, commit f43f1fc3) is vulnerable to Cross-Site Request Forgery in the Personal File Storage (PFS) module. In modules/pfs/inc/pfs.main.php, the file upload action ('a=uploa…

Remote | Cross-Site Request Forgery
Jun 18, 2026 Jun 22, 2026
Jun 18, 2026
Jun 22, 2026
Showing 20 of 7988 Results