Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
7.2 HIGH
CVE-2026-54308 — n8n: Missing Token Validation on Microsoft Agent 365 Trigger Node

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, the MicrosoftAgent365Trigger and StripeTrigger node did not validate that inbound requests. As a result, an unauthentic…

n8n | Remote | Authentication
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
9.6 CRITICAL
CVE-2026-54307 — n8n: Credential Exfiltration via Permission Bypass

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, a member-level user with editor access to a shared workflow could reference credentials they do not own via …

n8n | Remote | Authorization
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
6.4 MEDIUM
CVE-2026-54306 — n8n: Prototype Pollution enables confused-deputy execution via public webhooks

n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, a prototype pollution vulnerability allowed a crafted public webhook payload to inject attacker-controlled fields into …

n8n | Remote | Injection
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
9.9 CRITICAL
CVE-2026-54305 — n8n: Cross-Tenant Credential Takeover via Dynamic Credentials EE Endpoints

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, three EE endpoints used by the Dynamic Credentials feature accepted any authenticated n8n session without pe…

n8n | Remote | Authorization
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
7.7 HIGH
CVE-2026-54304 — n8n: SecurityScorecard Node Leaks API Token to User-Controlled Host

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.1, an authenticated user with permission to create or modify workflows and access to a SecurityScorecard creden…

n8n | Remote | Server-Side Request Forgery
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
7.0 HIGH
CVE-2026-54302 — n8n: Stored XSS in Chat Trigger Node

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access could inject arbitrary JavaScript into the Chat Trigger's ge…

n8n | Remote | Cross-Site Scripting
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
7.0 HIGH
CVE-2026-54301 — n8n: Same-Origin XSS in Respond to Webhook Node

n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access could configure a Respond to Webhook node to serve binary co…

n8n | Remote | Cross-Site Scripting
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
9.6 CRITICAL
CVE-2026-50574 — yt-dlp: Arbitrary code execution via manifest downloads with aria2c

yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, if aria2c is used as an external downloader for a fragmented manifest format (such as an HLS/DASH stream), yt-dlp passes insuffic…

yt-dlp | Remote | Path Traversal
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
9.6 CRITICAL
CVE-2026-50023 — yt-dlp: Dangerous file type creation via insufficient filename sanitization (Bypass of CV…

yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, a vulnerability exists in yt-dlp that allows a remote attacker to write arbitrary OS-shortcut files (such as .desktop, .url, .web…

yt-dlp | Remote | Path Traversal
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
7.4 HIGH
CVE-2026-50019 — yt-dlp: File Downloader cookie leak with curl

yt-dlp is a command-line audio/video downloader. From 2023.09.24 until 2026.06.09, if curl is used as an external downloader for yt-dlp, cookies may be leaked to an unintended host upon HTTP redirect…

yt-dlp | Remote | Misconfiguration
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
7.7 HIGH
CVE-2026-49465 — n8n: Git Node Clone and Push Operations Bypass File Sandbox

n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create or modify workflows could supply a local filesystem path as …

n8n | Remote | Path Traversal
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
8.5 HIGH
CVE-2026-49444 — n8n: Python sandbox escape

n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create or modify workflows containing a Python Code Node could esca…

n8n | Remote | Authentication
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
6.1 MEDIUM
CVE-2026-48520 — Langflow: Unauthenticated Shareable Playground arbitrary local or S3 file read

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) contains a potential arbitrary file-read vulnera…

langflow | Remote | Path Traversal
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
9.6 CRITICAL
CVE-2026-48519 — Langflow: Unauthenticated RCE in Shareable Playgrounds

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, the "Shareable Playground" (or "Public Flows" in code) contains a critical RCE vulnerability. Shareable …

langflow | Remote | Injection
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
8.3 HIGH
CVE-2026-45732 — n8n: Cross-user Authorization Bypass in Dynamic Credential OAuth Endpoints

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, the OAuth1 and OAuth2 credential reconnect endpoints authorized access using credential:read rather than cre…

n8n | Remote | Authorization
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
0.0 NONE
CVE-2026-44961 — WordPress XML-RPC addUser Username Validation Bypass

The XML‑RPC API addUser method has a validation bypass introduced in the fix for CVE‑2025‑55129. As a result, API users could create usernames that enabled impersonation or stored XSS attacks. Proper…

revive_adserver adserver | Remote | Authentication
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
0.0 NONE
CVE-2026-44960 — OWASP ZAP Stored Cross-Site Scripting

A stored XSS can be exploited by leveraging the usernames as an attack vector. When an admin user viewed the audit log details for affected entries, any malicious JavaScript payload embedded in the u…

revive_adserver adserver | Remote | Cross-Site Scripting
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
8.8 HIGH
CVE-2026-44959 — Revive Adserver: Stored Cross-Site Scripting (XSS) via Insufficient Input Validation

A missing validation of user input exists when saving delivery limitations in Revive Adserver 6.0.6 and earlier. A low‑privileged user could add an unexpected component parameter and inject malicious…

revive_adserver adserver | Remote | Injection
Jun 23, 2026 Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
5.4 MEDIUM
CVE-2026-44958 — Revive Adserver Access Control Bypass Vulnerability

An access control bypass allows an advertiser‑level user to activate or deactivate a banner in Revive Adserver 6.0.6 and earlier, even when such permissions were not granted. The banner-edit.php scri…

revive_adserver adserver | Remote | Authorization
Jun 23, 2026 Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
4.3 MEDIUM
CVE-2026-44957 — Revive Adserver XML-RPC Missing Access Control

A missing access control check when invoking various modify methods in the XML‑RPC API of Revive Adserver 6.0.6 and earlier. The API allowed entities to be reassigned to different parent entities, le…

revive_adserver adserver | Remote | Authorization
Jun 23, 2026 Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
Showing 20 of 7990 Results