Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
0.0 NA
CVE-2026-42359 — Apache Airflow: Authenticated RCE via XCom PATCH endpoint — XComUpdateBody missing FORBID…

A bug in Apache Airflow's XCom PATCH endpoint `PATCH /api/v2/xcomEntries/{key}` allowed an authenticated UI/API user with XCom write permission on a Dag to set XCom entries under reserved key names (…

airflow | Injection
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-42358 — Apache Airflow: Variable masker depth-limit bypass returns cleartext nested secrets

A bug in Apache Airflow's Variable response masker caused nested-key redaction (triggered by secret-suffixed key names like `password`, `token`, `secret`, `api_key`) to be bypassed when the JSON valu…

airflow | Information Disclosure
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-42253 — Apache ActiveMQ, Apache ActiveMQ Web: HTTP Response Header Injection via JMS Message Prop…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache ActiveMQ, Apache ActiveMQ Web. The MessageServlet in the ActiveMQ web console API copies …

activemq activemq_web | Cross-Site Scripting
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-42252 — Apache Airflow: BashOperator Jinja2 injection via dag_run.conf — low-privilege user patte…

Apache Airflow's official documentation at `core-concepts/dag-run.html` ("Passing Parameters when triggering Dags") showed a verbatim `BashOperator(bash_command="echo value: {{ dag_run.conf['conf1'] …

airflow | Injection
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-41084 — Apache Airflow: API authorization bypass: bulk TaskInstances allows cross-DAG mutation

A bug in Apache Airflow's bulk Task Instances API (`PATCH/DELETE /api/v2/dags/{dag_id}/dagRuns/{dag_run_id}/taskInstances`) evaluated authorization against the `dag_id` resolved from the URL path whi…

airflow | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-41017 — Apache Airflow: JWT cookie missing Secure flag in JWTRefreshMiddleware behind HTTPS-termi…

Apache Airflow's `JWTRefreshMiddleware` set the JWT auth cookie without the `Secure` flag, so deployments running the Airflow API server behind an HTTPS-terminating reverse proxy (e.g. nginx / Envoy …

airflow | Authentication
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-41014 — Apache Airflow: per-DAG RBAC bypass on /ui/partitioned_dag_runs endpoints

The partitioned_dag_runs endpoints in the Airflow UI enforced only asset-level access control, not per-Dag authorization. An authenticated UI/API user with global Asset:read permission could enumerat…

airflow | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-40963 — Apache Airflow: DAG authorization bypass on /ui/structure/structure_data

The structure_data endpoint in the Airflow UI returned external dependency graph nodes for linked Dags without checking whether the caller had read permission on those linked Dags. An authenticated U…

airflow | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-40961 — Apache Airflow: Open Redirect Bypass Vulnerability

A bug in the login redirect route in Apache Airflow allowed authenticated users to craft URLs that bypassed the `is_safe_url` check, enabling redirection from a trusted Airflow domain to an attacker-…

airflow | Authentication
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-40861 — Apache Airflow: Arbitrary File Read via Log Symlink following in FileTaskHandler

A Dag author could either (a) create a symlink under their task's log directory pointing to an arbitrary file readable by the API server process (read-path attack — e.g. `/etc/passwd` or `airflow.cfg…

airflow | Path Traversal
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.1 MEDIUM
CVE-2026-40549 — Cross-Site Request Forgery in SOPlanning

SOPlanning is vulnerable to Cross‑Site Request Forgery (CSRF) in groupe_save create, modify and delete endpoints. An attacker can craft a malicious website that, when visited by an authenticated user…

soplanning | Remote | Cross-Site Request Forgery
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
6.4 MEDIUM
CVE-2026-40548 — Unrestricted Upload of File with Dangerous Type in SOPlanning

SOPlanning does not verify uploaded file extension. An authenticated attacker with access to the backup functionality can upload a crafted ZIP archive containing a legitimate user.csv file alongside …

soplanning | Remote | Path Traversal
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
6.4 MEDIUM
CVE-2026-40547 — Path Traversal in SOPlanning

SOPlanning is vulnerable to Path Traversal in backup endpoints. Authenticated remote attacker is able to exploit a vulnerable endpoint and construct payloads that allow reading and executing files p…

soplanning | Remote | Path Traversal
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
8.7 HIGH
CVE-2026-40546 — Multiple SQL Injections in SOPlanning

SOPlanning is vulnerable to SQL Injection across multiple endpoints and parameters. Attacker with low privileges can inject arbitrary SQL commands, potentially gaining full control over the database.…

soplanning | Remote | Injection
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.1 MEDIUM
CVE-2026-40545 — Reflected XSS in SOPlanning

SOPlanning is vulnerable to Reflected XSS via the taches parameter. An attacker can craft a malicious URL which, when opened by authenticated victim, results in arbitrary JavaScript execution in the …

soplanning | Remote | Cross-Site Scripting
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.1 MEDIUM
CVE-2026-40544 — Stored XSS in SOPlanning

SOPlanning is vulnerable to Stored Cross-Site Scripting (XSS) via /process/upload_backup endpoint. An authenticated attacker with access to the backup functionality can upload a crafted ZIP archive c…

soplanning | Remote | Cross-Site Scripting
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
8.8 HIGH
CVE-2026-40543 — Missing Authorization in SOPlanning

SOPlanning does not enforce authorization for backup functionalities. An unauthenticated attacker can directly query backup-related endpoints and retrieve backup archives containing user databases wi…

soplanning | Remote | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
8.5 HIGH
CVE-2026-32325 — Dell ServerView Agents Privilege Escalation

Privilege chaining issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is exploited, a local authenticated attacker who can log in to the server where the affec…

| Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
8.5 HIGH
CVE-2026-27788 — ServerView Agents for Windows Privilege Escalation Vulnerability

Incorrect permission assignment for critical resource issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is exploited, a local authenticated attacker who can l…

| Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.8 MEDIUM
CVE-2026-10517 — Clair: clair: unauthenticated ssrf via manifest layer uri enables internal network reconn…

A flaw was found in Clair. The fetcher component makes outbound HTTP requests to attacker-supplied URIs from manifest layer descriptors without IP or scheme filtering. When PSK authentication is not …

quay | Remote | Server-Side Request Forgery
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
Showing 20 of 6740 Results