Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.1 HIGH
CVE-2026-41316 — ERB has an @_init deserialization guard bypass via def_module / def_method / def_class

ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an `@_init` instance variable guard in `ERB#result` and `ERB#run` to prevent code execution…

Remote | Authentication
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
8.2 HIGH
CVE-2026-41309 — Open Source Social Network (OSSN) Vulnerable to Resource Exhaustion via Malicious Image P…

Open Source Social Network (OSSN) is open-source social networking software developed in PHP. Versions prior to 9.0 are vulnerable to resource exhaustion. An attacker can upload a specially crafted i…

Remote | Denial of Service
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
6.1 MEDIUM
CVE-2026-41305 — PostCSS has XSS via Unescaped </style> in its CSS Stringify Output

PostCSS takes a CSS file and provides an API to analyze and modify its rules by transforming the rules into an Abstract Syntax Tree. Versions prior to 8.5.10 do not escape `</style>` sequences when s…

Remote | Cross-Site Scripting
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
4.2 MEDIUM
CVE-2026-40254 — FreeRDP: contains_dotdot() off-by-one allows drive channel path traversal via terminal ..

FreeRDP is a free implementation of the Remote Desktop Protocol. Versions prior to 3.25.0 have an off-by-one in the path traversal filter in `channels/drive/client/drive_file.c`. The `contains_dotdot…

Remote | Path Traversal
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
8.8 HIGH
CVE-2026-33318 — Actual has Privilege Escalation via 'change-password' Endpoint on OpenID-Migrated Servers

Actual is a local-first personal finance tool. Prior to version 26.4.0, any authenticated user (including `BASIC` role) can escalate to `ADMIN` on servers migrated from password authentication to Ope…

Remote | Authentication
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
8.7 HIGH
CVE-2026-33317 — OP-TEE: PKCS#11 TA out-of-bounds read and memory disclosure

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In versions 3.13.0 through 4.10.0, mi…

| Memory Corruption
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
7.4 HIGH
CVE-2026-33208 — Roxy-WI Vulnerable to Authenticated Remote Code Execution via OS Command Injection in fin…

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the /config/ < service > /find-in-config endpoint in Roxy-WI fails to sanitize the use…

Remote | Injection
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
8.9 HIGH
CVE-2026-33078 — Roxy-WI has SQL Injection in haproxy_section_save Endpoint via Unsanitized server_ip Para…

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Versions prior to 8.2.6.4 have a SQL injection vulnerability in the haproxy_section_save function in app/routes/…

Remote | Injection
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
7.7 HIGH
CVE-2026-33077 — Roxy-WI has an arbitrary file read vulnerability

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the oldconfig parameter in the haproxy_section_save interface has an arbitrary file re…

Remote | Path Traversal
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
8.9 HIGH
CVE-2026-33076 — Roxy-WI vulnerable to path traversal and arbitrary file writing

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the haproxy_section_save interface presents a vulnerability that could lead to remote …

Remote | Path Traversal
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
5.3 MEDIUM
CVE-2026-32952 — go-ntlmssp NTLM challenges can panic on malformed payloads

go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash a…

Remote | Memory Corruption
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
7.1 HIGH
CVE-2026-41325 — Kirby is vulnerable to authorization bypass during page, file and user creation via bluep…

Kirby is an open-source content management system. Kirby's user permissions control which user role is allowed to perform specific actions to content models in the CMS. These permissions are defined …

Remote | Authorization
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
5.3 MEDIUM
CVE-2026-40099 — Kirby's page creation API bypasses the changeStatus permission check via unfiltered isDra…

Kirby is an open-source content management system. Kirby's user permissions control which user role is allowed to perform specific actions to content models in the CMS. These permissions are defined …

Remote | Authorization
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
7.6 HIGH
CVE-2026-34587 — Kirby has Server-Side Template Injection (SSTI) via double template resolution in option …

Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, Kirby's user permissions control which user role is allowed to perform specific actions to content models in the …

Remote | Authorization
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
6.9 MEDIUM
CVE-2026-32870 — Kirby has XML injection in its XML creator toolkit

Kirby is an open-source content management system. Kirby's `Xml::value()` method has special handling for `<![CDATA[ ]]>` blocks. If the input value is already valid `CDATA`, it is not escaped a seco…

Remote | XML External Entity
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
4.3 MEDIUM
CVE-2026-31956 — Xibo CMS has Preview and SavedReport IDOR via disableUserCheck without controller-level a…

Xibo is an open source digital signage platform with a web content management system and Windows display player software. Prior to version 4.4.1, any authenticated user can manually construct a URL t…

Remote | Authorization
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
4.9 MEDIUM
CVE-2026-31955 — Xibo CMS has Authenticated Server-Side Request Forgery (SSRF) in Remote DataSet Functiona…

Xibo is an open source digital signage platform with a web content management system and Windows display player software. An authenticated Server-Side Request Forgery (SSRF) vulnerability in versions…

Remote | Server-Side Request Forgery
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
6.4 MEDIUM
CVE-2026-31953 — Xibo CMS has Stored XSS via Notification Body with Zero-Click Execution on Login

Xibo is an open source digital signage platform with a web content management system and Windows display player software. A stored Cross-Site Scripting (XSS) vulnerability in versions prior to 4.4.1 …

Remote | Cross-Site Scripting
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
9.8 CRITICAL
CVE-2026-40630 — SenseLive X3050 Authentication bypass using an alternate path or channel

A vulnerability in  SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network acc…

Remote | Authorization
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
8.1 HIGH
CVE-2026-40623 — SenseLive X3050 Missing Authorization

A vulnerability in SenseLive X3050's web management interface allows critical system and network configuration parameters to be modified without sufficient validation and safety controls. Due to inad…

Remote | Misconfiguration
Apr 24, 2026 Apr 24, 2026
Apr 24, 2026
Apr 24, 2026
Showing 20 of 6322 Results