Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.1 HIGH
CVE-2026-40588 — blueprintUE: Authenticated Password Change Does Not Verify Current Password

blueprintUE is a tool to help Unreal Engine developers. Prior to 4.2.0, the password change form at /profile/{slug}/edit/ does not include a current_password field and does not verify the user's exis…

Remote | Authentication
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
6.5 MEDIUM
CVE-2026-40587 — blueprintUE: Active Sessions Are Not Invalidated After Password Change or Reset

blueprintUE is a tool to help Unreal Engine developers. Prior to 4.2.0, when a user changes their password via the profile edit page, or when a password reset is completed via the reset link, neither…

Remote | Authentication
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
5.1 MEDIUM
CVE-2026-6743 — WebSystems WebTOTUM Calendar cross site scripting

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated rem…

Remote | Cross-Site Scripting
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
9.0 CRITICAL
CVE-2026-5652 — Authorization Bypass Through User-Controlled Key in Crafty Controller

An insecure direct object reference vulnerability in the Users API component of Crafty Controller allows a remote, authenticated attacker to perform user modification actions via improper API permiss…

crafty_controller | Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.1 HIGH
CVE-2026-41191 — FreeScout's signature only mailbox permission allows unauthorized mailbox chat setting ch…

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, `MailboxesController::updateSave()` persists `chat_start_new` outside the allowed-field filter. A user with onl…

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.1 HIGH
CVE-2026-41190 — FreeScout has assigned-only visibility bypass via save_draft that allows hidden conversat…

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, when `APP_SHOW_ONLY_ASSIGNED_CONVERSATIONS` is enabled, direct conversation view correctly blocks users who are…

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.1 HIGH
CVE-2026-41189 — FreeScout has assigned-only visibility bypass that allows editing hidden customer-authore…

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, customer-thread editing is authorized through `ThreadPolicy::edit()`, which checks mailbox access but does not …

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
4.3 MEDIUM
CVE-2026-41183 — FreeScout allows non-folder conversation queries to disclose assigned-only hidden convers…

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, the assigned-only restriction is applied to direct conversation view and folder queries, but not to non-folder …

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
5.9 MEDIUM
CVE-2026-40592 — FreeScout's cross-user undo reply allows mailbox peers to recall another agent's outbound…

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, the undo-send route `GET /conversation/undo-reply/{thread_id}` checks only whether the current user can view th…

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.1 HIGH
CVE-2026-40591 — FreeScout: Improper Authorization in Phone Conversation Creation Enables Cross-Mailbox Hi…

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, the phone-conversation creation flow accepts attacker-controlled `customer_id`, `name`, `to_email`, and `phone`…

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
4.3 MEDIUM
CVE-2026-40590 — FreeScout's Customer AJAX Create Modifies Hidden Existing Customer

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, the Change Customer modal exposes a “Create a new customer” flow via POST /customers/ajax with action=create. U…

Remote | Authentication
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.6 HIGH
CVE-2026-40589 — FreeScout has Customer Edit Cross-Mailbox Email Takeover

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, a low-privileged agent can edit a visible customer and add an email address already owned by a hidden customer …

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.5 HIGH
CVE-2026-40586 — blueprintUE: Login Endpoint Has No Rate Limiting, Lockout, or Brute-Force Protection

blueprintUE is a tool to help Unreal Engine developers. Prior to 4.2.0, the login form handler performs no throttling of any kind. Failed authentication attempts are processed at full network speed w…

Remote | Authentication
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
7.4 HIGH
CVE-2026-40585 — blueprintUE: Password Reset Tokens Have No Expiry Window

blueprintUE is a tool to help Unreal Engine developers. Prior to 4.2.0, when a password reset is initiated, a 128-character CSPRNG token is generated and stored alongside a password_reset_at timestam…

Remote | Authentication
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
6.9 MEDIUM
CVE-2026-40584 — RansomLook - Improper Filtering of Private Location Entries in API Endpoints Leads to Inf…

RansomLook is a tool to monitor Ransomware groups and markets and extract their victims. Prior to 1.9.0, the API in the affected application improperly filters private location entries in website/web…

Remote | Information Disclosure
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
8.8 HIGH
CVE-2026-40583 — UltraDAG: SmartOp Vote Path Triggers Fatal Supply Invariant Halt

UltraDAG is a minimal DAG-BFT blockchain in Rust. In version 0.1, a non-council attacker can submit a signed SmartOp::Vote transaction that passes signature, nonce, and balance prechecks, but fails a…

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
9.4 CRITICAL
CVE-2026-40576 — Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in excel-m…

excel-mcp-server is a Model Context Protocol server for Excel file manipulation. A path traversal vulnerability exists in excel-mcp-server versions up to and including 0.1.7. When running in SSE or S…

Remote | Path Traversal
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
6.8 MEDIUM
CVE-2026-40574 — OAuth2 Proxy has an Authorization Bypass in Email Domain Validation via Malformed Multi-@…

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Prior to 7.15.2, an authorization bypass exists in OAuth2 Proxy as part of the email_domain enforcement option. An…

oauth2_proxy | Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
5.7 MEDIUM
CVE-2026-40570 — FreeScout's Missing Authorization in load_customer_info Allows Any Authenticated User to …

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, the `load_customer_info` action in `POST /conversation/ajax` returns complete customer profile data to any auth…

Remote | Authorization
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
9.0 CRITICAL
CVE-2026-40569 — FreeScout's Mass Assignment in Mailbox Connection Settings Enables Silent Email Exfiltrat…

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a mass assignment vulnerability in the mailbox connection settings endpoints of FreeScout (`connectionInco…

Remote | Authentication
Apr 21, 2026 Apr 21, 2026
Apr 21, 2026
Apr 21, 2026
Showing 20 of 6297 Results