Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2026-55958 2026-06-25 HIGH 7.5 Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer. In tsip_StoreMessage() the capacity check guarding the fixed message bag (MSGBAG_SIZE) sets an error code but fails to…
CVE-2026-55960 2026-06-25 HIGH 7.5 Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing chain validation. A raw public key has no chain, so ParseCertRelative() accepts it without…
CVE-2026-55964 2026-06-25 MEDIUM 5.3 Chain intermediate CA:TRUE without keyCertSign accepted as a signing CA. Intermediate CA certificates are required to have the keyCertSign key usage when a Key Usage extension is present,…
CVE-2026-57663 2026-06-26 HIGH 8.5 Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes
CVE-2026-57657 2026-06-26 MEDIUM 4.3 Unauthenticated Cross Site Request Forgery (CSRF) in Gmail SMTP
CVE-2026-57651 2026-06-26 MEDIUM 6.5 Contributor Cross Site Scripting (XSS) in Ghost Kit
CVE-2026-57645 2026-06-26 HIGH 8.1 newsletters_subscribers Broken Access Control in Newsletters
CVE-2026-57638 2026-06-26 MEDIUM 6.5 Contributor Cross Site Scripting (XSS) in Fluent Booking
CVE-2026-57632 2026-06-26 MEDIUM 5.4 Subscriber Broken Access Control in Email Marketing for WooCommerce by Omnisend
CVE-2026-57631 2026-06-26 HIGH 7.6 Administrator SQL Injection in Popup box
CVE-2026-57622 2026-06-26 MEDIUM 4.3 Subscriber Broken Access Control in WPCafe
CVE-2026-57880 2026-06-26 CRITICAL 9.8 An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when parsing RTSP…
CVE-2026-57618 2026-06-26 MEDIUM 6.5 Contributor Cross Site Scripting (XSS) in Neve PRO
CVE-2026-57324 2026-06-26 MEDIUM 6.5 Unauthenticated Broken Access Control in GIFT4U
CVE-2026-57323 2026-06-26 MEDIUM 5.8 Unauthenticated Broken Access Control in Flash & HTML5 Video
CVE-2026-57317 2026-06-26 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in Simply Schedule Appointments
CVE-2026-57316 2026-06-26 MEDIUM 6.5 Subscriber Sensitive Data Exposure in GetGenie
CVE-2026-56072 2026-06-26 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in WoodMart
CVE-2026-56070 2026-06-26 CRITICAL 9.3 Unauthenticated SQL Injection in Advance Product Search
CVE-2026-56064 2026-06-26 HIGH 8.5 Subscriber SQL Injection in Tourfic
CVE-2026-56790 2026-06-25 HIGH 7.3 CANBoat through 6.22, fixed in commit a5a22b7, contains an off-by-one global buffer overflow in the searchForPgn() function in analyzer/pgn.c that allows remote attackers to crash the application. Attackers…
CVE-2026-56063 2026-06-26 HIGH 8.3 Unauthenticated Broken Access Control in MailChimp Block
CVE-2026-56058 2026-06-26 CRITICAL 9.9 Subscriber Arbitrary File Upload in Quform
CVE-2026-56057 2026-06-26 CRITICAL 9.8 Subscriber PHP Object Injection in Uncanny Automator Pro
CVE-2026-56045 2026-06-26 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in Automatic < 3.135.1 versions.
CVE-2026-56044 2026-06-26 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in Blog2Social
CVE-2026-56038 2026-06-26 HIGH 8.8 Contributor Privilege Escalation in Frisbii Pay
CVE-2026-56036 2026-06-26 CRITICAL 9.3 Unauthenticated SQL Injection in 워드프레스 결제 심플페이
CVE-2026-56031 2026-06-26 HIGH 8.1 Unauthenticated PHP Object Injection in Uncanny Automator
CVE-2026-56030 2026-06-26 CRITICAL 9.8 Unauthenticated Privilege Escalation in Paytium
CVE-2026-56025 2026-06-26 HIGH 7.5 Unauthenticated Broken Access Control in Paymob for WooCommerce
CVE-2026-56011 2026-06-26 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in MapPress Maps for WordPress
CVE-2026-54840 2026-06-26 HIGH 7.3 Unauthenticated Broken Access Control in Newsletters
CVE-2026-54839 2026-06-26 HIGH 7.5 Unauthenticated Sensitive Data Exposure in Trinity Backup – Backup, Migrate, Restore, Clone & Schedule Backups
CVE-2026-54832 2026-06-26 HIGH 7.5 Unauthenticated Broken Access Control in Gutenverse Companion
CVE-2026-54831 2026-06-26 CRITICAL 9.3 Unauthenticated SQL Injection in GeoDirectory
CVE-2026-54820 2026-06-26 CRITICAL 9.3 Unauthenticated SQL Injection in JetBooking
CVE-2026-52701 2026-06-26 MEDIUM 6.5 Unauthenticated Broken Access Control in User Registration
CVE-2025-68063 2026-06-26 HIGH 7.5 Contributor Local File Inclusion in Splash - Sport Club WordPress Theme for Basketball, Football, Hockey
CVE-2025-68052 2026-06-26 HIGH 8.8 Unauthenticated Cross Site Request Forgery (CSRF) in Eagle Booking
CVE-2025-63078 2026-06-26 MEDIUM 4.3 Subscriber Broken Access Control in Restaurant Menu by MotoPress
CVE-2025-63041 2026-06-26 MEDIUM 5.4 Contributor Broken Access Control in Forget About Shortcode Buttons
CVE-2025-32423 2026-06-26 N/A 0.0 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS vulnerability in ExtractTextInformationBlock. Malicious users can…
CVE-2026-57662 2026-06-26 HIGH 8.5 Contributor SQL Injection in Contest Gallery
CVE-2026-57656 2026-06-26 MEDIUM 5.9 Author Cross Site Scripting (XSS) in Hester Core
CVE-2026-57650 2026-06-26 MEDIUM 6.5 Contributor Cross Site Scripting (XSS) in Magazine Blocks
CVE-2026-57644 2026-06-26 HIGH 8.5 Contributor SQL Injection in Restaurant Menu by MotoPress
CVE-2026-57637 2026-06-26 MEDIUM 4.3 Unauthenticated Cross Site Request Forgery (CSRF) in Abandoned Cart Lite for WooCommerce
CVE-2026-57527 2026-06-26 HIGH 8.8 Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an insecure deserialization vulnerability that allows attackers who control a proxied web server to achieve arbitrary code execution…
CVE-2026-57881 2026-06-26 CRITICAL 9.8 An unauthenticated stack-based buffer overflow vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient length validation when processing remote…
« Anterior Página 7 de 4502 Siguiente »