- CVE-2026-45391 - Apache Apache HTTP Server Remote Code Execution
- CVE-2026-45392 - Apache HTTP Server Remote Code Execution Vulnerability
- CVE-2026-45393 - Apache HTTP Server SSRF
- CVE-2026-45362 - Sangoma Switchvox SIP Authentication Credential Exposure
- CVE-2026-8346 - D-Link DIR-816 portForward command injection
- CVE-2026-8349 - omec-project amf NGAP Message memory corruption
- CVE-2026-8345 - D-Link DIR-816 singlePortForward sub_445E7C command injection
- CVE-2026-43914 - Vaultwarden: Brute-force protection bypass vulnerability
- CVE-2026-43901 - Wireshark MCP: Arbitrary file write via export_objects when WIRESHARK_MCP_ALLOWED_DIRS is not configured
- CVE-2026-43911 - Vaultwarden: Refresh tokens not invalidated on security stamp rotation
- CVE-2026-42554 - Fiber: XSS in AutoFormat Content Negotiation
- CVE-2026-34962 - barebox ext4 Directory Parsing Infinite Loop Denial of Service
- CVE-2026-7010 - HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP request lines or control field header values
- CVE-2026-43893 - exiftool-vendored: Argument injection via newline characters in tag names
- CVE-2026-43897 - Link Preview JS: vunerable to IPv6 and internal loopback attacks
- CVE-2026-44695 - Outline: Slack OAuth state can link a victim Outline account to an attacker Slack identity
- CVE-2026-8344 - D-Link DIR-816 formDMZ.cgi sub_445E7C command injection
- CVE-2026-43887 - Outline: Stored XSS via Comment Mentions
- CVE-2026-43888 - Outline: Zip Extraction Path Escape via PATH_MAX Truncation in Collection Import
- CVE-2026-43889 - Outline: Unauthorized Document Publication via Mixed collectionId+documentId Share
- CVE-2026-43890 - Outline: IDOR in subscriptions.create allows cross-tenant subscription on private documents (sibling of GHSA-23jj-rp48-w7q7)
- CVE-2026-43884 - WWBN AVideo: SSRF Protection Bypass via HTTP Redirect and DNS Rebinding in isSSRFSafeURL()
- CVE-2026-43886 - Outline: OAuth Scope Validation Logic Error Allows Privilege Escalation to Wildcard API Access
- CVE-2026-43885 - WWBN AVideo: Exposure of Sensitive Information to an Unauthorized Actor and Missing Authorization
- CVE-2026-43878 - WWBN AVideo: Reflected XSS in plugin/Meet/iframe.php via Unescaped `user`/`pass` Parameters Reflected into JavaScript String Literal
- CVE-2026-43879 - WWBN AVideo: Blind SSRF in YPTWallet Donation Webhook via Missing isSSRFSafeURL() Check and CURLOPT_FOLLOWLOCATION Redirect Bypass
- CVE-2026-43880 - WWBN AVideo: Unauthenticated Arbitrary Email Sending via sendEmail.json.php Allows Phishing from Site's Legitimate From Address
- CVE-2026-43881 - WWBN AVideo: Unauthenticated User Enumeration in `objects/users.json.php` via `isCompany` Parameter Flips `$ignoreAdmin = true` and Defeats Admin-Only Listing Guard
- CVE-2026-43882 - WWBN AVideo: Unauthenticated CRLF/ICS Injection in Scheduler downloadICS.php Allows Calendar Event Spoofing
- CVE-2026-43877 - WWBN AVideo: CSRF in userSavePhoto.php Allows Cross-Origin Overwrite of Any Logged-in User's Profile Photo with Arbitrary Bytes
- CVE-2026-43883 - WWBN AVideo: IDOR in PayPalYPT agreementCancel.json.php Allows Any Authenticated User to Cancel Arbitrary PayPal Subscription Agreements
- CVE-2026-42188 - Geyser: Server-Side Request Forgery (SSRF) via Player Head Texture URL
- CVE-2026-42564 - jotty·page: Unauthenticated Path Traversal leads to sensitive file disclosure and session-token reuse impact
- CVE-2026-42600 - MinIO: Path Traversal via msgpack Body in `ReadMultiple` Storage-REST Endpoint
- CVE-2026-43873 - WWBN AVideo: Unauthenticated Disclosure of CloneSite `myKey` via Error Echo in `cloneClient.json.php` Enables Cross-Site DB Dump of the Configured Clone Server
- CVE-2026-43875 - WWBN AVideo: Password Hash Leaked in MobileManager OAuth Redirect URL Enables Account Takeover
- CVE-2026-43876 - WWBN AVideo: HTML Injection in notifySubscribers.json.php Enables Platform-Branded Phishing Emails to Channel Subscribers
- CVE-2026-8320 - jishenghua jshERP updatePlatformConfigByKey Endpoint UserService.java getUserByWeixinCode server-side request forgery
- CVE-2026-8321 - inkeep agents runAuth Middleware runAuth.ts createDevContext authentication bypass
- CVE-2026-8319 - aiwaves-cn agents cheshire_cat_core stray_cat.py recall_relevant_memories_to_working_memory resource consumption
- CVE-2026-45026 - WeGIA: Stored XSS in html/atendido/processo_aceitacao.php
- CVE-2026-6146 - Amazon::Credentials versions through 1.2.0 for Perl uses rand to generate encryption keys
- CVE-2026-45025 - WeGIA: Stored XSS in html/atendido/etapa_processo.php
- CVE-2026-42886 - Audiobookshelf: Memory amplification DoS via oversized compressed details entry in backup upload
- CVE-2026-42887 - Audiobookshelf: Stored Cross-Site Scripting in Login Page Custom Message
- CVE-2026-42882 - oxyno-zeta/s3-proxy: Security Issues in Resource Path Matching
- CVE-2026-42883 - Audiobookshelf: Cross-library file exfiltration via unscoped bulk download endpoint
- CVE-2026-42884 - Audiobookshelf: Collection endpoints bypass library access controls exposing restricted library data
- CVE-2026-42885 - Audiobookshelf: Path prefix bypass in filesystem existence check leaks out-of-scope file existence
- CVE-2026-42875 - External Secrets Operator: Namespace Isolation Bypass in CAProvider ConfigMap Resolution for SecretStore
- CVE-2026-42876 - External Secrets Operator: Priviledge escalation with secret overwriting
- CVE-2026-42870 - WeGIA: Cross-Site Scripting (XSS) Stored endpoint 'informacao_adicional.php' parameter 'descricao'
- CVE-2026-42872 - WeGIA: Reflected XSS in listar_arquivos_etapa.php
- CVE-2026-42873 - WeGIA: Error Handling Upload DocDependente
- CVE-2026-42874 - Microdot: HTTP response splitting in Response.set_cookie()
- CVE-2026-42869 - SOCFortress CoPilot: Hardcoded JWT secret allows unauthenticated full admin compromise and lateral movement into all integrated SOC tools
- CVE-2026-42050 - ImageMagick: Stack buffer overflow in XTileImage
- CVE-2026-42565 - @workos/authkit-session: Open Redirect via state-derived redirect target
- CVE-2026-2614 - Arbitrary File Read via Prompt Tag Source Validation Bypass in mlflow/mlflow
- CVE-2026-36734 - EDIMAX BR-6428nS Command Injection Vulnerability
- CVE-2022-4988 - Alien::FreeImage versions through 1.001 for Perl contains several vulnerable libraries
- CVE-2026-8318 - VectifyAI PageIndex PDF Table of Contents page_index.py toc_transformer infinite loop
- CVE-2026-8305 - OpenClaw bluebubbles Webhook monitor.ts handleBlueBubblesWebhookRequest improper authentication
- CVE-2026-7308 - Nexus Repository 3 - Stored Cross-Site Scripting (XSS) via HTML Browse Page
- CVE-2026-5266 - Wikimedia Foundation Echo Sensitive Information Exposure
- CVE-2026-7210 - The expat and elementtree parsers use insufficient entropy for XML hash-flooding protection
- CVE-2026-4890 - CVE-2026-4890
- CVE-2026-4891 - CVE-2026-4891
- CVE-2026-4892 - CVE-2026-4892
- CVE-2026-4893 - CVE-2026-4893
- CVE-2026-5172 - CVE-2026-5172
- CVE-2026-45001 - OpenClaw < 2026.4.20 - Gateway Config Mutation Guard Bypass via Agent Tool Access
- CVE-2026-45002 - OpenClaw < 2026.4.20 - Hook Session-Key Bypass via Template Mapping
- CVE-2026-45005 - OpenClaw < 2026.4.23 - Webhook Route Secret Cache Not Invalidated After Rotation
- CVE-2026-45000 - OpenClaw < 2026.4.20 - Server-Side Request Forgery via Browser CDP Profile Creation
- CVE-2026-45003 - OpenClaw < 2026.4.22 - Connector Endpoint Host Override via Workspace dotenv Files
- CVE-2026-44994 - OpenClaw < 2026.4.22 - Authentication Bypass in Gateway Control UI Bootstrap Config Endpoint
- CVE-2026-44993 - OpenClaw < 2026.4.20 - Direct Message Misclassification in Feishu Card Actions
- CVE-2026-44995 - OpenClaw < 2026.4.20 - Arbitrary Code Execution via MCP stdio Environment Variables
- CVE-2026-44996 - OpenClaw < 2026.4.15 - Arbitrary Local File Read via Webchat Audio Embedding
- CVE-2026-44997 - OpenClaw < 2026.4.22 - Security Envelope Constraint Bypass in ACP Child Sessions
- CVE-2026-44998 - OpenClaw < 2026.4.20 - Tool Policy Bypass via Bundled MCP/LSP Tools
- CVE-2026-44999 - OpenClaw < 2026.4.20 - Improper Trust Labeling in Isolated Cron Awareness Events
- CVE-2026-44991 - OpenClaw < 2026.4.21 - Authorization Bypass in Owner-Enforced Commands via Wildcard Channel Senders
- CVE-2026-44992 - OpenClaw 2026.4.5 < 2026.4.20 - MiniMax API Host Override via Workspace dotenv
- CVE-2026-8291 - A weakness has been identified in Open5GS up to 2.
- CVE-2026-8292 - A security vulnerability has been detected in Open
- CVE-2026-7819 - Symbolic-link path traversal (CWE-61, CWE-22) in p
- CVE-2026-7820 - Improper restriction of excessive authentication a
- CVE-2026-7816 - OS command injection (CWE-78) vulnerability in pgA
- CVE-2026-7817 - Local file inclusion (LFI) and server-side request
- CVE-2026-7818 - Deserialization of untrusted data (CWE-502) in pgA
- CVE-2026-6815 - An arbitrary file write vulnerability exists in Ca
- CVE-2026-7813 - Authorization vulnerability in pgAdmin 4 server mo
- CVE-2026-7814 - Stored cross-site scripting (XSS) vulnerability in
- CVE-2026-7815 - SQL injection vulnerability in pgAdmin 4 Maintenan
- CVE-2026-6093 - Corteza contains a SQL injection vulnerability in
- CVE-2026-44643 - Angular Expressions provides expressions for the A
- CVE-2026-44198 - Wagtail is an open source content management syste
- CVE-2026-44199 - Wagtail is an open source content management syste
Franck Ridel
