7.1

CVSS3.1

CVE-2026-40090 - Zarf has a Path Traversal via Malicious Package Metadata.Name — Arbitrary File Write

Zarf is an Airgap Native Packager Manager for Kubernetes. Versions 0.23.0 through 0.74.1 contain an arbitrary file write vulnerability in the zarf package inspect sbom and zarf package inspect documentation subcommands. These subcommands output file paths are constructed by joining a user-controlle…

📅 Published: April 14, 2026, 11:46 p.m. 🔄 Last Modified: April 14, 2026, 11:46 p.m.

5.5

CVSS3.1

CVE-2026-39984 - Sigstore Timestamp Authority has Improper Certificate Validation in verifier

Sigstore Timestamp Authority is a service for issuing RFC 3161 timestamps. Versions 2.0.5 and below contain an authorization bypass vulnerability in the VerifyTimestampResponse function. VerifyTimestampResponse correctly verifies the certificate chain signature, but the TSA-specific constraint chec…

📅 Published: April 14, 2026, 11:41 p.m. 🔄 Last Modified: April 14, 2026, 11:41 p.m.

7.2

CVSS3.1

CVE-2026-39971 - Serendipity: Host Header Injection leads to SMTP header injection via unvalidated HTTP_HOST

Serendipity is a PHP-powered weblog engine. In versions 2.6-beta2 and below, the email sending functionality in include/functions.inc.php inserts $_SERVER['HTTP_HOST'] directly into the Message-ID SMTP header without validation, and the existing sanitization function serendipity_isResponseClean() i…

📅 Published: April 14, 2026, 11:35 p.m. 🔄 Last Modified: April 14, 2026, 11:35 p.m.

6.9

CVSS3.1

CVE-2026-39963 - Serendipity: Host Header Injection enables authentication cookie scoping to an attacker-controlled …

Serendipity is a PHP-powered weblog engine. In versions 2.6-beta2 and below, the serendipity_setCookie() function in include/functions_config.inc.php uses $_SERVER['HTTP_HOST'] without validation as the domain parameter of setcookie(). An attacker who can influence the Host header at login time, s…

📅 Published: April 14, 2026, 11:31 p.m. 🔄 Last Modified: April 14, 2026, 11:31 p.m.

5.3

CVSS3.1

CVE-2026-1314 - 3D FlipBook – PDF Embedder, PDF Flipbook Viewer, Flipbook Image Gallery <= 1.16.17 - Missing Author…

The 3D FlipBook – PDF Embedder, PDF Flipbook Viewer, Flipbook Image Gallery plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the send_post_pages_json() function in all versions up to, and including, 1.16.17. This makes it possible for unauthenti…

📅 Published: April 14, 2026, 11:26 p.m. 🔄 Last Modified: April 14, 2026, 11:26 p.m.

4.4

CVSS3.1

CVE-2026-2396 - List View Google Calendar <= 7.4.3 - Authenticated (Administrator+) Stored Cross-Site Scripting via…

The List View Google Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the event description in all versions up to, and including, 7.4.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-le…

📅 Published: April 14, 2026, 11:26 p.m. 🔄 Last Modified: April 14, 2026, 11:26 p.m.

6.5

CVSS3.1

CVE-2025-15470 - Eleganzo <= 1.2 - Authenticated (Subscriber+) Arbitrary Directory Deletion

The Eleganzo theme for WordPress is vulnerable to arbitrary directory deletion due to insufficient path validation in the akd_required_plugin_callback function in all versions up to, and including, 1.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to d…

📅 Published: April 14, 2026, 11:26 p.m. 🔄 Last Modified: April 14, 2026, 11:26 p.m.

8.3

CVSS3.1

CVE-2026-39884 - MCP Server Kubernetes has Argument Injection in its port_forward tool via space-splitting

mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Versions 3.4.0 and prior contain an argument injection vulnerability in the port_forward tool in src/tools/port_forward.ts, where a kubectl command is constructed via string concatenation with user-controlle…

📅 Published: April 14, 2026, 11:25 p.m. 🔄 Last Modified: April 14, 2026, 11:26 p.m.

10

CVSS3.1

CVE-2026-39842 - OpenRemote is Vulnerable to Expression Injection

OpenRemote is an open-source IoT platform. Versions 1.21.0 and below contain two interrelated expression injection vulnerabilities in the rules engine that allow arbitrary code execution on the server. The JavaScript rules engine executes user-supplied scripts via Nashorn's ScriptEngine.eval() with…

📅 Published: April 14, 2026, 11:21 p.m. 🔄 Last Modified: April 14, 2026, 11:21 p.m.

9.6

CVSS3.1

CVE-2026-39399 - NuGet Gallery: Arbitrary Blob Overwrite via Nuspec Confusion and URI Fragment Truncation

NuGet Gallery is a package repository that powers nuget.org. A security vulnerability exists in the NuGetGallery backend job’s handling of .nuspec files within NuGet packages. An attacker can supply a crafted nuspec file with malicious metadata, leading to cross package metadata injection that may …

📅 Published: April 14, 2026, 11:01 p.m. 🔄 Last Modified: April 14, 2026, 11:16 p.m.
Total resulsts: 344616
Page 2 of 34,462
« previous page » next page
Filters