CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST — in English

CISA KEV catalog updated: (v2026.07.07)

CVE-2026-55748
Medium

OpenStack Horizon before version 25.7.4 produces scripts for downloading OpenStack RC files that may contain a crafted project name with shell metacharacters.

CVE-2026-48142
Medium

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_charset_module module. Attackers can send crafted requests, leading to a heap buffer over-read in the NGINX worker process, potentially resulting in limited memory disclosure or a restart.

CVE-2026-48117
Medium

The DroneAware drone detection platform was vulnerable to an account pre-hijacking attack where an attacker could register an account using a victim's email address with an attacker-controlled password before the victim activated the account. Once the legitimate owner activated the account, the attacker-set password became valid, allowing silent account takeover without victim notification.

CVE-2026-40641
Medium

Dell PowerFlex Manager versions prior to 5.1.0.1 contain a vulnerability related to the use of a broken or risky cryptographic algorithm. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to information disclosure and information tampering.

CVE-2026-35162
Medium

Dell PowerFlex Manager versions prior to 5.1.0.1 contain an Improper Access Control vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to denial of service.

CVE-2026-35067
Medium

Dell PowerFlex Manager versions prior to 5.1.0.1 contain an Improper Access Control vulnerability. A low privileged attacker with adjacent network access could potentially exploit this vulnerability, leading to Elevation of privileges and Unauthorized access.

CVE-2026-12528
Medium

A flaw was found in 389 Directory Server in the __aclp__normalize_acltxt() function of aclparse.c. A malformed ACI string can trigger heap-buffer-overflow writes and reads during ACI parsing due to insufficient validation of keyword length after whitespace stripping.

CVE-2026-10850
Medium

Plane CE version 1.3.1 allows a low-privileged project member to submit arbitrary HTML/JS in the description_html field when creating an intake work item through the API v1 intake.

CVE-2024-47477
Medium

Dell PowerFlex Manager, versions prior to 4.5.1.1, contain an improper certificate validation vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability leading to man-in-the-middle attack in tandem with DNS cache poisoning.

CVE-2026-9591
Medium

The NewsItemApiController in SimplCommerce prior to commit 6233d73e is vulnerable to cross-site request forgery (CSRF), allowing an unauthenticated remote attacker to create or modify news items as an administrator via a crafted form submitted to `/api/news-items`, due to missing anti-CSRF protection.

CVE-2026-54817
Medium

A vulnerability in the FluxBuilder MStore API allows authentication bypass via an alternate path or channel, enabling password recovery exploitation.

CVE-2026-52716
Medium

In WorkScout-Core versions up to 1.7.11, there is a vulnerability allowing unauthenticated arbitrary file deletion.

CVE-2025-15657
Medium

In School Management versions <= 93.1.0, there is a vulnerability of unauthenticated insecure direct object references (IDOR). This allows attackers to access data they should not have access to.

CVE-2026-8607
Medium

The myCred plugin for WordPress, responsible for points management in loyalty programs, is vulnerable to Stored Cross-Site Scripting via the 'wrap' Shortcode Attribute. This issue affects all versions up to and including 3.1 due to insufficient input sanitization and output escaping.

CVE-2026-8494
Medium

The Permalink Manager Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting (XSS) via post titles in the admin URI Editor interface. This affects all versions up to and including 2.5.3.3 due to insufficient output escaping.

CVE-2026-8383
Medium

The LearnPress WordPress plugin before version 4.3.7 does not gate the `edit` context on one of its REST endpoints, allowing unauthenticated users to retrieve user roles, full capabilities map, extra capabilities, locale, and registration date via a crafted request.

CVE-2026-7850
Medium

The WP Magnific Popup WordPress plugin through 1.0 does not properly escape user-controlled link URLs before injecting them into the DOM, allowing for Stored Cross-Site Scripting attacks.

CVE-2026-55706
Medium

In OpenBSD before version 076e2b1, there is a vulnerability in the sppp_pap_input function that allows authentication bypass via certain zero values for lengths.

CVE-2026-54196
Medium

JetFormBuilder versions up to 3.6.1 contain a vulnerability allowing subscriber privilege escalation.

CVE-2026-49072
Medium

The WooCommerce Anti-Fraud plugin in versions up to 7.2.6 has a broken access control vulnerability that allows unauthorized access to functions.

PreviousPage 91 of 514Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS