Skip to content

Menu
  • Home
Menu

CVE-2026-58281 – Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Posted on July 12, 2026

CVE ID :CVE-2026-58281 Published : July 11, 2026, 9:16 p.m. | 3 hours, 16 minutes ago Description :Deserialization of untrusted data in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a…

CVE-2026-61447 – PraisonAI before 1.6.78 Remote Code Execution via CodeAgent

Posted on July 12, 2026

CVE ID :CVE-2026-61447 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that executes LLM-generated Python code without…

CVE-2026-61445 – PraisonAI before 4.6.78 Arbitrary File Write and Command Execution

Posted on July 12, 2026

CVE ID :CVE-2026-61445 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI before 4.6.78 contains arbitrary file write and command execution vulnerabilities in the AICoder component due to…

CVE-2026-61429 – PraisonAI before 1.6.78 SSRF via Crawl4AI Chromium backend

Posted on July 12, 2026

CVE ID :CVE-2026-61429 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI versions before 1.6.78 contain a server-side request forgery vulnerability in the Crawl4AI/Chromium backend that allows attackers…

CVE-2026-61426 – PraisonAI before 1.7.3 Unauthenticated Agent Access via Insecure Defaults

Posted on July 12, 2026

CVE ID :CVE-2026-61426 Published : July 11, 2026, 2:16 p.m. | 10 hours, 16 minutes ago Description :PraisonAI before 1.7.3 contains an insecure default configuration that binds to all interfaces with no API key…

CVE-2026-44383 – Hydro-Québec Le Circuit Electrique charging station backend Insufficient Session Expiration

Posted on July 11, 2026

CVE ID :CVE-2026-44383 Published : July 10, 2026, 11:16 p.m. | 1 hour, 16 minutes ago Description :Multiple connections to the backend using the same charging station ID are allowed, which could allow an…

CVE-2026-42952 – Hydro-Québec Le Circuit Electrique charging station backend Improper Restriction of Excessive Authentication Attempts

Posted on July 11, 2026

CVE ID :CVE-2026-42952 Published : July 10, 2026, 11:16 p.m. | 1 hour, 16 minutes ago Description :Previously, there was no throttling on repeated authentication attempts to the charging station backend, which could allow…

CVE-2026-20744 – Hydro-Québec Le Circuit Electrique charging station backend Improper Access Control

Posted on July 11, 2026

CVE ID :CVE-2026-20744 Published : July 10, 2026, 11:16 p.m. | 1 hour, 16 minutes ago Description :The charging station websocket endpoint accepts connections without proper authentication, which could lead to privilege escalation. Severity:…

CVE-2026-14480 – OpenPLC v3 External Control of File Name or Path

Posted on July 11, 2026

CVE ID :CVE-2026-14480 Published : July 10, 2026, 11:16 p.m. | 1 hour, 16 minutes ago Description :OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the legacy web UI program‑upload workflow….

CVE-2026-57584 – Phalcon: Catastrophic backtracking (ReDoS) in the default Phalcon Router route lead to remote unauthenticated DoS

Posted on July 11, 2026

CVE ID :CVE-2026-57584 Published : July 10, 2026, 10:16 p.m. | 2 hours, 16 minutes ago Description :Phalcon is a high-performance, full-stack PHP framework. Prior to 5.15.0, every Phalcon MVC application built with a…

Posts pagination

1 2 … 110 Next

Site map

  • About Us
  • Privacy Policy
  • Terms & Conditions of Use
©2026 | Design: Newspaperly WordPress Theme