CVE ID :CVE-2026-48781 Published : June 16, 2026, 9:31 p.m. | 3 hours, 37 minutes ago Description :Postiz is an AI social media scheduling tool. In versions prior to 2.21.8, the Skool integration callback…
CVE-2026-25470 – WordPress ACPT (Pro) – Custom Post Types plugin for WordPress plugin <= 2.0.47 – Remote Code Execution (RCE) vulnerability
CVE ID :CVE-2026-25470 Published : June 16, 2026, 9:25 p.m. | 3 hours, 43 minutes ago Description :Improper Control of Generation of Code (‘Code Injection’) vulnerability in ACPT ACPT (Pro) – Custom Post Types…
CVE-2026-39598 – WordPress Academy LMS Pro plugin < 3.5.2 – Arbitrary File Upload vulnerability
CVE ID :CVE-2026-39598 Published : June 16, 2026, 9:24 p.m. | 3 hours, 44 minutes ago Description :Unrestricted Upload of File with Dangerous Type vulnerability in Kodezen LLC Academy LMS Pro allows Upload a…
CVE-2026-49073 – WordPress Directorist Booking plugin <= 3.0.3 – SQL Injection vulnerability
CVE ID :CVE-2026-49073 Published : June 16, 2026, 9:23 p.m. | 3 hours, 45 minutes ago Description :Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in wpWax Directorist Booking…
CVE-2026-48055 – Streambert: Arbitrary File Write (Zip Slip) via Subtitle Extraction
CVE ID :CVE-2026-48055 Published : June 16, 2026, 9:17 p.m. | 3 hours, 50 minutes ago Description :Streambert is a cross-platform Electron Desktop App to stream and download any video media. In versions 2.4.0…
CVE-2026-53430 – grpc gzip decompression bomb in GRPC.Compressor.Gzip.decompress/1
CVE ID :CVE-2026-53430 Published : June 15, 2026, 11:16 p.m. | 1 hour, 51 minutes ago Description :Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a…
CVE-2026-48854 – Unbounded request body accumulation causes memory exhaustion in elixir-grpc/grpc
CVE ID :CVE-2026-48854 Published : June 15, 2026, 11:16 p.m. | 1 hour, 51 minutes ago Description :Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the…
CVE-2026-48853 – Remote code execution and denial of service via unsafe Erlang term deserialization in elixir-grpc/grpc
CVE ID :CVE-2026-48853 Published : June 15, 2026, 11:16 p.m. | 1 hour, 51 minutes ago Description :Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow…
CVE-2026-5064 – HP One Agent Software – Security Update
CVE ID :CVE-2026-5064 Published : June 15, 2026, 10:16 p.m. | 2 hours, 52 minutes ago Description :Potential security vulnerabilities have been identified in the HP One Agent for certain HP PC products, which…
CVE-2026-48714 – i18next-http-middleware missingKeyHandler does not reject keys whose segments contain prototype-polluting names
CVE ID :CVE-2026-48714 Published : June 15, 2026, 10:16 p.m. | 2 hours, 52 minutes ago Description :i18next-http-middleware is a middleware to be used with Node.js web frameworks like express or Fastify and also…