CVE ID :CVE-2026-42901 Published : May 22, 2026, 10:04 p.m. | 2 hours, 55 minutes ago Description :None Severity: 10.0 | CRITICAL Visit the link for more details, such as CVSS details, affected products,…
CVE-2026-41104 – Microsoft Planetary Computer Pro Information Disclosure Vulnerability
CVE ID :CVE-2026-41104 Published : May 22, 2026, 10:04 p.m. | 2 hours, 55 minutes ago Description :None Severity: 10.0 | CRITICAL Visit the link for more details, such as CVSS details, affected products,…
CVE-2026-45659 – Microsoft SharePoint Remote Code Execution Vulnerability
CVE ID :CVE-2026-45659 Published : May 22, 2026, 10:04 p.m. | 2 hours, 55 minutes ago Description :None Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products,…
CVE-2026-33843 – Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability
CVE ID :CVE-2026-33843 Published : May 22, 2026, 10:03 p.m. | 2 hours, 56 minutes ago Description :None Severity: 9.1 | CRITICAL Visit the link for more details, such as CVSS details, affected products,…
CVE-2026-41090 – Microsoft Copilot Tampering Vulnerability
CVE ID :CVE-2026-41090 Published : May 22, 2026, 10:03 p.m. | 2 hours, 56 minutes ago Description :None Severity: 9.3 | CRITICAL Visit the link for more details, such as CVSS details, affected products,…
CVE-2026-6960 – BookingPress Pro <= 5.6 – Unauthenticated Arbitrary File Upload via Signature Custom Field
CVE ID :CVE-2026-6960 Published : May 21, 2026, 10:16 p.m. | 2 hours, 5 minutes ago Description :The BookingPress Pro plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type…
CVE-2026-8135 – Concrete CMS 9.5.0 and below is vulnerable to RCE due to insecure deserialization occurring in the ExpressEntryList block controller.
CVE ID :CVE-2026-8135 Published : May 21, 2026, 9:16 p.m. | 3 hours, 5 minutes ago Description :Concrete CMS 9.5.0 and below is vulnerable to Remote Code Execution due to insecure deserialization occurring in…
CVE-2026-8134 – Concrete CMS 9.5.0 and below is vulnerable to Authenticated RCE via Composer customTemplate Path Traversal leading to PHP File Inclusion
CVE ID :CVE-2026-8134 Published : May 21, 2026, 9:16 p.m. | 3 hours, 5 minutes ago Description :Concrete CMS 9.5.0 and below fails to sanitize path traversal sequences in the ptComposerFormLayoutSetControlCustomTemplate field when saving…
CVE-2026-47102 – LiteLLM < 1.83.10 Privilege Escalation via User Update
CVE ID :CVE-2026-47102 Published : May 21, 2026, 9:16 p.m. | 3 hours, 5 minutes ago Description :LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint. While…
CVE-2026-47101 – LiteLLM < 1.83.14 Privilege Escalation via API Key Generation
CVE ID :CVE-2026-47101 Published : May 21, 2026, 9:16 p.m. | 3 hours, 5 minutes ago Description :LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that…