CVE ID :CVE-2026-42556 Published : May 8, 2026, 11:16 p.m. | 1 hour, 4 minutes ago Description :Postiz is an AI social media scheduling tool. From version 2.21.6 to before version 2.21.7, any authenticated…
CVE-2026-42454 – Termix: OS Command Injection in Docker Container Management Endpoints
CVE ID :CVE-2026-42454 Published : May 8, 2026, 11:16 p.m. | 1 hour, 4 minutes ago Description :Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to…
CVE-2026-42453 – Termix: Command injection in extractArchive/compressFiles via double-quote escaping bypass
CVE ID :CVE-2026-42453 Published : May 8, 2026, 11:16 p.m. | 1 hour, 4 minutes ago Description :Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to…
CVE-2026-42452 – Termix: Pending-TOTP temporary token can regenerate backup codes and neutralize TOTP
CVE ID :CVE-2026-42452 Published : May 8, 2026, 11:16 p.m. | 1 hour, 4 minutes ago Description :Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to…
CVE-2026-42354 – Sentry: Improper authentication on SAML SSO process allows user identity linking
CVE ID :CVE-2026-42354 Published : May 8, 2026, 11:16 p.m. | 1 hour, 4 minutes ago Description :Sentry is an error tracking and performance monitoring tool. From version 21.12.0 to before version 26.4.1, a…
CVE-2026-42880 – ArgoCD ServerSideDiff is vulnerable to Kubernetes Secret Extraction
CVE ID :CVE-2026-42880 Published : May 7, 2026, 11:16 p.m. | 1 hour, 4 minutes ago Description :Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. From versions 3.2.0 to before 3.2.11…
CVE-2026-7891 – Mendix Studio Pro Anonymous User Role Inheritance Authorization Bypass
CVE ID :CVE-2026-7891 Published : May 7, 2026, 10:16 p.m. | 2 hours, 4 minutes ago Description :The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta allows unintended data exposure due to…
CVE-2026-42826 – Azure DevOps Information Disclosure Vulnerability
CVE ID :CVE-2026-42826 Published : May 7, 2026, 10:16 p.m. | 2 hours, 4 minutes ago Description :Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized attacker to disclose…
CVE-2026-41105 – Azure Monitor Action Group Notification System Elevation of Privilege Vulnerability
CVE ID :CVE-2026-41105 Published : May 7, 2026, 10:16 p.m. | 2 hours, 4 minutes ago Description :Server-side request forgery (ssrf) in Azure Notification Service allows an authorized attacker to elevate privileges over a…
CVE-2026-35435 – Azure AI Foundry Elevation of Privilege Vulnerability
CVE ID :CVE-2026-35435 Published : May 7, 2026, 10:16 p.m. | 2 hours, 4 minutes ago Description :Improper access control in Azure AI Foundry M365 published agents allows an unauthorized attacker to elevate privileges…