CVE ID :CVE-2026-44748 Published : June 9, 2026, 12:20 a.m. | 54 minutes ago Description :SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a…
CVE-2026-40128 – Directory Traversal vulnerability in SAP NetWeaver Application Server Java (Web Container)
CVE ID :CVE-2026-40128 Published : June 9, 2026, 12:20 a.m. | 55 minutes ago Description :SAP NetWeaver Application Server Java (Web Container) allows an unauthenticated attacker to craft a malicious HTTP logon request…
CVE-2026-27671 – Memory Corruption vulnerability in Application Server ABAP of SAP NetWeaver and ABAP Platform
CVE ID :CVE-2026-27671 Published : June 9, 2026, 12:20 a.m. | 55 minutes ago Description :Due to improper RFC protocol validation in the SAP Kernel used by the Application Server ABAP of SAP…
CVE-2026-9669 – bz2.BZ2Decompressor reuse after error can cause a stack buffer overflow
CVE ID :CVE-2026-9669 Published : June 8, 2026, 10:01 p.m. | 1 hour, 14 minutes ago Description :bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and…
CVE-2026-46484 – Headplane: Path Traversal + RBAC Bypass in renameNode allows authenticated OIDC users to expire or rename any node/user
CVE ID :CVE-2026-46484 Published : June 8, 2026, 8:17 p.m. | 2 hours, 58 minutes ago Description :Headplane is a feature-complete Web UI for Headscale. Prior to versions 0.6.3 and 0.7.0-beta.3, Headplane was vulnerable…
CVE-2026-52778 – YesWiki has Unsafe eval() in Formula Calculator – Remote Code Execution (RCE) & Denial of Service (DoS)
CVE ID :CVE-2026-52778 Published : June 8, 2026, 7:16 p.m. | 3 hours, 58 minutes ago Description :YesWiki is a wiki system written in PHP. Prior to version 4.6.6, an unsafe execution vulnerability exists…
CVE-2026-46490 – samlify: XML Injection in AttributeValue Allows Privilege Escalation in Signed SAML Assertions
CVE ID :CVE-2026-46490 Published : June 8, 2026, 7:16 p.m. | 3 hours, 58 minutes ago Description :samlify is a Node.js library for SAML single sign-on. Prior to version 2.13.0, samlify’s template substitution only…
CVE-2026-11557 – Tenda F451 Web Management Natlimit fromNatlimit stack-based overflow
CVE ID :CVE-2026-11557 Published : June 8, 2026, 7:16 p.m. | 3 hours, 58 minutes ago Description :A weakness has been identified in Tenda F451 1.0.0.7/1.0.0.9. The affected element is the function fromNatlimit of…
CVE-2026-49494 – Comodo Internet Security Inspect.sys IPv6 Integer Underflow Remote Denial of Service
CVE ID :CVE-2026-49494 Published : June 7, 2026, 1:16 p.m. | 9 hours, 58 minutes ago Description :Comodo Internet Security’s firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser…
CVE-2026-11413 – JingDong JD Cloud Box AX6600 jdcweb_rpc set_macfilter stack-based overflow
CVE ID :CVE-2026-11413 Published : June 6, 2026, 2:16 p.m. | 8 hours, 58 minutes ago Description :A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3.r4546. The impacted element is…