CVE ID :CVE-2026-46402 Published : May 27, 2026, 11:16 p.m. | 1 hour, 53 minutes ago Description :Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO uses the…
CVE-2026-9208 – Tanium addressed an unauthorized code execution vulnerability in Connect.
CVE ID :CVE-2026-9208 Published : May 27, 2026, 10:16 p.m. | 2 hours, 53 minutes ago Description :Tanium addressed an unauthorized code execution vulnerability in Connect. Severity: 8.8 | HIGH Visit the link for…
CVE-2026-9312 – Server-Side Request Forgery vulnerability in GitHub Enterprise Server allowed access to internal services via path traversal in upload endpoint
CVE ID :CVE-2026-9312 Published : May 27, 2026, 12:16 a.m. | 50 minutes ago Description :A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to…
CVE-2026-5260 – Gnutls: gnutls: information disclosure via heap overread in rsa key exchange
CVE ID :CVE-2026-5260 Published : May 26, 2026, 10:16 p.m. | 2 hours, 50 minutes ago Description :A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during…
CVE-2026-45574 – epa4all-client: TLS Certificate Validation Disabled in Production
CVE ID :CVE-2026-45574 Published : May 26, 2026, 10:16 p.m. | 2 hours, 50 minutes ago Description :epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telematik Infrastruktur. Prior to 1.2.2,…
CVE-2026-45298 – Dozzle: Pre-auth SSRF with response-body reflection via POST /api/notifications/test-webhook (default no-auth deploy)
CVE ID :CVE-2026-45298 Published : May 26, 2026, 10:16 p.m. | 2 hours, 50 minutes ago Description :Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, in a default dozzle deploy…
CVE-2026-44985 – Dozzle: Cross-Site WebSocket Hijacking (CSWSH) on exec/attach endpoints bypasses authentication
CVE ID :CVE-2026-44985 Published : May 26, 2026, 10:16 p.m. | 2 hours, 50 minutes ago Description :Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, he WebSocket upgrader for the…
CVE-2026-42773 – WordPress eMagicOne Store Manager plugin <= 1.3.2 – SQL Injection vulnerability
CVE ID :CVE-2026-42773 Published : May 25, 2026, 10:35 p.m. | 2 hours, 31 minutes ago Description :Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in eMagicOne eMagicOne Store…
CVE-2026-42774 – WordPress JetEngine plugin <= 3.8.8.1 – SQL Injection vulnerability
CVE ID :CVE-2026-42774 Published : May 25, 2026, 10:34 p.m. | 2 hours, 32 minutes ago Description :Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Crocoblock JetEngine allows…
CVE-2026-45216 – WordPress Smart Manager plugin <= 8.85.0 – Privilege Escalation vulnerability
CVE ID :CVE-2026-45216 Published : May 25, 2026, 10:30 p.m. | 2 hours, 36 minutes ago Description :Incorrect Privilege Assignment vulnerability in StoreApps Smart Manager allows Privilege Escalation. This issue affects Smart Manager: from…