Skip to content

Menu
  • Home
Menu

CVE-2026-9742 – Authenticate command with specific mechanism parameter can trigger server crash

Posted on June 10, 2026

CVE ID :CVE-2026-9742 Published : June 9, 2026, 9:57 p.m. | 1 hour, 18 minutes ago Description :When OIDC authentication is enabled in configuration, clients may set specific values in the “mechanism” parameter of…

CVE-2026-48303 – Adobe Campaign Classic (ACC) | Incorrect Authorization (CWE-863)

Posted on June 10, 2026

CVE ID :CVE-2026-48303 Published : June 9, 2026, 9:17 p.m. | 1 hour, 58 minutes ago Description :Adobe Campaign Classic (ACC) versions 7.4.3 build 9394 and earlier are affected by an Incorrect Authorization vulnerability…

CVE-2026-47938 – Adobe Campaign Classic (ACC) | Server-Side Request Forgery (SSRF) (CWE-918)

Posted on June 10, 2026

CVE ID :CVE-2026-47938 Published : June 9, 2026, 9:17 p.m. | 1 hour, 58 minutes ago Description :Adobe Campaign Classic (ACC) versions 7.4.3 build 9394 and earlier are affected by a Server-Side Request Forgery…

CVE-2026-44748 – XML Signature Wrapping in SAML Authentication in SAP NetWeaver AS ABAP and ABAP Platform

Posted on June 9, 2026

CVE ID :CVE-2026-44748 Published : June 9, 2026, 12:20 a.m. | 54 minutes ago Description :SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a…

CVE-2026-40128 – Directory Traversal vulnerability in SAP NetWeaver Application Server Java (Web Container)

Posted on June 9, 2026

CVE ID :CVE-2026-40128 Published : June 9, 2026, 12:20 a.m. | 55 minutes ago Description :SAP NetWeaver Application Server Java (Web Container) allows an unauthenticated attacker to craft a malicious HTTP logon request…

CVE-2026-27671 – Memory Corruption vulnerability in Application Server ABAP of SAP NetWeaver and ABAP Platform

Posted on June 9, 2026

CVE ID :CVE-2026-27671 Published : June 9, 2026, 12:20 a.m. | 55 minutes ago Description :Due to improper RFC protocol validation in the SAP Kernel used by the Application Server ABAP of SAP…

CVE-2026-9669 – bz2.BZ2Decompressor reuse after error can cause a stack buffer overflow

Posted on June 9, 2026

CVE ID :CVE-2026-9669 Published : June 8, 2026, 10:01 p.m. | 1 hour, 14 minutes ago Description :bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and…

CVE-2026-46484 – Headplane: Path Traversal + RBAC Bypass in renameNode allows authenticated OIDC users to expire or rename any node/user

Posted on June 9, 2026

CVE ID :CVE-2026-46484 Published : June 8, 2026, 8:17 p.m. | 2 hours, 58 minutes ago Description :Headplane is a feature-complete Web UI for Headscale. Prior to versions 0.6.3 and 0.7.0-beta.3, Headplane was vulnerable…

CVE-2026-52778 – YesWiki has Unsafe eval() in Formula Calculator – Remote Code Execution (RCE) & Denial of Service (DoS)

Posted on June 9, 2026

CVE ID :CVE-2026-52778 Published : June 8, 2026, 7:16 p.m. | 3 hours, 58 minutes ago Description :YesWiki is a wiki system written in PHP. Prior to version 4.6.6, an unsafe execution vulnerability exists…

CVE-2026-46490 – samlify: XML Injection in AttributeValue Allows Privilege Escalation in Signed SAML Assertions

Posted on June 9, 2026

CVE ID :CVE-2026-46490 Published : June 8, 2026, 7:16 p.m. | 3 hours, 58 minutes ago Description :samlify is a Node.js library for SAML single sign-on. Prior to version 2.13.0, samlify’s template substitution only…

Posts pagination

Previous 1 … 14 15 16 … 106 Next

Site map

  • About Us
  • Privacy Policy
  • Terms & Conditions of Use
©2026 | Design: Newspaperly WordPress Theme