Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-48988 |
5.3 (3.1)
|
markdown-it: Quadratic complexity DoS in smartquotes r… |
markdown-it |
markdown-it |
2026-06-17T20:54:06.641Z | 2026-06-17T20:54:06.641Z |
| CVE-2026-48979 |
7.5 (3.1)
|
PHP Standard Library: HTTP/2 server-side missing conte… |
php-standard-library |
php-standard-library |
2026-06-17T20:43:25.971Z | 2026-06-17T20:43:25.971Z |
| CVE-2026-49133 |
7.1 (4.0)
6.5 (3.1)
|
Typemill < 2.24.0 Path Traversal via ControllerApiImag… |
typemill |
typemill |
2026-06-17T20:39:47.965Z | 2026-06-17T20:39:47.965Z |
| CVE-2026-48821 |
5.8 (3.1)
|
Shaarli: DOM-based Cross-Site Scripting (XSS) in Thumb… |
shaarli |
Shaarli |
2026-06-17T20:33:31.230Z | 2026-06-17T20:33:31.230Z |
| CVE-2026-50263 |
5.5 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:36:46.377Z | 2026-06-17T20:22:39.068Z |
| CVE-2026-50262 |
5.5 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:36:43.916Z | 2026-06-17T20:22:37.188Z |
| CVE-2026-11407 |
8.6 (4.0)
7.2 (3.1)
|
Pimcore CMS 12.3.8 Twig Sandbox Bypass via SecurityPol… |
Pimcore GmbH |
Pimcore CMS/DXP |
2026-06-17T20:07:50.407Z | 2026-06-17T20:07:50.407Z |
| CVE-2026-48823 |
4.8 (3.1)
|
Shaarli has Stored Cross-Site Scripting (XSS) via Tags… |
shaarli |
Shaarli |
2026-06-17T20:06:05.616Z | 2026-06-17T20:06:05.616Z |
| CVE-2026-32682 |
6.5 (3.1)
7.1 (4.0)
|
NGINX Gateway Fabric vulnerability |
F5 |
NGINX Gateway Fabric |
2026-06-17T20:05:17.808Z | 2026-06-17T20:05:17.808Z |
| CVE-2026-50107 |
8.1 (3.1)
8.6 (4.0)
|
NGINX Gateway Fabric vulnerability |
F5 |
NGINX Gateway Fabric |
2026-06-17T20:04:44.518Z | 2026-06-17T20:04:44.518Z |
| CVE-2026-48822 |
5.8 (3.1)
|
Shaarli has Stored Cross-Site Scripting (XSS) via Mark… |
shaarli |
Shaarli |
2026-06-17T19:59:34.277Z | 2026-06-17T19:59:34.277Z |
| CVE-2026-54388 |
9.3 (4.0)
9.1 (3.1)
|
Tinyproxy - HTTP Request Smuggling via Duplicate Conte… |
tinyproxy |
tinyproxy |
2026-06-17T19:59:00.000Z | 2026-06-17T19:59:00.000Z |
| CVE-2026-9064 |
7.5 (3.1)
|
389-ds-base: 389-ds-base: unbounded ldap controls coun… |
Red Hat |
Red Hat Directory Server 11.5 E4S for RHEL 8 |
2026-05-20T09:00:42.557Z | 2026-06-17T19:54:54.376Z |
| CVE-2026-54387 |
9.3 (4.0)
9.1 (3.1)
|
Tinyproxy - HTTP Request Smuggling via CL/TE Desynchro… |
tinyproxy |
tinyproxy |
2026-06-17T19:48:37.904Z | 2026-06-17T19:54:12.831Z |
| CVE-2026-50264 |
7.8 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:36:37.352Z | 2026-06-17T19:53:51.630Z |
| CVE-2026-50261 |
7.8 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:36:33.418Z | 2026-06-17T19:53:45.308Z |
| CVE-2026-50260 |
7.8 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:36:30.319Z | 2026-06-17T19:53:34.874Z |
| CVE-2026-50259 |
7.8 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:31:39.152Z | 2026-06-17T19:53:22.907Z |
| CVE-2026-50258 |
7.8 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:31:39.316Z | 2026-06-17T19:53:15.468Z |
| CVE-2026-50257 |
7.8 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:31:22.052Z | 2026-06-17T19:52:56.257Z |
| CVE-2026-50256 |
7.8 (3.1)
|
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-se… |
Red Hat |
Red Hat Enterprise Linux 8 |
2026-06-05T10:31:22.122Z | 2026-06-17T19:52:33.354Z |
| CVE-2026-4878 |
6.7 (3.1)
|
Libcap: libcap: privilege escalation via toctou race c… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-04-09T14:49:02.942Z | 2026-06-17T19:50:25.026Z |
| CVE-2026-48817 |
5.3 (3.1)
|
Starlette: Arbitrary HTTP method dispatched to `HTTPEn… |
Kludex |
starlette |
2026-06-17T19:48:03.441Z | 2026-06-17T19:48:03.441Z |
| CVE-2026-55202 |
8.8 (4.0)
8.2 (3.1)
|
Tinyproxy - Stathost Detection Bypass via Host Header … |
tinyproxy |
tinyproxy |
2026-06-17T19:13:45.383Z | 2026-06-17T19:45:15.614Z |
| CVE-2026-55200 |
9.2 (4.0)
8.1 (3.1)
|
libssh2 - Out-of-Bounds Write via Unchecked packet_len… |
libssh2 |
libssh2 |
2026-06-17T19:03:15.183Z | 2026-06-17T19:45:11.371Z |
| CVE-2026-6893 |
7.5 (3.1)
|
Dracut: dracut: root code execution via dhcp options c… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-06-10T19:49:27.553Z | 2026-06-17T19:44:28.793Z |
| CVE-2026-48814 |
9.1 (3.1)
|
Network-AI: Empty default secret still authorizes all… |
Jovancoding |
Network-AI |
2026-06-17T19:42:30.415Z | 2026-06-17T19:42:30.415Z |
| CVE-2026-10696 |
7.5 (3.1)
|
Use of an incorrectly resolved name or reference … |
Devolutions |
UniGetUI |
2026-06-17T18:43:29.276Z | 2026-06-17T19:39:32.170Z |
| CVE-2026-10741 |
5.9 (4.0)
|
Nexus Repository Manager - Incorrect Authorization all… |
Sonatype |
Nexus Repository Manager |
2026-06-17T19:01:13.173Z | 2026-06-17T19:37:16.584Z |
| CVE-2026-46950 |
8.8 (3.1)
|
Vulnerability in the Oracle Advanced Outbound Tel… |
Oracle Corporation |
Oracle Advanced Outbound Telephony |
2026-06-16T19:28:00.443Z | 2026-06-17T19:37:09.068Z |