Vulnerabilities
Recent vulnerabilities
Recent vulnerabilities from
Select from 78 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-15621 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
mosaxiv clawlet File Tools fs_ops.go edit_file link fo… |
mosaxiv |
clawlet |
2026-07-14T00:45:11.699Z | 2026-07-14T00:45:11.699Z |
| CVE-2026-44767 |
6.1 (3.1)
|
Allowlist Bypass in setThemeRoot() Enables Cross-Origi… |
SAP_SE |
@ui5/webcomponents-base |
2026-07-14T00:22:05.306Z | 2026-07-14T00:22:05.306Z |
| CVE-2026-58233 |
7.6 (3.1)
|
Remote Code Execution vulnerability in SAP Change and … |
SAP_SE |
SAP Change and Transport System Attach Tool (ctsattach) |
2026-07-14T00:21:45.702Z | 2026-07-14T00:21:45.702Z |
| CVE-2026-44771 |
4.3 (3.1)
|
Missing Authorization check in SAP S/4HANA (Draft operation) |
SAP_SE |
SAP S/4HANA (Draft operation) |
2026-07-14T00:21:28.231Z | 2026-07-14T00:21:28.231Z |
| CVE-2026-44770 |
4.3 (3.1)
|
Missing Authorization check in SAP S/4 HANA (Create Si… |
SAP_SE |
SAP S/4 HANA (Create Single Payment) |
2026-07-14T00:21:18.319Z | 2026-07-14T00:21:18.319Z |
| CVE-2026-44769 |
5.5 (3.1)
|
SQL Injection vulnerability in SAP S/4HANA Project Man… |
SAP_SE |
SAP S/4HANA Project Management (PPM-PRO) |
2026-07-14T00:21:07.573Z | 2026-07-14T00:21:07.573Z |
| CVE-2026-44768 |
4.1 (3.1)
|
Security misconfiguration in SAP CRM (WebClient UI) |
SAP_SE |
SAP CRM (WebClient UI) |
2026-07-14T00:20:48.083Z | 2026-07-14T00:20:48.083Z |
| CVE-2026-44761 |
9.1 (3.1)
|
Insecure Sample Credentials in SAP Commerce Cloud |
SAP_SE |
SAP Commerce Cloud |
2026-07-14T00:20:29.454Z | 2026-07-14T00:20:29.454Z |
| CVE-2026-44760 |
4.7 (3.1)
|
Cross-Site Scripting (XSS) vulnerability in SAP NetWea… |
SAP_SE |
SAP NetWeaver Application Server ABAP (applications based on Business Server Pages) |
2026-07-14T00:20:19.533Z | 2026-07-14T00:20:19.533Z |
| CVE-2026-44759 |
6.1 (3.1)
|
Cross Site Scripting (XSS) vulnerability in SAP NetWea… |
SAP_SE |
SAP NetWeaver Enterprise Portal |
2026-07-14T00:20:09.899Z | 2026-07-14T00:20:09.899Z |
| CVE-2026-59208 |
7.6 (4.0)
|
n8n: Cross-Issuer Token Exchange Account Binding via S… |
n8n-io |
n8n |
2026-07-09T15:27:28.126Z | 2026-07-14T00:20:06.366Z |
| CVE-2026-44753 |
3.7 (3.1)
|
Information Disclosure vulnerability in SAP HANA Exten… |
SAP_SE |
SAP HANA Extended Application Services classic model (User Self Service) |
2026-07-14T00:19:58.321Z | 2026-07-14T00:19:58.321Z |
| CVE-2026-44752 |
8.2 (3.1)
|
Cross-Site Scripting (XSS) vulnerability in SAP NetWea… |
SAP_SE |
SAP NetWeaver Application Server Java(Configuration Wizard) |
2026-07-14T00:19:45.308Z | 2026-07-14T00:19:45.308Z |
| CVE-2026-44747 |
9.9 (3.1)
|
Memory Corruption vulnerability in SAP NetWeaver Appli… |
SAP_SE |
SAP NetWeaver Application Server ABAP |
2026-07-14T00:19:33.450Z | 2026-07-14T00:19:33.450Z |
| CVE-2026-44745 |
8.1 (3.1)
|
Open Redirect vulnerability in SAP Approuter |
SAP_SE |
SAP Approuter |
2026-07-14T00:18:16.089Z | 2026-07-14T00:18:16.089Z |
| CVE-2026-27690 |
9.1 (3.1)
|
HTTP Request Smuggling in SAP Approuter |
SAP_SE |
SAP Approuter |
2026-07-14T00:17:55.003Z | 2026-07-14T00:17:55.003Z |
| CVE-2026-0487 |
8.4 (3.1)
|
DLL Hijacking vulnerability in SAProuter on Microsoft … |
SAP_SE |
SAProuter on Microsoft Windows |
2026-07-14T00:17:37.478Z | 2026-07-14T00:17:37.478Z |
| CVE-2026-15620 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
mosaxiv clawlet tool_web_fetch.go tools.webFetch serve… |
mosaxiv |
clawlet |
2026-07-14T00:15:08.152Z | 2026-07-14T00:15:08.152Z |
| CVE-2026-15619 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
mosaxiv clawlet IPv4 tool_web_fetch.go web_fetch serve… |
mosaxiv |
clawlet |
2026-07-14T00:00:12.931Z | 2026-07-14T00:00:12.931Z |
| CVE-2026-15618 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
mosaxiv clawlet exec Safety Guard tool_exec.go guardEx… |
mosaxiv |
clawlet |
2026-07-13T23:45:09.804Z | 2026-07-13T23:45:09.804Z |
| CVE-2026-15607 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
tanstack db Alias Path select.ts select prototype pollution |
tanstack |
db |
2026-07-13T23:00:15.192Z | 2026-07-13T23:00:15.192Z |
| CVE-2026-15605 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
wandb Artifact Integrity Validation hashutil.py Artifa… |
n/a |
wandb |
2026-07-13T22:45:09.813Z | 2026-07-13T22:45:09.813Z |
| CVE-2026-57856 |
8.7 (4.0)
8.8 (3.1)
|
Cockpit CMS Path Traversal via Bucket Name in Bucket F… |
Cockpit HQ |
Cockpit CMS |
2026-07-13T22:41:23.183Z | 2026-07-13T22:41:23.183Z |
| CVE-2026-58489 |
6.8 (4.0)
|
HedgeDoc: CSRF in GitHub Gist export callback |
hedgedoc |
hedgedoc |
2026-07-13T22:34:51.730Z | 2026-07-13T22:34:51.730Z |
| CVE-2026-57855 |
8.7 (4.0)
8.8 (3.1)
|
Cockpit CMS Missing Authorization in Bucket File Storage API |
Cockpit HQ |
Cockpit CMS |
2026-07-13T22:33:39.717Z | 2026-07-13T22:33:39.717Z |
| CVE-2026-56877 |
6.3 (3.1)
|
The SCORM lab launch endpoint in Skillable (scorm… |
Skillable |
SCORM Lab Launch Integration |
2026-07-13T21:51:43.515Z | 2026-07-13T22:23:04.895Z |
| CVE-2026-58102 |
N/A
|
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl al… |
JONASBN |
Crypt::OpenSSL::X509 |
2026-07-13T22:22:48.618Z | 2026-07-13T22:22:48.618Z |
| CVE-2026-58101 |
N/A
|
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl al… |
JONASBN |
Crypt::OpenSSL::X509 |
2026-07-13T22:17:48.375Z | 2026-07-13T22:17:48.375Z |
| CVE-2026-58486 |
8.3 (4.0)
|
HedgeDoc: Denial-of-service via YAML alias expansion i… |
hedgedoc |
hedgedoc |
2026-07-13T22:12:37.837Z | 2026-07-13T22:12:37.837Z |
| CVE-2026-15598 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
antv layout object.js setNestedValue prototype pollution |
antv |
layout |
2026-07-13T22:00:11.338Z | 2026-07-13T22:00:11.338Z |