[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"landing-cves":3,"landing-articles":249,"landing-trending":274},{"count":4,"next":5,"previous":6,"results":7},354188,"http:\u002F\u002Fweb:8606\u002Fapi\u002Fcves\u002F?page=2&sorted_by=-published",null,[8,49,66,90,118,138,166,182,203,220],{"id":9,"cve_id":10,"summary":11,"published":12,"cvss_data":13,"is_remote":35,"cwes":36,"cpes":38,"technologies":39,"references":40,"score":45,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":48},353733,"CVE-2026-10581","A flaw has been found in DedeCMS 5.7.88. Affected by this vulnerability is the function base64_decode of the file \u002Fplus\u002Fdownload.php?open=1. This manipulation of the argument Link causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been published and may be used.","2026-06-02T04:17:00Z",{"cvss_v2.0":14,"cvss_v3.1":22,"cvss_v4.0":29},{"version":15,"baseScore":16,"accessVector":17,"vectorString":18,"authentication":19,"integrityImpact":20,"accessComplexity":21,"availabilityImpact":20,"confidentialityImpact":20},"2.0",6.5,"NETWORK","AV:N\u002FAC:L\u002FAu:S\u002FC:P\u002FI:P\u002FA:P","SINGLE","PARTIAL","LOW",{"scope":23,"version":24,"baseScore":25,"attackVector":17,"baseSeverity":26,"vectorString":27,"integrityImpact":21,"userInteraction":28,"attackComplexity":21,"availabilityImpact":21,"privilegesRequired":21,"confidentialityImpact":21},"UNCHANGED","3.1",6.3,"MEDIUM","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L","NONE",{"Safety":30,"version":31,"Recovery":30,"baseScore":32,"Automatable":30,"attackVector":17,"baseSeverity":21,"valueDensity":30,"vectorString":33,"exploitMaturity":34,"providerUrgency":30,"userInteraction":28,"attackComplexity":21,"attackRequirements":28,"privilegesRequired":21,"subIntegrityImpact":28,"vulnIntegrityImpact":21,"integrityRequirement":30,"modifiedAttackVector":30,"subAvailabilityImpact":28,"vulnAvailabilityImpact":21,"availabilityRequirement":30,"modifiedUserInteraction":30,"modifiedAttackComplexity":30,"subConfidentialityImpact":28,"vulnConfidentialityImpact":21,"confidentialityRequirement":30,"modifiedAttackRequirements":30,"modifiedPrivilegesRequired":30,"modifiedSubIntegrityImpact":30,"modifiedVulnIntegrityImpact":30,"vulnerabilityResponseEffort":30,"modifiedSubAvailabilityImpact":30,"modifiedVulnAvailabilityImpact":30,"modifiedSubConfidentialityImpact":30,"modifiedVulnConfidentialityImpact":30},"NOT_DEFINED","4.0",2.1,"CVSS:4.0\u002FAV:N\u002FAC:L\u002FAT:N\u002FPR:L\u002FUI:N\u002FVC:L\u002FVI:L\u002FVA:L\u002FSC:N\u002FSI:N\u002FSA:N\u002FE:P\u002FCR:X\u002FIR:X\u002FAR:X\u002FMAV:X\u002FMAC:X\u002FMAT:X\u002FMPR:X\u002FMUI:X\u002FMVC:X\u002FMVI:X\u002FMVA:X\u002FMSC:X\u002FMSI:X\u002FMSA:X\u002FS:X\u002FAU:X\u002FR:X\u002FV:X\u002FRE:X\u002FU:X","PROOF_OF_CONCEPT",true,[37],"CWE-918",[],[],[41,42,43,44],"https:\u002F\u002Fvuldb.com\u002Fcve\u002FCVE-2026-10581","https:\u002F\u002Fvuldb.com\u002Fsubmit\u002F829404","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367676","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367676\u002Fcti",0.31,0,false,[],{"id":50,"cve_id":51,"summary":52,"published":12,"cvss_data":53,"is_remote":35,"cwes":58,"cpes":60,"technologies":61,"references":62,"score":64,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":65},354060,"CVE-2026-3198","MLflow 3.9.0 with basic-auth (`--app-name basic-auth`) fails to enforce authorization checks for multiple Gateway API 'list' endpoints. Specifically, the `BEFORE_REQUEST_HANDLERS` dictionary in `mlflow\u002Fserver\u002Fauth\u002F__init__.py` does not include entries for `ListGatewaySecretInfos`, `ListGatewayEndpoints`, and `ListGatewayModelDefinitions`. This allows any authenticated user, regardless of their assigned permissions, to enumerate all gateway secrets, endpoints, and model definitions. This vulnerability exposes sensitive information, such as API keys, endpoint configurations, and proprietary model definitions, to unauthorized users.",{"cvss_v3.0":54},{"scope":23,"version":55,"baseScore":16,"attackVector":17,"baseSeverity":26,"vectorString":56,"integrityImpact":28,"userInteraction":28,"attackComplexity":21,"availabilityImpact":28,"privilegesRequired":21,"confidentialityImpact":57},"3.0","CVSS:3.0\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:N\u002FA:N","HIGH",[59],"CWE-284",[],[],[63],"https:\u002F\u002Fhuntr.com\u002Fbounties\u002Fe57db731-97d3-40c3-a429-831ee959807f",0.53,[],{"id":67,"cve_id":68,"summary":69,"published":12,"cvss_data":70,"is_remote":35,"cwes":75,"cpes":77,"technologies":78,"references":79,"score":88,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":89},354048,"CVE-2026-8206","The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions 6.0.0 to 6.0.6. This is due to the plugin accepting an arbitrary email address when a username is used in the password reset request. This makes it possible for unauthenticated attackers to send a password reset link for any user registered on the site to their own email address.",{"cvss_v3.1":71},{"scope":23,"version":24,"baseScore":72,"attackVector":17,"baseSeverity":73,"vectorString":74,"integrityImpact":57,"userInteraction":28,"attackComplexity":21,"availabilityImpact":57,"privilegesRequired":28,"confidentialityImpact":57},9.8,"CRITICAL","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H",[76],"CWE-269",[],[],[80,81,82,83,84,85,86,87],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fkirki\u002Ftags\u002F6.0.4\u002FComponentLibrary\u002Fcontroller\u002FCompLibFormHandler.php#L330","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fkirki\u002Ftags\u002F6.0.4\u002FComponentLibrary\u002Fcontroller\u002FCompLibFormHandler.php#L48","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fkirki\u002Ftags\u002F6.0.4\u002FComponentLibrary\u002Fcontroller\u002FElementGenerator.php#L227","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fkirki\u002Ftrunk\u002FComponentLibrary\u002Fcontroller\u002FCompLibFormHandler.php#L330","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fkirki\u002Ftrunk\u002FComponentLibrary\u002Fcontroller\u002FCompLibFormHandler.php#L48","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fkirki\u002Ftrunk\u002FComponentLibrary\u002Fcontroller\u002FElementGenerator.php#L227","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset\u002F3530843\u002Fkirki","https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F3b5630bd-5bce-4226-959f-5e81ae69b799?source=cve",0.69,[],{"id":91,"cve_id":92,"summary":93,"published":12,"cvss_data":94,"is_remote":35,"cwes":105,"cpes":106,"technologies":107,"references":108,"score":116,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":117},354164,"CVE-2026-10583","A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.11.3. Affected by this issue is the function Import of the file internal\u002Fhttp\u002Ftts_config.go of the component TTS Configuration Endpoint. The manipulation leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. The project tagged the reported issue as bug.",{"cvss_v2.0":95,"cvss_v3.1":99,"cvss_v4.0":102},{"version":15,"baseScore":96,"accessVector":17,"vectorString":97,"authentication":98,"integrityImpact":20,"accessComplexity":21,"availabilityImpact":20,"confidentialityImpact":20},5.8,"AV:N\u002FAC:L\u002FAu:M\u002FC:P\u002FI:P\u002FA:P","MULTIPLE",{"scope":23,"version":24,"baseScore":100,"attackVector":17,"baseSeverity":26,"vectorString":101,"integrityImpact":21,"userInteraction":28,"attackComplexity":21,"availabilityImpact":21,"privilegesRequired":57,"confidentialityImpact":21},4.7,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L",{"Safety":30,"version":31,"Recovery":30,"baseScore":103,"Automatable":30,"attackVector":17,"baseSeverity":21,"valueDensity":30,"vectorString":104,"exploitMaturity":34,"providerUrgency":30,"userInteraction":28,"attackComplexity":21,"attackRequirements":28,"privilegesRequired":57,"subIntegrityImpact":28,"vulnIntegrityImpact":21,"integrityRequirement":30,"modifiedAttackVector":30,"subAvailabilityImpact":28,"vulnAvailabilityImpact":21,"availabilityRequirement":30,"modifiedUserInteraction":30,"modifiedAttackComplexity":30,"subConfidentialityImpact":28,"vulnConfidentialityImpact":21,"confidentialityRequirement":30,"modifiedAttackRequirements":30,"modifiedPrivilegesRequired":30,"modifiedSubIntegrityImpact":30,"modifiedVulnIntegrityImpact":30,"vulnerabilityResponseEffort":30,"modifiedSubAvailabilityImpact":30,"modifiedVulnAvailabilityImpact":30,"modifiedSubConfidentialityImpact":30,"modifiedVulnConfidentialityImpact":30},2,"CVSS:4.0\u002FAV:N\u002FAC:L\u002FAT:N\u002FPR:H\u002FUI:N\u002FVC:L\u002FVI:L\u002FVA:L\u002FSC:N\u002FSI:N\u002FSA:N\u002FE:P\u002FCR:X\u002FIR:X\u002FAR:X\u002FMAV:X\u002FMAC:X\u002FMAT:X\u002FMPR:X\u002FMUI:X\u002FMVC:X\u002FMVI:X\u002FMVA:X\u002FMSC:X\u002FMSI:X\u002FMSA:X\u002FS:X\u002FAU:X\u002FR:X\u002FV:X\u002FRE:X\u002FU:X",[37],[],[],[109,110,111,112,113,114,115],"https:\u002F\u002Fgithub.com\u002Fdigitopvn\u002Fgoclaw\u002Fissues\u002F30","https:\u002F\u002Fgithub.com\u002Fnextlevelbuilder\u002Fgoclaw\u002F","https:\u002F\u002Fgithub.com\u002Fnextlevelbuilder\u002Fgoclaw\u002Fissues\u002F1132","https:\u002F\u002Fvuldb.com\u002Fcve\u002FCVE-2026-10583","https:\u002F\u002Fvuldb.com\u002Fsubmit\u002F829407","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367710","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367710\u002Fcti",0.3,[],{"id":119,"cve_id":120,"summary":121,"published":122,"cvss_data":123,"is_remote":35,"cwes":128,"cpes":130,"technologies":131,"references":132,"score":136,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":137},353938,"CVE-2026-10100","The Simple Custom Login Page plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the color settings fields (Page Background, Form Background, Text Color, Link Color) in versions up to and including 1.0.3. This is due to insufficient input sanitization of the color option values (they were registered with register_setting() and stored via the Settings API\u002Fupdate_option() with no sanitize_callback) combined with the values being output into a \u003Cstyle> block on wp-login.php using esc_attr(), which is incorrect for a CSS context (it does not escape ;, {, }, \u002F or *). This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary CSS rules into the login page that are rendered for all unauthenticated visitors, enabling UI-redress and credential-phishing attacks.","2026-06-02T03:16:00Z",{"cvss_v3.1":124},{"scope":125,"version":24,"baseScore":126,"attackVector":17,"baseSeverity":26,"vectorString":127,"integrityImpact":21,"userInteraction":28,"attackComplexity":57,"availabilityImpact":28,"privilegesRequired":57,"confidentialityImpact":21},"CHANGED",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N",[129],"CWE-79",[],[],[133,134,135],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fsimple-custom-login-page\u002Ftags\u002F1.0.3\u002Fadmin\u002Fclass-simple-custom-login-page-admin.php#L206","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fsimple-custom-login-page\u002Ftags\u002F1.0.3\u002Fincludes\u002Fclass-simple-custom-login-page.php#L248","https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F96d03984-623a-44c7-a46f-e1aabbc566d5?source=cve",0.42,[],{"id":139,"cve_id":140,"summary":141,"published":122,"cvss_data":142,"is_remote":35,"cwes":151,"cpes":153,"technologies":154,"references":155,"score":164,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":165},354182,"CVE-2026-10565","A security flaw has been discovered in Open5GS up to 2.7.6. The impacted element is the function gmm_state_security_mode of the file src\u002Famf\u002Fgmm-sm.c of the component NGAP Handover. Performing a manipulation results in race condition. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitability is regarded as difficult. The exploit has been released to the public and may be used for attacks. The pull request to fix this issue awaits acceptance.",{"cvss_v2.0":143,"cvss_v3.1":145,"cvss_v4.0":148},{"version":15,"baseScore":32,"accessVector":17,"vectorString":144,"authentication":19,"integrityImpact":28,"accessComplexity":57,"availabilityImpact":20,"confidentialityImpact":28},"AV:N\u002FAC:H\u002FAu:S\u002FC:N\u002FI:N\u002FA:P",{"scope":23,"version":24,"baseScore":146,"attackVector":17,"baseSeverity":21,"vectorString":147,"integrityImpact":28,"userInteraction":28,"attackComplexity":57,"availabilityImpact":21,"privilegesRequired":21,"confidentialityImpact":28},3.1,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:N\u002FA:L",{"Safety":30,"version":31,"Recovery":30,"baseScore":149,"Automatable":30,"attackVector":17,"baseSeverity":21,"valueDensity":30,"vectorString":150,"exploitMaturity":34,"providerUrgency":30,"userInteraction":28,"attackComplexity":57,"attackRequirements":28,"privilegesRequired":21,"subIntegrityImpact":28,"vulnIntegrityImpact":28,"integrityRequirement":30,"modifiedAttackVector":30,"subAvailabilityImpact":28,"vulnAvailabilityImpact":21,"availabilityRequirement":30,"modifiedUserInteraction":30,"modifiedAttackComplexity":30,"subConfidentialityImpact":28,"vulnConfidentialityImpact":28,"confidentialityRequirement":30,"modifiedAttackRequirements":30,"modifiedPrivilegesRequired":30,"modifiedSubIntegrityImpact":30,"modifiedVulnIntegrityImpact":30,"vulnerabilityResponseEffort":30,"modifiedSubAvailabilityImpact":30,"modifiedVulnAvailabilityImpact":30,"modifiedSubConfidentialityImpact":30,"modifiedVulnConfidentialityImpact":30},1.3,"CVSS:4.0\u002FAV:N\u002FAC:H\u002FAT:N\u002FPR:L\u002FUI:N\u002FVC:N\u002FVI:N\u002FVA:L\u002FSC:N\u002FSI:N\u002FSA:N\u002FE:P\u002FCR:X\u002FIR:X\u002FAR:X\u002FMAV:X\u002FMAC:X\u002FMAT:X\u002FMPR:X\u002FMUI:X\u002FMVC:X\u002FMVI:X\u002FMVA:X\u002FMSC:X\u002FMSI:X\u002FMSA:X\u002FS:X\u002FAU:X\u002FR:X\u002FV:X\u002FRE:X\u002FU:X",[152],"CWE-362",[],[],[156,157,158,159,160,161,162,163],"https:\u002F\u002Fgithub.com\u002Fopen5gs\u002Fopen5gs\u002F","https:\u002F\u002Fgithub.com\u002Fopen5gs\u002Fopen5gs\u002Fissues\u002F4497","https:\u002F\u002Fgithub.com\u002Fopen5gs\u002Fopen5gs\u002Fpull\u002F4501","https:\u002F\u002Fgithub.com\u002Fuser-attachments\u002Ffiles\u002F27111025\u002FN2-SMC-Concurrent.zip","https:\u002F\u002Fvuldb.com\u002Fcve\u002FCVE-2026-10565","https:\u002F\u002Fvuldb.com\u002Fsubmit\u002F818938","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367672","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367672\u002Fcti",0.27,[],{"id":167,"cve_id":168,"summary":169,"published":122,"cvss_data":170,"is_remote":47,"cwes":174,"cpes":176,"technologies":177,"references":178,"score":180,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":181},353799,"CVE-2026-3870","A buffer overflow vulnerability in the UPnP AddPortMapping() command in Zyxel VMG4005-B50B firmware versions through 5.13(ABRL.5.4)C0 could allow an adjacent attacker to trigger a temporary denial-of-service (DoS) condition affecting the UPnP function of the affected device.",{"cvss_v3.1":171},{"scope":23,"version":24,"baseScore":16,"attackVector":172,"baseSeverity":26,"vectorString":173,"integrityImpact":28,"userInteraction":28,"attackComplexity":21,"availabilityImpact":57,"privilegesRequired":28,"confidentialityImpact":28},"ADJACENT_NETWORK","CVSS:3.1\u002FAV:A\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:N\u002FA:H",[175],"CWE-120",[],[],[179],"https:\u002F\u002Fwww.zyxel.com\u002Fglobal\u002Fen\u002Fsupport\u002Fsecurity-advisories\u002Fzyxel-security-advisory-for-buffer-overflow-vulnerabilities-in-the-upnp-function-of-certain-4g-lte-5g-nr-cpe-and-dsl-ethernet-cpe-06-02-2026",0.33,[],{"id":183,"cve_id":184,"summary":185,"published":122,"cvss_data":186,"is_remote":35,"cwes":190,"cpes":193,"technologies":194,"references":195,"score":45,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":202},353556,"CVE-2026-10568","A vulnerability was detected in itsourcecode Fees Management System 1.0. Affected is an unknown function of the file \u002Fmanage_payment.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be used.",{"cvss_v2.0":187,"cvss_v3.1":188,"cvss_v4.0":189},{"version":15,"baseScore":16,"accessVector":17,"vectorString":18,"authentication":19,"integrityImpact":20,"accessComplexity":21,"availabilityImpact":20,"confidentialityImpact":20},{"scope":23,"version":24,"baseScore":25,"attackVector":17,"baseSeverity":26,"vectorString":27,"integrityImpact":21,"userInteraction":28,"attackComplexity":21,"availabilityImpact":21,"privilegesRequired":21,"confidentialityImpact":21},{"Safety":30,"version":31,"Recovery":30,"baseScore":32,"Automatable":30,"attackVector":17,"baseSeverity":21,"valueDensity":30,"vectorString":33,"exploitMaturity":34,"providerUrgency":30,"userInteraction":28,"attackComplexity":21,"attackRequirements":28,"privilegesRequired":21,"subIntegrityImpact":28,"vulnIntegrityImpact":21,"integrityRequirement":30,"modifiedAttackVector":30,"subAvailabilityImpact":28,"vulnAvailabilityImpact":21,"availabilityRequirement":30,"modifiedUserInteraction":30,"modifiedAttackComplexity":30,"subConfidentialityImpact":28,"vulnConfidentialityImpact":21,"confidentialityRequirement":30,"modifiedAttackRequirements":30,"modifiedPrivilegesRequired":30,"modifiedSubIntegrityImpact":30,"modifiedVulnIntegrityImpact":30,"vulnerabilityResponseEffort":30,"modifiedSubAvailabilityImpact":30,"modifiedVulnAvailabilityImpact":30,"modifiedSubConfidentialityImpact":30,"modifiedVulnConfidentialityImpact":30},[191,192],"CWE-89","CWE-74",[],[],[196,197,198,199,200,201],"https:\u002F\u002Fgithub.com\u002Fltranquility\u002Fvuln_submit\u002Fissues\u002F11","https:\u002F\u002Fitsourcecode.com\u002F","https:\u002F\u002Fvuldb.com\u002Fcve\u002FCVE-2026-10568","https:\u002F\u002Fvuldb.com\u002Fsubmit\u002F829322","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367675","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367675\u002Fcti",[],{"id":204,"cve_id":205,"summary":206,"published":122,"cvss_data":207,"is_remote":35,"cwes":211,"cpes":212,"technologies":213,"references":214,"score":218,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":219},354183,"CVE-2026-3722","The Auto Image Attributes From Filename With Bulk Updater (Add Alt Text, Image Title For Image SEO) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the attachment metadata in all versions up to, and including, 4.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",{"cvss_v3.1":208},{"scope":125,"version":24,"baseScore":209,"attackVector":17,"baseSeverity":26,"vectorString":210,"integrityImpact":21,"userInteraction":28,"attackComplexity":21,"availabilityImpact":28,"privilegesRequired":21,"confidentialityImpact":21},6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N",[129],[],[],[215,216,217],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fauto-image-attributes-from-filename-with-bulk-updater\u002Ftags\u002F4.9\u002Fadmin\u002Fcolumns-media-library.php#L50","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fauto-image-attributes-from-filename-with-bulk-updater\u002Ftags\u002F4.9\u002Fadmin\u002Fdo.php#L752","https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F9696fae6-39fe-4478-90e7-488b5b573fa8?source=cve",0.52,[],{"id":221,"cve_id":222,"summary":223,"published":122,"cvss_data":224,"is_remote":47,"cwes":235,"cpes":238,"technologies":239,"references":240,"score":247,"epss_score":46,"epss_percentile":46,"is_kev":47,"cisa_kev_date_added":6,"cisa_kev_due_date":6,"exploits":248},353809,"CVE-2026-10566","A weakness has been identified in FoundationAgents MetaGPT up to 0.8.2. This affects the function Message.check_instruct_content of the file metagpt\u002Fschema.py. Executing a manipulation of the argument mapping can lead to deserialization. The attack is restricted to local execution. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.",{"cvss_v2.0":225,"cvss_v3.1":229,"cvss_v4.0":232},{"version":15,"baseScore":226,"accessVector":227,"vectorString":228,"authentication":19,"integrityImpact":20,"accessComplexity":21,"availabilityImpact":20,"confidentialityImpact":20},4.3,"LOCAL","AV:L\u002FAC:L\u002FAu:S\u002FC:P\u002FI:P\u002FA:P",{"scope":23,"version":24,"baseScore":230,"attackVector":227,"baseSeverity":26,"vectorString":231,"integrityImpact":21,"userInteraction":28,"attackComplexity":21,"availabilityImpact":21,"privilegesRequired":21,"confidentialityImpact":21},5.3,"CVSS:3.1\u002FAV:L\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L",{"Safety":30,"version":31,"Recovery":30,"baseScore":233,"Automatable":30,"attackVector":227,"baseSeverity":21,"valueDensity":30,"vectorString":234,"exploitMaturity":34,"providerUrgency":30,"userInteraction":28,"attackComplexity":21,"attackRequirements":28,"privilegesRequired":21,"subIntegrityImpact":28,"vulnIntegrityImpact":21,"integrityRequirement":30,"modifiedAttackVector":30,"subAvailabilityImpact":28,"vulnAvailabilityImpact":21,"availabilityRequirement":30,"modifiedUserInteraction":30,"modifiedAttackComplexity":30,"subConfidentialityImpact":28,"vulnConfidentialityImpact":21,"confidentialityRequirement":30,"modifiedAttackRequirements":30,"modifiedPrivilegesRequired":30,"modifiedSubIntegrityImpact":30,"modifiedVulnIntegrityImpact":30,"vulnerabilityResponseEffort":30,"modifiedSubAvailabilityImpact":30,"modifiedVulnAvailabilityImpact":30,"modifiedSubConfidentialityImpact":30,"modifiedVulnConfidentialityImpact":30},1.9,"CVSS:4.0\u002FAV:L\u002FAC:L\u002FAT:N\u002FPR:L\u002FUI:N\u002FVC:L\u002FVI:L\u002FVA:L\u002FSC:N\u002FSI:N\u002FSA:N\u002FE:P\u002FCR:X\u002FIR:X\u002FAR:X\u002FMAV:X\u002FMAC:X\u002FMAT:X\u002FMPR:X\u002FMUI:X\u002FMVC:X\u002FMVI:X\u002FMVA:X\u002FMSC:X\u002FMSI:X\u002FMSA:X\u002FS:X\u002FAU:X\u002FR:X\u002FV:X\u002FRE:X\u002FU:X",[236,237],"CWE-20","CWE-502",[],[],[241,242,243,244,245,246],"https:\u002F\u002Fgithub.com\u002FFoundationAgents\u002FMetaGPT\u002F","https:\u002F\u002Fgithub.com\u002FFoundationAgents\u002FMetaGPT\u002Fissues\u002F2038","https:\u002F\u002Fvuldb.com\u002Fcve\u002FCVE-2026-10566","https:\u002F\u002Fvuldb.com\u002Fsubmit\u002F828301","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367673","https:\u002F\u002Fvuldb.com\u002Fvuln\u002F367673\u002Fcti",0.1,[],{"count":250,"next":6,"previous":6,"results":251},3,[252,260,267],{"id":253,"title":254,"summary":255,"published_at":256,"type":257,"link":258,"image_url":259},1,"Typosquatting: When Your Brand Becomes the Entry Point for Cyberattacks","Cybercriminals use fake lookalike domains to impersonate brands and launch phishing campaigns. Discover how Patrowl detects and monitors typosquatting domains before attacks happen.","2026-05-21T00:00:00Z","hacks","https:\u002F\u002Fpatrowl.io\u002Fen\u002Fblog\u002Ftyposquatting-cybersecurite-menaces","https:\u002F\u002Fpatrowl.io\u002Fmedia\u002Fsite\u002Fb5d04d07d5-1779365167\u002Fvisuel_site_typosquatting3_720.jpg",{"id":250,"title":261,"summary":262,"published_at":263,"type":264,"link":265,"image_url":266},"CISO Challenges 2026: Fewer Attacks, Greater Impact","Why cyberattacks are becoming quieter but far more damaging: Shadow AI, third-party exposure, external visibility and continuous compliance.","2026-05-18T00:00:00Z","retrospectives","https:\u002F\u002Fpatrowl.io\u002Fen\u002Fblog\u002Fciso-challenges-2026-cyber-exposure","https:\u002F\u002Fpatrowl.io\u002Fmedia\u002Fsite\u002F28bf6bb7ba-1779092828\u002Fciso-challenges-2026-webinar.png",{"id":103,"title":268,"summary":269,"published_at":270,"type":271,"link":272,"image_url":273},"What Makes an Asset Hackable? The 4 Pillars Attackers Evaluate","Attackers don","2026-05-05T00:00:00Z","security tips","https:\u002F\u002Fpatrowl.io\u002Fen\u002Fblog\u002Fwhat-makes-an-asset-hackable","https:\u002F\u002Fpatrowl.io\u002Fmedia\u002Fpages\u002Fblog\u002Fwhat-makes-an-asset-hackable\u002Fa0c8788434-1778146446\u002Fasset-hackable.png",{"count":275,"next":276,"previous":6,"results":277},72,"http:\u002F\u002Fweb:8606\u002Fapi\u002Ftrending_attacks\u002F?page=2&sorted_by=-published_at",[278,284,291,297,304,311,319,327,335,343],{"id":253,"title":279,"summary":280,"published_at":281,"severity":250,"vendor":282,"products":283},"SQL injection in Roundcube","Roundcube is an open-source webmail application that allows users to access and manage email through a web browser.\r\n\r\nCVE-2026-48842 is a pre-authentication SQL injection vulnerability affecting Roundcube Webmail versions before 1.6.16 and 1.7.1. The flaw exists in the virtuser_query plugin and can be exploited remotely without authentication through a preg_replace() backslash escape bypass, potentially allowing attackers to manipulate database queries and compromise sensitive information.","2026-05-29T07:49:59.620563Z","Roundcube",[282],{"id":103,"title":285,"summary":286,"published_at":287,"severity":288,"vendor":289,"products":290},"Privilege escalation in Joomla","Joomla is a free and open-source content management system (CMS) used to build and manage websites, portals, and web applications. It provides a flexible framework with extensions, templates, and user management features, making it popular for both small websites and large enterprise platforms.\r\n\r\nCVE-2026-48904 is a privilege escalation vulnerability affecting Joomla CMS due to an improper access control check in the com_users webservice endpoint. An attacker could exploit this flaw remotely to modify user group permissions and gain elevated privileges, potentially leading to unauthorized administrative access. The vulnerability affects Joomla versions 4.0.0–5.4.5 and 6.0.0–6.1.0 and was fixed in versions 5.4.6 and 6.1.1.","2026-05-29T07:47:03.760767Z",4,"Joomla",[289],{"id":250,"title":292,"summary":293,"published_at":294,"severity":103,"vendor":295,"products":296},"Unauthorized access to container images in Gitea","Gitea is an open-source, self-hosted Git service platform designed for software development and version control. It provides features similar to GitHub or GitLab, including repository management, issue tracking, pull requests, CI\u002FCD integrations, and team collaboration.\r\n\r\nCVE-2026-27771 is a security vulnerability affecting Gitea versions prior to 1.26.2 that allowed unauthenticated users to access private container images without valid credentials. The flaw was caused by improper permission checks in the container registry component, potentially exposing sensitive internal images across thousands of internet-facing deployments.","2026-05-27T12:07:45.656936Z","Gitea",[295],{"id":288,"title":298,"summary":299,"published_at":300,"severity":250,"vendor":301,"products":302},"Multiples vulnerabilities in Microsoft Sharepoint","Microsoft SharePoint is a web-based collaboration and document management platform developed by Microsoft. It is commonly used by organizations to store, share, and manage documents, automate workflows, and improve team collaboration across departments.\r\n\r\nCVE-2026-32201 is a spoofing vulnerability affecting Microsoft SharePoint Server caused by improper input validation. An unauthenticated attacker could exploit this flaw over a network to impersonate trusted entities or manipulate how SharePoint handles requests. Microsoft classified the issue as important, and reports indicated that it was actively exploited in the wild shortly after disclosure.\r\n\r\nCVE-2026-45659 is a high-severity remote code execution vulnerability in Microsoft SharePoint related to unsafe deserialization of untrusted data. An authenticated attacker with low privileges could exploit the flaw remotely without user interaction, potentially gaining full control over the affected SharePoint server. Security advisories strongly recommend applying Microsoft patches as soon as possible due to the critical impact of the vulnerability","2026-05-27T08:28:34.715664Z","Microsoft",[303],"Sharepoint",{"id":305,"title":306,"summary":307,"published_at":308,"severity":288,"vendor":301,"products":309},5,"Remote Code Execution in Microsoft Windows DNS","Microsoft Windows DNS is the DNS client service used by Windows systems to resolve domain names and communicate with DNS servers.\r\nCVE-2026-41096 is a critical heap-based buffer overflow vulnerability in the Windows DNS Client that allows unauthenticated remote code execution via specially crafted DNS responses.\r\nAn attacker controlling or intercepting DNS traffic could trigger memory corruption and execute arbitrary code remotely on vulnerable Windows machines.","2026-05-26T12:15:17.186896Z",[310],"Windows DNS",{"id":312,"title":313,"summary":314,"published_at":315,"severity":250,"vendor":316,"products":317},6,"Remote Code Execution in extension \"Content Element Selector\" on TYPO3 server","The extension passes an attacker-controlled cookie directly to PHP's unserialize() without safely processing the input. A remote, unauthenticated attacker can supply a crafted serialized payload to trigger PHP Object Injection, leading to Remote Code Execution on the TYPO3 server. Exploitation requires the content element to be configured with \"Persistent Mode: Static\" in the plugin settings.","2026-05-25T16:40:32.703006Z","TYPO3",[318],"Extension \"Content Element Selector\"",{"id":320,"title":321,"summary":322,"published_at":323,"severity":288,"vendor":324,"products":325},7,"Unauthorized API Access in Cisco Secure Workload","A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the privileges of the Site Admin role.\r\n\r\nThis vulnerability is due to insufficient validation and authentication when accessing REST API endpoints. An attacker could exploit this vulnerability if they are able to send a crafted API request to an affected endpoint. A successful exploit could allow the attacker to read sensitive information and make configuration changes across tenant boundaries with the privileges of the Site Admin user.","2026-05-22T15:53:55.690058Z","Cisco",[326],"Cisco Secure Workload",{"id":328,"title":329,"summary":330,"published_at":331,"severity":288,"vendor":332,"products":333},8,"Path Traversal in the UniFi Network Application","A malicious actor with access to the network could exploit a Path Traversal vulnerability found in the UniFi Network Application to access files on the underlying system that could be manipulated to access an underlying account.\r\nRemediation: Update UniFi Network Application to the patched version listed in Ubiquiti Security Advisory Bulletin 062. Access to the management port (8443\u002FTCP) should be restricted to VPN or a bastion host and must never be exposed directly to the internet. Additionally, MFA should be enabled on all UniFi controller accounts.","2026-05-22T15:49:16.823838Z","Ubiquiti Inc",[334],"UniFi Network Application",{"id":336,"title":337,"summary":338,"published_at":339,"severity":250,"vendor":340,"products":341},9,"SQL Injection in Drupal Core","Drupal core includes a database abstraction API to ensure that queries executed against the database are sanitized to prevent SQL injection attacks. A vulnerability in this API allows an attacker to send specially crafted requests, resulting in arbitrary SQL injection for sites using PostgreSQL databases. This can lead to information disclosure, and in some cases privilege escalation, remote code execution, or other attacks. This vulnerability can be exploited by anonymous users.\r\n\r\nAffected versions: \r\n>= 8.9.0 \u003C 10.4.10 || >= 10.5.0 \u003C 10.5.10 || >= 10.6.0 \u003C 10.6.9 || >= 11.0.0 \u003C 11.1.10 || >= 11.2.0 \u003C 11.2.12 || >= 11.3.0 \u003C 11.3.10\r\n\r\nThis SQL injection vulnerability only affects sites using PostgreSQL. However, the third-party dependency updates in these releases apply to all sites.","2026-05-22T12:55:49.679012Z","",[342],"Drupal",{"id":344,"title":345,"summary":346,"published_at":347,"severity":250,"vendor":340,"products":348},10,"Pre-authentication Code Injection in version 1.0.0 or later of ChromaDB Python","A pre-authentication, code injection vulnerability in version 1.0.0 or later of the ChromaDB Python project allows an unauthenticated attacker to run arbitrary code on the server by sending a malicious model repository and trust_remote_code set to true in the \u002Fapi\u002Fv2\u002Ftenants\u002F{tenant}\u002Fdatabases\u002F{db}\u002Fcollections endpoint.","2026-05-20T09:00:17.594757Z",[349],"ChromaDB"]