CVE-2026-6563 | H3C Magic B1 up to 100R004 /goform/aspForm SetAPWifiorLedInfoById param buffer overflow
A vulnerability identified as critical has been detected in H3C Magic B1 up to 100R004. The affected element is the
Read More
Security
03
CVE-2026-6564 | EMQ EMQX Enterprise up to 6.1.0 Session Handling improper authorization
A vulnerability labeled as critical has been found in EMQ EMQX Enterprise up to 6.1.0. The impacted element is an
Read More
Cross‑tenant helpdesk impersonation to data exfiltration: A human-operated intrusion playbook
Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant remote access.
Read More
CVE-2026-2986 | ajay Contextual Related Posts Plugin up to 4.2.1 on WordPress other_attributes cross site scripting (EUVD-2026-23674)
A vulnerability was found in ajay Contextual Related Posts Plugin up to 4.2.1 on WordPress and classified as problematic. Affected
Read More
CVE-2026-0894 | vanderwijk Content Blocks Plugin up to 3.3.9 on WordPress Custom Post Widget content_block cross site scripting
A vulnerability, which was classified as problematic, was found in vanderwijk Content Blocks Plugin up to 3.3.9 on WordPress. Affected
Read More
CVE-2026-0894 | vanderwijk Content Blocks Plugin up to 3.3.9 on WordPress Custom Post Widget content_block cross site scripting
A vulnerability, which was classified as problematic, was found in vanderwijk Content Blocks Plugin up to 3.3.9 on WordPress. Affected
Read More
CVE-2026-2505 | elzahlan Categories Images Plugin up to 3.3.1 on WordPress Shortcode z_taxonomy_image cross site scripting
A vulnerability has been found in elzahlan Categories Images Plugin up to 3.3.1 on WordPress and classified as problematic. Affected
Read More
CVE-2026-2505 | elzahlan Categories Images Plugin up to 3.3.1 on WordPress Shortcode z_taxonomy_image cross site scripting
A vulnerability has been found in elzahlan Categories Images Plugin up to 3.3.1 on WordPress and classified as problematic. Affected
Read More
CVE-2026-40347 | Kludex python-multipart up to 0.0.25 resource consumption (GHSA-mj87-hwqh-73pj)
A vulnerability categorized as problematic has been discovered in Kludex python-multipart up to 0.0.25. This issue affects some unknown processing.
Read More
CVE-2026-40484 | ChurchCRM up to 7.1.x Restore Endpoint Images/ recursiveCopyDirectory privileges management (GHSA-2932-77f9-62fx)
A vulnerability identified as critical has been detected in ChurchCRM up to 7.1.x. Impacted is the function recursiveCopyDirectory of the
Read More