CVE-2026-40901 | DataEase up to 2.10.20 CommonsCollections6 deserialization (GHSA-gm5q-g72w-c466)
A vulnerability has been found in DataEase up to 2.10.20 and classified as critical. The impacted element is an unknown
Read More
Security
03
CVE-2026-3488 | veronalabs WP Statistics Plugin up to 14.16.4 on WordPress AJAX check_ajax_referer authorization
A vulnerability was found in veronalabs WP Statistics Plugin up to 14.16.4 on WordPress and classified as critical. This affects
Read More
CVE-2026-39313 | QuantGeekDev mcp-framework up to 0.2.21 Model Context Protocol /mcp readRequestBody maxMessageSize allocation of resources (GHSA-353c-v8x9-v7c3)
A vulnerability was found in QuantGeekDev mcp-framework up to 0.2.21. It has been classified as problematic. This impacts the function
Read More
CVE-2026-4817 | stylemix MasterStudy LMS WordPress Plugin up to 3.7.25 on WordPress REST API Endpoint /lms/stm-lms/order/items esc_sql orderby sql injection
A vulnerability was found in stylemix MasterStudy LMS WordPress Plugin up to 3.7.25 on WordPress. It has been declared as
Read More
CVE-2026-40263 | enchant97 note-mark up to 0.19.1 Login Endpoint timing discrepancy (GHSA-w6m9-39cv-2fwp)
A vulnerability was found in enchant97 note-mark up to 0.19.1. It has been rated as problematic. Affected by this vulnerability
Read More
CVE-2026-5231 | veronalabs WP Statistics Plugin up to 14.16.4 on WordPress utm_source cross site scripting
A vulnerability categorized as problematic has been discovered in veronalabs WP Statistics Plugin up to 14.16.4 on WordPress. Affected by
Read More
CVE-2026-40900 | DataEase up to 2.10.20 Endpoint previewSql sql injection (GHSA-vqxf-84ph-j3vx)
A vulnerability identified as critical has been detected in DataEase up to 2.10.20. This affects an unknown part of the
Read More
CVE-2026-40247 | Free5GC up to 1.4.2 UDR Service improper authorization (GHSA-x5r2-r74c-3w28)
A vulnerability labeled as critical has been found in Free5GC up to 1.4.2. This vulnerability affects unknown code of the
Read More
CVE-2026-40248 | Free5GC up to 1.4.2 UDR Service notificationUri improper authorization (GHSA-jgq2-qv8v-5cmj)
A vulnerability marked as critical has been reported in Free5GC up to 1.4.2. This issue affects some unknown processing of
Read More
CVE-2026-40249 | Free5GC up to 4.2.1 UDR Service {subsId} unusual condition (GHSA-gx38-8h33-pmxr)
A vulnerability described as critical has been identified in Free5GC up to 4.2.1. Impacted is an unknown function of the
Read More