CVE-2026-4801 | godaddy Page Builder Gutenberg Blocks Plugin up to 3.1.16 on WordPress cross site scripting
A vulnerability, which was classified as problematic, has been found in godaddy Page Builder Gutenberg Blocks Plugin up to 3.1.16
Read More
Security
03
CVE-2026-6048 | dragwyb Flipbox Addon for Elementor Plugin up to 2.0.8 on WordPress custom_attributes cross site scripting
A vulnerability, which was classified as problematic, was found in dragwyb Flipbox Addon for Elementor Plugin up to 2.0.8 on
Read More
CVE-2026-40317 | MinecAnton209 NovumOS up to 0.23 privileges management (GHSA-xjx3-gjh9-45fm)
A vulnerability has been found in MinecAnton209 NovumOS up to 0.23 and classified as critical. This affects an unknown function.
Read More
CVE-2026-40572 | MinecAnton209 NovumOS up to 0.23 privileges management (GHSA-rg7m-6vh7-f4v2)
A vulnerability was found in MinecAnton209 NovumOS up to 0.23 and classified as critical. This impacts an unknown function. Executing
Read More
CVE-2026-40479 | Kimai up to 2.52.x KimaiEscape.js escapeForHtml cross site scripting (GHSA-g82g-m9vx-vhjg)
A vulnerability was found in Kimai up to 2.52.x. It has been classified as problematic. Affected is the function escapeForHtml
Read More
CVE-2026-40489 | editorconfig editorconfig-core-c up to 0.12.10 EditorConfig Parser ec_glob stack-based overflow (GHSA-97xg-vrcq-254h)
A vulnerability was found in editorconfig editorconfig-core-c up to 0.12.10. It has been declared as critical. Affected by this vulnerability
Read More
CVE-2026-40350 | leepeuker movary up to 0.71.0 Setting /settings/users authorization (GHSA-7r3f-9fwv-p43w)
A vulnerability was found in leepeuker movary up to 0.71.0. It has been rated as critical. Affected by this issue
Read More
CVE-2026-40348 | leepeuker movary up to 0.71.0 Endpoint server-url-verify server-side request forgery (GHSA-2m2v-v563-qqvj)
A vulnerability categorized as critical has been discovered in leepeuker movary up to 0.71.0. This affects an unknown part of
Read More
CVE-2026-40483 | ChurchCRM up to 7.1.x Comment cross site scripting (GHSA-wjmf-w8gj-rx7g)
A vulnerability identified as problematic has been detected in ChurchCRM up to 7.1.x. This vulnerability affects unknown code. Performing a
Read More
CVE-2026-40346 | nocobase up to 2.0.36 server-side request forgery (GHSA-mvvv-v22x-xqwp)
A vulnerability labeled as critical has been found in nocobase up to 2.0.36. This issue affects some unknown processing. Executing
Read More