RSS Feeds > Computer & Technik > Internet > Marketing > scip AG [Security - Consulting - Information - Process] | RSS Verzeichnis

scip AG [Security - Consulting - Information - Process]


Anzeigen einer beliebigen Anzahl von Sicherheitsl?cken aus der scip AG Datenbank.

Betreiber-URL: https://www.scip.ch
RSS-Feed-URL: https://www.scip.ch/alertRSS.xml
Die neuesten Einträge aus dem RSS-Feed von scip AG [Security - Consulting - Information - Process]:
CVE-2026-22104 | Hashtopolis up to 0.14.7 Chunk Activity access control
17.07.2026 11:57
A vulnerability identified as problematic has been detected in Hashtopolis up to 0.14.7. This impacts an unknown function of the component Chunk Activity. Performing a manipulation results in improper...
CVE-2026-62764 | Apache Accumulo up to 2.1.5 improper authentication
17.07.2026 11:06
A vulnerability categorized as critical has been discovered in Apache Accumulo up to 2.1.5. This affects an unknown function. Such manipulation leads to improper authentication. This vulnerability is...
CVE-2026-15380 | Broadcom Symantec Management Suite 8.7.3/8.8/8.8.1 Task Scheduler Local Privilege Escalation
17.07.2026 09:43
A vulnerability was found in Broadcom Symantec Management Suite 8.7.3/8.8/8.8.1. It has been rated as very critical. The impacted element is an unknown function of the component Task Scheduler. This m...
CVE-2026-15379 | Broadcom Symantec IT Management Suite 8.8/8.8.1 WMI Provider information disclosure
17.07.2026 09:42
A vulnerability was found in Broadcom Symantec IT Management Suite 8.8/8.8.1. It has been declared as problematic. The affected element is an unknown function of the component WMI Provider. The manipu...
CVE-2026-9656 | hubspotdev HubSpot All-In-One Marketing Plugin up to 11.3.62 on WordPress wp_localize_script missing encryption
17.07.2026 09:41
A vulnerability was found in hubspotdev HubSpot All-In-One Marketing Plugin up to 11.3.62 on WordPress. It has been classified as problematic. Impacted is the function wp_localize_script. The manipula...
CVE-2019-25764 | ASUS AURA SYNC up to 1.07.83 AURA SYNC Driver access control
17.07.2026 08:55
A vulnerability was found in ASUS AURA SYNC up to 1.07.83 and classified as problematic. This issue affects some unknown processing of the component AURA SYNC Driver. Executing a manipulation can lead...
CVE-2026-10525 | NEX-Forms Plugin up to 9.2.2 on WordPress Dashboard cross site scripting
17.07.2026 08:54
A vulnerability has been found in NEX-Forms Plugin up to 9.2.2 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Dashboard. Performing a manipulation...
CVE-2026-9810 | AI Copilot Plugin up to 1.5.3 on WordPress privileges management
17.07.2026 08:53
A vulnerability, which was classified as critical, was found in AI Copilot Plugin up to 1.5.3 on WordPress. This affects an unknown part. Such manipulation leads to improper privilege management. Thi...
CVE-2026-13402 | Royal Addons for Elementor Plugin up to 1.7.1062 on WordPress REST Endpoint information disclosure
17.07.2026 08:51
A vulnerability, which was classified as problematic, has been found in Royal Addons for Elementor Plugin up to 1.7.1062 on WordPress. Affected by this issue is some unknown functionality of the compo...
CVE-2026-11966 | User Registration & Membership Plugin up to 5.2.2 on WordPress authorization
17.07.2026 08:50
A vulnerability classified as critical was found in User Registration & Membership Plugin up to 5.2.2 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation results...
CVE-2026-12393 | WooCommerce WPS Bookings for WooCommerce Plugin up to 3.11.6 on WordPress Booking authorization
17.07.2026 08:49
A vulnerability classified as problematic has been found in WooCommerce WPS Bookings for WooCommerce Plugin up to 3.11.6 on WordPress. Affected is an unknown function of the component Booking. The man...
CVE-2026-11961 | User Registration & Membership Plugin up to 5.2.2 on WordPress Registration Form privileges management
17.07.2026 08:48
A vulnerability described as critical has been identified in User Registration & Membership Plugin up to 5.2.2 on WordPress. This impacts an unknown function of the component Registration Form. Execut...
CVE-2026-11575 | PhonePe Payment Solutions Plugin up to 3.0.x on WordPress Payment Callback authorization
17.07.2026 08:47
A vulnerability marked as problematic has been reported in PhonePe Payment Solutions Plugin up to 3.0.x on WordPress. This affects an unknown function of the component Payment Callback Handler. Perfor...
CVE-2026-15094 | thimpress WP Hotel Booking Plugin up to 2.3.2 on WordPress check_in_date cross site scripting
17.07.2026 08:14
A vulnerability labeled as problematic has been found in thimpress WP Hotel Booking Plugin up to 2.3.2 on WordPress. The impacted element is an unknown function. Such manipulation of the argument chec...
CVE-2026-15982 | CodeRevolution Aimogen Pro Plugin up to 2.8.4 on WordPress Capability Check aiomatic_call_google_ai_function incomplete blacklist
17.07.2026 08:13
A vulnerability identified as critical has been detected in CodeRevolution Aimogen Pro Plugin up to 2.8.4 on WordPress. The affected element is the function aiomatic_call_google_ai_function of the com...
CVE-2026-16017 | mosaxiv clawlet up to 0.2.10 cron Chat Tool tools/tool_cron.go list/remove authorization (Issue 17)
17.07.2026 07:52
A vulnerability categorized as critical has been discovered in mosaxiv clawlet up to 0.2.10. Impacted is the function list/remove of the file tools/tool_cron.go of the component cron Chat Tool. The ma...
CVE-2026-16016 | poco-ai poco-claw up to 0.5.4 task.py run_task callback_url server-side request forgery (Issue 138)
17.07.2026 07:49
A vulnerability was found in poco-ai poco-claw up to 0.5.4. It has been rated as critical. This issue affects the function run_task of the file executor/app/api/v1/task.py. The manipulation of the arg...
CVE-2026-16015 | poco-ai poco-claw up to 0.5.4 executor_manager API tasks.py create_task missing authentication (136/137/139/140)
17.07.2026 07:49
A vulnerability was found in poco-ai poco-claw up to 0.5.4. It has been declared as critical. This vulnerability affects the function create_task of the file executor_manager/app/api/v1/tasks.py of th...
CVE-2026-16014 | code-projects Hospital Bed Management System 1.0 Login Form Username sql injection (IJU5GU)
17.07.2026 07:40
A vulnerability was found in code-projects Hospital Bed Management System 1.0. It has been classified as critical. This affects an unknown part of the component Login Form. Performing a manipulation o...
CVE-2026-16013 | liftoff-sr CIPster up to 632336d414ef708a542377c1aa8d6fdb7c70a760 cipepath.cc deserialize_symbolic out-of-bounds (Issue 53)
17.07.2026 07:39
A vulnerability was found in liftoff-sr CIPster up to 632336d414ef708a542377c1aa8d6fdb7c70a760 and classified as problematic. Affected by this issue is the function CipAppPath::deserialize_symbolic of...
CVE-2026-60060 | TeraTerm Project TTSSH2 up to 3.6.1 Length length parameter (EUVD-2026-45139)
17.07.2026 07:21
A vulnerability has been found in TeraTerm Project TTSSH2 up to 3.6.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Length Handler. This manip...
CVE-2026-16009 | itsourcecode Hospital Management System 1.0 prescriptionorderdetail.php delid sql injection
17.07.2026 07:21
A vulnerability, which was classified as critical, was found in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /prescriptionorderdetail.php. The manipulation ...
CVE-2026-16008 | sagold json-schema-library 11.5.0/11.5.1 propertyDependencies.ts parsePropertyDependencies prototype pollution (Issue 111)
17.07.2026 07:20
A vulnerability, which was classified as problematic, has been found in sagold json-schema-library 11.5.0/11.5.1. This impacts the function parsePropertyDependencies of the file src/keywords/propertyD...
CVE-2026-41993 | TXOne SafePortAgent/StellarProtect prior 3.2.5024/5.0.1083 Removable Media Validation access control (EUVD-2026-45138)
17.07.2026 07:18
A vulnerability classified as problematic was found in TXOne SafePortAgent and StellarProtect. This affects an unknown function of the component Removable Media Validation. Executing a manipulation ca...
CVE-2026-58317 | TeraTerm Project Tera Term up to 3.6.1 SSH Connection unsigned conversion (EUVD-2026-45140)
17.07.2026 07:16
A vulnerability classified as critical has been found in TeraTerm Project Tera Term up to 3.6.1. The impacted element is an unknown function of the component SSH Connection Handler. Performing a manip...
CVE-2026-15161 | SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress AJAX handler save_filter cross site scripting (EUVD-2026-45136)
17.07.2026 07:15
A vulnerability described as problematic has been identified in SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress. The affected element is the function save_filter of the component AJAX handle...
CVE-2026-15759 | themeatelier ChatHelp Plugin up to 3.5.1 on WordPress Shortcode number/group cross site scripting
17.07.2026 07:14
A vulnerability marked as problematic has been reported in themeatelier ChatHelp Plugin up to 3.5.1 on WordPress. Impacted is an unknown function of the component Shortcode Handler. This manipulation ...
CVE-2026-15457 | Kirki Plugin up to 6.0.13 on WordPress Customizer Family path traversal
17.07.2026 07:13
A vulnerability labeled as critical has been found in Kirki Plugin up to 6.0.13 on WordPress. This issue affects some unknown processing of the component Customizer. The manipulation of the argument F...
CVE-2026-13765 | thimpress LearnPress Plugin up to 4.4.1 on WordPress Quiz Answer check_answer information disclosure (EUVD-2026-45137)
17.07.2026 07:12
A vulnerability identified as problematic has been detected in thimpress LearnPress Plugin up to 4.4.1 on WordPress. This vulnerability affects the function check_answer of the component Quiz Answer H...
CVE-2026-21770 | HCL Traveler for Microsoft Outlook up to 3.0.15 DLL uncontrolled search path (EUVD-2026-45141)
17.07.2026 07:11
A vulnerability categorized as critical has been discovered in HCL Traveler for Microsoft Outlook up to 3.0.15. This affects an unknown part of the component DLL. Executing a manipulation can lead to ...
CVE-2026-15349 | wedevs ERP Complete HR Accounting CRM Suite Plugin up to 1.17.6 on WordPress Company Location authorization
17.07.2026 07:10
A vulnerability was found in wedevs ERP Complete HR Accounting CRM Suite Plugin up to 1.17.6 on WordPress. It has been rated as critical. Affected by this issue is some unknown functionality of the co...
CVE-2026-13352 | ProfilePress Plugin up to 4.16.18 on WordPress File Upload allowed_mime_types unrestricted upload
17.07.2026 07:09
A vulnerability was found in ProfilePress Plugin up to 4.16.18 on WordPress. It has been declared as critical. Affected by this vulnerability is the function allowed_mime_types of the component File U...
CVE-2026-14503 | ploudapp pCloud WP Backup Plugin up to 2.0.3 on WordPress wp2pcl_ajax_process_request_inner information disclosure
17.07.2026 07:07
A vulnerability was found in ploudapp pCloud WP Backup Plugin up to 2.0.3 on WordPress. It has been classified as problematic. Affected is the function wp2pcl_ajax_process_request_inner of the compone...
CVE-2026-43978 | wger 2.2/2.5 Trainer-Login Endpoint permission
17.07.2026 06:13
A vulnerability was found in wger 2.2/2.5 and classified as critical. This impacts an unknown function of the component Trainer-Login Endpoint. The manipulation results in permission issues. This vul...
CVE-2026-15395 | wpchill Kali Forms Plugin up to 2.4.18 on WordPress shortcode digitalSignature cross site scripting
17.07.2026 06:04
A vulnerability has been found in wpchill Kali Forms Plugin up to 2.4.18 on WordPress and classified as problematic. This affects an unknown function of the component shortcode Handler. The manipulati...
CVE-2026-15159 | SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress Excel Export spreadsheet_export_form_id resource injection
17.07.2026 06:03
A vulnerability, which was classified as problematic, was found in SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress. The impacted element is an unknown function of the component Excel Export....
CVE-2026-11324 | evertec Placetopay Gateway Plugin up to 3.2.2 on WordPress redirect-url cross site scripting
17.07.2026 06:02
A vulnerability, which was classified as problematic, has been found in evertec Placetopay Gateway Plugin up to 3.2.2 on WordPress. The affected element is an unknown function of the component Gateway...
CVE-2026-8616 | devozon Fense Proxy & VPN Blocker Plugin up to 3.0.1 on WordPress Settings fense_bpvt_save_settings improper authorization
17.07.2026 06:01
A vulnerability classified as critical was found in devozon Fense Proxy & VPN Blocker Plugin up to 3.0.1 on WordPress. Impacted is the function fense_bpvt_save_settings of the component Settings Handl...
CVE-2026-15160 | SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress Excel Export spreadsheet_export_tmp_name path traversal
17.07.2026 06:00
A vulnerability classified as critical has been found in SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress. This issue affects some unknown processing of the component Excel Export. This manip...
CVE-2026-62387 | getgrav Grav API Plugin up to 1.0.x CORS Configuration cross-domain policy (EUVD-2026-45087)
17.07.2026 05:44
A vulnerability described as problematic has been identified in getgrav Grav API Plugin up to 1.0.x. This vulnerability affects unknown code of the component CORS Configuration. The manipulation resul...
CVE-2026-2594 | inc2734 Smart Custom Fields Plugin up to 5.0.7 on WordPress Image Attachment Titles cross site scripting (EUVD-2026-45122)
17.07.2026 04:07
A vulnerability marked as problematic has been reported in inc2734 Smart Custom Fields Plugin up to 5.0.7 on WordPress. This affects an unknown part of the component Image Attachment Titles. The manip...
CVE-2026-14956 | Bricksforge Plugin up to 3.1.8.6 on WordPress Pro Forms Registration Action fieldIds improper authentication (EUVD-2026-45123)
17.07.2026 04:06
A vulnerability labeled as critical has been found in Bricksforge Plugin up to 3.1.8.6 on WordPress. Affected by this issue is some unknown functionality of the component Pro Forms Registration Action...
CVE-2026-62386 | getgrav Grav 1.0.0-beta.15/1.0.0-beta.17 Grav API extractBearerToken token improper authorization (EUVD-2026-45086)
17.07.2026 03:43
A vulnerability identified as critical has been detected in getgrav Grav 1.0.0-beta.15/1.0.0-beta.17. Affected by this vulnerability is the function extractBearerToken of the component Grav API. Perfo...
CVE-2026-62236 | getgrav up to 3.8.10 Login regenerate2FASecret cross-site request forgery (EUVD-2026-45082)
17.07.2026 03:33
A vulnerability categorized as problematic has been discovered in getgrav grav up to 3.8.10. Affected is the function regenerate2FASecret of the component Login. Such manipulation leads to cross-site ...
CVE-2026-62232 | getgrav Grav up to 2.0.3 Login Plugin regenerate2FASecret 2FA secret cross-site request forgery (EUVD-2026-45120)
17.07.2026 03:32
A vulnerability was found in getgrav Grav up to 2.0.3. It has been rated as problematic. This impacts the function regenerate2FASecret of the component Login Plugin. This manipulation of the argument ...
CVE-2026-62234 | getgrav Grav up to 2.0.3 URL Protocol information disclosure (EUVD-2026-45080)
17.07.2026 03:31
A vulnerability was found in getgrav Grav up to 2.0.3. It has been declared as problematic. This affects an unknown function of the component URL Protocol. The manipulation results in information disc...
CVE-2026-62233 | getgrav Grav up to 1.0.5 2fa Endpoint improper authentication (EUVD-2026-45121)
17.07.2026 03:30
A vulnerability was found in getgrav Grav up to 1.0.5. It has been classified as critical. The impacted element is an unknown function of the component 2fa Endpoint. The manipulation leads to improper...
CVE-2026-62231 | getgrav Grav up to 1.0.5 API Key authorization (EUVD-2026-45119)
17.07.2026 03:29
A vulnerability was found in getgrav Grav up to 1.0.5 and classified as critical. The affected element is an unknown function of the component API Key. Executing a manipulation can lead to authorizati...
CVE-2026-62241 | MohibShaikh clawvet up to 0.7.4 JWT Authentication auth.ts hard-coded credentials (EUVD-2026-45085)
17.07.2026 03:28
A vulnerability has been found in MohibShaikh clawvet up to 0.7.4 and classified as problematic. Impacted is an unknown function of the file auth.ts of the component JWT Authentication Handler. Perfor...
CVE-2026-62235 | getgrav Grav up to 1.4.2 admin-next REST API access control (EUVD-2026-45081)
17.07.2026 03:27
A vulnerability, which was classified as critical, was found in getgrav Grav up to 1.4.2. This issue affects some unknown processing of the component admin-next REST API. Such manipulation leads to im...
CVE-2026-62238 | OpenRemote 1.22.0/1.22.1/1.24.2 Datapoint Crosstab Export Endpoint asset name sql injection (EUVD-2026-45084)
17.07.2026 03:26
A vulnerability, which was classified as critical, has been found in OpenRemote 1.22.0/1.22.1/1.24.2. This vulnerability affects unknown code of the component Datapoint Crosstab Export Endpoint. This ...
CVE-2026-62237 | getgrav Grav up to 2.0.3 Twig Content Sandbox regex_replace redos (EUVD-2026-45083)
17.07.2026 03:25
A vulnerability classified as problematic was found in getgrav Grav up to 2.0.3. This affects the function regex_replace of the component Twig Content Sandbox. The manipulation results in inefficient ...
CVE-2026-62230 | getgrav Grav up to 2.0.3 htaccess .htaccess information disclosure (EUVD-2026-45118)
17.07.2026 03:24
A vulnerability classified as problematic has been found in getgrav Grav up to 2.0.3. Affected by this issue is some unknown functionality of the file .htaccess of the component htaccess. The manipula...
CVE-2026-62227 | OpenClaw up to 2026.5.25 Routes validate destination server-side request forgery (EUVD-2026-45115)
17.07.2026 03:23
A vulnerability described as problematic has been identified in OpenClaw up to 2026.5.25. Affected by this vulnerability is the function validate of the component Routes. Executing a manipulation of t...
CVE-2026-62222 | OpenClaw up to 2026.5.21 Setup Mode Discovery improper authorization
17.07.2026 03:22
A vulnerability marked as critical has been reported in OpenClaw up to 2026.5.21. Affected is an unknown function of the component Setup Mode Discovery. Performing a manipulation results in improper a...
CVE-2026-62229 | OpenClaw up to 2026.5.17 Glob Matching authorization (EUVD-2026-45117)
17.07.2026 03:21
A vulnerability labeled as critical has been found in OpenClaw up to 2026.5.17. This impacts an unknown function of the component Glob Matching. Such manipulation leads to authorization bypass. This ...
CVE-2026-62228 | OpenClaw up to 2026.6.4 Node Exec Approvals authorization (EUVD-2026-45116)
17.07.2026 03:20
A vulnerability identified as critical has been detected in OpenClaw up to 2026.6.4. This affects an unknown function of the component Node Exec Approvals. This manipulation causes authorization bypas...
CVE-2026-62226 | OpenClaw up to 2026.5.18 URL Check authorization
17.07.2026 03:19
A vulnerability categorized as critical has been discovered in OpenClaw up to 2026.5.18. The impacted element is an unknown function of the component URL Check. The manipulation results in authorizati...
CVE-2026-62225 | OpenClaw up to 2026.5.17 Command Dispatch authorization
17.07.2026 03:17
A vulnerability was found in OpenClaw up to 2026.5.17. It has been rated as critical. The affected element is an unknown function of the component Command Dispatch. The manipulation leads to authoriza...
CVE-2026-62224 | OpenClaw MS Teams up to 2026.5.11 AllowFrom Feature authorization
17.07.2026 03:15
A vulnerability was found in OpenClaw MS Teams up to 2026.5.11. It has been declared as critical. Impacted is an unknown function of the component AllowFrom Feature. Executing a manipulation can lead ...
CVE-2026-62221 | OpenClaw up to 2026.5.25 ClickClack AllowFrom Feature improper authorization
17.07.2026 03:13
A vulnerability was found in OpenClaw up to 2026.5.25. It has been classified as very critical. This issue affects some unknown processing of the component ClickClack AllowFrom Feature. Performing a m...
CVE-2026-62223 | OpenClaw up to 2026.5.17 Device-Pair Approval Feature device.pair authorization
17.07.2026 03:10
A vulnerability was found in OpenClaw up to 2026.5.17 and classified as critical. This vulnerability affects unknown code of the file device.pair of the component Device-Pair Approval Feature. Such ma...
CVE-2026-62220 | OpenClaw up to 2026.5.25 WebSocket Authentication improper authentication
17.07.2026 03:08
A vulnerability has been found in OpenClaw up to 2026.5.25 and classified as critical. This affects an unknown part of the component WebSocket Authentication. This manipulation causes improper authent...
CVE-2026-62216 | OpenClaw up to 2026.5.27 QQBot Media Upload Feature server-side request forgery
17.07.2026 03:06
A vulnerability, which was classified as critical, was found in OpenClaw up to 2026.5.27. Affected by this issue is some unknown functionality of the component QQBot Media Upload Feature. The manipula...
CVE-2026-62218 | OpenClaw up to 2026.5.26 Device Pair Approve device.pair device.pair.approve authorization
17.07.2026 03:04
A vulnerability, which was classified as critical, has been found in OpenClaw up to 2026.5.26. Affected by this vulnerability is the function device.pair.approve of the file device.pair of the compone...
CVE-2026-62214 | openclaw msteams up to 2026.5.27 Bot Framework serviceUrl information disclosure
17.07.2026 03:02
A vulnerability classified as problematic was found in openclaw msteams up to 2026.5.27. Affected is an unknown function of the component Bot Framework. Executing a manipulation of the argument servic...
CVE-2026-62213 | openclaw MS Teams up to 2026.5.26 Outbound Request information disclosure
17.07.2026 03:00
A vulnerability classified as problematic has been found in openclaw MS Teams up to 2026.5.26. This impacts an unknown function of the component Outbound Request Handler. Performing a manipulation res...
CVE-2026-62219 | OpenClaw up to 2026.5.25 Hooks agent IDs authorization
17.07.2026 02:58
A vulnerability described as critical has been identified in OpenClaw up to 2026.5.25. This affects an unknown function of the component Hooks. Such manipulation of the argument agent IDs leads to aut...
CVE-2026-62217 | OpenClaw up to 2026.5.26 QQBot Exec Approvals Feature improper authorization
17.07.2026 02:57
A vulnerability marked as critical has been reported in OpenClaw up to 2026.5.26. The impacted element is an unknown function of the component QQBot Exec Approvals Feature. This manipulation causes im...
CVE-2026-62215 | OpenClaw up to 2026.6.4 HTTP Canvas Response improper authorization
17.07.2026 02:56
A vulnerability labeled as critical has been found in OpenClaw up to 2026.6.4. The affected element is an unknown function of the component HTTP Canvas Response Handler. The manipulation results in im...
CVE-2026-62212 | OpenClaw up to 2026.5.27 DNS Rebinding Check race condition
17.07.2026 02:55
A vulnerability identified as critical has been detected in OpenClaw. Impacted is an unknown function of the component DNS Rebinding Check. The manipulation leads to race condition. This vulnerabilit...
CVE-2026-62211 | OpenClaw up to 2026.6.0 Trajectory Export Feature information disclosure
17.07.2026 02:53
A vulnerability categorized as problematic has been discovered in OpenClaw up to 2026.6.0. This issue affects some unknown processing of the component Trajectory Export Feature. Executing a manipulati...
CVE-2026-62210 | OpenClaw up to 2026.6.0 Gateway cross site scripting
17.07.2026 02:51
A vulnerability was found in OpenClaw up to 2026.6.0. It has been rated as problematic. This vulnerability affects unknown code of the component Gateway. Performing a manipulation results in cross sit...
CVE-2026-40106 | Wazuh up to 4.14.4 Syscheck wazuh-agent.exe out-of-bounds write
17.07.2026 02:40
A vulnerability was found in Wazuh up to 4.14.4. It has been declared as problematic. This affects an unknown part of the file wazuh-agent.exe of the component Syscheck. Such manipulation leads to out...
CVE-2026-62209 | OpenClaw up to 2026.6.4 ClickClack Agent-Mode Dispatch Feature authorization
17.07.2026 02:39
A vulnerability was found in OpenClaw up to 2026.6.4. It has been classified as critical. Affected by this issue is some unknown functionality of the component ClickClack Agent-Mode Dispatch Feature. ...
CVE-2026-62207 | OpenClaw up to 2026.6.4 improper authorization
17.07.2026 02:38
A vulnerability was found in OpenClaw up to 2026.6.4 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation results in improper authorization. This v...
CVE-2026-62203 | OpenClaw up to 2026.6.5 Host Exec improper authorization
17.07.2026 02:37
A vulnerability has been found in OpenClaw up to 2026.6.5 and classified as very critical. Affected is an unknown function of the component Host Exec. The manipulation leads to improper authorization....
CVE-2026-62208 | OpenClaw up to 2026.6.4 MCP SSE Redirect improper authorization
17.07.2026 02:36
A vulnerability, which was classified as critical, was found in OpenClaw up to 2026.6.4. This impacts an unknown function of the component MCP SSE Redirect. Executing a manipulation can lead to improp...
CVE-2026-62205 | OpenClaw up to 2026.6.5 MS Teams Message Actions Feature improper authorization
17.07.2026 02:35
A vulnerability, which was classified as critical, has been found in OpenClaw up to 2026.6.5. This affects an unknown function of the component MS Teams Message Actions Feature. Performing a manipulat...
CVE-2026-62202 | OpenClaw up to 2026.6.8 Cron improper authorization
17.07.2026 02:34
A vulnerability classified as problematic was found in OpenClaw up to 2026.6.8. The impacted element is an unknown function of the component Cron. Such manipulation leads to improper authorization. T...
CVE-2026-62201 | OpenClaw up to 2026.6.5 Sandbox Exec-Server sandbox
17.07.2026 02:33
A vulnerability classified as problematic has been found in OpenClaw up to 2026.6.5. The affected element is an unknown function of the component Sandbox Exec-Server. This manipulation causes sandbox ...
CVE-2026-62206 | OpenClaw up to 2026.6.8 Discord Moderation Actions authorization
17.07.2026 02:32
A vulnerability described as critical has been identified in OpenClaw up to 2026.6.8. Impacted is an unknown function of the component Discord Moderation Actions. The manipulation results in missing a...
CVE-2026-44251 | Wazuh up to 4.14.4 Message Processing os_crypto/shared/msgs.c integer underflow
17.07.2026 02:31
A vulnerability marked as critical has been reported in Wazuh up to 4.14.4. This issue affects some unknown processing of the file os_crypto/shared/msgs.c of the component Message Processing. The mani...
CVE-2026-39359 | Wazuh up to 4.10.3/4.14.4 authd wopendir group path traversal
17.07.2026 02:13
A vulnerability labeled as problematic has been found in Wazuh up to 4.10.3/4.14.4. This vulnerability affects the function wopendir of the component authd. Executing a manipulation of the argument gr...
CVE-2026-33754 | Wazuh up to 4.14.4 Cluster Protocol Parser memory allocation
17.07.2026 02:11
A vulnerability identified as critical has been detected in Wazuh up to 4.14.4. This affects an unknown part of the component Cluster Protocol Parser. Performing a manipulation results in uncontrolled...
CVE-2026-33434 | Wazuh up to 4.14.4 CheckRateLimitsMiddleware CheckRateLimitsMiddleware.dispatch injection
17.07.2026 02:10
A vulnerability categorized as very critical has been discovered in Wazuh up to 4.14.4. Affected by this issue is the function CheckRateLimitsMiddleware.dispatch of the component CheckRateLimitsMiddle...
CVE-2026-54340 | H2O HPACK Decompressor state issue (9265bdd)
17.07.2026 02:09
A vulnerability was found in H2O. It has been rated as problematic. Affected by this vulnerability is an unknown functionality of the component HPACK Decompressor. This manipulation causes state issue...
CVE-2026-34150 | Wazuh up to 4.14.4 wazuh-analysisd W_JSON_ParseRootcheck Value heap-based overflow
17.07.2026 02:08
A vulnerability was found in Wazuh up to 4.14.4. It has been declared as critical. Affected is the function W_JSON_ParseRootcheck of the component wazuh-analysisd. The manipulation of the argument Val...
CVE-2026-44453 | h2o File Path alloca stack-based overflow (6b5370d)
17.07.2026 01:33
A vulnerability was found in h2o. It has been classified as problematic. This impacts the function alloca of the component File Path. The manipulation leads to stack-based buffer overflow. This vulne...
CVE-2026-44452 | h2o TLS/QUIC Handshake memory corruption (8dc37cb)
17.07.2026 01:31
A vulnerability was found in h2o and classified as problematic. This affects an unknown function of the component TLS/QUIC Handshake Handler. Executing a manipulation can lead to memory corruption. T...
CVE-2026-44435 | h2o quicly CRYPTO Stream assertion
17.07.2026 01:00
A vulnerability has been found in h2o quicly and classified as problematic. The impacted element is an unknown function of the component CRYPTO Stream. Performing a manipulation results in reachable a...
CVE-2026-44436 | h2o quicly Packet Decoder buffer overflow (8b178e6)
17.07.2026 00:58
A vulnerability, which was classified as problematic, was found in h2o quicly. The affected element is an unknown function of the component Packet Decoder. Such manipulation leads to buffer overflow. ...
CVE-2026-44434 | h2o quicly Stateless Reset Validator injection (dccf5d4)
17.07.2026 00:56
A vulnerability, which was classified as problematic, has been found in h2o quicly. Impacted is an unknown function of the component Stateless Reset Validator. This manipulation causes injection. Thi...
CVE-2026-44433 | h2o quicly Flow Control memory allocation
17.07.2026 00:44
A vulnerability classified as problematic was found in h2o quicly. This issue affects some unknown processing of the component Flow Control. The manipulation results in uncontrolled memory allocation....
CVE-2026-43977 | wger-project wger up to 2.5 RoutineViewSet views.py has_object_permission
17.07.2026 00:42
A vulnerability classified as problematic has been found in wger-project wger up to 2.5. This vulnerability affects the function has_object_permission of the file wger/manager/api/views.py of the comp...
CVE-2026-15997 | Legion of the Bouncy Castle BC-LTS up to 2.73.12.0 SHA3 SHAKE native_c/arm/sha/shake.C out-of-bounds write (EUVD-2026-45068)
17.07.2026 00:41
A vulnerability described as critical has been identified in Legion of the Bouncy Castle BC-LTS up to 2.73.12.0. This affects an unknown part of the file native_c/arm/sha/shake.C of the component SHA3...
CVE-2026-44182 | jupyter-server Enterprise Gateway up to 3.2.x Kubernetes Manifest Renderer special elements used in a template engine
17.07.2026 00:40
A vulnerability marked as problematic has been reported in jupyter-server Enterprise Gateway up to 3.2.x. Affected by this issue is some unknown functionality of the component Kubernetes Manifest Rend...
CVE-2026-44181 | Jupyter Server Enterprise Gateway up to 3.2.x Kubernetes Manifest Renderer KERNEL_XXX special elements used in a template engine
17.07.2026 00:39
A vulnerability labeled as critical has been found in Jupyter Server Enterprise Gateway up to 3.2.x. Affected by this vulnerability is an unknown functionality of the component Kubernetes Manifest Ren...
CVE-2026-58643 | Microsoft Windows Admin Center cross site scripting (EUVD-2026-45060)
17.07.2026 00:34
A vulnerability identified as problematic has been detected in Microsoft Windows Admin Center. Affected is an unknown function. This manipulation causes cross site scripting. This vulnerability is re...
CVE-2026-58598 | Microsoft Windows up to 11 26H1 Backup Engine race condition (EUVD-2026-45061)
17.07.2026 00:33
A vulnerability categorized as problematic has been discovered in Microsoft Windows 10 21H2/10 22H2/11 24H2/11 25H2/11 26H1. This impacts an unknown function of the component Backup Engine. The manipu...
RSS Feed eintragen

Machen Sie Ihren RSS-Feed bekannt und erhöhen Sie die Sichtbarkeit Ihrer Website!

RSS-Feed eintragen
RSS-Reader
RSS-Reader finden Sie unter unsere Übersicht: RSS-Reader
Die neuesten Feeds
Die Top-Feeds
meist gelesenen Feeds