CVE Security

Directory Traversal vulnerability in Easy Chat Server 3.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via the ...

Applications


                                    CVE-2026-36227

Lire l'article

high 7.3

29/05/2026

Vulnérabilité high détectée - CVE-2026-36228

Buffer Overflow vulnerability in Easy Chat Server 3.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via the chat...

Applications


                                    CVE-2026-36228

Lire l'article

high 7.3

29/05/2026

Vulnérabilité high détectée - CVE-2026-37470

An issue in ClipBucket v5 v.5.5.2 allows an attacker to execute arbitrary code via the Authentication interface, login page endpoint and HTTP response...

Applications


                                    CVE-2026-37470

Lire l'article

critical 10

29/05/2026

Vulnérabilité critical détectée - CVE-2026-33712

Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the preview chat endpoint (POST /api/v1/typebots/{typebotId}/preview/startChat) allow...

Applications


                                    CVE-2026-33712

Lire l'article

high 7.6

29/05/2026

Vulnérabilité high détectée - CVE-2026-34207

TypeBot is a chatbot builder tool. In versions prior to 3.16.0, SSRF protection for Webhook / HTTP Request blocks validates only the URL string, block...

Applications


                                    CVE-2026-34207

Lire l'article

medium 6.1

29/05/2026

Vulnérabilité medium détectée - CVE-2026-36226

Cross Site Scripting vulnerability in Advantech WebAccess/SCADA 8.0-2015.08.16 allows a remote attacker to obtain sensitive information via the decryp...

Applications


                                    CVE-2026-36226

Lire l'article

medium 6.5

29/05/2026

Vulnérabilité medium détectée - CVE-2026-28444

Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the getResultLogs API endpoint authorizes the caller against the provided typebotId b...

Réseau


                                    CVE-2026-28444

Lire l'article

high 8.7

29/05/2026

Vulnérabilité high détectée - CVE-2026-28445

Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the RatingButton component in the embed package renders the user-controlled customIco...

Applications


                                    CVE-2026-28445

Lire l'article

medium 5.4

29/05/2026

Vulnérabilité medium détectée - CVE-2026-28735

Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to validate the OAuth token scope on the callback w...

Applications


                                    CVE-2026-28735

Lire l'article

critical 9.8

29/05/2026

Vulnérabilité critical détectée - CVE-2026-32253

Sunshine is a self-hosted game stream host for Moonlight. In versions prior to 2026.516.143833, the client-certificate authentication can be bypassed ...

Applications


                                    CVE-2026-32253

Lire l'article

low 2.6

29/05/2026

Vulnérabilité low détectée - CVE-2026-9248

Authorization bypass in the entry duplication feature in Devolutions Server allows an authenticated user with write access to any vault to copy docume...

Applications


                                    CVE-2026-9248

Lire l'article

low 3.1

29/05/2026

Vulnérabilité low détectée - CVE-2026-9249

Unverified password change in Devolutions Server allows an attacker to change a user's password without providing the previous one via a crafted passw...

Applications


                                    CVE-2026-9249

Lire l'article

17 18 19 20 21