Latest Security Vulnerabilities

Monday June 22, 2026

Asus Armoury Crate

CVE-2026-8918 Arbitrary Mem RW via Input Bypass in ASUS Armoury Crate

CVE-2026-4110 Ultimate WooCommerce Auction Pro <=2.4.5 XSS Unsanitized Param
CVE-2026-4259 ultimate-woocommerce-auction-pro 2.4.5 Reflected XSS via unsanitized param
CVE-2026-12862 Excel Formula Injection in Pretix Venueless Export (v0.0.0)
CVE-2026-7859 The Motors WP Plugin <1.4.110 Unauth CSRF & Auth Gap
CVE-2026-6858 Transbank Webpay WP Plugin <1.14.0 Stored XSS via Unsanitized Logs
CVE-2026-10530 Pie Register <3.8.4.10: Predictable Verification Token Vulnerability
CVE-2026-11746 Central Dogma Server <0.84.0: ZooKeeper Replication Default Secret Leakage
CVE-2026-11745 Central Dogma Server Mirror Git (<0.84.0): SSH Host Key Verification Bypass
CVE-2026-12863 Venueless Unvalidated Redirect in Social Login (before 0.0.0,
And others...

Apache NiFi

CVE-2026-54665 Apache NiFi 0.0.1-2.9.0 Proxy Host Header Validation Vulnerability
CVE-2026-44914 Apache NiFi 1.12.0-2.9.0: Missing Auth on Restricted Process Group Replace
CVE-2026-44913 Apache NiFi CaptureChangeMySQL SQLi (v1.2.0-2.9.0)
CVE-2026-44911 Apache NiFi 1.15.0-2.9.0 Authorization Bypass of Config Verification API

Papercut

CVE-2026-6645 PaperCut Print Deploy Client exe Process Execution Vulnerability (CVE-2026-6645)

Digiwin

CVE-2026-12580 EasyFlow .NET XSS Allows Authenticated Remote Persistent JS Injection
CVE-2026-12581 EasyFlow .NET Session Fixation Enables Privilege Escalation

Apache Atlas

CVE-2025-62198 Apache Atlas XSS Authenticated @ <=2.4.0, Fixed in 2.5.0

Pilz Pmi V8xx

CVE-2023-45795 XSS in Builder Component of Pilz PASvisu <1.14.1
CVE-2023-45796 XSS in Pilz PASvisu Runtime <1.14.1 allows unauth remote tampering

Apache

CVE-2025-66336 Apache Doris <=0.6.0 SQL Injection via Metadata Query (MCP Server)

Sunday June 21, 2026

Linux Kernel

CVE-2026-52911 Linux Kernel ksmbd Session Binding Flaw Global Session Access
CVE-2026-52910 Linux Kernel: BPF Reuseport cBPF Prog Freeing Without RCU Grace
CVE-2026-52908 Linux Kernel RDMA: Improper Umem Reeval on IB_MR_REREG_ACCESS
CVE-2026-52909 Linux Kernel VTI6: netns_immutable flag set on fallback device

ImageMagick

CVE-2026-56367 ImageMagick <7.1.2-15, 6.9.13-40: PSB RLE Integer Overflow (OOB Read)
CVE-2026-56378 ImageMagick <=7.1.2-15 Heap OOB Read in PCD Decoder

Juzaweb Cms

CVE-2026-56383 Craft CMS 4.x/5.x XSS in editableTable.twig via Row Heading
CVE-2026-56381 Craft CMS 5.0.0-RC1 XSS via Unescaped User Group Names
CVE-2026-56382 Craft CMS RCE via FieldsController::actionRenderCardPreview (v5.5-5.9.13)
CVE-2026-56384 Craft CMS previewthumb auth bypass pre 4.17.8/5.9.14
CVE-2026-56393 Stored XSS in Craft CMS 4.x/5.x <4.17.0/5.9.0
CVE-2026-56394 Craft CMS 4.0.0RC1 Path Traversal Local File Read via assets/icon
CVE-2026-56385 Craft CMS <=5.9.13 Auth Bypass via assets/preview-file (fixed 5.9.14)

Libexpatproject Libexpat

CVE-2026-56403 Libexpat <2.8.2: Integer Overflow in storeAtts
CVE-2026-56404 libexpat <2.8.2 Integer Overflow in addBinding
CVE-2026-56406 INT OVERFLOW in libexpat <2.8.2 XML_ParseBuffer (2.8.2+ fixed)
CVE-2026-56407 libexpat 2.8.1 int overflow in doProlog
CVE-2026-56409 Integer overflow in libexpat 2.8.2 XMLWF -d outputDir
CVE-2026-56411 Integer Overflow in libexpat <2.8.2 via endDoctypeDecl (NOTATION)
CVE-2026-56412 libexpat <=2.8.2 Use-After-Free via XML_TOK_DATA_CHARS in doCdataSection
CVE-2026-56405 Integer Overflow in libexpat getAttributeId (v < 2.8.2)
CVE-2026-56408 libexpat before 2.8.2 integer overflow in copyString
And others...

Coollabsio Coolify

CVE-2026-12815 coollabsio coolify 4.0.0 Image Name Handler OSCI via OS Command Injection

Radware Cyber Controller

CVE-2026-12812 Radware Cyber Controller 10.11.0 HTML Report Gen HTML Injection

Ezbsystems Ultraiso Premium Edition

CVE-2026-12786 UltraISO <=9.76 Kernel Driver bootpt64.sys Improper Access Control

Easeus Partition Master

CVE-2026-12782 EaseUS Partition Master <=14.5 IAC in EUEDKEPM.sys
CVE-2026-12781 Improper Access Control in EaseUS PM 14.5 Kernel Driver epmntdrv.sys (Local PVE)

Aomei Backupper

CVE-2026-12780 AOMEI Backupper 8.3 Kernel Driver amwrtdrv.sys IAC Vulnerability

Litellm

CVE-2026-12774 SSRF in BerriAI litellm MCP Server before 1.82.2
CVE-2026-12797 BerriAI litellm <=1.82.5 Completions Interface Auth Bypass via async_pre_call_hook
CVE-2026-12796 BerriAI litellm: Remote Session Expiration in SSO Auth Flow <=1.82.2
CVE-2026-12795 BerriAI litellm <=1.82.2 SSO Debug Flow JSON.dumps Auth Bypass
CVE-2026-12773 BerriAI litellm <=1.59.8 MCP Proxy auth flaw (UserAPIKeyAuth)
CVE-2026-12772 BerriAI litellm <=1.82.2 PROXY_ADMIN Auth Bypass
CVE-2026-12770 BerriAI litellm 1.63.1 Admin Key Handler Improper Authorization Vulnerability
CVE-2026-12771 Litellm 1.82.2 M2M JWT Improper Auth Remote Vulnerability
CVE-2026-12799 BerriAI litellm Improper Auth in ui_view_users (<=1.82.2)
And others...

Unclassified

Activepieces

CVE-2026-12813 Activepieces <=0.83.0 SSRF via File URL Handler

Edimax Br 6478ac V2

CVE-2026-12810 Edimax BR6478AC V2 1.23 CMD Injection via /goform/mp
CVE-2026-12806 Edimax BR-6478AC V2 1.23 buffer overflow in formWlSiteSurvey via selSSID
CVE-2026-12809 Edimax BR-6478AC V2 1.23 Command Injection via wiz_5in1_redirect
CVE-2026-12807 Command Injection in Edimax BR-6478AC V2 1.23 setWAN POST Handler
CVE-2026-12808 Edimax BR-6478AC V2 1.23 Command Injection via /goform/stainfo

Browserbase

CVE-2026-12823 Browserbase Autobrowse Trace Artifact Handler Default Permissions Flaw

Langflow

CVE-2026-12822 Langflow up to 1.9.3 Bundle URL Loader Code Injection

Offis Dcmtk

CVE-2026-12805 OFFIS DCMTK <3.7.0 Heap-Overflow in XMLNode::parseFile

Ilias Learning Management System

CVE-2026-12789 SQLi in ILIAS LMS 11.0 ilTrQuery::executeQueries

Im Magic Partition Resizer

CVE-2026-12784 IM-Magic Partition Resizer <=7.9.0: MDA_NTDRV.sys KLR Access Bypass

Aomei Partition Assistant

CVE-2026-12778 AOMEI Partition Assistant <=10.10.1 Kernel Driver ampa10.sys LPE

B3log Siyuan

CVE-2026-56397 SiYuan <3.6.1 RCE via XSS in Bazaar (Electron)
CVE-2026-56395 SiYuan <3.6.1 Bazaar XSS RCE via Malicious README

Comfast Cf Wr631ax V3

CVE-2026-12814 Comfast CF-WR631AX V3 2.7.0.8 API Endpoint OS Command Injection

Aomei Dynamic Disk Manager

CVE-2026-12779 AOMEI Dynamic Disk Mgmt <=10.10.1 Kernel Driver ddmdrv.sys ImprAcc (Local)

Flowiseai Flowise

CVE-2026-12821 Path Traversal in FlowiseAI Flowise S3 Doc Loader before 3.1.2
CVE-2025-71331 Flowise <3.0.8 XSS via Chat & Agent Functions
CVE-2024-58351 RCE in Flowise <2.1.4 via overrideConfig leading to sandbox escape (Chainflow)
CVE-2026-56267 Flowise 3.0.12: Forgot-Password Endpoint Exposes PII
CVE-2026-56276 CVE-2026-56276 Flowise <3.1.2 Mass Assignment: Credential Override

Lemonldap Ng

CVE-2026-12804 lemonldap-ng <=2.23.0 open redirect via SAML CDC URL arg

Kortix Ai Suna

CVE-2026-12811 XSS via returnURL in kortix-ai suna Router till 0.8.38

Mmaitre314 Picklescan

CVE-2025-71357 Python picklescan <0.0.30 Malicious Pickle Remote Exec via idlelib.pyshell
CVE-2025-71351 Remote Code Execution in picklescan <0.0.25 due to unrecognized pickle files
CVE-2025-71348 picklescan <0.0.28 RCE via torch.utils._config_module.load_config in reduce
CVE-2025-71378 picklescan <0.0.30 cProfile.runctx Detection Bypass RCE
CVE-2026-56304 unsafe pickle deserialization in picklescan <1.0.1 via logging.FileHandler

Zhilink Adp Application Developer Platform

CVE-2026-12788 XXE in XML Parser of zhilink ADP Platform 1.0.0
CVE-2026-12787 Zhilink ADP AP 1.0.0 Deserialization via testConnection jdbcUrl

Montodel House Rental Management

CVE-2026-12776 Remote SQLi in Montodel House-Rental-Management via ID param
CVE-2026-12775 SQLi in Montodel House-Rental-Management /login.php (Username)

Phpmyfaq

CVE-2026-56396 phpMyFAQ <4.1.4 auth escalation via editUser/updateUserRights

Saturday June 20, 2026

Woocommerce

CVE-2022-50972 RCE via unsanitized product-type param in WooCommerce 7.1.0

Crmperks Database Contact Form 7 Wpforms Elementor Forms

CVE-2026-9843 WordPress Contact-Form-7-DB v1.5.1: File Deletion Unauth RCE

Nuxt

CVE-2026-56317 Nuxt NoScript XSS via unescaped innerHTML <4.4.7, <3.21.7

Unclassified

Vllm

CVE-2026-56340 vLLM 0.10.2-0.12.x Missing Sparse Tensor Validation, Potential DoS
CVE-2025-71379 vLLM 0.6.30.9.0 ReDoS in LoRA & Chat Endpoints

Wwbn Avideo

CVE-2026-56345 AVideo <=29.0 Auth Bypass in Meet Plugin uploadRecordedVideo.json.php
CVE-2026-56341 AVideo <=26.0 Unauth list.json.php Endpoints Expose Payment Data
CVE-2026-56347 AVideo TopMenu plugin <=26.0 Stored XSS in Menu Items
CVE-2026-56342 AVideo <27.0 SSRF via statsURL in plugin/Live/test.php
CVE-2026-56346 AVideo <=25.0 Auth Bypass in decryptMessage.json.php

GNU Savane

CVE-2026-56355 Auth Bypass via Untrusted Data in Savane <=3.17 (CVE-2026-56355)

Flowiseai Flowise

Liquidfiles

CVE-2026-12673 Liquidfiles <4.2.12: Priv Esc via Broken ACL in Secondary Domain Groups

Mmaitre314 Picklescan

Friday June 19, 2026

Linux Kernel

Red Hat Enterprise Linux Ai

CVE-2026-12706 FFmpeg RASC Decoder UAF via deallocated buffer in move_table

Avast Antivirus

CVE-2025-71326 AVAST Antivirus 25.11 Unquoted Service Path Escalation (SVR-UNQ)

Canonical Ubuntu Linux

CVE-2026-3195 QEMU virtio-snd Input Callback Heap OOB Write CVE-2026-3195
CVE-2026-3196 Virtio-snd Integer Overflow Host DoS via PCM_INFO

Microsoft Edge Chromium

CVE-2026-32208 Jun 2026: Microsoft Edge (Chromium-based) Spoofing Vulnerability

Unclassified

Anydesk

CVE-2016-20094 AnyDesk 2.5.0 Unquoted Service Path LPE

Microsoft Gihub Copilot Chat

CVE-2026-50519 Jun 2026: Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability

Red Hat Enterprise Linux (RHEL)

CVE-2026-56210 libaom Heap-Buffer-Overflow in SVC Layer ID Read (CVE-2026-56210)
CVE-2026-56208 Heap Overflow in libaom's AV1 Encoder LAP Mode
CVE-2026-56211 RCE via AV1 SVC ID Bounds in libaom Encoder

Microsoft

CVE-2026-49336 Jun 2026: @microsoft/kiota-http-fetchlibrary: Bearer token and Cookie leak across origin on redirect

Microsoft Azure Synapse

CVE-2026-48584 Jun 2026: Microsoft Azure Synapse Elevation of Privilege Vulnerability

Microsoft Exchange Online

CVE-2026-48582 Jun 2026: Microsoft Exchange Online Elevation of Privilege Vulnerability

Microsoft Azure Active Directory

CVE-2026-45480 Jun 2026: Azure Active Directory Elevation of Privilege Vulnerability

Microsoft 365 Copilot

CVE-2026-47645 Jun 2026: Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability
CVE-2026-42895 Jun 2026: Microsoft Copilot Tampering Vulnerability

Ni Grpc Device

CVE-2026-48137 Untrusted Pointer Deref in NI grpc-device <2.17.0 sideband API: RCE

JetBrains Hub

CVE-2026-50242 JetBrains Hub <2026.1.13757 Auth bypass via DB access
CVE-2026-56142 Privilege Escalation in JetBrains Hub <2026.1.13757 via Auth Details Attach
CVE-2026-56141 Account takeover via predictable restore codes in JetBrains Hub before 2026.1.13757

Libexpatproject Libexpat

Dell

CVE-2026-46461 Dell Server HW Manager <3.2.2 Improper Access Control enabling LPE

Flexera Flexnet Manager Suite

CVE-2026-4026 FlexNet Manager Suite 2025 R1; Authn Read-Only Account Settings Escalation

Themefusion Avada

CVE-2026-8713 Avada Builder 3.15.3+ Vulnerable to Unauthenticated File Deletion

Realtek

CVE-2020-37252 Realtek Audio Service 1.0.0.55 Unquoted Path Escalation
CVE-2016-20085 Realtek HD Audio Driver 6.0.1.6730 Unquoted Service Path PrivEsc

Wproyal

CVE-2026-8118 Royal Addons for Elementor 1.7.1058-1.7.1059: Authenticated Arbitrary File Read

JetBrains Goland

CVE-2026-53915 GoLand RCE via Untrusted Assigner in Project Config before 2026.1.3 (JetBrains)

Red Hat Redhat

CVE-2026-50559 Quarkus HTTP Auth Bypass via Encoded ; and / Fixed 3.37.0

Apache Apisix

CVE-2026-44046 Apache APISIX 1.2.03.16.0 Less Trusted Source Log Spoofing via wolfrbac
CVE-2026-39999 Apache APISIX 3.16.0: JWTAuth Authentication Bypass via Spoofing
CVE-2026-39998 APISIX 2.12-3.16 Improper Input Validation in forward-auth Plugin
CVE-2026-48895 Apache APISIX Open Redirect via URL redirection (3.0.0-3.16.0)
CVE-2026-47341 Apache APISIX 3.11-3.16 HMAC Auth Auth Bypass via Capture-Replay, Fixed 3.17