Where
-Infinity
0

Trending

Last week
Last month
Last year

rsync rsyncRsync < 3.4.3 Off-by-One Stack Write via HTTP Proxy

Risk 17
Severity
2.1
First published (updated )
CVE-2026-45232

go/github.com/cli/cli### Summary A security vulnerability has been identified in GitHub CLI that could allow terminal es…

Risk 19
Severity
3.5
First published (updated )
GHSA-crc3-h8v6-qh57

Discourse DiscourseDiscourse has a subscription access bypass in its discourse-subscriptions plugin

Risk 14
Severity
2.1
First published (updated )
CVE-2026-34154

pip/strawberry-graphqlInfoleak

Risk 17
Severity
3.1
First published (updated )
CVE-2026-45739

pip/strawberry-graphqlInfoleak

Risk 17
Severity
3.1
First published (updated )
GHSA-x97m-qp5c-w9xj
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

go/github.com/modelcontextprotocol/registry# OCI ownership validation fails open on upstream rate limits, allowing attacker to claim arbitrary …

Risk 19
Severity
3.5
First published (updated )
GHSA-2v5f-5r6w-p67r

Qt Project Qt Network (qtbase) OpenSSL TLS backend (Unix)Uncontrolled Search Path Element in Qt Network OpenSSL TLS backend allows rogue CA certificate loading

Risk 18
Severity
1.8
First published (updated )
CVE-2025-14575

maven/com.vaadin/flow-plugin-basePossible information disclosure of environment variables in Vaadin Build Plugins via Failed Frontend Build

Risk 26
Severity
1.6
EPSS
0.01%
First published (updated )
CVE-2026-7860

OpenHarmony OpenHarmonykernel_linux_common_modules has a Race Condition vulnerability

Risk 18
Severity
3.3
First published (updated )
CVE-2026-33565

OpenHarmony OpenHarmonyfilemanagement_storage_service has an improper input validation vulnerability

Risk 18
Severity
3.3
First published (updated )
CVE-2026-28751
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

OpenHarmony OpenHarmonykernel_liteos_a has an integer overflow vulnerability

Risk 18
Severity
3.3
First published (updated )
CVE-2026-27781

OpenHarmony Sensors_medical_sensorSensors_medical_sensor has a NULL pointer dereference vulnerability

Risk 18
Severity
3.3
First published (updated )
CVE-2026-25110

Mozilla ThunderbirdSpoofing issue in the Form Autofill component

Risk 5
Severity
1
First published (updated )
CVE-2026-8961

Mozilla ThunderbirdMitigation bypass in the DOM: Security component

Risk 5
Severity
1
First published (updated )
CVE-2026-8962

Mozilla FirefoxInformation disclosure in the IP Protection component

Risk 5
Severity
1
First published (updated )
CVE-2026-8966
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Mozilla FirefoxInformation disclosure in the Graphics: WebGPU component

Risk 5
Severity
1
First published (updated )
CVE-2026-8967

Mozilla FirefoxInformation disclosure in the DOM: Security component

Risk 5
Severity
1
First published (updated )
CVE-2026-8965

go/go.opentelemetry.io/obiInfoleak

Risk 20
Severity
3.8
First published (updated )
CVE-2026-45683

go/go.opentelemetry.io/obiInfoleak

Risk 20
Severity
3.8
First published (updated )
GHSA-fjq3-ffvr-vm46

Claude HUDClaude HUD 0.0.12 Terminal Injection via OSC 8 Hyperlinks

Risk 29
Severity
2.4
First published (updated )
CVE-2026-47090
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SummarizeSummarize < 0.15.1 Unapproved Browser Automation Execution

Risk 34
Severity
2.1
First published (updated )
CVE-2026-45244

composer/librenms/librenmsXSS

Risk 24
Severity
3.5
First published (updated )
GHSA-5gm9-622f-qcg5

Mattermost Mattermost Desktop AppCalling window.close() from server-side content causes crash in the Mattermost Desktop App

Risk 19
Severity
3.5
First published (updated )
CVE-2026-4643

Mattermost MattermostOAuth authorization code client binding not enforced during token redemption in Mattermost

Risk 22
Severity
3.1
First published (updated )
CVE-2026-6334

Tencent WeKnoraTencent WeKnora Config API Endpoint initialization.go getKnowledgeBaseForInitialization authorization

Risk 33
Severity
2.1
EPSS
0.03%
First published (updated )
CVE-2026-8786
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

npitre cramfs-toolsnpitre cramfs-tools cramfsck.c change_file_status symlink

Risk 25
Severity
1.8
EPSS
0.02%
First published (updated )
CVE-2026-8784

omec-project amfomec-project amf dispatcher.go UERadioCapabilityCheckResponse null pointer dereference

Risk 16
Severity
2.1
EPSS
0.05%
First published (updated )
CVE-2026-8783

omec-project amfomec-project amf NGAP Message handler.go null pointer dereference

Risk 16
Severity
2.1
EPSS
0.05%
First published (updated )
CVE-2026-8782

omec-project amfomec-project amf handler.go RANConfiguration null pointer dereference

Risk 16
Severity
2.1
EPSS
0.05%
First published (updated )
CVE-2026-8781

github/omec-project/amfomec-project amf NGAP Message dispatcher.go memory corruption

Risk 16
Severity
2.1
EPSS
0.05%
First published (updated )
CVE-2026-8780
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203