CVE-2026-45480 - Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privile

CVE-2026-48772 - ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. In versions 2.0.0 through 3.0.8,

CVE-2026-50242 - In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 20

CVE-2026-49257 - mcp-pinot is a Python-based Model Context Protocol (MCP) server for interacting with Apache Pinot. I

CVE-2026-3490 - picklescan before 1.0.4 fails to block pkgutil.resolve_name, allowing attackers to bypass the entire

CVE-2026-48055 - Streambert is a cross-platform Electron Desktop App to stream and download any video media. In versi

CVE-2026-25470 - Improper Control of Generation of Code ('Code Injection') vulnerability in ACPT ACPT (Pro) - Custom

CVE-2025-69129 - Unauthenticated Arbitrary File Upload in WordPress & WooCommerce Scraper Plugin, Import Data from An

CVE-2026-46978 - Vulnerability in the Oracle Solaris product of Oracle Systems (component: Remote Administration Daem

CVE-2026-46846 - Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Securit