Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-40549 |
5.1 (4.0)
|
Cross-Site Request Forgery in SOPlanning |
SOPlanning |
SOPlanning |
2026-06-01T09:04:19.446Z | 2026-06-01T09:04:19.446Z |
| CVE-2026-40548 |
6.4 (4.0)
|
Unrestricted Upload of File with Dangerous Type in SOP… |
SOPlanning |
SOPlanning |
2026-06-01T09:04:12.880Z | 2026-06-01T09:04:12.880Z |
| CVE-2026-40547 |
6.4 (4.0)
|
Path Traversal in SOPlanning |
SOPlanning |
SOPlanning |
2026-06-01T09:04:05.155Z | 2026-06-01T09:04:05.155Z |
| CVE-2026-40546 |
8.7 (4.0)
|
Multiple SQL Injections in SOPlanning |
SOPlanning |
SOPlanning |
2026-06-01T09:04:00.756Z | 2026-06-01T09:04:00.756Z |
| CVE-2026-40545 |
5.1 (4.0)
|
Reflected XSS in SOPlanning |
SOPlanning |
SOPlanning |
2026-06-01T09:03:53.407Z | 2026-06-01T09:03:53.407Z |
| CVE-2026-40544 |
5.1 (4.0)
|
Stored XSS in SOPlanning |
SOPlanning |
SOPlanning |
2026-06-01T09:03:49.850Z | 2026-06-01T09:03:49.850Z |
| CVE-2026-40543 |
8.8 (4.0)
|
Missing Authorization in SOPlanning |
SOPlanning |
SOPlanning |
2026-06-01T09:03:44.790Z | 2026-06-01T09:03:44.790Z |
| CVE-2026-10243 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Smart Parking System Admin Endpoint miss… |
code-projects |
Smart Parking System |
2026-06-01T09:00:13.192Z | 2026-06-01T09:00:13.192Z |
| CVE-2026-10242 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
itsourcecode Content Management System instructions.ph… |
itsourcecode |
Content Management System |
2026-06-01T08:45:08.494Z | 2026-06-01T08:45:08.494Z |
| CVE-2026-48827 |
7.1 (3.1)
|
Apache MINA SSHD: Path traversal in org.apache.sshd:sshd-git |
Apache Software Foundation |
Apache MINA SSHD |
2026-06-01T08:37:41.968Z | 2026-06-01T08:37:41.968Z |
| CVE-2026-10241 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
jeecgboot The server processes these URLs Cloud Instan… |
jeecgboot |
The server processes these URLs |
2026-06-01T08:30:10.014Z | 2026-06-01T08:30:10.014Z |
| CVE-2026-9024 |
8.7 (3.1)
|
Stored Cross-site Scripting (XSS) vulnerability affect… |
Dassault Systèmes |
DELMIA Service Process Engineer |
2026-06-01T08:21:06.579Z | 2026-06-01T08:21:06.579Z |
| CVE-2026-10240 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
JeecgBoot test server-side request forgery |
n/a |
JeecgBoot |
2026-06-01T08:15:08.540Z | 2026-06-01T08:15:08.540Z |
| CVE-2026-44825 |
8.1 (3.1)
|
Apache Solr: Enabling BasicAuth using bin/solr CLI con… |
Apache Software Foundation |
Apache Solr |
2026-06-01T08:02:15.120Z | 2026-06-01T08:02:15.120Z |
| CVE-2026-10239 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
JeecgBoot edit WordUtil.addImage server-side request forgery |
n/a |
JeecgBoot |
2026-06-01T08:00:16.801Z | 2026-06-01T08:00:16.801Z |
| CVE-2026-49361 |
N/A
|
Apache Fluss Netty Frame Decoder Memory Exhaustion Vul… |
Apache Software Foundation |
Apache Fluss (incubating) |
2026-06-01T07:57:27.038Z | 2026-06-01T07:57:27.038Z |
| CVE-2026-10517 |
5.8 (3.1)
|
Clair: clair: unauthenticated ssrf via manifest layer … |
Red Hat |
Red Hat Quay 3 |
2026-06-01T07:56:09.156Z | 2026-06-01T07:56:09.156Z |
| CVE-2026-40861 |
N/A
|
Apache Airflow: Arbitrary File Read via Log Symlink fo… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:55:37.566Z | 2026-06-01T07:55:37.566Z |
| CVE-2026-40961 |
N/A
|
Apache Airflow: Open Redirect Bypass Vulnerability |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:55:04.647Z | 2026-06-01T07:55:04.647Z |
| CVE-2026-40963 |
N/A
|
Apache Airflow: DAG authorization bypass on /ui/struct… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:54:33.704Z | 2026-06-01T07:54:33.704Z |
| CVE-2026-41014 |
N/A
|
Apache Airflow: per-DAG RBAC bypass on /ui/partitioned… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:53:52.098Z | 2026-06-01T07:53:52.098Z |
| CVE-2026-49267 |
N/A
|
Apache Airflow: No certificate validation on SMTP STAR… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:53:13.259Z | 2026-06-01T07:53:13.259Z |
| CVE-2026-41017 |
N/A
|
Apache Airflow: JWT cookie missing Secure flag in JWTR… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:52:33.651Z | 2026-06-01T07:52:33.651Z |
| CVE-2026-41084 |
N/A
|
Apache Airflow: API authorization bypass: bulk TaskIns… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:51:56.669Z | 2026-06-01T07:51:56.669Z |
| CVE-2026-42252 |
N/A
|
Apache Airflow: BashOperator Jinja2 injection via dag_… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:51:19.018Z | 2026-06-01T07:51:19.018Z |
| CVE-2026-42360 |
N/A
|
Apache Airflow: Rendered template truncation bypasses … |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:50:37.777Z | 2026-06-01T07:50:37.777Z |
| CVE-2026-8474 |
5.3 (3.1)
|
Possible to run a Cross Site Scripting request on the … |
StormShield |
StormShield Network Security |
2026-06-01T07:47:54.875Z | 2026-06-01T07:50:04.199Z |
| CVE-2026-42358 |
N/A
|
Apache Airflow: Variable masker depth-limit bypass ret… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:49:57.728Z | 2026-06-01T07:49:57.728Z |
| CVE-2026-42359 |
N/A
|
Apache Airflow: Authenticated RCE via XCom PATCH endpo… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:49:17.429Z | 2026-06-01T07:49:17.429Z |
| CVE-2026-45360 |
N/A
|
Apache Airflow: Arbitrary import in custom deadline-re… |
Apache Software Foundation |
Apache Airflow |
2026-06-01T07:48:13.287Z | 2026-06-01T07:48:13.287Z |