Search Vulnerabilities

Flowise: Credential Data Leak

Jun 8, 2026

CVE-2026-11464

JeecgBoot User List Endpoint SysUserController.java queryPageList information disclosure

CVE-2026-11459

SecureAge CatchPulse IOCTL saappctl.sys information disclosure

CVE-2026-11458

erzhongxmu JeeWMS Boot Actuator Endpoint actuator information disclosure

CVE-2026-11431

Path Traversal in Altium Projects Service Allows Arbitrary File Read

CVE-2026-11424

Server-Side Request Forgery in Altium Platform Design GraphQL Service Allows Information Disclosure

CVE-2026-45300

async-http-client: Cookie header not stripped on cross-origin redirect

CVE-2026-46395

HAX CMS Vulnerable to Private Key Disclosure via Broken HMAC Implementation

CVE-2026-47655

Microsoft Graph Information Disclosure Vulnerability

CVE-2026-45739

Strawberry GraphQL: Default GraphiQL may expose HTTP headers in URLs

CVE-2026-10864

MISP Dashboard widget field selection may expose restricted user and organisation data

CVE-2026-10854

Unauthorized exposure of private galaxies in MISP event template creation

CVE-2026-50224

Unauthenticated IPv6 WAN Management Exposure

CVE-2026-50210

Weak Static Cryptographic Initialization Vectors

CVE-2026-49193

Publicly Readable AWS S3 Telemetry Buckets

CVE-2026-49187

Hard-coded APK Resource Credentials & Scepters

CVE-2026-40495

FOSSBilling version exposed via asset cache buster

CVE-2026-41032

Phoenix Contact: Unauthenticated log download vulnerability in the firmware of CHARX SEC-3xxx charging controllers

CVE-2026-32625

LibreChat Exfiltrates Server Secrets via MCP Server URL Injection

CVE-2026-45553

NiceGUI: Local file disclosure via Docutils file insertion in ui.restructured_text()

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2026-46443

Flowise: Credential Data Leak

Jun 8, 2026

CVE-2026-11464

JeecgBoot User List Endpoint SysUserController.java queryPageList information disclosure

CVE-2026-11459

SecureAge CatchPulse IOCTL saappctl.sys information disclosure

CVE-2026-11458

erzhongxmu JeeWMS Boot Actuator Endpoint actuator information disclosure

CVE-2026-11431

Path Traversal in Altium Projects Service Allows Arbitrary File Read

CVE-2026-11424

Server-Side Request Forgery in Altium Platform Design GraphQL Service Allows Information Disclosure

CVE-2026-45300

async-http-client: Cookie header not stripped on cross-origin redirect

CVE-2026-46395

HAX CMS Vulnerable to Private Key Disclosure via Broken HMAC Implementation

CVE-2026-47655

Microsoft Graph Information Disclosure Vulnerability

CVE-2026-45739

Strawberry GraphQL: Default GraphiQL may expose HTTP headers in URLs

CVE-2026-10864

MISP Dashboard widget field selection may expose restricted user and organisation data

CVE-2026-10854

Unauthorized exposure of private galaxies in MISP event template creation

CVE-2026-50224

Unauthenticated IPv6 WAN Management Exposure

CVE-2026-50210

Weak Static Cryptographic Initialization Vectors

CVE-2026-49193

Publicly Readable AWS S3 Telemetry Buckets

CVE-2026-49187

Hard-coded APK Resource Credentials & Scepters

CVE-2026-40495

FOSSBilling version exposed via asset cache buster

CVE-2026-41032

Phoenix Contact: Unauthenticated log download vulnerability in the firmware of CHARX SEC-3xxx charging controllers

CVE-2026-32625

LibreChat Exfiltrates Server Secrets via MCP Server URL Injection

CVE-2026-45553

NiceGUI: Local file disclosure via Docutils file insertion in ui.restructured_text()