CVE tracker
352 subscribers
4.78K links
News monitoring: @irnewsagency

Main channel: @orgsecuritygate

Site: SecurityGate.org
Download Telegram
CVE-2026-15516 - MacCMS Pro Installation Index.php step5 authorization

CVE ID :CVE-2026-15516
Published : July 13, 2026, 12:15 a.m. | 15 minutes ago
Description :A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a high level of complexity. The exploitability is considered difficult. The exploit is now public and may be used. Upgrading to version 2022.1000.3025 is recommended to address this issue. Upgrading the affected component is recommended.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15517 - Jinher OA PlanGiveOut.aspx sql injection

CVE ID :CVE-2026-15517
Published : July 13, 2026, 1:17 a.m. | 3 hours, 13 minutes ago
Description :A flaw has been found in Jinher OA 1.0. The affected element is an unknown function of the file /C6/JHSoft.Web.PlanSummarize/PlanGiveOut.aspx. This manipulation of the argument httpOID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15518 - AREA 17 Twill CMS Media Library Insert FileLibraryController.php storeFile unrestricted upload

CVE ID :CVE-2026-15518
Published : July 13, 2026, 1:17 a.m. | 3 hours, 13 minutes ago
Description :A vulnerability has been found in AREA 17 Twill CMS up to 3.6.0. The impacted element is the function FileLibraryController::storeFile of the file src/Http/Controllers/Admin/FileLibraryController.php of the component Media Library Insert Page. Such manipulation of the argument qqfilename leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15519 - usestrix PyPI system_prompt.jinja inclusion of functionality from untrusted control sphere

CVE ID :CVE-2026-15519
Published : July 13, 2026, 2:16 a.m. | 2 hours, 14 minutes ago
Description :A vulnerability was found in usestrix strix up to 1.0.2. This affects an unknown function of the file system_prompt.jinja of the component PyPI Handler. Performing a manipulation results in inclusion of functionality from untrusted control sphere. The attack is possible to be carried out remotely. The complexity of an attack is rather high. The exploitability is reported as difficult. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15520 - GNU LibreDWG R2004 Section Decompression decode.c decompress_R2004_section heap-based overflow

CVE ID :CVE-2026-15520
Published : July 13, 2026, 2:16 a.m. | 2 hours, 14 minutes ago
Description :A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompress_R2004_section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been publicly disclosed and may be utilized. Upgrading to version 0.14.8396 will fix this issue. This patch is called 3d0f9fc2eddbd6579c99af3111c37c98f03475d0. You should upgrade the affected component.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15521 - makafeli n8n-workflow-builder update_node_from_file server.cjs path traversal

CVE ID :CVE-2026-15521
Published : July 13, 2026, 2:16 a.m. | 2 hours, 14 minutes ago
Description :A vulnerability was identified in makafeli n8n-workflow-builder up to 0.11.0. Affected is an unknown function of the file build/server.cjs of the component update_node_from_file. The manipulation of the argument filePath leads to path traversal. An attack has to be approached locally. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15522 - tugcantopaloglu godot-mcp run_project index.js validatePath path traversal

CVE ID :CVE-2026-15522
Published : July 13, 2026, 3:16 a.m. | 1 hour, 14 minutes ago
Description :A security flaw has been discovered in tugcantopaloglu godot-mcp 2.0.0. Affected by this vulnerability is the function validatePath of the file build/index.js of the component run_project. The manipulation of the argument projectPath results in path traversal. Attacking locally is a requirement. The exploit has been released to the public and may be used for attacks. Upgrading to version 3.0.0 addresses this issue. The patch is identified as eb63add552aa4bd9205395cf91b40654654a3cf2. It is suggested to upgrade the affected component.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15523 - CodeAstro Simple Online Leave Management System dashboard.php sql injection

CVE ID :CVE-2026-15523
Published : July 13, 2026, 3:16 a.m. | 1 hour, 14 minutes ago
Description :A weakness has been identified in CodeAstro Simple Online Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /SimpleOnlineLeave/admin/dashboard.php. This manipulation of the argument Name causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15524 - alioshr memory-bank-mcp list-project-files-validation-factory.ts path traversal

CVE ID :CVE-2026-15524
Published : July 13, 2026, 3:16 a.m. | 1 hour, 14 minutes ago
Description :A security vulnerability has been detected in alioshr memory-bank-mcp up to 0.2.1/3.1. This affects an unknown part of the file list-project-files-validation-factory.ts. Such manipulation of the argument projectName leads to path traversal. Local access is required to approach this attack. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15525 - kLOsk adloop write.py _validate_urls server-side request forgery

CVE ID :CVE-2026-15525
Published : July 13, 2026, 3:16 a.m. | 1 hour, 14 minutes ago
Description :A vulnerability was detected in kLOsk adloop up to 0.9.0. This vulnerability affects the function _validate_urls of the file src/adloop/ads/write.py. Performing a manipulation of the argument final_url results in server-side request forgery. The attack may be initiated remotely. The exploit is now public and may be used. Upgrading to version 0.10.0 is able to resolve this issue. The patch is named 217399723e3a2fb39389e5355d49ed80aaf9ea7c. Upgrading the affected component is advised.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15526 - augmnt augments-mcp-server scan_project_deps scan-project-deps.ts scanProjectDeps path traversal

CVE ID :CVE-2026-15526
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :A flaw has been found in augmnt augments-mcp-server 7.1.0. This issue affects the function scanProjectDeps of the file src/tools/v4/scan-project-deps.ts of the component scan_project_deps. Executing a manipulation of the argument packageJsonPath can lead to path traversal. The attack can only be executed locally. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15527 - better-auth better-icons scan_project_icons/sync_icon path traversal

CVE ID :CVE-2026-15527
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :A vulnerability has been found in better-auth better-icons up to 1.0.5. This vulnerability affects unknown code of the component scan_project_icons/sync_icon. Such manipulation of the argument icons_file leads to path traversal. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15528 - lamaalrajih kicad-mcp path_validator.py protection mechanism

CVE ID :CVE-2026-15528
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :A vulnerability was found in lamaalrajih kicad-mcp up to 3.3.1. This issue affects some unknown processing of the file kicad_mcp/utils/path_validator.py. Performing a manipulation of the argument project_path/schematic_path results in protection mechanism failure. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15529 - yzhao062 pyod persistence.py pyod.utils.persistence.load deserialization

CVE ID :CVE-2026-15529
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :A vulnerability was detected in yzhao062 pyod 3.5.0/3.5.1/3.5.2. Affected is the function pyod.utils.persistence.load of the file pyod/utils/persistence.py. Performing a manipulation of the argument path results in deserialization. The attack can be initiated remotely. The pull request to fix this issue requires some minor changes.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15552 - Ragic|Enterprise Cloud Database - Stored Cross-Site Scripting

CVE ID :CVE-2026-15552
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :Enterprise Cloud Database developed by Ragic has a Stored Cross-Site Scripting vulnerability, allowing unauthenticated remote attackers to inject persistent JavaScript code executed in users' browsers upon page load.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15553 - Ragic|Enterprise Cloud Database - Arbitrary File Upload

CVE ID :CVE-2026-15553
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :Enterprise Cloud Database developed by Ragic has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload malicious files and make them available for users to download.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-7162 - Software Integer Overflow Vulnerability

CVE ID :CVE-2026-7162
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :Successful exploitation of the integer overflow vulnerability could allow an attacker to achieve system-level access to the affected software.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-9492 - GIGABYTE|Gigabyte Control Center - Improper Access Control

CVE ID :CVE-2026-9492
Published : July 13, 2026, 4:16 a.m. | 14 minutes ago
Description :The MBStorage DRAM lighting control module within Gigabyte Control Center (GCC) developed by GIGABYTE Technology has an Improper Access Control vulnerability. Authenticated local attackers can send specific IOCTL commands through the driver MyPortIO_x64.sys bundled with the module, thereby arbitrarily reading and writing physical memory and obtaining kernel-level privileges.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-15535 - AkariAsai self-rag retrieval_lm index.py Indexer.deserialize_from deserialization

CVE ID :CVE-2026-15535
Published : July 13, 2026, 6:16 a.m. | 2 hours, 14 minutes ago
Description :A vulnerability was determined in AkariAsai self-rag up to 1fcdc420e48f50a7d7ab1ece5494221b93252e99. Affected by this issue is the function Indexer.deserialize_from of the file retrieval_lm/src/index.py of the component retrieval_lm. Executing a manipulation of the argument index_meta.faiss can lead to deserialization. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases. The project was informed of the problem early through an issue report but has not responded yet.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-10551 - Breeze Cache < 2.5.6 - Unauthenticated Stored XSS via Minify Library

CVE ID :CVE-2026-10551
Published : July 13, 2026, 7:16 a.m. | 1 hour, 14 minutes ago
Description :The Breeze Cache WordPress plugin before 2.5.6 is vulnerable to unauthenticated Stored Cross-Site Scripting (XSS) due to a predictable replacement hash used during the HTML minification process and abusing a regular expression. This allows an attacker to inject arbitrary HTML attributes in the final HTML output by anticipating the placeholder format.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-11963 - User Registration & Membership < 5.2.2 - Subscriber+ Cross-User Role and Membership Tier Modification via IDOR

CVE ID :CVE-2026-11963
Published : July 13, 2026, 7:16 a.m. | 1 hour, 14 minutes ago
Description :The User Registration & Membership WordPress plugin before 5.2.2 does not perform an authorization check on a membership-upgrade action and derives the user to modify from a caller-supplied identifier instead of the current user, allowing any authenticated user such as a subscriber to change another user's WordPress role and membership tier.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...