|
1871
|
6.3 |
MEDIUM
Network
|
-
|
-
|
Missing authentication and clear‑text transmission of data from the heat pumps to the control server, combined with the absence of input validation on aggregated data, can lead to stored XSS that ena…
|
CWE-79
CWE-306
CWE-319
Cross-site Scripting
Missing Authentication for Critical Function
Cleartext Transmission of Sensitive Information
|
CVE-2026-25599
|
2026-06-2 03:02 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1872
|
6.4 |
MEDIUM
Local
|
-
|
-
|
The PDBM application relies on a static, hard‑coded secret embedded
in the PDBM.exe executable. This secret is used by the application’s
encryption routines, including the function responsible for …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2026-25600
|
2026-06-2 03:02 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1873
|
- |
|
-
|
-
|
Improper access control in the PCTCore64.sys Windows kernel driver from PC Tools Internet Security allows user-mode processes to access the PCTCoreDriver WDM device interface and invoke privileged IO…
|
-
|
CVE-2026-8501
|
2026-06-2 03:02 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1874
|
9.9 |
CRITICAL
Network
|
portainer
|
portainer
|
Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
|
CWE-59
CWE-200
Link Following
Information Exposure
|
CVE-2026-44881
|
2026-06-2 03:02 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1875
|
8.5 |
HIGH
Network
|
portainer
|
portainer
|
Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
|
CWE-863
Incorrect Authorization
|
CVE-2026-44850
|
2026-06-2 02:59 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1876
|
8.8 |
HIGH
Network
|
portainer
|
portainer
|
Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
|
CWE-862
Missing Authorization
|
CVE-2026-44849
|
2026-06-2 02:59 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1877
|
8.8 |
HIGH
Network
|
portainer
|
portainer
|
Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …
|
CWE-862
Missing Authorization
|
CVE-2026-44848
|
2026-06-2 02:58 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1878
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A Deserialization of Untrusted Data vulnerability affecting Teamwork Cloud from No Magic Release 2022x through No Magic Release 2026x and Magic Collaboration Studio from CATIA Magic Release 2022x thr…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-7858
|
2026-06-2 02:57 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1879
|
8.7 |
HIGH
Network
|
-
|
-
|
A Stored Cross-site Scripting (XSS) vulnerability affecting Process Experience Studio in DELMIA Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2026x could all…
|
CWE-79
Cross-site Scripting
|
CVE-2026-9024
|
2026-06-2 02:57 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1880
|
6.5 |
MEDIUM
Network
|
mattermost
|
mattermost_server
|
Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to filter nil elements from outgoing webhook attachment payloads before processing, which allows an …
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2026-4915
|
2026-06-2 02:57 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
