|
591
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Cap-go Console < 12.28.2 contains a denial-of-service vulnerability in its account deletion flow that allows an attacker to block authentication and onboarding functions by triggering account deletio…
|
CWE-645
Overly Restrictive Account Lockout Mechanism
|
CVE-2026-53982
|
2026-06-16 05:50 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
592
|
10.0 |
CRITICAL
Network
|
-
|
-
|
SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity toke…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2026-48558
|
2026-06-16 05:50 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
593
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Capgo before 12.128.2 fails to delete previously uploaded profile images from backend storage when users replace or remove them. Attackers can access orphaned image files through previously generated…
|
CWE-459
Incomplete Cleanup
|
CVE-2026-53867
|
2026-06-16 05:50 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
594
|
7.5 |
HIGH
Network
|
-
|
-
|
Capgo before 12.128.2 contains a denial of service vulnerability allowing attackers to register accounts using arbitrary email addresses without verification, then initiate deletion to lock emails in…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2026-53868
|
2026-06-16 05:50 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
595
|
- |
|
-
|
-
|
The Iptanus File Upload WordPress plugin before 5.1.7 does not implement proper file handling when the duplicatepolicy setting is configured to "maintain both." Due to a Time-of-Check to Time-of-Use …
|
-
|
CVE-2025-15546
|
2026-06-16 05:50 |
2026-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
596
|
7.8 |
HIGH
Local
|
-
|
-
|
Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process.
This…
|
CWE-125
Out-of-bounds Read
|
CVE-2025-7002
|
2026-06-16 05:49 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
597
|
7.8 |
HIGH
Local
|
-
|
-
|
Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process.
This…
|
CWE-125
Out-of-bounds Read
|
CVE-2025-7003
|
2026-06-16 05:49 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
598
|
7.8 |
HIGH
Local
|
-
|
-
|
Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows MSI file may allow Local Execution of Code or Denial-of-Service of the antivirus engine proces…
|
CWE-125
Out-of-bounds Read
|
CVE-2025-7017
|
2026-06-16 05:49 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
599
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Null pointer dereference vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus engine process.
This issue affects Avira Antiv…
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-7018
|
2026-06-16 05:49 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
600
|
7.8 |
HIGH
Local
|
-
|
-
|
Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process.
This issue…
|
CWE-787
Out-of-bounds Write
|
CVE-2025-7004
|
2026-06-16 05:49 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
