|
1
|
6.1 |
MEDIUM
Network
|
cacti
|
cacti
|
Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Open Redirect through a substring check rather than a host check at str_contains($refer…
New
|
CWE-601
Open Redirect
|
CVE-2026-40080
|
2026-06-30 03:52 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2
|
3.7 |
LOW
Network
|
-
|
-
|
Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28.
This issue affects Hitachi Virtual Storage Platform One Block 23, 24, 26, 28: before DKCM…
New
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2025-0824
|
2026-06-30 03:52 |
2026-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3
|
8.3 |
HIGH
Network
|
-
|
-
|
Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform.
This issue affects Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790…
New
|
CWE-862
Missing Authorization
|
CVE-2025-2902
|
2026-06-30 03:52 |
2026-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4
|
6.8 |
MEDIUM
Network
|
-
|
-
|
Information exposure vulnerability in Hitachi Storage Navigator.
This issue affects Hitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H, 5200H, 5500H, 5600H, VX8: before DKCMAIN Ver. 90-0…
New
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2025-7386
|
2026-06-30 03:52 |
2026-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5
|
- |
|
-
|
-
|
Honeywell IQ MultiAccess, all versions prior to and including version 28, contain an improper digital signature verification vulnerability. An attacker could potentially exploit this vulnerability, l…
New
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-13742
|
2026-06-30 03:52 |
2026-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6
|
6.7 |
MEDIUM
Local
|
-
|
-
|
The HCL Traveler for Microsoft Outlook libraries are being flagged as potentially malicious software or an unrecognized application.
New
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2024-23581
|
2026-06-30 03:51 |
2026-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
7
|
- |
|
-
|
-
|
Notepad++ is a free and open-source source code editor. From 8.9.4 until 8.9.6, Notepad++ contains a local privilege escalation vulnerability in the installer. During installation, the installer invo…
New
|
CWE-426
Untrusted Search Path
|
CVE-2026-46710
|
2026-06-30 03:51 |
2026-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
8
|
5.0 |
MEDIUM
Local
|
-
|
-
|
Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, a local process in the same interactive Windows session can send a malformed WM_COPYDATA message to Notepad++ using the COPYD…
New
|
CWE-125
Out-of-bounds Read
|
CVE-2026-48770
|
2026-06-30 03:51 |
2026-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
9
|
7.8 |
HIGH
Local
|
-
|
-
|
Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the <GUIConfig name="commandLineInterpreter"> tag in config.xml is read by NppXml::value() (Parameters.cpp:6430) and stored i…
New
|
CWE-78
OS Command
|
CVE-2026-48778
|
2026-06-30 03:51 |
2026-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
10
|
7.8 |
HIGH
Local
|
-
|
-
|
Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the <Command> tag text content inside <UserDefinedCommands> in shortcuts.xml is read by NppXml::value(aNode) (Parameters.cpp:…
New
|
CWE-78
OS Command
|
CVE-2026-48800
|
2026-06-30 03:51 |
2026-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
