|
81
|
- |
|
-
|
-
|
Concrete CMS 9.5.0 and below has Stored XSS on the height parameter. The controller does not validate or sanitize $height. Any user with editor privileges can inject malicious JavaScript that execute…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-8203
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
82
|
- |
|
-
|
-
|
Concrete CMS 9.5.0 and below is vulnerable to Stored XSS via OAuth integration name. The OAuth authorize template renders the integration name (admin-controlled) through Concrete's t() translation he…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-8197
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
83
|
- |
|
-
|
-
|
Concrete CMS 9.5.0 and below does not validate a CSRF token before processing requests to /dashboard/extend/install/download/<remoteId>. The download() method in concrete/controllers/single_page/dash…
New
|
CWE-352
Origin Validation Error
|
CVE-2026-8140
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
84
|
- |
|
-
|
-
|
Concrete CMS 9.5.0 and below is vulnerable to Remote Code Execution due to insecure deserialization occurring in the ExpressEntryList block controller. An rogue administrator with privileges to add …
New
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-8135
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
85
|
- |
|
-
|
-
|
Concrete CMS 9.5.0 and below fails to sanitize path traversal sequences in the ptComposerFormLayoutSetControlCustomTemplate field when saving page type composer form layouts. An authenticated rogue a…
New
|
CWE-23
CWE-98
CWE-434
Relative Path Traversal
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-8134
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
86
|
- |
|
-
|
-
|
Concrete CMS 9.5.0 and below is vulnerable to unauthenticated file usage disclosure via missing permission check in the usage controller. Any unauthenticated visitor can request /ccm/system/dialogs…
New
|
CWE-200
Information Exposure
|
CVE-2026-6826
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
87
|
8.8 |
HIGH
Network
|
-
|
-
|
LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint. While the endpoint correctly restricts users to updating only their own account, it does not restri…
New
|
CWE-863
Incorrect Authorization
|
CVE-2026-47102
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
88
|
8.8 |
HIGH
Network
|
-
|
-
|
LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that their role does not permit. When generating a key, the allowed_routes field is stored with…
New
|
CWE-863
Incorrect Authorization
|
CVE-2026-47101
|
2026-05-22 06:16 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
89
|
8.8 |
HIGH
Network
|
-
|
-
|
IINA before 1.4.3 contains a user-assisted command execution vulnerability that allows remote attackers to execute arbitrary commands by supplying malicious mpv_-prefixed query parameters through the…
New
|
CWE-88
Argument Injection
|
CVE-2026-47114
|
2026-05-22 06:03 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
90
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The GSheet For Woo Importer plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the process_ajax_restore_action() function in all versions up to, and …
New
|
CWE-862
Missing Authorization
|
CVE-2026-4843
|
2026-05-22 06:03 |
2026-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
