Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.2 CVE-2026-58455

Dockwatch 0.6.567 Unauthenticated OS Command Injection via ajax/compose.php_CVE-2026-58455

Dockwatch through 0.6.567 contains an unauthenticated OS command injection vulnerability that allows remote attackers to execute arbitrary shell co...

Notifiarr dockwatch CVE
HIGH 8.4 CVE-2026-44941

libzypp path traversal via “keyhint” in repomd.xml_CVE-2026-44941

A relative path traversal in the "keyhint" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malici...

SUSE libzypp CVE
HIGH 7.5 CVE-2026-36912

CVE-2026-36912_CVE-2026-36912

A NULL pointer dereference in the AP4_AtomSampleTable::GetSample() function of Aleksoid1978 MPC-BE before commit 4341cb3 allows attackers to cause ...

n/a n/a n/a CVE
HIGH 7.5 CVE-2026-52190

CVE-2026-52190_CVE-2026-52190

Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_4...

n/a n/a n/a CVE
CRITICAL 9.8 CVE-2026-52186

CVE-2026-52186_CVE-2026-52186

SQL Injection vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to execute arbitrary code via the gohead/sub_463bbc...

n/a n/a n/a CVE
HIGH 7.5 CVE-2026-38891

CVE-2026-38891_CVE-2026-38891

An improper input validation in the gazebo_ros_diff_drive.cpp component of gazebo_plugins v3.9.0 allows attackers to cause a Denial of Service (DoS...

n/a n/a n/a CVE
MEDIUM 6.5 CVE-2026-14404

CVE-2026-14404_CVE-2026-14404

Inappropriate implementation in PDFium in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to perform UI spoofing via a crafted PDF f...

Google Chrome 150.0.7871.46 CVE
HIGH 8.8 CVE-2026-14394

CVE-2026-14394_CVE-2026-14394

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML pa...

Google Chrome 150.0.7871.46 CVE
HIGH 8.8 CVE-2026-14385

CVE-2026-14385_CVE-2026-14385

Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to perform out of bounds memory access via a...

Google Chrome 150.0.7871.46 CVE
MEDIUM 6.5 CVE-2026-11965

User Registration & Membership < 5.2.0 - Unauthenticated Paid Membership Bypass_CVE-2026-11965

The User Registration & Membership WordPress plugin before 5.2.0 does not enforce payment completion before activating a paid membership subscript...

Unknown User Registration & Membership CVE