Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.8 CVE-2026-14403

CVE-2026-14403_CVE-2026-14403

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTM...

Google Chrome 150.0.7871.46 CVE
HIGH 8.3 CVE-2026-14401

CVE-2026-14401_CVE-2026-14401

Insufficient validation of untrusted input in ANGLE in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had compromise...

Google Chrome 150.0.7871.46 CVE
HIGH 8.3 CVE-2026-14400

CVE-2026-14400_CVE-2026-14400

Out of bounds write in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentia...

Google Chrome 150.0.7871.46 CVE
HIGH 8.8 CVE-2026-14395

CVE-2026-14395_CVE-2026-14395

Out of bounds write in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafte...

Google Chrome 150.0.7871.46 CVE
HIGH 8.8 CVE-2026-14393

CVE-2026-14393_CVE-2026-14393

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTM...

Google Chrome 150.0.7871.46 CVE
HIGH 8.3 CVE-2026-14389

CVE-2026-14389_CVE-2026-14389

Integer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially ...

Google Chrome 150.0.7871.46 CVE
HIGH 8.8 CVE-2026-14383

CVE-2026-14383_CVE-2026-14383

Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via...

Google Chrome 150.0.7871.46 CVE
HIGH 7.7 IMPERVABLOG:390...

Code Injection in Perforce Helix Core (CVE-2026-6902)_IMPERVABLOG:3902B857BFAE6E32EDDCC0AF92A3ADFF

## Executive Summary In this article, we disclose our latest findings we made on Perforce protocol P4 (Helix Core) between command line client and...

N/A N/A IMPERVABLOG
HIGH 7.3 CVE-2026-54263

Wagtail: Reflected XSS in dynamic image URL generator view_CVE-2026-54263

Wagtail is an open source content management system built on Django. In versions prior to 7.0.8, 7.3.3 and 7.4.2, reflected cross-site scripting (X...

wagtail wagtail < 7.0.8 CVE
HIGH 7.1 CVE-2026-50284

Craft CMS: Missing peer-permission check in `AssetsController::actionDeleteFolder` allows deletion of other users’ assets_CVE-2026-50284

Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDele...

craftcms cms =>= 5.0.0-RC1, < 5.9.22 CVE