Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.3 CVE-2026-54825

WordPress wpDataTables plugin <= 7.4 - SQL Injection vulnerability_CVE-2026-54825

Unauthenticated SQL Injection in wpDataTables

wpDataTables wpDataTables n/a CVE
HIGH 7.5 CVE-2026-54824

WordPress Ads by WPQuads plugin <= 3.0.3 - Sensitive Data Exposure vulnerability_CVE-2026-54824

Unauthenticated Sensitive Data Exposure in Ads by WPQuads

Ads WPQuads Ads by WPQuads n/a CVE
CRITICAL 9.3 CVE-2026-54820

WordPress JetBooking plugin <= 4.0.4.1 - SQL Injection vulnerability_CVE-2026-54820

Unauthenticated SQL Injection in JetBooking

Crocoblock. Jetimpex Inc. JetBooking n/a CVE
MEDIUM 6.5 CVE-2026-52701

WordPress User Registration plugin <= 5.2.2 - Broken Access Control vulnerability_CVE-2026-52701

Unauthenticated Broken Access Control in User Registration

Themegrill User Registration n/a CVE
MEDIUM 6.5 CVE-2026-4339

SSRF via unvalidated attachment URLs in Mattermost Agents plugin MCP server_CVE-2026-4339

Mattermost versions 10.11.x

Mattermost Mattermost 10.11.0 CVE
HIGH 7.8 CVE-2026-45257

Arbitrary file overwrite via the KTLS receive path_CVE-2026-45257

The KTLS receive path decrypted each record in place, assuming that the mbufs holding received data were anonymous and safe to modify. This assump...

FreeBSD FreeBSD 15.0-RELEASE CVE
MEDIUM 5.5 CVE-2026-45256

Missing permission check in thr_kill2(2)_CVE-2026-45256

When used to deliver a signal to a specific thread, thr_kill2(2) called p_cansignal() to determine whether the operation was permitted but did not ...

FreeBSD FreeBSD 15.0-RELEASE CVE
LOW 3.5 CVE-2026-3472

Markdown image rendering bypass in AI bot tool result posts in Mattermost_CVE-2026-3472

Mattermost versions 10.11.x

Mattermost Mattermost 10.11.0 CVE
HIGH 7.5 CVE-2026-30041

CVE-2026-30041_CVE-2026-30041

An integer overflow in the PSD parser compnent of FastStone Image Viewer v8.3 allows attackers to execute arbitrary code or cause a Denial of Servi...

n/a n/a n/a CVE
MEDIUM 6.5 CVE-2026-30040

CVE-2026-30040_CVE-2026-30040

A heap overflow in the FSViewer.exe process of FastStone Image Viewer v8.3 allows attackers to cause a execute arbitrary code in the context of the...

n/a n/a n/a CVE