CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST - in English

CISA KEV catalog updated: (v2026.07.14)

CVE-2026-40818
High

The _mb24confi_getDevice function has an unauthenticated SQL Injection vulnerability due to improper neutralization of special elements in a SQL SELECT command. An attacker can exploit this flaw, resulting in a total loss of confidentiality.

CVE-2026-40817
High

The getAlarmProfiles function has an SQL Injection vulnerability that can be exploited by an unauthenticated remote attacker. Improper neutralization of special elements in a SQL SELECT command leads to a total loss of confidentiality.

CVE-2026-40816
High

The mb24alarm.php files have a remote SQL Injection vulnerability in the _mb24confi_getTagAlarm function, allowing unauthorized access to data.

CVE-2026-40815
High

The _mb24api_getUserAccount function has an unauthenticated SQL Injection vulnerability due to improper neutralization of special elements in a SQL SELECT command. This can lead to a total loss of confidentiality.

CVE-2026-40814
High

The dataapi.php file in the _mb24confi_getTagAlarm function has an unauthenticated SQL Injection vulnerability due to improper neutralization of special elements in a SQL SELECT command. This can lead to a total loss of confidentiality.

CVE-2026-40813
High

CVE-2026-40813 describes an unauthenticated remote SQL Injection vulnerability in the tagid parameter of the getLiveValues function. Improper neutralization of special elements in a SQL SELECT command can lead to a total loss of confidentiality.

CVE-2026-40812
High

There is a remote SQL Injection vulnerability in the getLiveValues function that allows unauthorized access to data. An attacker can exploit this flaw, leading to a total loss of data confidentiality.

CVE-2026-40811
High

The ssoabstractservice has a remote SQL Injection vulnerability that can be exploited by an unauthenticated attacker. The flaw arises from improper neutralization of special elements in a SQL SELECT command, potentially leading to a total loss of confidentiality.

CVE-2026-40810
High

In CVE-2026-40810, an unauthenticated remote attacker can exploit an SQL Injection vulnerability in the userinfo endpoint due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality.

CVE-2026-3375
High

The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting (XSS) via the /wp-json/litespeed/v1/notify_ccss and /wp-json/litespeed/v1/notify_ucss REST API endpoints in all versions up to and including 7.7. These endpoints accept CSS content from QUIC.cloud callback notifications and store it to disk without sanitization.

CVE-2025-41670
High

A local user with low privileges may influence the behavior of a privileged system service by manipulating configuration or application-related files in user-writable areas of the filesystem. The affected service processes data from locations that are not sufficiently protected against modification by low-privileged users.

CVE-2025-41669
High

Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root privileges on the PLC device.

CVE-2026-9200
High

The Query Shortcode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to and including 0.2.1, allowing authenticated attackers with contributor-level access and above to include and execute arbitrary .php files on the server.

CVE-2026-8994
High

The Login with NEAR plugin for WordPress is vulnerable to Authentication Bypass in all versions up to and including 0.3.3. The `ajaxLoginWithNear()` function allows attackers to log in as any existing WordPress user, including administrators, based on the supplied `account` parameter.

CVE-2026-8787
High

The Firebase Support & Chat Management plugin for WordPress is vulnerable to privilege escalation in all versions up to and including 3.1.1. The `firebase_auth()` function authenticates the request as the WordPress user whose email is supplied in the `user_email` POST parameter without verifying ownership of that email.

CVE-2026-6268
High

The EventPress WordPress theme before version 22.2 does not sanitize or escape the 'id' parameter in the eventpress_customizer_notify_dismiss_action AJAX handler, allowing unauthenticated attackers to perform Reflected Cross-Site Scripting attacks against logged-in users.

CVE-2026-49000
High

An insecure password scheme refers to vulnerabilities arising from improper selection of encryption algorithms, inadequate key management, or flawed code implementation, which may lead to data leakage or tampering.

CVE-2026-2253
High

Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.7 and 11.0.0.0, including 9.3.x and 8.3.x, do not prevent certain XML parsers from resolving external entities.

CVE-2026-9632
High

A flaw has been found in UTT HiPER 1250GW up to version 3.2.7-210907-180535 in the strcpy function of the /goform/formGroupConfig file of the Web Management Interface. Manipulating the Profile argument can lead to stack-based buffer overflow.

CVE-2026-9631
High

A vulnerability was detected in UTT HiPER 1250GW up to version 3.2.7-210907-180535, affecting the strcpy function in the /goform/formConfigFastDirectionW file of the Web Management Interface. Manipulating the Profile argument results in a stack-based buffer overflow.

PreviousPage 243 of 3321Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS