CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST — in English

CISA KEV catalog updated: (v2026.07.01)

CVE-2026-13828
Medium

An inappropriate implementation in the Enterprise component in Google Chrome prior to 150.0.7871.47 allows a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

CVE-2026-13820
Medium

An out-of-bounds read vulnerability in the Skia library in Google Chrome on Mac prior to version 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.

CVE-2026-13818
Medium

An inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. The issue is rated as high severity.

CVE-2026-13816
Medium

Insufficient validation of untrusted input in File Input in Google Chrome on Android prior to version 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

CVE-2026-13812
Medium

Insufficient validation of untrusted input in Chrome for iOS prior to version 150.0.7871.47 allows a remote attacker to convince a user to perform specific UI gestures, leading to arbitrary script or HTML injection (UXSS) via a crafted HTML page.

CVE-2026-13810
Medium

Inappropriate implementation in Input in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)

CVE-2026-13809
Medium

Side-channel information leakage vulnerability in Safe Browsing in Google Chrome on iOS prior to 150.0.7871.47. A remote attacker who compromised the renderer process could leak cross-origin data via a crafted HTML page.

CVE-2026-13808
Medium

Insufficient data validation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive information from process memory via physical access to the device. (Chromium security severity: High)

CVE-2026-13795
Medium

Insufficient policy enforcement in Chrome for iOS prior to 150.0.7871.47 allows a remote attacker to bypass navigation restrictions via a crafted HTML page. The vulnerability has a Chromium security severity of High.

CVE-2026-13793
Medium

Insufficient policy enforcement in SVG in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

CVE-2026-13790
Medium

A side-channel information leakage vulnerability in the Scroll feature of Google Chrome prior to version 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. The issue is rated as High severity in Chromium security.

CVE-2025-71381
Medium

A vulnerability in Hono before version 4.10.2 (fixed in 4.10.3) in the CORS middleware causes the Vary header from the incoming request to be copied into the response when the origin is not set to "*". An attacker can supply arbitrary Vary values that are reflected in the response, leading to cache key pollution and inconsistent CORS enforcement in environments relying on shared caches or proxies.

CVE-2026-58450
Medium

Invoice Ninja up to version 5.13.26 contains an open redirect vulnerability in the client portal login. An unauthenticated attacker can redirect an authenticated victim to an attacker-controlled external URL by injecting a malicious value into the intended query parameter.

CVE-2026-58448
Medium

A broken access control vulnerability in the BPM module of yudao-cloud before version 2026.06 allows any authenticated user to access arbitrary process instance records by supplying a caller-controlled process-instance identifier to an unprotected GET endpoint lacking the @PreAuthorize annotation. Attackers can read sensitive workflow data including submitted form variables, approver identities, approval and rejection comments, and process BPMN XML without ownership or tenant party verification.

CVE-2026-58447
Medium

A vulnerability in Invidious through version 2.20260626.0 (fixed in commit 77ad416) allows authenticated attackers to delete videos from other users' playlists by supplying an arbitrary global video index in the remove_video action. Attackers can obtain per-video index values from the public playlist JSON API and submit them to the playlist video deletion endpoint without ownership validation, permanently removing videos from playlists they do not own.

CVE-2026-58446
Medium

A vulnerability in Presenton before version 0.8.8-beta allows an unauthenticated remote attacker to invoke MCP tools such as generate_presentation by accessing the /mcp path without authentication. The MCP server automatically generates a valid session token for the configured user, enabling authenticated application actions.

CVE-2026-10585
Medium

A stored cross-site scripting vulnerability was found in GitHub Enterprise Server, allowing an authenticated attacker to execute arbitrary JavaScript in another user's browser by injecting a malicious payload into the title of a Discussion in the Q&A category. The AnsweredQuestionStructuredDataComponent failed to escape user-controlled Discussion titles before embedding them in a <script type="application/ld+json"> block, enabling breakout from the script context. The attack was escalated to full XSS by leveraging JSONP callback support in the REST API to bypass Content Security Policy.

CVE-2026-9132
Medium

A missing authorization vulnerability in GitHub Enterprise Server allowed an authenticated user to read source code from private repositories they did not have access to via the Copilot pull request description diff summary endpoint. The vulnerability affects all versions prior to 3.21 and was fixed in versions 3.17.17, 3.18.11, 3.19.8, and 3.20.4.

CVE-2026-9106
Medium

A UI misrepresentation vulnerability in GitHub Enterprise Server allowed an OAuth application to gain unintended access to an organization's runner management. The issue occurred because the manage_runners:org scope was not displayed on the authorization consent screen, enabling an attacker to trick a user into authorizing a malicious app.

CVE-2026-10562
Medium

An unauthenticated URL redirection vulnerability has been identified in Archer AX20 V2 due to improper validation of user-supplied URL input within the web interface. An unauthenticated attacker can craft URLs containing URL-encoded path traversal sequences, which when processed by the embedded web server may cause the device to respond with HTTP 3xx redirects to attacker-controlled external domains.

PreviousPage 25 of 523Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS