|
31
|
5.3 |
MEDIUM
Network
|
torproject
|
tor
|
Tor before 0.4.9.7 can attempt or accept BEGIN_DIR via conflux legs, aka TROVE-2026-008.
New
|
CWE-669
Incorrect Resource Transfer Between Spheres
|
CVE-2026-44599
|
2026-05-8 02:31 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
32
|
5.3 |
MEDIUM
Network
|
torproject
|
tor
|
Tor before 0.4.9.7 mishandles accounting of the conflux out-of-order queue during the clearing of a queue, aka TROVE-2026-010.
New
|
CWE-696
Incorrect Behavior Order
|
CVE-2026-44600
|
2026-05-8 02:26 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
33
|
9.1 |
CRITICAL
Network
|
torproject
|
tor
|
Tor before 0.4.9.7 has an out-of-bounds read by one byte via a malformed BEGIN cell, aka TROVE-2026-007.
New
|
CWE-193
Off-by-one Error
|
CVE-2026-44603
|
2026-05-8 02:24 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
34
|
8.8 |
HIGH
Local
|
-
|
-
|
NanoClaw version 1.2.0 and prior contains a host/container filesystem boundary vulnerability in outbound attachment handling and outbox cleanup that allows a compromised or prompt-injected container …
New
|
CWE-22
Path Traversal
|
CVE-2026-7875
|
2026-05-8 02:15 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
35
|
7.5 |
HIGH
Network
|
-
|
-
|
Gazelle versions through 0.49 for Perl allows HTTP Request Smuggling via Improper Header Precedence.
Gazelle incorrectly prioritizes "Content-Length" over "Transfer-Encoding: chunked" when both head…
New
|
CWE-444
HTTP Request Smuggling
|
CVE-2026-40562
|
2026-05-8 02:15 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
36
|
5.3 |
MEDIUM
Network
|
kazuho
|
starlet
|
Starlet versions through 0.31 for Perl allows HTTP Request Smuggling via Improper Header Precedence.
Starlet incorrectly prioritizes "Content-Length" over "Transfer-Encoding: chunked" when both head…
Update
|
CWE-444
HTTP Request Smuggling
|
CVE-2026-40561
|
2026-05-8 02:15 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
37
|
6.3 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in the OpenShell filesystem bridge that allows attackers to read files outside the intended mount root. Attackers can exp…
New
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-44113
|
2026-05-8 02:08 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
38
|
7.8 |
HIGH
Local
|
openclaw
|
openclaw
|
OpenClaw before 2026.4.20 fails to properly reserve the OPENCLAW_ runtime-control environment namespace in workspace dotenv files, allowing attackers to override critical runtime variables. Malicious…
New
|
CWE-184
Incomplete Blacklist
|
CVE-2026-44114
|
2026-05-8 02:07 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
39
|
8.8 |
HIGH
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.4.22 contains an exec allowlist analysis vulnerability allowing shell expansion hiding in unquoted heredoc bodies. Attackers can bypass allowlist validation by embedding shell ex…
New
|
CWE-184
Incomplete Blacklist
|
CVE-2026-44115
|
2026-05-8 02:07 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
40
|
8.6 |
HIGH
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.4.22 contains a server-side request forgery vulnerability in the Zalo plugin's sendPhoto function that fails to validate outbound photo URLs through the SSRF guard. Attackers can…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-44116
|
2026-05-8 02:07 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
