|
231
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
thunderbird
|
Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1, Thunderbird 140.10.1, and Firefox ESR 115.35.…
Update
|
NVD-CWE-noinfo
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2026-8091
|
2026-05-12 00:20 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
232
|
8.1 |
HIGH
Network
|
mozilla
|
firefox
thunderbird
|
Memory safety bugs present in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have…
Update
|
CWE-125
CWE-416
CWE-787
Out-of-bounds Read
Use After Free
Out-of-bounds Write
|
CVE-2026-8092
|
2026-05-12 00:16 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
233
|
7.5 |
HIGH
Network
|
google
|
android
|
In IMS, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
Update
|
NVD-CWE-noinfo
|
CVE-2025-71251
|
2026-05-12 00:13 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
234
|
7.5 |
HIGH
Network
|
google
|
android
|
In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
Update
|
NVD-CWE-noinfo
|
CVE-2025-71252
|
2026-05-12 00:13 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
235
|
8.1 |
HIGH
Network
|
mozilla
|
firefox
thunderbird
|
Memory safety bugs present in Thunderbird 150.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitr…
Update
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-8093
|
2026-05-12 00:12 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
236
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
thunderbird
|
Other issue in the WebRTC component. This vulnerability was fixed in Firefox ESR 140.10.2 and Thunderbird 140.10.2.
Update
|
CWE-94
Code Injection
|
CVE-2026-8094
|
2026-05-12 00:12 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
237
|
7.5 |
HIGH
Network
|
google
|
android
|
In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
Update
|
NVD-CWE-noinfo
|
CVE-2025-71253
|
2026-05-12 00:11 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
238
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injec…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8097
|
2026-05-12 00:11 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
239
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sq…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8098
|
2026-05-12 00:11 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
240
|
5.3 |
MEDIUM
Network
|
-
|
-
|
The LatePoint plugin for WordPress is vulnerable to Account Takeover via Weak Password Recovery Mechanism in the unauthenticated guest booking flow in versions up to, and including, 5.5.0 This is due…
New
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2026-7652
|
2026-05-12 00:11 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
