|
361
|
- |
|
-
|
-
|
Rejected reason: After analysis, the originally reported behaviour was determined not to constitute a security vulnerability. The findings were parser-strictness defects without an exploitable framin…
New
|
-
|
CVE-2026-8762
|
2026-06-4 23:16 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
362
|
5.3 |
MEDIUM
Network
|
oracle
|
rest_data_services
|
Vulnerability in Oracle REST Data Services (component: General). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network…
Update
|
CWE-200
Information Exposure
|
CVE-2026-46841
|
2026-06-4 23:07 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
363
|
10.0 |
CRITICAL
Network
|
oracle
|
rest_data_services
|
Vulnerability in Oracle REST Data Services (component: Backend-as-a-Service). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker…
Update
|
CWE-284
CWE-287
CWE-306
Improper Access Control
Improper Authentication
Missing Authentication for Critical Function
|
CVE-2026-46840
|
2026-06-4 23:01 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
364
|
9.9 |
CRITICAL
Network
|
oracle
|
rest_data_services
|
Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network acc…
Update
|
CWE-284
Improper Access Control
|
CVE-2026-46839
|
2026-06-4 22:58 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
365
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on an affected device, possibly leading to b…
New
|
CWE-73
External Control of File Name or Path
|
CVE-2026-20175
|
2026-06-4 22:54 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
366
|
8.6 |
HIGH
Network
|
-
|
-
|
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attack…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-20230
|
2026-06-4 22:54 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
367
|
6.1 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based user interface of Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. Cisco has addressed this…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-20233
|
2026-06-4 22:54 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
368
|
8.8 |
HIGH
Network
|
-
|
-
|
The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.02 via the 'et_pb_text' shortcode 'cvdb_content_visibility_…
New
|
CWE-94
Code Injection
|
CVE-2026-1829
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
369
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in sayan365 student-management-system up to 7f3c9ce7d410332335c2affac93a385485051800. This impacts an unknown function. The manipulation results in improper authenticatio…
New
|
CWE-287
Improper Authentication
|
CVE-2026-10619
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
370
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in code-projects Student Admission System 1.0. Affected is an unknown function of the file /index.php. This manipulation of the argument eid/did causes sql injection. The attack…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10620
|
2026-06-4 22:53 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
