|
1271
|
7.8 |
HIGH
Local
|
cnighswonger
|
claude-code-cache-fix
|
claude-code-cache-fix is a cache optimization proxy for Claude Code. From 3.5.0 to before 3.5.2, tools/quota-statusline.sh (introduced in v3.5.0) interpolates Claude Code's hook stdin payload directl…
Update
|
CWE-78
CWE-94
OS Command
Code Injection
|
CVE-2026-45136
|
2026-06-3 02:57 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1272
|
7.8 |
HIGH
Local
|
-
|
-
|
A high security vulnerability affecting Security Center main server installations has been identified. It could allow an attacker with local OS privileges to the main server to access the Server Admi…
New
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2026-40619
|
2026-06-3 02:35 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1273
|
3.1 |
LOW
Network
|
-
|
-
|
HCL iReflection Third party vulnerable and outdated components issue was detected in the web application
New
|
-
|
CVE-2024-42206
|
2026-06-3 02:35 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1274
|
6.3 |
MEDIUM
Network
|
-
|
-
|
CZ.NIC BIRD Internet Routing Daemon through 2.19.0 contains a stack-based buffer overflow in the BGP AS_PATH mask matching implementation in nest/a-path.c. The as_path_match() function uses a fixed-s…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-49943
|
2026-06-3 02:35 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1275
|
7.4 |
HIGH
Adjacent
|
linuxfoundation
|
volcano
|
Volcano is a Kubernetes-native batch scheduling system. Prior to v1.14.2, v1.13.3, and v1.12.4, the Volcano webhook server does not enforce a size limit on incoming HTTP request bodies. Any in-cluste…
Update
|
CWE-400
CWE-770
Uncontrolled Resource Consumption
Allocation of Resources Without Limits or Throttling
|
CVE-2026-44247
|
2026-06-3 02:25 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1276
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in DedeCMS 5.7.88. The affected element is the function TrimMsg of the file /plus/feedback.php of the component Feedback Handler. Executing a manipulation of the argume…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10606
|
2026-06-3 02:19 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1277
|
9.8 |
CRITICAL
Network
|
-
|
-
|
Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an unauthenticated remote code execution vulnerability through a deprecated .NET Remoting HTTP channel expose…
New
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2026-0611
|
2026-06-3 02:19 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1278
|
- |
|
-
|
-
|
Improper access control in the PAM account discovery feature in Devolutions Server 2026.1.19 and earlier allows an authenticated user without administrative privileges to delete network discovery sca…
New
|
-
|
CVE-2026-9522
|
2026-06-3 02:19 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1279
|
- |
|
-
|
-
|
Improper access control in the permission validation component in Devolutions Server 2026.1.19 and earlier allows an authenticated user with entry edit privileges to modify asset information without …
New
|
-
|
CVE-2026-9590
|
2026-06-3 02:19 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1280
|
- |
|
-
|
-
|
NamelessMC is website software for Minecraft servers. In version 2.2.4, `modules/Forum/classes/ForumPostReactionContext.php` only verifies that the caller can view the forum, but it does not re-enfor…
New
|
CWE-862
Missing Authorization
|
CVE-2026-35443
|
2026-06-3 02:18 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
