CVE Vulnerabilities - 14 May 2026

A security issue in utcp-cli allows an attacker to execute any command on the server. This could allow them to access or modify sensitive data. To protect against this, make sure you're running the la...

A security issue in Cisco's SD-WAN Controller lets attackers access the system without a password. This means they could potentially take control of the system and make changes to the network. To fix ...

A vulnerability in the vm2 sandbox allows attackers to execute arbitrary commands on the host system. This affects all versions of vm2 prior to 3.11.3. To protect your system, update to version 3.11.3...

Fleet's software installer pipeline is affected, which could allow a malicious software package to run arbitrary commands on managed endpoints. This is a risk because a hacker could upload a package t...

A security weakness in Akilli Commerce's E-Commerce Website allows an attacker to access a customer's session, potentially allowing them to make unauthorized purchases or changes. This affects version...

Akilli Commerce's E-commerce website has a security flaw that allows attackers to manipulate database queries. This could lead to sensitive information being stolen or altered. Update to version 4.5.0...

The InfusedWoo Pro plugin for WordPress is vulnerable to unauthorized access to admin accounts. This means that an attacker can gain access to any account, including the administrator account, without...

The Career Section plugin for WordPress, in versions up to 1.7, allows unauthenticated attackers to upload files that could potentially contain malicious code. This could allow attackers to execute co...

An attacker can use a known administrator username to pretend to be that administrator and gain access to the WordPress site. This can lead to unauthorized changes or actions on the site. Website admi...

A vulnerability in Google Chrome allowed a malicious website to potentially escape the security sandbox, potentially leading to unauthorized access to your computer. This issue has been fixed in versi...

Debian Linux systems are at risk of being hacked by malicious users who can execute unauthorized code on the system. This could allow an attacker to gain full control of the system. To protect your sy...

Debian Linux users are at risk if they haven't applied recent system updates. This means that attackers can exploit known security weaknesses. To stay secure, ensure that all system updates have been ...

Google Chrome versions prior to 148.0.7778.168 have a security issue that could allow an attacker to escape the browser's security sandbox. This could potentially allow the attacker to access sensitiv...

A security issue was found in the SoundCloud Client software. If a user plays a SoundCloud track with a malicious title, it could potentially run code on the user's computer. This has been fixed in ve...

The Gradient continuous integration system allows anyone to register as a worker without a password, giving them access to all jobs and the ability to upload arbitrary files. This is a security risk b...

A security issue in FlowiseAI's Evaluator feature allows unauthorized access to data across different workspaces. This could lead to sensitive information being compromised. To protect your data, upda...

A security flaw in FlowiseAI allows an attacker with permission to create or update an Evaluator to take control of Evaluators in other workspaces. This can happen when an attacker creates or updates ...

A vulnerability in FlowiseAI allows attackers to access and manipulate data from other workspaces. This can happen when an attacker sends malicious data to the system, potentially leading to unauthori...

A security issue in FlowiseAI allows unauthorized access to data from other workspaces. This can happen when creating or updating an evaluation. To fix this, FlowiseAI developers should ensure that on...

A bug in the FlowiseAI software allows an attacker to access and modify data from other workspaces. This could lead to unauthorized access to sensitive information. To fix this issue, FlowiseAI develo...

A bug in FlowiseAI's DatasetRow feature allows an attacker to access and modify data from other workspaces. This could happen if a user with access to one workspace is tricked into updating a DatasetR...

A security issue exists in the FlowiseAI dataset feature, where an attacker can create or update datasets in any workspace, not just their own. This allows unauthorized access to sensitive data. To fi...

FlowiseAI's dataset feature allows unauthorized access to datasets across different workspaces. This means an attacker could access sensitive data they shouldn't have access to. To fix this, update th...

FlowiseAI's Custom Template feature has a security issue. This means that data from one workspace can be accessed and stolen by users from other workspaces. To fix this, FlowiseAI's developers need to...

An issue has been found in the CustomTemplate feature of FlowiseAI that allows an attacker to access and modify data from other workspaces. This is a security risk because it could allow unauthorized ...