| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-6846 | Binutils: binutils: arbitrary code execution via malformed xcoff object file processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.8 | 2026-04-22 08:37:14 | Deep Dive |
| CVE-2026-6844 | Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-04-22 08:37:10 | Deep Dive |
| CVE-2026-6843 | Nano: nano: format string vulnerability leads to denial of service | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-04-22 08:30:05 | Deep Dive |
| CVE-2026-31433 | ksmbd: fix potencial OOB in get_file_all_info() for compound requests | Linux | Linux | High | 8.8 | 2026-04-22 08:15:12 | Deep Dive |
| CVE-2026-31432 | ksmbd: fix OOB write in QUERY_INFO for compound requests | Linux | Linux | High | 8.8 | 2026-04-22 08:15:11 | Deep Dive |
| CVE-2026-31431 | crypto: algif_aead - Revert to operating out-of-place | Linux | Linux | High | 7.8 | 2026-04-22 08:15:10 | Deep Dive |
| CVE-2026-6845 | Binutils: binutils: denial of service via crafted elf file | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.0 | 2026-04-22 07:54:19 | Deep Dive |
| CVE-2026-4353 | CI HUB Connector <= 1.2.106 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'id' Shortcode Attribute | cihubconnector | CI HUB Connector | Medium | 6.4 | 2026-04-22 07:45:43 | Deep Dive |
| CVE-2026-4138 | DX Unanswered Comments <= 1.7 - Cross-Site Request Forgery via Settings Update | nofearinc | DX Unanswered Comments | Medium | 4.3 | 2026-04-22 07:45:43 | Deep Dive |
| CVE-2026-6294 | Google PageRank Display <= 1.4 - Cross-Site Request Forgery to Settings Update via Settings Page | byybora | Google PageRank Display | Medium | 4.3 | 2026-04-22 07:45:42 | Deep Dive |
| CVE-2026-6236 | Posts map <= 0.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'name' Shortcode Attribute | lucdecri | Posts map | Medium | 6.4 | 2026-04-22 07:45:42 | Deep Dive |
| CVE-2026-4117 | CalJ <= 1.5 - Authenticated (Subscriber+) Arbitrary Settings Modification via 'save-obtained-key' Action | calj | CalJ Shabbat Times | Medium | 5.3 | 2026-04-22 07:45:42 | Deep Dive |
| CVE-2026-2719 | Private WP suite <= 0.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Exceptions' Setting | fpoller | Private WP suite | Medium | 4.4 | 2026-04-22 07:45:41 | Deep Dive |
| CVE-2026-4132 | HTTP Headers <= 1.19.2 - Authenticated (Administrator+) External Control of File Name or Path to RCE via 'hh_htpasswd_path' and 'hh_www_authenticate_user' Parameters | zinoui | HTTP Headers | High | 7.2 | 2026-04-22 07:45:41 | Deep Dive |
| CVE-2026-4119 | Create DB Tables <= 1.2.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Database Table Creation/Deletion via admin-post.php | jppreus | Create DB Tables | Critical | 9.1 | 2026-04-22 07:45:41 | Deep Dive |
| CVE-2026-4121 | Kcaptcha <= 1.0.1 - Cross-Site Request Forgery to Settings Update | ksolves | Kcaptcha | Medium | 4.3 | 2026-04-22 07:45:40 | Deep Dive |
| CVE-2026-5748 | Text Snippets <= 0.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'w' Shortcode Attribute | snedled | Text Snippets | Medium | 6.4 | 2026-04-22 07:45:40 | Deep Dive |
| CVE-2026-6246 | Simple Random Posts Shortcode <= 0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'container_right_width' Shortcode Attribute | mkerstner | Simple Random Posts Shortcode | Medium | 6.4 | 2026-04-22 07:45:39 | Deep Dive |
| CVE-2026-4074 | Quran Live Multilanguage <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes | karim42 | Quran Live Multilanguage | Medium | 6.4 | 2026-04-22 07:45:39 | Deep Dive |
| CVE-2026-4085 | Easy Social Photos Gallery <= 3.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'wrapper_class' Shortcode Attribute | maltathemes | Easy Social Photos Gallery – MIF | Medium | 6.4 | 2026-04-22 07:45:39 | Deep Dive |