cve.li

Recent

CVE-2026-5366CWE-94

Git Argument Injection in prefecthq/prefect

Published 2026-06-20 by @huntr_ai

CVE-2026-56332CWE-601

Capgo - Open Redirect via confirmation_url Parameter

Published 2026-06-20 by VulnCheck

CVE-2026-56330CWE-601

Capgo - Open Redirect via Unvalidated Stripe Billing URLs

Published 2026-06-20 by VulnCheck

CVE-2026-56319CWE-203

Capgo - App Existence Oracle via GET /statistics/app/:app_id

Published 2026-06-20 by VulnCheck

CVE-2026-56307CWE-670

Cap-go - Broken Cursor Pagination in /private/devices Endpoint

Published 2026-06-20 by VulnCheck

CVE-2026-56304CWE-502

picklescan - Arbitrary File Creation via logging.FileHandler Deserialization

Published 2026-06-20 by VulnCheck

CVE-2026-56295CWE-285

Capgo - Policy Enforcement Bypass in Webhook Management Endpoints via Non-Expiring API Keys

Published 2026-06-20 by VulnCheck

CVE-2026-56294CWE-287

capacitor-native-biometric - Authentication Bypass via Unvalidated CryptoObject in onAuthenticationSucceeded

Published 2026-06-20 by VulnCheck

CVE-2026-56282CWE-200

Capgo - Information Disclosure via Unauthenticated /replication Endpoint

Published 2026-06-20 by VulnCheck

CVE-2026-56276CWE-915

Flowise - Mass Assignment in PUT /api/v1/user Allows Password Hash Override

Published 2026-06-20 by VulnCheck

Load more ↓