Security Vulnerabilities
An improper access check allows unauthorized access to com_config webservice endpoints.
CVSS Score
8.6
EPSS Score
0.0
Published
2026-05-26
Lack of CSRF token validation lead to a CSRF attack vector in the admin activation endpoint of com_users.
CVSS Score
4.6
EPSS Score
0.0
Published
2026-05-26
Improperly built filter clauses lead to a SQL injection vulnerability in the search query for com_finder.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
Improperly validated order clauses lead to a SQL injection vulnerability in com_tags.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
Lack of output escaping leads to a XSS vector in the readmore links for com_content.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
NVIDIA Isaac Launchable for Linux contains a vulnerability where sensitive information is transmitted in clear text. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
CVSS Score
7.5
EPSS Score
0.0
Published
2026-05-26
Lack of output escaping leads to a XSS vector in the feed modules.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
Lack of output escaping leads to a XSS vector in the multilingual associations component.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
Lack of output escaping leads to a XSS vector in the content history component.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-05-26
IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.15 IBM Financial Transaction Manager SWIFT is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVSS Score
5.4
EPSS Score
0.001
Published
2026-05-26