B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (3.1)

CVE-2026-42849 - authentik: Reflected XSS in SFE AutosubmitStage allows IDP account takeover

CVE ID :CVE-2026-42849 Published : June 2, 2026, 9:16 p.m. | 1 hour, 57 minutes ago Description :authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the SFE (Simple Flow Executor) in order to make the interface more...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-42588

2026-06-04 Mittel

[Medium] CVE-2026-43924 – FOSSBilling is a free, open-source billing and client management system. Prior t...

2026-06-03 Mittel

[High] CVE-2026-44609 – Local privilege escalation due to EXE hijacking vulnerability. The following pro...

2026-06-03 Mittel

[High] CVE-2026-50033 – Local privilege escalation due to DLL hijacking vulnerability. The following pro...

2026-06-03 Mittel

[Unknown] CVE-2026-37700 – Cross Site Scripting vulnerability in MaxSite CMS v.109.2 allows a remote attack...

2026-06-03 Mittel

[Medium] CVE-2026-40495 – FOSSBilling is a free, open-source billing and client management system. Version...

2026-06-03 Mittel