B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
nvd.nist.gov
RISK: Mittel (4.0)

[High] CVE-2026-50635 – LimeSurvey constructs account password-reset links from the client-supplied HTTP...

High CVE-2026-50635 LimeSurvey constructs account password-reset links from the client-supplied HTTP Host header without validating it. The optional allowedHosts allowlist that would constrain this is undefined in the default (and documented) configuration, so LSHttpRequest::checkIsAllowedHost()...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-50752

2026-06-10 Kritisch

CVE-2026-9740 - Unbounded recursion in BSONColumn interleaved-reference causes pre-auth stack overflow

2026-06-09 Mittel

CVE-2026-9753 - Server crash via malformed binary diff passed to $_internalApplyOplogUpdate.

2026-06-09 Mittel

[Medium] CVE-2026-47905 – CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are af...

2026-06-09 Mittel

[High] CVE-2026-34713 – CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are af...

2026-06-09 Mittel

[Medium] CVE-2026-25860 – OpenClinic GA 5.351.19 contains a reflected cross-site scripting vulnerability i...

2026-06-09 Mittel