Posts of last 24 hours
A vulnerability classified as critical has been found in IBM Langflow OSS up to 1.9.6. The affected element is an unknown function of the file /api/v1/build_public_tmp. Performing a manipulation results in improper authentication.
This vulnerability is cataloged as CVE-2026-10560. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/374920
A vulnerability, which was classified as critical, was found in IBM Langflow OSS up to 1.9.3. This impacts an unknown function of the file src/lfx/src/lfx/components/data_source/url.py. The manipulation results in server-side request forgery.
This vulnerability is reported as CVE-2026-10546. The attack can be launched remotely. No exploit exists.
You should upgrade the affected component.
https://vuldb.com/vuln/374923
A vulnerability classified as problematic has been found in IBM UCD up to 8.1.2.6/8.2.1.0. The affected element is an unknown function of the component Domain Name Handler. Performing a manipulation results in permissive cross-domain policy with untrusted domains.
This vulnerability is identified as CVE-2026-12084. The attack can be initiated remotely. There is not any exploit available.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/375382
A vulnerability labeled as problematic has been found in IBM WebSphere Application Server up to 26.0.0.6. The affected element is an unknown function. Such manipulation leads to http request smuggling.
This vulnerability is uniquely identified as CVE-2026-11806. The attack can be launched remotely. No exploit exists.
The affected component should be upgraded.
https://vuldb.com/vuln/375393
A vulnerability described as problematic has been identified in IBM Business Automation Manager Open Editions up to 9.4.2. This affects an unknown function. Executing a manipulation can lead to xml external entity reference.
The identification of this vulnerability is CVE-2026-13449. The attack may be launched remotely. There is no exploit available.
Upgrading the affected component is recommended.
https://vuldb.com/vuln/375395
A vulnerability was found in IBM UCD up to 7.2.3.23/7.3.2.18. It has been rated as problematic. The affected element is an unknown function. This manipulation causes sensitive information in log files.
This vulnerability appears as CVE-2026-12086. The attack requires local access. There is no available exploit.
Upgrading the affected component is advised.
https://vuldb.com/vuln/375404
A vulnerability was found in IBM WebSphere Application Server up to 26.0.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality. Such manipulation leads to server-side request forgery.
This vulnerability is traded as CVE-2026-11546. The attack may be launched remotely. There is no exploit available.
It is suggested to upgrade the affected component.
https://vuldb.com/vuln/374925
A vulnerability, which was classified as critical, has been found in IBM WebSphere Application Server up to 26.0.0.7. Affected by this vulnerability is an unknown functionality. This manipulation causes server-side request forgery.
This vulnerability is tracked as CVE-2026-11714. The attack is possible to be carried out remotely. No exploit exists.
It is advisable to upgrade the affected component.
https://vuldb.com/vuln/375398