Poster - CVE CyberSecurity Database News (Page 6)

Apr 24, 2026 Exploit

CVE-2026-31664 - Linux Kernel Memory Leak in xfrm_user_polexpire (Explained and Exploited)

On many Linux systems, the kernel’s networking stack supports IPsec using a subsystem called XFRM. In early 2026, a vulnerability was discovered and patched—

Apr 23, 2026 WordPress PHP

CVE-2026-3844 - Critical File Upload Vulnerability in WordPress Breeze Cache Plugin

Date: June 2024 CVE: CVE-2026-3844 Plugin: Breeze Cache (All versions up to and including 2.4.4) Severity: Critical Impact: Arbitrary File Upload, Potential Remote

Apr 22, 2026

CVE-2026-3254 - GitLab Mermaid Sandbox Vulnerability Explained – What Happened, How to Exploit, and How to Stay Safe

--- Intro On June 12, 2026, GitLab published a critical fix for a vulnerability, now tracked as CVE-2026-3254, which affects all GitLab Community and Enterprise

Apr 22, 2026 API Exploit

CVE-2026-31431 - Linux Kernel `algif_aead` In-Place Crypto Vulnerability Explained

On June 2024, the Linux community fixed a security bug in the kernel's cryptography subsystem, specifically in the algif_aead interface. This issue,

Apr 21, 2026 Exploit SQL Oracle

CVE-2026-35240 - How a Simple Query Can Crash Your MySQL Server (Exploit and Analysis)

Summary: A recent vulnerability, CVE-2026-35240, has been found in Oracle MySQL Server, specifically in the Server: Optimizer component. This flaw affects several major MySQL versions