NVD disclosure day

Published threat advisories for July 10, 2026

CVE advisoryCRITICAL

CVE-2026-20744

Charging Station Websocket Authentication Bypass Allows Privilege Escalation.

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

A security flaw in charging station technology allows unauthorized users to connect to a websocket endpoint without authentication, potentially leading to privilege escalation. This issue could enable an attacker to gain elevated access and control over the charging station system when the endpoint is reachable.

CVE advisoryCRITICAL

CVE-2026-15089

Drupal Commerce Guest Registration Authentication Bypass

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

A critical vulnerability in Drupal Commerce guest registration may allow unauthenticated attackers to bypass authentication, potentially leading to unauthorized access to data. This issue affects public-facing commerce functions and warrants confirmation of relevance and exposure.

CVE advisoryCRITICAL

CVE-2026-11913

Drupal Mother May I Vulnerability Allows System Compromise

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in the Drupal Mother May I module that could allow unauthorized access and potential system compromise. The issue, rated as critical, could be exploited by unauthenticated remote attackers via network requests, potentially leading to unauthorized information exposure or code execution. G

CVE advisoryCRITICAL

CVE-2026-55884

Tilt HUD Unauthenticated Remote Code Execution and Information Disclosure.

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

A vulnerability exists in Tilt's HUD HTTP server that allows unauthenticated network access to developer-defined resources, Tiltfile arguments, and sensitive session state when the HUD is bound to a non-loopback address. This could enable an attacker to trigger developer actions or interact with Kubernetes resources vi

CVE advisoryHIGH

CVE-2026-55810

Drupal Plotly.js Graphing Object Injection Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in the Drupal Plotly.js Graphing module allows for object injection, potentially impacting data integrity and system availability. Attackers could exploit this by sending malicious requests, leading to unauthorized modification of system data. Confirming the use and exposure of this module is advised.

CVE advisoryHIGH

CVE-2026-55809

Drupal Flag Attendance Field Object Injection Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability exists in the Drupal Flag attendance field, allowing object injection due to improper control over dynamically determined object attributes. This critical vulnerability, if reachable, could enable unauthorized data modification and potentially lead to system compromise. Organizations should confirm if t

CVE advisoryMEDIUM

CVE-2026-13243

Drupal Salesforce Suite CSRF Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical Cross-Site Request Forgery vulnerability in the Drupal Salesforce Suite could permit attackers to trick users into performing unintended actions. This may lead to unauthorized changes to data or system behavior if the module is reachable. The relevance and exposure of this vulnerability need to be confirmed.

CVE advisoryMEDIUM

CVE-2026-13241

Drupal Paragraphs Missing Authorization Vulnerability Allows Forceful Browsing

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in the Drupal Paragraphs module due to missing authorization, potentially allowing forceful browsing. This could enable unauthorized access to sensitive information or content. The issue is network-reachable and requires no authentication to exploit.

CVE advisoryMEDIUM

CVE-2026-13240

Drupal Paragraphs Missing Authorization Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in the Drupal Paragraphs module, allowing forceful browsing due to missing authorization. This could enable unauthenticated attackers to access or modify content on affected Drupal websites. Confirmation of relevance and exposure is critical for leadership.

CVE advisoryMEDIUM

CVE-2026-13239

Drupal WissKI Forceful Browsing Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical authorization vulnerability in the Drupal WissKI module allows forceful browsing, potentially enabling unauthenticated users to access restricted information or functionalities. This could lead to unauthorized access to sensitive data, impacting confidentiality, integrity, and availability. Further analysis

CVE advisoryMEDIUM

CVE-2026-13238

Drupal Commerce Realex Forceful Browsing Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An authorization vulnerability in the Drupal Commerce Realex / Global Payments module allows forceful browsing, potentially enabling unauthorized access to sensitive payment processing functions or data. This issue affects organizations using the module for e-commerce transactions, posing a risk to financial data integ

CVE advisoryMEDIUM

CVE-2026-13237

Drupal AI Agents Forceful Browsing Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An incorrect authorization vulnerability in Drupal AI Agents may allow forceful browsing. This could lead to unauthorized access to AI agent functions and potentially sensitive information. The key concern is confirming the use and reachability of this technology to assess potential exposure.

CVE advisoryMEDIUM

CVE-2026-13236

Drupal AI Agents Missing Authorization Vulnerability Allows Forceful Browsing

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in Drupal AI Agents due to missing authorization, allowing forceful browsing. This could lead to unauthorized access and modification of sensitive data or system configurations if the AI agents are reachable.

CVE advisoryLOW

CVE-2026-13235

Drupal AI Missing Authorization Vulnerability Allows Forceful Browsing.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in a Drupal AI module that allows forceful browsing due to missing authorization. This could permit unauthorized users to access restricted AI model data or functionality via network access. Organizations using the affected Drupal AI module should identify its instances, determine exposu

CVE advisoryLOW

CVE-2026-13233

Drupal OpenAI Provider SSRF Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A Server-Side Request Forgery vulnerability exists in a Drupal module that integrates with OpenAI. This flaw could allow an attacker to trick the server into making unintended requests to internal or external resources. This could potentially lead to unauthorized access to sensitive data or systems. The relevance and e

CVE advisoryLOW

CVE-2026-13232

Drupal Advanced Content Feedback Module Forceful Browsing Vulnerability.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An authorization flaw in the Drupal Advanced Content Feedback module allows forceful browsing. This could enable unauthenticated attackers to bypass access controls and view sensitive content or perform unauthorized actions on a Drupal site. It is uncertain if this module is in use or exposed within the organization's

CVE advisoryCRITICAL

CVE-2026-12535

Drupal Formatter Field Object Injection Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability in the Drupal Formatter Field module allows for object injection, potentially enabling attackers to execute arbitrary code. This issue is reachable via the public web interface and could lead to full system compromise, affecting the website and its underlying server. It is uncertain which speci

CVE advisoryLOW

CVE-2026-11909

Drupal Examples for Developers Missing Authorization Forceful Browsing.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A missing authorization vulnerability in Drupal Examples for Developers may allow forceful browsing if the module is reachable. This could lead to unauthorized access to information and system functions. Its intended use is for development and education, so its presence in production environments should be confirmed an

CVE advisoryCRITICAL

CVE-2026-10768

Drupal LocalGov Workflows Forceful Browsing Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A missing authorization flaw in Drupal LocalGov Workflows enables forceful browsing, potentially allowing unauthenticated attackers to access restricted content or functionality. This could lead to unauthorized data exposure or unintended system actions, impacting organizations using the affected module. Confirmation o

CVE advisoryCRITICAL

CVE-2026-9726

Drupal AlternativeCommerce Basket Object Injection Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in the Drupal AlternativeCommerce (Basket) module, allowing object injection. If reachable, this could lead to unauthorized modification of objects, impacting system integrity and availability. It's important to determine if this module is in use to understand potential exposure.

CVE advisoryCRITICAL

CVE-2026-57807

miniOrange SSO OAuth Client Authentication Bypass for Password Recovery.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An authentication bypass vulnerability exists in miniOrange's OAuth Single Sign-On client, allowing for password recovery exploitation. This could enable unauthorized access to user accounts when the client is exposed. The issue affects the authentication process, highlighting the need to confirm relevance and exposure

CVE advisoryCRITICAL

CVE-2026-57216

RabbitMQ Authentication Bypass via Loopback Check Flaw

Halo Surface Signal: 3 out of 5 — possibly public-facing.

RabbitMQ brokers contain an authentication bypass vulnerability. An attacker may remotely connect to the broker by exploiting a loopback check flaw when traffic is routed through a trusted PROXY-protocol path. This could allow unauthorized access to the messaging system.

CVE advisoryCRITICAL

CVE-2026-57211

RabbitMQ Management Plugin UNC Path Traversal Leads to DNS SMB Requests.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in the RabbitMQ management plugin allows attackers to trigger outbound DNS and SMB requests to attacker-controlled UNC paths by sending specially crafted web requests. This could potentially lead to information disclosure or system compromise if the management plugin is exposed and multiple management e

CVE advisoryCRITICAL

CVE-2026-55879

OpenReplay SDK Cross-Site Scripting Account Takeover

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

OpenReplay, a self-hosted session replay tool, has a vulnerability where unauthenticated attackers can inject scripts into the dashboard, enabling them to steal session JWTs and take over accounts. This happens when custom event data is not properly output encoded before being rendered.

CVE advisoryCRITICAL

CVE-2026-12761

miniOrange Social Login Plugin Authentication Bypass Allows Account Takeover

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in a WordPress social login plugin that could allow unauthenticated attackers to bypass authentication and take over administrator accounts. The flaw involves improper handling of email verification and one-time passwords, enabling an attacker to trigger an OTP, crack it offline, and gai

CVE advisoryCRITICAL

CVE-2026-61459

MCP Server Kubernetes Argument Injection Allows Cluster Compromise.

Halo Surface Signal: 3 out of 5 — possibly public-facing.

An argument injection vulnerability exists in MCP Server Kubernetes that can allow an unauthenticated attacker to redirect commands to a malicious server. This could lead to the exposure of authentication tokens and a full compromise of the Kubernetes cluster. Uncertainty remains regarding the specific versions affecte

CVE advisoryCRITICAL

CVE-2026-5801

SEM-PMP SQL Injection Vulnerability Allows Command Execution.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical SQL injection vulnerability in SEM-PMP may allow attackers to execute arbitrary commands remotely. This could lead to unauthorized control and compromise of affected systems. It is important to determine if your organization uses SEM-PMP and to assess its network exposure.

CVE advisoryCRITICAL

CVE-2026-59151

Prowler SAML Authentication Weakness Allows Cross-Tenant Account Takeover.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in Prowler's SAML authentication could allow an authenticated attacker to gain unauthorized access to different tenants within the platform. This manipulation of the SAML flow could lead to cross-tenant account takeover, exposing sensitive cloud security data and configurations.

CVE advisoryCRITICAL

CVE-2026-2397

MobilMen 20T SQL Injection Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An SQL injection vulnerability exists in MobilMen 20T, a retail automation software, allowing attackers to manipulate or access data. The vendor has not responded to disclosures of this critical issue, making it important to identify any deployed instances and assess their relevance.

CVE advisoryCRITICAL

CVE-2026-51119

Invixium IXM WEB Privilege Escalation Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in Invixium IXM WEB allows an unauthenticated attacker to escalate privileges via user creation components. This could grant unauthorized control over the system's user management, potentially impacting data confidentiality and integrity if the web interface is network-accessible.

CVE advisoryCRITICAL

CVE-2026-15143

Guardrails Detectors File Type Detector SSRF and Local File Read Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A flaw in guardrails-detectors allows remote attackers to provide a malicious XML Schema Definition, enabling server-side requests to arbitrary URLs or local file reads. This could expose sensitive information such as cloud credentials or internal network services.

CVE advisoryCRITICAL

CVE-2026-61444

PraisonAI Code Injection Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical code injection vulnerability exists in PraisonAI technology, allowing an authenticated attacker to execute arbitrary Python code. This occurs when an unsanitized parameter is directly interpolated into an f-string, leading to the execution of injected code via subprocess.Popen(). This could impact system int

CVE advisoryCRITICAL

CVE-2026-59792

IntelliJ IDEA Path Traversal Allows Code Execution

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A path traversal vulnerability exists in IntelliJ IDEA, allowing for code execution if a user opens a specially crafted project. This flaw impacts a core developer tool, potentially affecting the integrity and confidentiality of local project data and developer workstations.

CVE advisoryCRITICAL

CVE-2026-56765

Vikunja Authorization Flaw Leads to Instance-Wide Data Exposure

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

Vikunja has an authorization flaw that could allow an unauthenticated attacker to escalate privileges and access or delete all file attachments across an entire instance. This vulnerability is reachable via network endpoints without authentication, posing a risk of instance-wide data exposure.

CVE advisoryCRITICAL

CVE-2026-56261

Crawl4AI Server-Side Request Forgery via Webhook URLs

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A server-side request forgery vulnerability exists in Crawl4AI's Docker API server. This flaw allows an attacker to trick the server into making requests to internal or external resources, potentially exposing sensitive cloud metadata or internal services. The issue stems from the server accepting webhook URLs without

CVE advisoryCRITICAL

CVE-2026-56688

Dell PowerFlex Manager OS Command Injection Vulnerability

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

Dell PowerFlex Manager contains an OS command injection vulnerability that a highly privileged attacker with remote access could exploit. Successful exploitation may allow arbitrary command execution as root, potentially leading to full appliance compromise and lateral movement within the managed infrastructure. Uncert

CVE advisoryCRITICAL

CVE-2026-41880

R-SOFT DMS OCR OS Command Injection Vulnerability

Halo Surface Signal: 3 out of 5 — possibly public-facing.

R-SOFT DMS's OCR module has an OS command injection vulnerability, potentially allowing an authenticated attacker to run commands as root. While some standard flows neutralize this, triggering the OCR module directly can bypass protections. Readers should care because unauthorized root-level access could grant an attac

CVE advisoryCRITICAL

CVE-2026-15378

Guardrails Detectors Blind SSRF via XML Schema Definition

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A flaw in the `guardrails-detectors` component allows remote attackers to perform a blind Server-Side Request Forgery by submitting a crafted XML Schema Definition. This could lead to unauthorized access to sensitive internal network resources and local files, potentially exposing credentials and secrets.

CVE advisoryCRITICAL

CVE-2026-28564

Apache IoTDB Authentication Bypass via Stale Credentials

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical authentication bypass vulnerability exists in Apache IoTDB's REST API, allowing attackers to use stale credentials to gain unauthorized access. This could expose sensitive data and system control. The issue is network-exploitable and should be addressed promptly.

CVE advisoryCRITICAL

CVE-2026-15300

GEO my WP WordPress Plugin SQL Injection Vulnerability.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A SQL injection vulnerability exists in the GEO my WP WordPress plugin due to improper handling of location search parameters. This could allow an unauthenticated attacker to manipulate database queries, potentially leading to unexpected behavior and data corruption. Confirmation of plugin usage and exposure is necessa

CVE advisoryCRITICAL

CVE-2026-15282

WordPress Instant Appointment Plugin Arbitrary File Upload Vulnerability

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

The Instant Appointment plugin for WordPress has a critical vulnerability that allows unauthenticated attackers to upload arbitrary files, potentially leading to remote code execution. This issue is reachable via network access without user interaction, posing a significant risk to website integrity and availability.

CVE advisoryCRITICAL

CVE-2026-14894

Super Forms Arbitrary File Upload Leading to Remote Code Execution

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

A critical vulnerability in the Super Forms WordPress plugin allows unauthenticated attackers to upload and execute arbitrary files, potentially leading to remote code execution. This is possible through two unauthenticated HTTP requests due to missing file type validation and bypassed session nonce checks. Readers sho

CVE advisoryCRITICAL

CVE-2026-55615

Langroid Neo4jChatAgent Prompt Injection Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability in the Langroid framework's Neo4jChatAgent allows prompt injection to bypass validation, potentially leading to unauthorized access or destruction of graph data and system-level compromise. This issue stems from LLM-generated Cypher queries being passed directly to the Neo4j driver without proper checks

CVE advisoryCRITICAL

CVE-2026-54769

Langroid Sandbox Escape via Incomplete `eval()` Sanitization Allows RCE

Halo Surface Signal: 3 out of 5 — possibly public-facing.

The Langroid framework contains a critical vulnerability in its `TableChatAgent` and `VectorStore` capabilities that allows for remote code execution. Incomplete sanitization during the evaluation of LLM-generated tool messages can enable an attacker to bypass security measures and execute arbitrary code on the host sy

CVE advisoryCRITICAL

CVE-2026-54760

Langroid SQLChatAgent File Read Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in the Langroid framework's `SQLChatAgent`, allowing attackers to bypass SQL injection defenses and read server-side files. This issue, present before version 0.65.1, could lead to sensitive data exposure if the framework is used in LLM-powered applications that are exposed to external i