Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| # | POC Description | Source Link | Shenlong Link |
|---|
| CVE-2026-57206 | 8.6 HIGH | SimpleChat plugin validation endpoints missing authentication and authorization |
| CVE-2026-59117 | 7.5 HIGH | Windows Terminal Remote Code Execution Vulnerability |
| CVE-2026-53598 | 7.5 HIGH | Prompty: Arbitrary File Read via ${file:path} Reference Expansion |
| CVE-2026-59862 | 7.5 HIGH | Kiota: Code Generation Literal Injection in the Python Generator |
| CVE-2026-59867 | 7.1 HIGH | Kiota: Generation-time SSRF + remote/local file inclusion via unrestricted $ref |
| CVE-2026-58598 | 7.0 HIGH | Windows Backup Service Elevation of Privilege Vulnerability |
| CVE-2026-55440 | 6.5 MEDIUM | Microsoft UFO: COMMAND_RESULTS handler creates unowned sessions, allowing authenticated se |
| CVE-2026-58643 | 6.1 MEDIUM | Windows Admin Center Spoofing Vulnerability |
| CVE-2026-62826 | 4.6 MEDIUM | Microsoft SharePoint Server Spoofing Vulnerability |
| CVE-2026-54568 | 4.3 MEDIUM | Microsoft UFO: Missing Authorization in DEVICE_INFO_REQUEST Allows a DEVICE Client to Read |
| CVE-2026-57205 | 4.3 MEDIUM | SimpleChat: Authenticated users can access other users' profile metadata through user IDOR |
| CVE-2026-59860 | Kiota: XML Doc-Comment Newline Breakout Code Injection | |
| CVE-2026-59859 | Kiota: Code Generation Literal Injection in the PHP Generator | |
| CVE-2026-59863 | Kiota: Workspace-config poisoning: out-of-repo file write + generation-time SSRF | |
| CVE-2026-59865 | Kiota: Command injection via x-ms-kiota-info dependencyInstallCommand surfaced by `kiota i | |
| CVE-2026-59864 | Kiota: Path/URL injection into generated Copilot plugin manifest via x-ai-* extensions | |
| CVE-2026-59866 | Kiota: Arbitrary file write + code-injection via x-ms-kiota-info clientClassName and clien | |
| CVE-2026-54733 | moodle-local_o365: Authentication bypass via unverified JWT signature in Teams SSO endpoin | |
| CVE-2026-53597 | Prompty: Arbitrary code execution via JavaScript frontmatter in TypeScript loader |
No comments yet