Known Vulnerabilities for Canvas by Coolpad
Listed below are 1 of the newest known vulnerabilities associated with "Canvas" by "Coolpad".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58588 json | Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability in Drupal Drupal Canvas al... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-58587 json | Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability in Drupal Drupal Canvas al... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-49386 json | In JetBrains YouTrack before 2026.1.13570 improper access control allowed enumeration of restricted issues and articles on Pl... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-46601 json | The webp decoder can panic when processing a VP8 chunk with dimensions that do not match the canvas size. | Not Provided | 2026-06-25 | 2026-06-26 |
| CVE-2026-45644 json | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Live Share Canvas SDK allow... | Not Provided | 2026-06-09 | 2026-06-17 |
| CVE-2026-45312 json | RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. In 0.24.0 and earlier, a Jinja2 template injection in ... | Not Provided | 2026-05-29 | 2026-06-02 |
| CVE-2026-44311 json | Fabric.js is a Javascript HTML5 canvas library. Prior to 7.4.0, a potential Cross-Site Scripting (XSS) vulnerability exists i... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-42046 json | libcaca is a colour ASCII art library. In 0.99.beta20 and earlier, an integer overflow vulnerability in libcaca's canvas impo... | Not Provided | 2026-05-11 | 2026-05-12 |
| CVE-2026-40933 json | Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, due to unsafe serial... | Not Provided | 2026-04-21 | 2026-04-22 |
| CVE-2026-32814 json | libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, when decoding a HEIF grid image wit... | Not Provided | 2026-05-19 | 2026-05-20 |