Lucene search
K

2241 matches found

EUVD
EUVD
added 2026/05/10 3:33 a.m.13 views

EUVD-2026-28960

A vulnerability was determined in Open5GS up to 2.7.7. Affected by this issue is the function pcfsesssetipv6prefix of the file /src/pcf/context.c of the component PCF. Executing a manipulation of the argument SmPolicyContextData.ipv6AddressPrefix can lead to denial of service. It is possible to...

6.9CVSS5.5AI score0.00502EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/05/09 5:15 p.m.38 views

CVE-2026-8190 Wavlink NU516U1 adm.cgi wan os command injection

A vulnerability was determined in Wavlink NU516U1 M16U1V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument pppusername/ppppasswd/rwanip/rwanmask/rwangateway is directly passed by the attacker/so we can control the...

6.5CVSS0.05344EPSS
Exploits1References4
EUVD
EUVD
added 2026/05/09 3:15 p.m.12 views

EUVD-2026-28915

A vulnerability has been found in Wavlink NU516U1 M16U1V240425. Affected is the function changewifipassword of the file /cgi-bin/adm.cgi. The manipulation of the argument wlchannel/wlPass/EncrypType leads to os command injection. It is possible to initiate the attack remotely. The exploit has bee...

6.5CVSS5.5AI score0.05454EPSS
Exploits1References4
CVE
CVE
added 2026/05/08 2:30 a.m.16 views

CVE-2026-8129

SourceCodester SUP Online Shopping 1.0 is affected. The vulnerability targets wishlist.php via manipulation of the delwlistid parameter, causing SQL injection. This can be exploited remotely, and public exploits have been disclosed. CVSS data across versions indicates a high-severity impact (AV:N...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-38605

Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.8 Description A remote denial of service can occur in the NSSF component due to the manipulation of the ogs sbi parse plmn list function located in the /lib/sbi/conv.c library. Recommendations At the moment, there...

5.3CVSS5.8AI score0.00382EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.16 views

PT-2026-38627

Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.8 Description A remote denial of service can be triggered in the NSSF component. The issue exists within the ogs sbi discovery option add snssais function located in the /lib/sbi/message.c library. Recommendations...

5.3CVSS5.8AI score0.00372EPSS
Exploits1References9
ATTACKERKB
ATTACKERKB
added 2026/05/07 8:30 p.m.6 views

CVE-2026-8098

A security vulnerability has been detected in code-projects Feedback System 1.0. Impacted is an unknown function of the file /admin/checklogin.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/05 9:31 p.m.16 views

EUVD-2026-27430

A security vulnerability has been detected in D-Link DI-8100 16.07.26A1. Affected by this vulnerability is the function urlruleasp of the file /urlrule.asp of the component POST Parameter Handler. Such manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploi...

10CVSS7.5AI score0.0586EPSS
Exploits1References6
EUVD
EUVD
added 2026/05/05 3:31 p.m.18 views

EUVD-2026-27333

A security vulnerability has been detected in EFM ipTIME NAS1dual 1.5.24. This issue affects the function getcsrfwhites of the file /cgi/advanced/miscmain.cgi. Such manipulation leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and...

10CVSS7.7AI score0.0063EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/05 2:20 a.m.7 views

CVE-2026-7706

A vulnerability has been found in Open5GS up to 2.7.7. This issue affects the function gmmhandleservicerequest of the file /src/amf/gmm-handler.c of the component AMF. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public a...

5.3CVSS5.3AI score0.00276EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/04 7:15 a.m.6 views

CVE-2026-7743

A vulnerability has been found in CodeAstro Online Classroom 1.0. The impacted element is an unknown function of the file /OnlineClassroom/studentdetails. The manipulation of the argument deleteid leads to sql injection. The attack is possible to be carried out remotely. The exploit has been...

6.5CVSS6.4AI score0.00241EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2026/05/04 3:16 a.m.12 views

CVE-2026-7721

A security vulnerability has been detected in Totolink WA300 5.2cu.7112B20190227. This affects the function NTPSyncWithHost of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument hostTime leads to command injection. The attack can be executed remotely. The exploit has been disclosed...

6.5CVSS0.00916EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/04 1:0 a.m.5 views

CVE-2026-7717

A vulnerability was determined in Totolink WA300 5.2cu.7112B20190227. This issue affects the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Executing a manipulation of the argument File can lead to buffer overflow. The attack can be launched...

9CVSS7.8AI score0.00472EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.8 views

PT-2026-36745

Name of the Vulnerable Software and Affected Versions Totolink WA300 version 5.2cu.7112 B20190227 Description A buffer overflow can be triggered remotely via the POST Request Handler component. The issue exists within the UploadCustomModule function of the '/cgi-bin/cstecgi.cgi' endpoint when the...

9CVSS7.5AI score0.00472EPSS
Exploits0References11
EUVD
EUVD
added 2026/05/03 11:45 p.m.9 views

EUVD-2026-26853

A security vulnerability has been detected in MindsDB up to 26.01. Affected is the function pickle.loads of the component Pickle Handler. The manipulation leads to deserialization. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. The vend...

6.5CVSS6.1AI score0.00297EPSS
Exploits0References4
OSV
OSV
added 2026/05/03 9:57 a.m.10 views

OESA-2026-2185 hdf5 security update

HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...

7.8CVSS5.5AI score0.00364EPSS
Exploits1References2
CVE
CVE
added 2026/05/03 8:45 a.m.25 views

CVE-2026-7687

LangFlow (langflow) up to version 1.8.4 is affected by a command-injection vulnerability in CodeParser.parse_callable_details (file src/lfx/src/lfx/custom/code_parser/code_parser.py, component Full Builtins Module Handler). The issue can be triggered remotely and an exploit has been publicly disc...

6.5CVSS6.3AI score0.01666EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/02 10:0 a.m.5 views

CVE-2026-7612

A vulnerability was determined in itsourcecode Courier Management System 1.0. Affected is an unknown function of the file /edituser.php. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclosed and may ...

5.8CVSS5.6AI score0.00206EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/02 12:0 a.m.9 views

PT-2026-36622

A vulnerability was determined in code-projects Online Hospital Management System 1.0. This affects an unknown function of the file /viewappointment.php. This manipulation of the argument delid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
CVE
CVE
added 2026/05/01 3:15 p.m.11 views

CVE-2026-7585

Open5GS AMF vulnerable through function amf_nudm_sdm_handle_provisioned in /src/amf/nudm-handler.c (Open5GS

5.3CVSS5.5AI score0.00341EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder