Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18779 matches found

RedhatCVE
RedhatCVEadded 2026/04/07 11:1 p.m.4 views

CVE-2026-5690

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...

7.5CVSS6.8AI score0.01153EPSS
Exploits0References1
Circl
Circladded 2026/04/07 5:29 p.m.1 views

GHSA-5F97-JGG4-GQWR

creationtimestamp| type| source ---|---|--- 2026-04-07 17:29:55+00:00| published-proof-of-concept| Telegram/ZjNX94OaGDygpp8THY2068PQ3qFjjnuznV-29wb7oU4kmRI...

4.8AI score
Exploits0
Circl
Circladded 2026/04/07 5:29 p.m.1 views

GHSA-GRQ6-Q49F-44XH

creationtimestamp| type| source ---|---|--- 2026-04-07 17:29:55+00:00| published-proof-of-concept| Telegram/ZjNX94OaGDygpp8THY2068PQ3qFjjnuznV-29wb7oU4kmRI...

4.8AI score
Exploits0
Circl
Circladded 2026/04/07 5:29 p.m.1 views

GHSA-HQG5-487V-5MC6

creationtimestamp| type| source ---|---|--- 2026-04-07 17:29:14+00:00| published-proof-of-concept| Telegram/8eXn4QLj3W18AYc2pIsiDgfSWsuolTpz1YwE008yOgTXtw...

4.8AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2026/04/07 12:0 a.m.2 views

PT-2026-30787

A flaw has been found in itsourcecode Construction Management System 1.0. This affects an unknown function of the file /borrowedtool.php. Executing a manipulation of the argument code can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may b...

6.5CVSS6.6AI score0.00012EPSS
Exploits0References6
NVD
NVDadded 2026/04/06 11:16 p.m.3 views

CVE-2026-5690

A flaw has been found in Totolink A7100RU 7.4cu.2313b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can lead to os command injection. The attack can be executed remotely. The exploit has been published...

7.5CVSS0.01153EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/06 9:31 p.m.4 views

EUVD-2026-19466

A flaw has been found in itsourcecode sanitize or validate this input 1.0. This impacts an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument empid causes sql injection. The attack is possible to be carried out remotely. The explo...

6.5CVSS6.4AI score0.00036EPSS
Exploits0References6
Circl
Circladded 2026/04/06 7:28 p.m.0 views

GHSA-QCMW-8MM4-4P28

creationtimestamp| type| source ---|---|--- 2026-04-06 19:28:45+00:00| published-proof-of-concept| Telegram/ECjdy8s76GZBalwnIB79ij56tbajMeprVumTyCn-zmzM...

5.8AI score
Exploits0
Circl
Circladded 2026/04/06 7:28 p.m.1 views

GHSA-2MVM-RG5V-7HFQ

creationtimestamp| type| source ---|---|--- 2026-04-06 19:28:28+00:00| published-proof-of-concept| Telegram/nNz4AuVWmZsX2vjW9IzWDm0wIi6EKHH8QFJ1lll9JUSWJdI...

4.8AI score
Exploits0
Circl
Circladded 2026/04/06 7:28 p.m.4 views

GHSA-PCXQ-FJP3-R752

creationtimestamp| type| source ---|---|--- 2026-04-06 19:28:12+00:00| published-proof-of-concept| Telegram/FD1XDPHxmeq4cPhZAsKic1sVLDUHGuIRMXt4NvJcjYqn2U...

4.8AI score
Exploits0
EUVD
EUVDadded 2026/04/06 12:32 p.m.0 views

EUVD-2026-19227

A flaw has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /userfinishregister.php of the component Parameter Handler. This manipulation of the argument firstName causes sql injection. Remote exploitation of the attack is possible. The...

7.5CVSS6.8AI score0.00043EPSS
Exploits0References6
NVD
NVDadded 2026/04/06 11:17 a.m.1 views

CVE-2026-5648

A flaw has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /userfinishregister.php of the component Parameter Handler. This manipulation of the argument firstName causes sql injection. Remote exploitation of the attack is possible. The...

7.5CVSS0.00043EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 11:0 a.m.2 views

CVE-2026-5648

A flaw has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /userfinishregister.php of the component Parameter Handler. This manipulation of the argument firstName causes sql injection. Remote exploitation of the attack is possible. The...

7.5CVSS6.8AI score0.00043EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/04/06 9:31 a.m.2 views

EUVD-2026-19184

A flaw has been found in assafelovic gpt-researcher up to 3.4.3. The impacted element is an unknown function of the file backend/server/app.py of the component Report API. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been...

5.3CVSS4.3AI score0.00013EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/04/06 8:45 a.m.1 views

CVE-2026-5639

A flaw has been found in PHPGurukul Online Shopping Portal Project 2.1. Impacted is an unknown function of the file /admin/update-image3.php of the component Parameter Handler. Executing a manipulation of the argument filename can lead to sql injection. The attack can be executed remotely. The...

6.5CVSS5.8AI score0.00012EPSS
Exploits0References5Affected Software1
NVD
NVDadded 2026/04/06 7:16 a.m.3 views

CVE-2026-5630

A flaw has been found in assafelovic gpt-researcher up to 3.4.3. The impacted element is an unknown function of the file backend/server/app.py of the component Report API. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been...

5.3CVSS0.00013EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/06 6:30 a.m.1 views

EUVD-2026-19166

A flaw has been found in Braffolk mcp-summarization-functions up to 0.1.5. This impacts an unknown function of the file src/server/mcp-server.ts of the component summarizecommand. Executing a manipulation of the argument command can lead to os command injection. The attack requires local access...

5.3CVSS5.5AI score0.00615EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 3:45 a.m.1 views

CVE-2026-5619

A flaw has been found in Braffolk mcp-summarization-functions up to 0.1.5. This impacts an unknown function of the file src/server/mcp-server.ts of the component summarizecommand. Executing a manipulation of the argument command can lead to os command injection. The attack requires local access...

5.3CVSS5.7AI score0.00615EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/04/06 3:45 a.m.9 views

CVE-2026-5619

A vulnerability (CVE-2026-5619) affects Braffolk mcp-summarization-functions up to version 0.1.5, specifically the summarize_command component in src/server/mcp-server.ts. The issue is an os command injection caused by manipulating the argument command; exploitation requires local access. An expl...

5.3CVSS5.7AI score0.00615EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/06 3:45 a.m.28 views

CVE-2026-5619 Braffolk mcp-summarization-functions summarize_command mcp-server.ts os command injection

A flaw has been found in Braffolk mcp-summarization-functions up to 0.1.5. This impacts an unknown function of the file src/server/mcp-server.ts of the component summarizecommand. Executing a manipulation of the argument command can lead to os command injection. The attack requires local access...

5.3CVSS0.00615EPSS
Exploits0References4
Rows per page
Query Builder