Lucene search
K

88918 matches found

EUVD
EUVD
added 4 hours ago5 views

EUVD-2026-41809

A vulnerability was identified in CodeAstro Apartment Visitor Management System 1.0. This issue affects some unknown processing of the file /apartment-visitor/visitor-entry.php. The manipulation of the argument visname leads to sql injection. The attack can be initiated remotely. The exploit is...

6.5CVSS6.6AI score
Exploits0References6
EUVD
EUVD
added 9 hours ago5 views

EUVD-2026-41795

A vulnerability was identified in vxcontrol PentAGI up to 2.1.0. This affects an unknown function of the file backend/pkg/docker/client.go of the component Docker API. The manipulation leads to sandbox issue. The attack may be initiated remotely. The pull request to fix this issue awaits acceptan...

6.5CVSS6.2AI score
Exploits0References7
CVE
CVE
added yesterday7 views

CVE-2026-14768

CVE-2026-14768 affects code-projects Real State Services 1.0 and concerns the file /builderHome.php. The vulnerability arises from manipulation of the argument loc, enabling SQL injection. It is executable remotely and the exploit has been made publicly available. Documents do not specify the vul...

7.5CVSS6.8AI score
Exploits0References6
CVE
CVE
added yesterday6 views

CVE-2026-14751

The vulnerability CVE-2026-14751 targets mjperpinosa stumasy via SQL injection in Notes_controller::search_scratch_data (file application/PHP/objects/notes/search_scratch_data.php). The exploit arises from manipulating the argument field_name, enabling remote execution of SQL. Public exploit is s...

6.5CVSS6.4AI score
Exploits0References6
CVE
CVE
added yesterday6 views

CVE-2026-14747

The CVE-2026-14747 entry concerns code-projects Real State Services 1.0. The vulnerability targets an unspecified functionality of /addprojectsale.php, where manipulation of the amen parameter leads to an SQL injection. It is described as exploitable remotely and classified with a CVSS impact pro...

7.5CVSS7AI score
Exploits0References6
EUVD
EUVD
added yesterday6 views

EUVD-2026-41752

A vulnerability was detected in code-projects Real State Services 1.0. Affected by this vulnerability is an unknown functionality of the file /addprojectsale.php. The manipulation of the argument amen results in sql injection. The attack can be launched remotely...

7.5CVSS5.9AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added yesterday7 views

CVE-2026-14742

A vulnerability was determined in langchain-ai langgraph up to 1.2.4. The affected element is the function freeze of the file libs/langgraph/langgraph/internal/cache.py of the component Task Result Cache. This manipulation of the argument defaultcachekey causes use of weak hash. The attack is...

3.1CVSS5AI score
Exploits0References7Affected Software1
CVE
CVE
added yesterday10 views

CVE-2026-14742

The CVE affects langchain-ai langgraph up to 1.2.4. The vulnerability lies in the function _freeze in libs/langgraph/langgraph/_internal/_cache.py (Task Result Cache). Manipulating the argument default_cache_key causes use of a weak hash, enabling a possible remote attack. Exploitation is describ...

3.1CVSS5AI score
Exploits0References7
CVE
CVE
added yesterday7 views

CVE-2026-14738

Technical details are not publicly available in the provided documents; monitor for updates.

6.3CVSS5.2AI score
Exploits0References7
EUVD
EUVD
added yesterday6 views

EUVD-2026-41746

A security flaw has been discovered in exo-explore exo up to 1.0.71. Affected is the function imagecachekey of the file src/exo/worker/engines/mlx/vision.py of the component Vision Feature Cache. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high...

6.3CVSS5.2AI score
Exploits0References7
EUVD
EUVD
added yesterday6 views

EUVD-2026-41745

A vulnerability was identified in Hanwang e-Face General Management Platform 6.3.5.4. This impacts an unknown function of the file /sysAuthStr/querySysAuthStr.do. The manipulation of the argument order leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly...

7.5CVSS6.9AI score
Exploits0References5
ATTACKERKB
ATTACKERKB
added yesterday4 views

CVE-2026-14737

A vulnerability was identified in Hanwang e-Face General Management Platform 6.3.5.4. This impacts an unknown function of the file /sysAuthStr/querySysAuthStr.do. The manipulation of the argument order leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly...

7.5CVSS6.9AI score
Exploits0References5Affected Software1
CVE
CVE
added yesterday9 views

CVE-2026-14731

CVE-2026-14731 affects the itsourcecode Hospital Management System 1.0. The vulnerability is in an unknown portion of the file /patientreport.php where manipulating the argument editid leads to SQL injection. It can be exploited remotely and, per the description, the exploit has been made publicl...

6.5CVSS6.6AI score0.002EPSS
Exploits0References6
EUVD
EUVD
added yesterday8 views

EUVD-2026-41738

A security flaw has been discovered in itsourcecode Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file /patientprofile.php. Performing a manipulation of the argument patientname results in sql injection. The attack can be initiated remotely. The explo...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added yesterday6 views

CVE-2026-14725

A vulnerability was identified in SourceCodester Online Boat Reservation System 1.0. Affected by this vulnerability is an unknown functionality. Such manipulation leads to session expiration. It is possible to launch the attack remotely. The exploit is publicly available and might be used...

6.5CVSS6.3AI score0.00209EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added yesterday8 views

EUVD-2026-41735

A vulnerability was found in tiddly-gittly TidGi-Desktop up to 0.13.0. This impacts an unknown function of the file src/services/wiki/wikiWorker/loadWikiTiddlersWithSubWikis.ts of the component Git Repository Import. The manipulation results in code injection. The attack may be performed from...

7.5CVSS6.7AI score0.00315EPSS
Exploits0References6
EUVD
EUVD
added yesterday8 views

EUVD-2026-41726

A vulnerability was determined in code-projects Online Examination 1.0. Affected by this issue is some unknown functionality of the file head.php. Executing a manipulation of the argument uname/password can lead to sql injection. It is possible to launch the attack remotely. The exploit has been...

7.5CVSS6.9AI score0.00263EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added yesterday7 views

CVE-2026-14703

A vulnerability has been found in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /patientorder.php. Such manipulation of the argument editid leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and...

6.5CVSS6.4AI score0.002EPSS
Exploits0References6Affected Software1
Nuclei
Nuclei
added yesterday55 views

NS-ASG Application Security Gateway 6.3 - Sql Injection

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/index.php. The manipulation of the argument IPAddr leads to sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS6.5AI score0.17622EPSS
Exploits1References5
Nuclei
Nuclei
added yesterday165 views

Weaver E-Office 9.5 - Remote Code Execution

A vulnerability was found in Weaver E-Office 9.5. It has been classified as critical. This affects an unknown part of the file /inc/jquery/uploadify/uploadify.php. The manipulation of the argument Filedata leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit h...

9.8CVSS6.2AI score0.32895EPSS
Exploits4References5
Rows per page
Query Builder