CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/04/07 7:15 p.m.•3 views

CVE-2026-5739

7.5CVSS6.9AI score0.00067EPSS

RedhatCVE•added 2026/04/07 10:52 a.m.•1 views

CVE-2026-5594

A weakness has been identified in premAI-io premsql up to 0.2.1. Affected is the function eval of the file premsql/agents/baseline/workers/followup.py. This manipulation of the argument result causes code injection. The attack is possible to be carried out remotely. The exploit has been made...

6.5CVSS5.6AI score0.00056EPSS

Exploits0References1

RedhatCVE•added 2026/04/07 10:52 a.m.•1 views

CVE-2026-5562

A vulnerability was identified in provectus kafka-ui up to 0.7.2. This impacts the function validateAccess of the file /api/smartfilters/testexecutions of the component Endpoint. The manipulation leads to code injection. The attack can be initiated remotely. The exploit is publicly available and...

9.8CVSS5.5AI score0.0009EPSS

Exploits1References1

RedhatCVE•added 2026/04/07 10:51 a.m.•4 views

CVE-2026-5631

A vulnerability has been found in assafelovic gpt-researcher up to 3.4.3. This affects the function extractcommanddata of the file backend/server/serverutils.py of the component ws Endpoint. Such manipulation of the argument args leads to code injection. The attack may be performed from remote. T...

7.5CVSS5.5AI score0.00067EPSS

Exploits0References1

ATTACKERKB•added 2026/04/06 11:15 p.m.•2 views

CVE-2026-5692

A vulnerability was found in Totolink A7100RU 7.4cu.2313b20191024. This impacts the function setGameSpeedCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument enable results in os command injection. The attack may be performed from remote. The exploit has been made public and cou...

7.5CVSS6.7AI score0.01153EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2026/04/06 10:57 a.m.•3 views

CVE-2026-5556

A security vulnerability has been detected in badlogic pi-mono up to 0.58.4. This vulnerability affects the function discoverAndLoadExtensions of the file packages/coding-agent/src/core/extensions/loader.ts. The manipulation leads to code injection. Remote exploitation of the attack is possible...

6.5CVSS6.2AI score0.00017EPSS

Exploits0References1

EUVD•added 2026/04/06 9:31 a.m.•0 views

EUVD-2026-19186

NVD•added 2026/04/06 7:16 a.m.•0 views

CVE-2026-5631

7.5CVSS0.00067EPSS

CVE•added 2026/04/06 6:30 a.m.•8 views

CVE-2026-5631

The CVE-2026-5631 entry affects assafelovic gpt-researcher up to version 3.4.3. The vulnerability resides in the function extract_command_data in backend/server/server_utils.py of the ws Endpoint, where manipulation of the args parameter enables code injection. This can be exploited remotely; the...

ATTACKERKB•added 2026/04/06 6:30 a.m.•1 views

CVE-2026-5631

Exploits0References5Affected Software1

Positive Technologies•added 2026/04/06 12:0 a.m.•3 views

PT-2026-30570

A vulnerability has been found in assafelovic gpt-researcher up to 3.4.3. This affects the function extract command data of the file backend/server/server utils.py of the component ws Endpoint. Such manipulation of the argument args leads to code injection. The attack may be performed from remote...

NVD•added 2026/04/05 7:17 p.m.•2 views

CVE-2026-5594

6.5CVSS0.00056EPSS

EUVD•added 2026/04/05 6:30 p.m.•0 views

EUVD-2026-19113

A vulnerability has been found in Fosowl agenticSeek 0.1.0. Impacted is the function PyInterpreter.execute of the file sources/tools/PyInterpreter.py of the component query Endpoint. Such manipulation leads to code injection. The attack can be launched remotely. The exploit has been disclosed to...

7.5CVSS6.6AI score0.00051EPSS