CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/05/04 11:45 p.m.•4 views

CVE-2026-7785 A-G-U-P-T-A wireshark-mcp pyshark_mcp.py quick_capture os command injection

7.5CVSS6.8AI score0.01312EPSS

CVE•added 2026/05/04 11:45 p.m.•16 views

CVE-2026-7785

CVE-2026-7785 affects A-G-U-P-T-A wireshark-mcp: the vulnerable component is the function quick_capture in pyshark_mcp.py, with an underlying issue leading to an OS command injection. The description indicates the issue can be triggered remotely and that a public exploit may exist. There are no v...

7.5CVSS6.8AI score0.01312EPSS

NVD•added 2026/05/04 11:16 p.m.•18 views

CVE-2026-7781

A security vulnerability has been detected in Open5GS up to 2.7.7. Affected by this issue is the function udmnudmuecmhandleamfregistrationupdate of the file /src/udm/nudm-handler.c of the component amf-3gpp-access Endpoint. The manipulation leads to denial of service. The attack is possible to be...

5.3CVSS0.00271EPSS

NVD•added 2026/05/04 11:16 p.m.•20 views

CVE-2026-7782

A vulnerability was detected in CodeCanyon Perfex CRM up to 3.4.1. This affects the function Clients::project of the file application/controllers/Clients.php of the component Tenant Handler. The manipulation of the argument ID results in authorization bypass. The attack may be performed from...

6.5CVSS0.00211EPSS

ATTACKERKB•added 2026/05/04 11:15 p.m.•4 views

CVE-2026-7783

A flaw has been found in CodeCanyon Perfex CRM up to 3.4.1. This vulnerability affects the function AbstractKanban::applySortQuery of the file application/services/AbstractKanban.php of the component Admin Kanban Endpoint. This manipulation of the argument this causes sql injection. It is possibl...

6.5CVSS5.6AI score0.00241EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/04 10:30 p.m.•6 views

CVE-2026-7782 CodeCanyon Perfex CRM Tenant Clients.php project authorization

6.5CVSS6.3AI score0.00211EPSS

ATTACKERKB•added 2026/05/04 10:30 p.m.•5 views

CVE-2026-7782

6.5CVSS5.5AI score0.00211EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/04 10:30 p.m.•38 views

CVE-2026-7782 CodeCanyon Perfex CRM Tenant Clients.php project authorization

6.5CVSS0.00211EPSS

CVE•added 2026/05/04 10:30 p.m.•19 views

CVE-2026-7782

CodeCanyon Perfex CRM до v3.4.1 is affected by a vulnerability in the Clients::project function (file: application/controllers/Clients.php) within the Tenant Handler. Manipulating the argument ID causes an authorization bypass. The issue allows a remote attacker to exploit a public exploit, with ...

6.5CVSS6.3AI score0.00211EPSS

CVE•added 2026/05/04 10:15 p.m.•17 views

CVE-2026-7781

Open5GS

5.3CVSS5.4AI score0.00271EPSS

Cvelist•added 2026/05/04 10:15 p.m.•44 views

CVE-2026-7781 Open5GS amf-3gpp-access Endpoint nudm-handler.c udm_nudm_uecm_handle_amf_registration_update denial of service

5.3CVSS0.00271EPSS

Vulnrichment•added 2026/05/04 10:0 p.m.•7 views

CVE-2026-7780 Open5GS smf-registrations Endpoint udm-sm.c udm_state_operational denial of service

A weakness has been identified in Open5GS up to 2.7.7. Affected by this vulnerability is the function udmstateoperational of the file /src/udm/udm-sm.c of the component smf-registrations Endpoint. Executing a manipulation can lead to denial of service. The attack can be executed remotely. The...

5.3CVSS5.5AI score0.00276EPSS

NVD•added 2026/05/04 9:16 p.m.•32 views

CVE-2026-7779

A security flaw has been discovered in Open5GS up to 2.7.7. Affected is the function udmnudrdrhandlesubscriptionauthentication of the file /src/udm/nudr-handler.c of the component authentication-subscription Endpoint. Performing a manipulation results in denial of service. Remote exploitation of...

5.3CVSS0.00358EPSS

Vulnrichment•added 2026/05/04 8:30 p.m.•4 views

CVE-2026-7779 Open5GS authentication-subscription Endpoint nudr-handler.c udm_nudr_dr_handle_subscription_authentication denial of service

5.3CVSS5.4AI score0.00358EPSS

RedhatCVE•added 2026/05/04 8:26 p.m.•5 views

CVE-2026-7627

A security vulnerability has been detected in 8nite metatrader-4-mcp 1.0.0. This vulnerability affects the function CallToolRequestSchema of the file src/index.ts of the component synceafromfile. Such manipulation of the argument eaname leads to path traversal. The attack can be launched remotely...

6.5CVSS6.3AI score0.00344EPSS

RedhatCVE•added 2026/05/04 8:21 p.m.•7 views

CVE-2026-7689

A security flaw has been discovered in Dolibarr ERP CRM up to 23.0.2. This vulnerability affects the function dolverifyHash in the library htdocs/core/lib/security.lib.php of the component Online Signature Module. The manipulation results in improper verification of cryptographic signature. The...

6.3CVSS5.1AI score0.00145EPSS

RedhatCVE•added 2026/05/04 8:21 p.m.•6 views

CVE-2026-7673

A vulnerability was detected in crmebjava up to 1.3.4. This vulnerability affects unknown code of the file crmeb/crmeb-service/src/main/java/com/zbkj/service/service/impl/UploadServiceImpl.java of the component Admin Upload. Performing a manipulation of the argument model results in unrestricted...

5.8CVSS5.5AI score0.00223EPSS

RedhatCVE•added 2026/05/04 8:21 p.m.•6 views

CVE-2026-7672

A security vulnerability has been detected in youlaitech youlai-boot up to 2.21.1. This affects the function getUserList of the file src/main/java/com/youlai/boot/system/controller/UserController.java of the component Users Endpoint. Such manipulation of the argument order leads to sql injection...

6.5CVSS6.3AI score0.00246EPSS

RedhatCVE•added 2026/05/04 8:21 p.m.•6 views

CVE-2026-7643

A flaw has been found in ChatGPTNextWeb NextChat up to 2.16.1. This impacts an unknown function of the file Next.js of the component API Endpoint. Executing a manipulation can lead to permissive cross-domain policy with untrusted domains. The attack may be launched remotely. The exploit has been...

5.3CVSS5.4AI score0.00158EPSS