Lucene search
+L

218 matches found

Cvelist
Cvelist
added 2026/05/04 7:12 p.m.68 views

CVE-2026-41924 WDR201A WiFi Extender OS Command Injection via makeRequest.cgi

WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains an OS command injection vulnerability in the makeRequest.cgi binary that allows unauthenticated remote attackers to execute arbitrary shell commands by injecting malicious input into the settime or StartSniffer functions. Attackers can...

9.3CVSS0.02707EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/28 1:43 p.m.5 views

CVE-2026-27760

OpenCATS prior to commit 3002a29 contains a PHP code injection vulnerability in the installer AJAX endpoint that allows unauthenticated attackers to execute arbitrary code by injecting PHP statements into the databaseConnectivity action parameter. Attackers can break out of the define string...

9.2CVSS5.9AI score0.22189EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/28 1:43 p.m.6 views

EUVD-2026-26052

OpenCATS prior to commit 3002a29 contains a PHP code injection vulnerability in the installer AJAX endpoint that allows unauthenticated attackers to execute arbitrary code by injecting PHP statements into the databaseConnectivity action parameter. Attackers can break out of the define string...

9.2CVSS6AI score0.22189EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/04/24 1:28 a.m.13 views

SUSE CVE-2026-41179

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Starting in version 1.48.0 and prior to version 1.73.5, the RC endpoint operations/fsinfo is exposed without AuthRequired: true and accepts attacker-controlled fs input. Because rc.GetFs...

9.8CVSS5.9AI score0.09199EPSS
Exploits2References3
CVE
CVE
added 2026/04/23 12:53 a.m.51 views

CVE-2026-41679

Summary of CVE-2026-41679 (Paperclip) : Paperclip, a Node.js server with a React UI, is vulnerable to unauthenticated remote code execution via an Import Authorization bypass. Up to version 2026.416.0, an unauthenticated attacker can trigger full RCE on any network-accessible Paperclip instance r...

10CVSS6.5AI score0.01972EPSS
Exploits5References1Affected Software2
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.12 views

PT-2026-33494

Name of the Vulnerable Software and Affected Versions Anviz CX2 Lite affected versions not specified Anviz CX7 affected versions not specified Description Anviz CX2 Lite and CX7 allow the upload of unverified update packages. The device unpacks and executes a script from these packages, which lea...

8.8CVSS6.2AI score0.00409EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.5 views

AlmaLinux 9 : cockpitUnauthenticated remote code execution due to SSH command-line argument injection (Critical) (ALSA-2026:7384)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:7384 advisory. cockpit: ws: be more explicit when handling hostnames on cli CVE-2026-4631 Tenable has extracted the preceding description block directly from the AlmaLinux securi...

9.8CVSS5.9AI score0.142EPSS
Exploits4References3
RedHat Linux
RedHat Linux
added 2026/04/10 3:7 p.m.25 views

cockpit: Cockpit: Unauthenticated remote code execution due to SSH command-line argument injection

Cockpit's remote login feature passes user-supplied hostnames and usernames from the web interface to the SSH client without validation or sanitization. An attacker with network access to the Cockpit web service can craft a single HTTP request to the login endpoint that injects malicious SSH...

9.8CVSS6.2AI score0.142EPSS
Exploits4References4
Vulnrichment
Vulnrichment
added 2026/04/09 10:59 p.m.3 views

CVE-2026-34424 Smart Slider 3 Pro 3.5.1.35 Supply Chain Attack Remote Access Toolkit

Smart Slider 3 Pro version 3.5.1.35 for WordPress and Joomla contains a multi-stage remote access toolkit injected through a compromised update system that allows unauthenticated attackers to execute arbitrary code and commands. Attackers can trigger pre-authentication remote shell execution via...

9.8CVSS6.3AI score0.00551EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/04/08 12:14 p.m.130 views

Exploit for OS Command Injection in Magnussolution Magnusbilling

THM-MagnusBilling-CVE-2023-30258 Perfect! Let’s convert your f...

9.8CVSS6AI score0.9425EPSS
Exploits15
RedhatCVE
RedhatCVE
added 2026/04/03 11:20 p.m.5 views

CVE-2026-34980

A flaw was found in OpenPrinting CUPS. An unauthorized client can exploit this vulnerability by sending a specially crafted print job to a shared PostScript queue without authentication. The server improperly handles the page-border value, allowing an attacker to embed and reparse malicious text ...

7.5CVSS6.4AI score0.00502EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/04/03 11:1 p.m.6 views

CVE-2026-34121

An authentication bypass vulnerability within the HTTP handling of the DS configuration service in TP-Link Tapo C520WS v2.6 was identified, due to inconsistent parsing and authorization logic in JSON requests during authentication check. An unauthenticated attacker can append an...

8.8CVSS6AI score0.00447EPSS
Exploits0References1
CVE
CVE
added 2026/04/02 6:55 p.m.42 views

CVE-2026-35053

OneUptime prior to v10.0.42 exposes unauthenticated access in the Worker service ManualAPI endpoints GET /workflow/manual/run/:workflowId and POST /workflow/manual/run/:workflowId, allowing an attacker who can obtain or guess a workflowId to trigger arbitrary workflow execution with attacker-cont...

9.8CVSS6.2AI score0.00546EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/02 5:20 p.m.4 views

CVE-2026-34121

An authentication bypass vulnerability within the HTTP handling of the DS configuration service in TP-Link Tapo C520WS v2.6 was identified, due to inconsistent parsing and authorization logic in JSON requests during authentication check. An unauthenticated attacker can append an...

8.7CVSS6.1AI score0.00447EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/26 3:4 p.m.7 views

CVE-2026-25873

OmniGen2-RL contains an unauthenticated remote code execution vulnerability in the reward server component that allows remote attackers to execute arbitrary commands by sending malicious HTTP POST requests. Attackers can exploit insecure pickle deserialization of request bodies to achieve code...

9.8CVSS6.9AI score0.01077EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/20 7:16 a.m.4 views

CVE-2026-33057

Mesop is a Python-based UI framework that allows users to build web applications. In versions 1.2.2 and below, an explicit web endpoint inside the ai/ testing module infrastructure directly ingests untrusted Python code strings unconditionally without authentication measures, yielding standard...

9.8CVSS5.9AI score0.05289EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/03/20 7:16 a.m.25 views

CVE-2026-33057

Mesop (Python-based UI framework) versions 1.2.2 and earlier are affected by an unauthenticated remote code execution via the test-suite route /exec-py. The vulnerability stems from an explicit web endpoint in the ai/ testing module that ingests untrusted Python code strings unconditionally and e...

9.8CVSS5.9AI score0.05289EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/20 4:52 a.m.55 views

CVE-2026-33017 Langflow has Unauthenticated Remote Code Execution via Public Flow Build Endpoint

Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/buildpublictmp/flowid/flow endpoint allows building public flows without requiring authentication. When the optional data parameter is supplied, the endpoint uses...

9.3CVSS0.98191EPSS
Exploits21References3
VulnCheck KEV
VulnCheck KEV
added 2026/03/19 12:0 a.m.44 views

VulnCheck KEV: CVE-2026-33017

Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/buildpublictmp/flowid/flow endpoint allows building public flows without requiring authentication. When the optional data parameter is supplied, the endpoint uses...

9.8CVSS6.2AI score0.9999EPSS
In wildExploits53References8
OSV
OSV
added 2026/03/18 8:5 p.m.11 views

GHSA-GJGX-RVQR-6W6V Mesop Affected by Unauthenticated Remote Code Execution via Test Suite Route /exec-py

Summary An explicit web endpoint inside the ai/ testing module infrastructure directly ingests untrusted Python code strings unconditionally without authentication measures, yielding standard Unrestricted Remote Code Execution. Any individual capable of routing HTTP logic to this server block wil...

9.8CVSS6.1AI score0.05289EPSS
Exploits0References4
Rows per page
Query Builder