CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/02/12 9:24 p.m.•4 views

CVE-2026-1358 Airleader Master Unrestricted Upload of File with Dangerous Type

9.8CVSS5.9AI score0.001EPSS

CVE•added 2026/02/12 9:24 p.m.•9 views

CVE-2026-1358

Airleader Master versions 6.381 and earlier are affected by CVE-2026-1358, wherein file uploads are allowed without restriction to multiple webpages running with maximum privileges, potentially enabling an unauthenticated user to obtain remote code execution on the server. The CVSS 3.1 base score...

9.8CVSS5.9AI score0.001EPSS

ATTACKERKB•added 2026/02/12 9:24 p.m.•2 views

CVE-2026-1358

9.8CVSS5.9AI score0.001EPSS

Exploits0References3

Cvelist•added 2026/02/12 9:24 p.m.•24 views

CVE-2026-1358 Airleader Master Unrestricted Upload of File with Dangerous Type

9.8CVSS0.001EPSS

ICS•added 2026/02/12 7:0 a.m.•3 views

Airleader Master

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to obtain remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

9.8CVSS6.4AI score0.001EPSS

Exploits0References11

CNNVD•added 2026/02/12 12:0 a.m.•3 views

Airleader Master 代码问题漏洞

Airleader Master is a management device developed by the American company Airleader, used for managing air compressors. Versions of Airleader Master 6.381 and earlier contained code vulnerabilities due to unlimited file upload capabilities, which could lead to remote code execution...

9.8CVSS7.8AI score0.001EPSS

Positive Technologies•added 2026/02/12 12:0 a.m.•4 views

PT-2026-7908

Name of the Vulnerable Software and Affected Versions Airleader Master versions 6.381 and prior Description Airleader Master versions 6.381 and prior have a flaw that permits unrestricted file uploads to multiple webpages with maximum privileges. This could allow an unauthenticated user to...

9.8CVSS6.3AI score0.001EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-19057

Malware in sbrugna...

9.8CVSS9.2AI score0.01135EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-19056

Malware in sbrugna...

7.5CVSS7.5AI score0.00345EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-16866

Malicious code in bioql PyPI...

9.2CVSS9.1AI score0.00752EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-16865

Malicious code in bioql PyPI...

10CVSS6.5AI score0.00183EPSS

RedhatCVE•added 2025/06/12 12:18 a.m.•3 views

CVE-2025-46612

The Panel Designer dashboard in Airleader Master and Easy before 6.36 allows remote attackers to execute arbitrary commands via a wizard/workspace.jsp unrestricted file upload. To exploit this, the attacker must login to the administrator console default credentials are weak and easily guessable...

7.2CVSS7.3AI score0.01707EPSS

OSV•added 2025/06/10 3:15 p.m.•1 views

CVE-2025-46612

7.2CVSS6.1AI score0.01707EPSS

NVD•added 2025/06/10 3:15 p.m.•6 views

CVE-2025-46612

7.2CVSS0.01707EPSS

Vulnrichment•added 2025/06/10 12:0 a.m.•2 views

CVE-2025-46612

7.3AI score0.01707EPSS

Positive Technologies•added 2025/06/10 12:0 a.m.•3 views

PT-2025-24659 · Unknown · Airleader Easy +1

Name of the Vulnerable Software and Affected Versions: Airleader Master and Easy versions prior to 6.36 Description: The issue allows remote attackers to execute arbitrary commands via an unrestricted file upload in the Panel Designer dashboard. This can be exploited by logging into the...

7.2CVSS7.5AI score0.01707EPSS

Exploits1References4

Cvelist•added 2025/06/10 12:0 a.m.•6 views

CVE-2025-46612

0.01707EPSS