Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8038 matches found

NVD
NVDadded 2026/04/19 11:16 p.m.1 views

CVE-2026-6580

A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file owntracks/views.py of the component Amap API Call Handler. Such manipulation of the argument key leads to use of hard-coded cryptographic key . The attack may be launch...

7.5CVSS0.00054EPSS
Exploits0References4
NVD
NVDadded 2026/04/19 10:16 p.m.2 views

CVE-2026-6578

A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of the argument SECRETKEY results in hard-coded credentials. The attack can be launched remotely. Th...

6.3CVSS0.00017EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/19 10:15 p.m.0 views

CVE-2026-6580

A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file owntracks/views.py of the component Amap API Call Handler. Such manipulation of the argument key leads to use of hard-coded cryptographic key . The attack may be launch...

7.5CVSS5.3AI score0.00054EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/04/19 10:15 p.m.4 views

CVE-2026-6580

The CVE describes a vulnerability in liangliangyy DjangoBlog (up to 2.1.0.0) affecting an unknown function in owntracks/views.py within the Amap API Call Handler. The issue arises from manipulation of the argument key that causes the use of a hard-coded cryptographic key. It can be exploited remo...

7.5CVSS6.6AI score0.00054EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/19 10:15 p.m.18 views

CVE-2026-6580 liangliangyy DjangoBlog Amap API Call views.py hard-coded key

A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file owntracks/views.py of the component Amap API Call Handler. Such manipulation of the argument key leads to use of hard-coded cryptographic key . The attack may be launch...

7.5CVSS0.00054EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/19 10:15 p.m.0 views

CVE-2026-6580 liangliangyy DjangoBlog Amap API Call views.py hard-coded key

A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file owntracks/views.py of the component Amap API Call Handler. Such manipulation of the argument key leads to use of hard-coded cryptographic key . The attack may be launch...

7.5CVSS6.6AI score0.00054EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/19 9:15 p.m.0 views

CVE-2026-6578

A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of the argument SECRETKEY results in hard-coded credentials. The attack can be launched remotely. Th...

6.3CVSS5.2AI score0.00017EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/19 9:15 p.m.2 views

CVE-2026-6578 liangliangyy DjangoBlog Setting settings.py hard-coded credentials

A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of the argument SECRETKEY results in hard-coded credentials. The attack can be launched remotely. Th...

6.3CVSS5.2AI score0.00017EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/19 9:15 p.m.29 views

CVE-2026-6578 liangliangyy DjangoBlog Setting settings.py hard-coded credentials

A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of the argument SECRETKEY results in hard-coded credentials. The attack can be launched remotely. Th...

6.3CVSS0.00017EPSS
Exploits0References4
CVE
CVEadded 2026/04/19 9:15 p.m.4 views

CVE-2026-6578

Summary: CVE-2026-6578 affects the DjangoBlog app by liangliangyy up to version 2.1.0.0. The issue is located in djangoblog/settings.py (Setting Handler) where manipulating the SECRET_KEY leads to hard-coded credentials. It is possible to launch an attack remotely with high complexity, and the ex...

6.3CVSS5.5AI score0.00017EPSS
Exploits0References4
EUVD
EUVDadded 2026/04/19 3:30 p.m.0 views

EUVD-2026-23705

A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation of the argument key leads to hard-coded credentials. The attack may be performed from remote. The...

7.5CVSS6.5AI score0.00054EPSS
Exploits0References5
NVD
NVDadded 2026/04/19 2:16 p.m.0 views

CVE-2026-6574

A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation of the argument key leads to hard-coded credentials. The attack may be performed from remote. The...

7.5CVSS0.00054EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/19 1:30 p.m.0 views

CVE-2026-6574

A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation of the argument key leads to hard-coded credentials. The attack may be performed from remote. The...

7.5CVSS5.2AI score0.00054EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/04/19 1:30 p.m.7 views

CVE-2026-6574

CVE-2026-6574 affects osuuu LightPicture

7.5CVSS6.5AI score0.00054EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/19 1:30 p.m.29 views

CVE-2026-6574 osuuu LightPicture API Upload Endpoint lp.sql hard-coded credentials

A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation of the argument key leads to hard-coded credentials. The attack may be performed from remote. The...

7.5CVSS0.00054EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/19 1:30 p.m.3 views

CVE-2026-6574 osuuu LightPicture API Upload Endpoint lp.sql hard-coded credentials

A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation of the argument key leads to hard-coded credentials. The attack may be performed from remote. The...

7.5CVSS6.5AI score0.00054EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/04/19 12:0 a.m.2 views

PT-2026-33648

A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of the argument SECRET KEY results in hard-coded credentials. The attack can be launched remotely. T...

6.3CVSS5.5AI score0.00017EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/04/19 12:0 a.m.1 views

PT-2026-33650

Name of the Vulnerable Software and Affected Versions liangliangyy DjangoBlog versions prior to 2.1.0.0 Description An issue exists in the Amap API Call Handler component within the file 'owntracks/views.py'. Manipulation of the key argument leads to the use of a hard-coded cryptographic key. Thi...

7.5CVSS7.3AI score0.00054EPSS
Exploits0References7
CNNVD
CNNVDadded 2026/04/19 12:0 a.m.3 views

DjangoBlog 安全漏洞

DjangoBlog is a blog system developed by liangliangyy using Django. Versions of DjangoBlog 2.1.0.0 and earlier had security vulnerabilities. These vulnerabilities stemmed from the use of the parameter SECRETKEY in the file djangoblog/settings.py, which resulted in hard-coded credentials,...

6.3CVSS6.2AI score0.00017EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/19 12:0 a.m.2 views

LightPicture 安全漏洞

LightPicture is a corporate/team/personal image resource management system and photo hosting system developed by osuuu. Versions of LightPicture 1.2.2 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the use of hard-coded credentials for parameters key in files...

7.5CVSS7.2AI score0.00054EPSS
Exploits0References2
Rows per page
Query Builder