363 matches found
CGA-FFH3-GP94-9GV8
Bulletin has no description...
EUVD-2026-1737
Vivotek IP7137 camera with firmware version 0200a is vulnerable to an information disclosure issue where live camera footage can be accessed through the RTSP protocol on port 8554 without requiring authentication. This allows unauthorized users with network access to view the camera's feed,...
EUVD-2026-1775
The Eventin – Event Manager, Events Calendar, Event Tickets and Registrations plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'postsettings' function in all versions up to, and including, 4.0.51. This makes it possible for...
EUVD-2026-1495
Missing Authorization vulnerability in baqend Speed Kit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Speed Kit: from n/a through 2.0.2...
EUVD-2026-1573
A flaw was found in libsoup's NTLM NT LAN Manager authentication module. When NTLM authentication is enabled, a local attacker can exploit a stack-based buffer overflow vulnerability in the md4sum function. This allows the attacker to overwrite adjacent memory, which may result in arbitrary code...
EUVD-2026-1543
Path Traversal: '.../...//' vulnerability in beeteam368 VidMov vidmov allows Path Traversal.This issue affects VidMov: from n/a through = 2.3.8...
EUVD-2026-1447
SQL Injection is present on the hfInventoryDistFormID parameter in the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34. Unsanitized user input is incorporated directly into SQL queries without proper parameterization or escaping...
EUVD-2026-1298
The Awesome Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data due to incorrect authorization in the room-single.php shortcode handler in all versions up to, and including, 1.0. This is due to the plugin relying solely on nonce verification without capability...
EUVD-2026-1019
iDS6 DSSPro Digital Signage System 6.2 contains an improper access control vulnerability that allows authenticated users to elevate privileges through console JavaScript functions. Attackers can create users, modify roles and permissions, and potentially achieve full application takeover by...
EUVD-2026-1060
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149879; Issue ID: MSV-4658...
EUVD-2026-0150
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0216
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0251
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0253
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0391
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0438
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0452
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0443
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0510
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2026-0579
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...