32987 matches found
EUVD-2026-21426
Vikunja has Algorithmic Complexity DoS in Repeating Task Handler...
EUVD-2026-21418
Vikunja vulnerable to Privilege Escalation via Project Reparenting...
EUVD-2023-51106
QD 20230821 is vulnerable to Server-side request forgery SSRF via a crafted request...
EUVD-2026-20465
Rejected reason: Not used...
EUVD-2026-20404
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wealcoder Animation Addons for Elementor animation-addons-for-elementor allows DOM-Based XSS.This issue affects Animation Addons for Elementor: from n/a through = 2.6.1...
EUVD-2026-20497
Hono has incorrect IP matching in ipRestriction for IPv4-mapped IPv6 addresses...
EUVD-2026-19709
Memory-safety vulnerability in github.com/jackc/pgx/v5...
EUVD-2025-209230
Memory corruption when decoding corrupted satellite data files with invalid signature offsets...
EUVD-2026-19263
UTT Aggressive 520W v3v1.7.7-180627 was discovered to contain a buffer overflow in the addCommand parameter of the formConfigCliForEngineerOnly function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...
EUVD-2026-19255
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the notes parameter of the formGroupConfig function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...
EUVD-2019-20119
Kados R10 GreenBee contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting SQL code through the idtodelete parameter. Attackers can send crafted requests with malicious SQL statements in the idtodelete field to extract or modify sensitive database...
EUVD-2026-18815
Rejected reason: Not used...
EUVD-2026-18812
Microsoft Bing Elevation of Privilege Vulnerability...
EUVD-2026-18258
phpMyFAQ is an open source FAQ web application. Prior to version 4.1.1, the MediaBrowserController::index method handles file deletion for the media browser. When the fileRemove action is triggered, the user-supplied name parameter is concatenated with the base upload directory path without any...
EUVD-2026-18013
Payload has an SQL Injection via Query Handling...
EUVD-2026-17819
A flaw has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /modify.php of the component Parameter Handler. This manipulation of the argument firstName causes sql injection. Remote exploitation of the attack is possible. The exploit has be...
EUVD-2025-209019
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks...
EUVD-2025-209021
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings...
EUVD-2026-15989
Rejected reason: Not used...
EUVD-2026-15987
melange pipeline working-directory could allow command injection...