CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

968 matches found

EUVD•added 2026/03/09 9:30 a.m.•1 views

EUVD-2026-10305

A flaw has been found in Tenda FH1202 1.2.0.14408. The impacted element is the function fromNatStaticSetting of the file /goform/NatSaticSetting. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack may be launched remotely. The exploit has been...

9CVSS8AI score0.00106EPSS

Exploits1References6

OSV•added 2026/03/09 8:16 a.m.•0 views

CVE-2026-3809

8.8CVSS6.5AI score

Exploits0References5

RedhatCVE•added 2026/03/09 8:2 a.m.•1 views

CVE-2026-3671

A flaw has been found in Freedom Factory dGEN1 up to 20260221. Affected by this vulnerability is the function TokenBalanceContentProvider of the component org.ethereumphone.walletmanager.testing123. Executing a manipulation can lead to improper authorization. The attack requires local access. The...

4.8CVSS5.4AI score0.00016EPSS

Exploits0References1

EUVD•added 2026/03/09 6:31 a.m.•4 views

EUVD-2026-10293

A flaw has been found in Tenda i3 1.0.0.62204. This impacts the function formSetCfm of the file /goform/setcfm. This manipulation of the argument funcpara1 causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

9CVSS7.8AI score0.00106EPSS

Exploits1References6

EUVD•added 2026/03/09 12:30 a.m.•1 views

EUVD-2026-10280

A flaw has been found in SourceCodester Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file checksupplierdetails.php of the component POST Parameter Handler. Executing a manipulation of the argument stockname1 can lead to sql injection. The attac...

8.8CVSS5.8AI score0.00037EPSS

Exploits1References6

Cvelist•added 2026/03/09 12:2 a.m.•26 views

CVE-2026-3790 SourceCodester Sales and Inventory System POST Parameter check_supplier_details.php sql injection

6.5CVSS0.00037EPSS

Exploits1References5

Positive Technologies•added 2026/03/09 12:0 a.m.•3 views

PT-2026-24019

Name of the Vulnerable Software and Affected Versions Tenda FH1202 version 1.2.0.14408 Description A stack-based buffer overflow exists in the fromNatStaticSetting function of the /goform/NatSaticSetting file. Manipulation of the page argument can trigger the overflow. This issue can be exploited...

9CVSS7.7AI score0.00106EPSS

Exploits1References13

Positive Technologies•added 2026/03/09 12:0 a.m.•3 views

PT-2026-24058

A flaw has been found in Tiandy Easy7 CMS Windows 7.17.0. Impacted is an unknown function of the file /Easy7/apps/WebService/GetDBData.jsp. This manipulation of the argument strTBName causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used. The...

7.5CVSS5.7AI score0.00011EPSS

Exploits0References5

EUVD•added 2026/03/08 9:30 p.m.•2 views

EUVD-2026-10273

A flaw has been found in SourceCodester Computer Laboratory Management System 1.0. This affects an unknown part. This manipulation causes cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been published and may be used...

5.3CVSS5.5AI score0.00055EPSS

Exploits1References6

NVD•added 2026/03/08 9:15 p.m.•1 views

CVE-2026-3770

8.8CVSS0.00055EPSS

Exploits1References5

Vulnrichment•added 2026/03/08 9:2 p.m.•3 views

CVE-2026-3770 SourceCodester Computer Laboratory Management System cross-site request forgery

5.3CVSS5.5AI score0.00055EPSS

Exploits1References5

EUVD•added 2026/03/08 6:30 p.m.•2 views

EUVD-2026-10255

A flaw has been found in SourceCodester Employee Task Management System up to 1.0. The affected element is an unknown function of the file /daily-task-report.php of the component GET Parameter Handler. This manipulation of the argument Date causes sql injection. It is possible to initiate the...

5.8CVSS5.7AI score0.00035EPSS

Exploits1References6

OSV•added 2026/03/08 3:15 p.m.•0 views

CVE-2026-3743

A flaw has been found in YiFang CMS 2.0.5. This affects the function update of the file app/db/admin/DsinglePageGroup.php. Executing a manipulation of the argument Name can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been published and may be used...

5.4CVSS4.1AI score0.00036EPSS

Exploits1References4

EUVD•added 2026/03/08 6:31 a.m.•2 views

EUVD-2026-10219

A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function dopnm2png of the file contrib/pngminus/pnm2png.c of the component pnm2png. This manipulation of the argument width/height causes heap-based buffer overflow. The attack is restricted to local...

5.3CVSS6.2AI score0.00019EPSS

Exploits0References7

OSV•added 2026/03/08 6:16 a.m.•3 views

AZL-79515 CVE-2026-3713 affecting package libpng15 1.5.30-15

5.3CVSS6.1AI score0.00019EPSS

Exploits0References1

OSV•added 2026/03/08 6:16 a.m.•2 views

AZL-79523 CVE-2026-3713 affecting package optipng 0.7.8-5

5.3CVSS6.2AI score0.00019EPSS

Exploits0References1

NVD•added 2026/03/08 6:16 a.m.•2 views

CVE-2026-3713